[Dshield] amihacked.com now without portscan

Johannes B. Ullrich jullrich at sans.org
Wed Mar 2 19:16:53 GMT 2005

Per request from the ISP (Valueweb), I had to turn off
the portscan feature. They did receive a complaints from
people. I ran a system like that before, and it turns out
that quite a few people forget that they asked for the
scan :-(. Oh well. I don't have an issue with Valueweb's
decision on this, and actually think they handled it quite
well (better then other ISPs that would just have dumped the
complaints to /dev/null). They gave me a call to notify about the 
complaints, and forwarded an anonymized snippet from a zonealarm log 
someone sent them.

Even without the portscan, I am trying to keep cranking on the
page in a more 'passive' way. Maybe I will add the portscan again later 
if I find an ISP willing to deal with the reports.

Johannes Ullrich                        jullrich at sans.org
SANS Internet Storm Center                 (617) 639 5000
PGP Key: https://secure.dshield.org/PGPKEYS
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 256 bytes
Desc: OpenPGP digital signature
Url : http://www.dshield.org/pipermail/list/attachments/20050302/94d4b7d1/signature.bin

More information about the list mailing list