> I don't think anyone would 'scan' with a false source address, since > they won't get any replies .
You'd be surprised at the way people scan. I can think of three NMAP options that would cause this idea to be a non-starter. Idle scan Bounce scan Decoy scan All of these would cause you to retaliate against some poor third party. _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
