That they scan is not a rumor. From my logs:
Jul 1 09:08:52 csXXXX-XXX in.ftpd[6953]: refused connect from
cpusge.mediaone.net
Jul 1 09:08:58 csXXXX-XXX in.telnetd[6954]: refused connect from
cpusge.mediaone.net
Jul 1 09:08:58 csXXXX-XXX in.telnetd[6955]: refused connect from
cpusge.mediaone.net
MediaOne is part of the whole convoluted TWC family.
I sent a pretty sharp e-mail to their security, and was politely but firmly
told to mind my own biz, and they were doing me a service by making the
world safe for cable modem users:
===========================================================
The cpusge.mediaone.net machine is one of our corporate resources. We
apologize for any inconvenience or concern this may have caused. Due to the
large number of users running wide open proxies, which hackers can use as
jump points to send SPAM, hack, etc., it is necessary to search for any open
proxies in an attempt to locate, and have our customers secure their proxy
servers before any problems arise.
Gary Donnelly
Desktop Support Specialist / Abuse
Mediaone RoadRunner
http://www.MediaoneRR.com <http://www.MediaoneRR.com>
===========================================================
Hmph.
Regards,
Thomas Cameron, CNE, MCP, MCT
Three-Sixteen Technical Services
Linux Training in Austin, Texas - http://training.three-sixteen.com
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Doc Shipley
> Sent: Tuesday, July 06, 1999 1:11 AM
> To: Michael Orion Jackson
> Cc: [EMAIL PROTECTED]
> Subject: Re: [RoadRunner] What, precisely, is their server policy?
>
>
> Sorry, guys, but yer all wrong.
> I got my information from the horse's mouth - the account manager at
> Service Corp.(aka RoadRunner). I was trying to get a commercial account
> for a client's office. Bottom line with that is that RR offers no
> commercial service at all. Even though they advertise it on their site.
> They're offering webhosting services, and they're worried about commercial
> accounts doing their own. The REVENUE is the concern, not bandwidth
> hogging. Again, that's what the account manager personally told me.
> He also specifically stated what the techs had already implied.
> 1) RR clients hosting commercial content will be booted. Period.
> 2) RR clients hosting high-traffic public-service content will be asked
> nicely. Once.
> 3) RR does not in any way prohibit IP forwarding or masquerading. They
> supply 1 leased IP. If you can transmit that to a secure, INVISIBLE
> network, they do not care.
> 4) RR is aware that a high percentage of their clientele uses Linux, and
> that most distros install Apache by default. So the presence of an http
> server on your box doesn't worry them.
> Since the original question seemed to refer to a practice exercise
> instead of a porn site ;^) , this would not violate your TOS.
> Security IS an issue, though. If you're vulnerable, as an e-mail relay in
> particular, they don't like it. "Word is" that they scan client boxes now
> & then. In violation of their own terms of service.
>
> --
> Doc Shipley
> Network Guy
> TARL Labs, UT
>
>
>
> ------------------------------------------------------------------
> ---------
> Send administrative requests to [EMAIL PROTECTED]
>
---------------------------------------------------------------------------
Send administrative requests to [EMAIL PROTECTED]
