Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: [PEN-TEST] Implications for "Looking around?" [FBI confiscation of allegely curious student]

Re: [PEN-TEST] Implications for "Looking around?" [FBI confiscation of allegely curious student]

From: Nexus <nexus_at_PATROL.I-WAY.CO.UK>
Date: Wed, 1 Nov 2000 18:23:46 -0000

----- Original Message -----
From: "David Ford" <david_at_LINUX.COM>
To: <PEN-TEST_at_SECURITYFOCUS.COM>
Sent: Wednesday, November 01, 2000 5:39 PM
Subject: Re: Implications for "Looking around?" [FBI confiscation of
allegely curious student]
[snip]

> The normal visitor doesn't connect to a variety of ports and do zone
> transfers. This activity is surely what brought him above the noise
> level. Any investigator worth his beans would take note.
[snip]

Maybe, maybe not - if you are using one of the many internet based domain
query tools, then at some point it may be doing a dig -axfr... Is it any
different using nslookup and doing an ls -d ? Or is the former a better
way of 'hiding' yourself ?
Neither method is malicious in itself.
#include <standard_intent_vs_action.h>
;-)

Regards,
            JJ

____________________________________________
http://1cis.com
Free E-mail Servers with unlimited mailboxes
1st Class Internet Solutions
Received on Nov 02 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos