Port scanning networks which you are responsible for is in my point of view an acceptable practice, as long as you do for it for a good reason (it's up to you to find out a good reason...). But any other scanning should be considered as security breach attempts.
So now you have to ask yourself: what is my job? Secure your systems, or play the internet police? Your boss usually pays you to secure your own systems and not running after script kiddies. Trying to log all scans, probes and reporting them is a time consuming task. So unless you're paid to do it yourself, let people dedicated to security reporting do the job. They exist. And there are also tools to help you report such activities. Scans are unavoidable. It's your responsability to be aware of vulnerabilies, and "lock the doors" whenever possible. You, as a single net admin, can't stop people from being curious. But if you care about net etiquette and want to change things, then take off your network admin hat, and grab the political one. You're in for an endless fight :) my 2 cents, Eric ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
