i see many times on this list that people post ip's of their machines, and of suspect machines. occasionally with lines like "i'm running version (insert any vulnerable version number) of this service!" or a much less serious but still iffy "we only allow port 53 through the fireall to the machine 192.168.14.3" i think a risk exists by posting ip addresses. first of all you expose your own machines to risk by announcing to some unneeded information. sometimes a lot of information is needed to deduce problems, but the actual ips involved are usually not. i have also heard in an email message that some people do indeed scan these machines for innocent purposes, but that can still cause alarm at the other end. as for suspect machines (scans from this ip, or attempted worms whatever) also raises some issues, first of all if many people start scanning a compromised box the person who compromised it may get scared and delete everything on the system before someone responsible for the machine can take any appropriate action, alternatively you could invite scans to dialup accounts which by then wouldnt' be the same machine anyway, slowing down someone's internet connection, or if the suspect traffic turned out to be a false alarm, you may have caused headaches for whoever deals with the innocent suspect machine(i know i have strange traffic forwarded to my pager, not sure about all of you). horror stories aside, i just reccommend that we all obfuscate ip addresses we post here unless the situation definitely calls for it
