Quote:
Originally Posted by mrmnemo
It was recommended that I post the results of a service scan performed against a remote machine.
|
Who did and did they give specific reasons for doing that?
Quote:
Originally Posted by mrmnemo
I have a been getting scanned repeatedly by the same group of addresses for well over 2 months.
|
If you publicly provide the services they scan for surely you have blocked unauthorized access?
Elif you don't publicly provide the services they scan for then what do you have to fear?
And how about using an IDS instead of scanning? Because exploiting known vulnerabilities will yield known signatures. Having those captured makes it easier to find out the level of intent (as in automated scanner vs human focus).
Quote:
Originally Posted by mrmnemo
The first question would be if I could get in trouble for the remote host actions.
|
This depends on your view.
- First of all your ISP may prohibit
unauthorized port scanning. Scanning remote targets anyway may affect your level of service.
- Secondly (state) law may prohibit the same (Computer Fraud and Abuse Act, Computer Systems Protection Act, Computer Misuse Act et cetera).
- Then there is the (remote?) risk of retaliation but most of all
- the
effectiveness of a scan is disputable:
Quote:
Originally Posted by mrmnemo
I ran a scan against one of the host out of curiosity. (..) It appeared to be a school in china.
|
in the case of your chinese host (which appears to be the property of the Medical College Hospital of XuZhou in Jiangsu state) the server seems to be involved with spam [
0] and it has been scanning for VNC-related vulns [
1|
2] for years now [
3]. In short: fat chance scanning gets you something interesting.
Quote:
Originally Posted by mrmnemo
Should I report it? IF so, how would aI report it to some guy in china, I don't speak or write Chinese.
|
If you report it I would suggest their upstream and in english. However given the nature of ISP support your report may be stored safely in the bit bucket for an indefinite period of time (as in pigs taking to the sky or Hell starting to cool down drastically).