[112676] in North American Network Operators' Group
Re: Dynamic IP log retention = 0?
daemon@ATHENA.MIT.EDU (Martin Hannigan)
Fri Mar 13 00:23:20 2009
In-Reply-To: <200903130052.n2D0qjW9013061@aurora.sol.net>
Date: Fri, 13 Mar 2009 00:23:02 -0400
From: Martin Hannigan <martin@theicelandguy.com>
To: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
On Thu, Mar 12, 2009 at 8:52 PM, Joe Greco <jgreco@ns.sol.net> wrote:
> > Well most port scanning is from compromised boxes. Once a
> > box is compromised it can be used for *any* sort of attack.
> > If you really care about security you take reports of ports
> > scans seriously.
>
> Yeahbut, the real problem is that port scanning is typically used as
> part of a process to infect _other_ boxes. If you allow this sort of
> illness to spread, the patient (that is, the Internet) doesn't get
> better.
>
>
Port scanning is the Internet equivelant of the common cold. They're a dime
a dozen.
I recommend taking some Vitamin B and D. Block, and Drop.
Best,
Martin
--
Martin Hannigan martin@theicelandguy.com
p: +16178216079
