On Mon, 14 May 2001 10:06:42 +1200, you wrote:
>> Your unauthorized port probing has been detected.
>> Your ISP will be notified within the next 12 hours.
>>
>>Even if I never get around to checking the logs (very unlikely), I can
>>just imagine the sweating they'd do for the next couple of days! ;)
>
>Set in dnews.conf
> nntp_logoff Your unuauthorized port probing will be reported to
>your ISP...
May I suggest a better method against port-probing ?
If Dnews would get an option to reject all connections outside the
allowed IP-address range(s), then the user cannot even connect to port
119. Then all port-sniffers give up.
This applies to ISP news-servers which can be accessed only from their
customers.
Even if the admin himself wanted to access the own server from home,
then he could allow an additional IP-address-range for connects.
Answering to a port-probe with such a message is rude from my point of
view. At least not better than the attempt to find a server.
We all know that the 'NewsHunters' out there are a part of 'Usenet
security'.
Last not least:
Every customer who is running a news-reader on a notebook computer and
starts it anywhere around the world would see this message.
If I would get such a reply from my providers server, then he would
receive a pretty nice eMail from me...... (Foot in yourself shoot..)
Just another opinion.
--
Juergen
---------------------
News Tools Programmer
