Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Allowing scanning from home

from [Adam Jones] Network Security [Permanent Link]
Subject: Re: Allowing scanning from home
Date: Thu, 28 Oct 2004 13:44:37 -0500 
I believe that it boils down to two things, group consensus on the
subject, and the obvious issues with scanning across networks.

One of the most important things in any kind of security evaluation is
to ensure that everyone involved is ok with it. At my office we do not
manage our own switches, and have clients in remote locations of our
campus. Scanning across those locations is a violation of network
usage unless specifically allowed by the administering body of our
network devices. My point is that everyone responsible for any
component used in the scanning must agree to it to ensure that you are
not violating anyone's policies.

You also need to ensure that scanning from a home network is not
prohibited by the ISP. A lot of them do have regulations against
scanning in the usage agreement. Do it enough times and someone is
bound to take notice.

Personally I doubt it is worth the risk. Home systems usually go
through too many networks with too many people to contact and get
approval from for the scanning to take place. Setting up an encrypted
VPN that is treated by your firewalls as any other IP address would
get you into your own network without worrying about the home ISP
taking issue with scanning, but that seems like a lot of trouble just
to do a little scanning from home. It would be much easier to alter
the firewall rules to treat one of your own ips as a foreign ip and do
everything from work.

-Adam
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: possible rooted systems, kyle
Next by Date:  Re: possible rooted system, xyberpix
Previous by Thread:  Re: Allowing scanning from home, Brandon Foley
Next by Thread:  Re: Allowing scanning from home, mike
Indexes:  [Date] [Thread] [Top] [All Lists]