When I was a wayward teenager, I once got very drunk during a KISS FM summer
roadshow. The result of three hours of solid drinking in the sun was a very
full bladder. Now, for some unknown reason I decided to tag onto a group of
people that I had never met before and I actually managed to walk into their
house un-noticed by them until we all got into the kitchen. There I was
challenged by someone along the lines of, "Who the hell are you," (but with
more, uhh, brio) at which point I replied that I needed to use their toilet.
Needless to say they refused and politely, if a little roughly, ejected me
forthwith.
Now you could say that I was port scanning in the hope of finding somewhere
to dump data that did not belong to the owners' of the house in question. Or
something. Maybe I've got this whole analogy thing the wrong way round.
Perhaps you could say that I was attempting a Man in the Piddle attack. I
don't know. The port scanning issue is such a nebulous one-especially when
applied across international boundaries. What does the law say where YOU
are? What does the law say where you are about scanning OTHER countries?
What does the law in another country say about you scanning their country
from somewhere else. As someone has pointed out(and I'll defer to them on
this point) the scanning is not illegal in Germany-with the usual conditions
of course.
Is it unethical? Hmmm.
Should he tell the Uni? I don't think so. Not until he works out how they
operate.
Also, has Matthias posted with his real name? This whole thread would no
doubt show up on a quick Google.....will they bother doing that? If the
employers know anything about modern hiring resources then I'd expect the
too....
Regards
Murad Talukdar
-----Original Message-----
From: David Gillett [mailto:gillettdavid@fhda.edu]
Sent: Tuesday, March 28, 2006 5:18 AM
To: 'Craddock, Larry'; security-basics@securityfocus.com
Subject: RE: application for an employment
It's more like throwing a stone at a window to see if it's open.
Sometimes the stone bounces off the closed window, sometimes it
sails through the open window, and sometimes it *breaks* the window.
"I only wanted to find out if the window was open or closed" is not
generally considered an excuse to avoid responsibility for the broken
pane....
David Gillett
-----Original Message-----
From: Craddock, Larry [mailto:l_craddock@wfec.com]
Sent: Friday, March 24, 2006 11:59 AM
To: security-basics@securityfocus.com
Subject: RE: application for an employment
Seems to me port scanning is neither picking a lock or seeing
a door hanging wide open but more like rattling a door to see
if it is unlocked. I don't know about you, but if someone
comes by my house and rattles the door to check whether or
not it's locked I'm going to assume he has bad intentions
whether he does or not and he'll need to be prepared for my response.
-----Original Message-----
From: L G [mailto:nitziya74@hotmail.com]
Sent: Wednesday, March 22, 2006 6:23 PM
To: security-basics@securityfocus.com
Subject: Re: application for an employment
This is a good thread which begs further discussion.
I guess the crudest part of my question is, was Mathias
picking a lock, or did he see a door hanging wide open?
And at what point is someone going through an open door
versus looking in a window versus admiring someone's
architecture from the street?
lg
--------------------------------------------------------------
-------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec
management education and the case study affords you unmatched
consulting experience.
Tailor your education to your own professional goals with
degree customizations including Emergency Management,
Business Continuity Planning, Computer Emergency Response
Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
--------------------------------------------------------------
-------------
---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
