Marcia
Fri Oct 24 22:35:19 CDT 2003
Thanks for the encouraging reply.
Marcia
"Rick in the Midwest" <Rick.NOSPAM@NOSPAM.rdfts.com> wrote in message
news:ubovMspmDHA.2500@TK2MSFTNGP10.phx.gbl...
> I have the BlockAttacker.vbs running on my SBS, if someone does an
Intrusion
> detection then it automatically creates a packet filter to block the
> offending IP. But I ALWAYS report the offense to the ISP that owns the IP,
> just like this article shows. Does it do any good, don't know but I feel
> that I have atleast done something. Henry's comment is valid but I think
it
> is more than looking through windows. It is more like someone walking down
> the neighborhood, checking people's house if their front and back door is
> unlocked or any windows that can be opened. If you saw someone going down
> the street doing that to every house, I would call the cops and in my
town,
> they will come out and investigate the complaint. Most ISP when I complain
> do reply that they will look into it. And if you look at most ISP's, port
> scanning is usually against their Acceptable Use Policy by their
> subscribers. But to report nothing, I think is irresponsible.
> So I think you are on the right track. :-)
>
> Rick in the Midwest
>
> "Marcia" <mporter@martechgroup.net> wrote in message
> news:eIwtqPdmDHA.1072@TK2MSFTNGP09.phx.gbl...
> > It wasn't our ISP doing the port scan. I do regular scans myself and
> > believe that I'm protected well. But, it is very suspicious that the
same
> > IP (not known to us) is scanning us--attempting to invade our privacy.
> >
> > OK....I'll not sweat over it. I didn't view it is complaining, rather I
> was
> > seeking advise. Sorry for bothering you.
> >
> > Marcia
> >
> >
> > "Henry Craven" <IUnknown@d.com> wrote in message
> > news:OontfVcmDHA.2272@tk2msftngp13.phx.gbl...
> > > Complaining about Port scans is like complaining that people in the
> > > traffic outside your office are looking at it to see if you've left
> > > doors or windows open. ...and even a passing Police unit will do that.
> > > ( eg: My ISP regularly does port scans of all clients to see if users
on
> > > the "Home" account are running mail servers in
> > > contravention of their ULA ).
> > >
> > > I don't know of a single place where Port Scanning per se is illegal.
> > > You should port scan yourself regularly just to see if you ( or some
> > > malware ) has opened your network to possible intrusion.
> > >
> > > It certainly pays to be aware of what is happening, ...but I'd not
> > > stress about it provided you've protected yourself to Current Best
> > > Practice.
> > >
> > > --
> > > Henry Craven
> > > ---------------
> > > 42
> > >
> > >
> > > "Marcia" <mporter@martechgroup.net> wrote in message
> > > news:eMkhYtamDHA.2528@TK2MSFTNGP12.phx.gbl...
> > > > Hi! I've been intruded! Sounds personal, but...I like my space to
be
> > > my
> > > > space. An IP address did a port scan, actually about 7 of them. I
> > > used the
> > > > whois and found them, contacted the ISP who is supposedly doing an
> > > > investigation.
> > > >
> > > > I've found this site,
> > >
http://www.columbia.edu/acis/security/aprocedure.html,
> > > > is it a good one to follow? The ISP told me they couldn't tell me
> > > anything,
> > > > that I'd have to subpeona their records. Who wants to go through
all
> > > that?
> > > > I just want to know who it is and why they're doing it? What rights
> > > do we,
> > > > the non-intruder have?
> > > >
> > > > Any advice?
> > > >
> > > > Obviously, I need to block the particular IP in ISA, but beyond
> > > that...
> > > >
> > > > Marcia Porter
> > > >
> > > >
> > >
> > >
> >
> >
>
>