I know that in Israel the cyber dept of the government scans IL IP space
then notifies ISP's to notify their clients. This helps where you have
clueless people that don't know they have devices that can easily be
compromised.
On Sun, Jun 19, 2022 at 6:13 AM Ronald F. Guilmette
wrote:
> I would
On Sun, Jun 19, 2022 at 8:01 AM Ronald F. Guilmette
wrote:
> In message udtn6t1o+cv-nh6jbz...@mail.gmail.com>
> Dovid Bender
> >I know that in Israel the cyber dept of the government scans IL IP space
> >then notifies ISP's to notify their clients. This helps where you have
> >clueless people
I would like to solicit the opinions of network operators on the practice
of scanning all of, or large chunks of the internet for known vulnerabilities.
In earlier times, this was generally viewed as being distinctly anti-social
behavior, but perhaps attitudes have changed relative to earlier
IMHO not good.
-J
On Sun, Jun 19, 2022 at 5:14 AM Ronald F. Guilmette
wrote:
> I would like to solicit the opinions of network operators on the practice
> of scanning all of, or large chunks of the internet for known
> vulnerabilities.
>
> In earlier times, this was generally viewed as being
In message
Dovid Bender I know that in Israel the cyber dept of the government scans IL IP space
>then notifies ISP's to notify their clients. This helps where you have
>clueless people that don't know they have devices that can easily be
>compromised.
That's most interesting and I certainly did
Also Germany and Estonia, they scan DE and EE IPs and send emails to ISPs every
day.
From: NANOG On Behalf Of Dovid Bender
Sent: Sunday, June 19, 2022 19:51
To: Ronald F. Guilmette
Cc: NANOG
Subject: Re: Scanning the Internet for Vulnerabilities
I know that in Israel the cyber dept of the
When researchers, or whoever, claim their scanning an altruistic service, I ask
them if they would mind someone coming to their home and trying to open all the
doors and windows every night.
-mel beckman
On Jun 19, 2022, at 6:14 PM, J. Hellenthal via NANOG wrote:
Had to send these guys a
In message ,
Mark Seiden wrote:
>it should be mentioned that shadowserver also notifies those who
>register as the owners of that address space.
Yes. That is quite a public spirited endeavor in the best traditions of
the Internet.
>my thinking about this sort of thing, in general, is:
>
>-
> Also Germany and Estonia, they scan DE and EE IPs and send emails to
> ISPs every day.
being in EE space, never receiving such a notice, and lacking the hubris
to think that all our systems are squeaky clean, i have my doubts.
i suspect that we will be seeing folk who dress well scanning for
btw, if you want to do this yourself, you might consider using something like
https://github.com/opsdisk/scantron
> On Jun 19, 2022, at 11:17 AM, Mark Seiden wrote:
>
> greetings.
>
> it should be mentioned that shadowserver also notifies those who register as
> the owners of that address
Project Sonar from Rapid7 conducts internet-wide surveys and is kind enough
to share the data with researchers:
https://www.rapid7.com/research/project-sonar/
On Sun, Jun 19, 2022 at 10:24 PM Mark Seiden wrote:
> btw, if you want to do this yourself, you might consider using something
> like
>
>> It will also take much less RAM if you turn RPKI validation off.
>
> oh dear ghod. do i need to turn the dancing donkeys off too?
>
> "Make each program do one thing well. To do a new job, build afresh
> rather than complicate old programs by adding new "features"."
> -- ken thompson - unix
Had to send these guys a cease and desist a few years back as they became so noisy it was causing to much of a disconnect between information we were trying to compare.Can't for for more idiot services to just jump on the wagon and deploy their own scanners and pollute edges without a just cause.
On Sun, 19 Jun 2022, Ronald F. Guilmette wrote:
In earlier times, this was generally viewed as being distinctly anti-social
behavior, but perhaps attitudes have changed relative to earlier eras.
I would thus like to know how people feel about it now, in 2022.
This has not changed.
-Dan
On Sun, Jun 19, 2022 at 6:07 PM Randy Bush wrote:
>
> >> It will also take much less RAM if you turn RPKI validation off.
> >
> > oh dear ghod. do i need to turn the dancing donkeys off too?
> >
> > "Make each program do one thing well. To do a new job, build afresh
> > rather than complicate
In message ,
Mark Seiden wrote:
>btw, if you want to do this yourself, you might consider using something like
>
>https://github.com/opsdisk/scantron
Thank you, but as I noted in the post beginning this thread, I personally
have no interest in performing this type of activity at the present
greetings.
it should be mentioned that shadowserver also notifies those who register as
the owners of that address space.
it’s very useful. (it would be more useful if they calculated diffs and
notified about changes/additions.)
my thinking about this sort of thing, in general, is:
- it
See shadowserver.net
On Sun, Jun 19, 2022, 4:13 AM Ronald F. Guilmette
wrote:
> I would like to solicit the opinions of network operators on the practice
> of scanning all of, or large chunks of the internet for known
> vulnerabilities.
>
> In earlier times, this was generally viewed as being
Correction... shadowserver.org
They scan the entire ipv4 internet daily for select potential
vulnerabilities.
On Sun, Jun 19, 2022, 11:43 AM Forrest Christian (List Account) <
li...@packetflux.com> wrote:
> See shadowserver.net
>
> On Sun, Jun 19, 2022, 4:13 AM Ronald F. Guilmette
> wrote:
>
19 matches
Mail list logo