[Dshield] warning - netcraft.com

Josh Beckett josh at theoubliette.net
Sat Nov 24 07:32:08 GMT 2001


 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

netcraft.com is offering, what I find to be an offensive tool, in
it's current incarnation.

They offer a tool that allows you to scan any site you input into a
web page for tcp/443 service and probe it's offerings.  I've seen
plenty of tools that allow similar activity, but they usually allow
you to only scan your own ip (a much safer implementation).

The security implications are obvious to me, but they don't find
anything wrong with their activity.  So I put it before you, my
security comrades...be aware.

For the planet.net.uk folks --
ENERGIS SQUARED ABUSE TICKET : 148978 (ACTIVE SYSTEM ATTACK!)

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBO/9M+GuCvDMAxAeZEQJkpACg3U1Ts0b8Ly8y9xx+bVYU99cf9/oAn2kJ
0NaboZs2SfEzeOSIZRiIBKSE
=Yk85
-----END PGP SIGNATURE-----
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.dshield.org/pipermail/list/attachments/20011123/3cbbf729/attachment.htm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGPexch.htm.asc
Type: application/octet-stream
Size: 1229 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/list/attachments/20011123/3cbbf729/PGPexch.htm.obj


More information about the list mailing list