Re: [Full-disclosure] scanning

["GroundZero Security" <fd@xxxxxxx>]

When you say that by running a portscan you "dossed" a whole network
then i would say either you are crazy or your portscanner is seriously broken 
lol
I have been doing pen-tests since 1998 and never ever dossed a whole Network
by accident, especially not with a simple portscan. 

-sk
----- Original Message ----- 
From: <schanulleke.29172787@xxxxxxxxxxxxx>
To: <Valdis.Kletnieks@xxxxxx>
Cc: <full-disclosure@xxxxxxxxxxxxxxxxx>
Sent: Monday, June 12, 2006 11:23 AM
Subject: Re: [Full-disclosure] scanning


> --- Valdis.Kletnieks@xxxxxx wrote:
> > What's this mean? It means that if you
> scan some lame-ass system and it
> > crashes as a result, you might be in deep
> shit.  And "it shouldn't have
> > crashed from a portscan" does *not* hold
> up in court.
> 
> Having done pen-testing in the past I have disabled (dos-ed)
> systems and entire networks with a portscan.
> 
> My employer would never let
> me do any work withaout a prior written agreement.
> 
> However, law is highly
> fluctuate over time and from country to country. Dutch law recently changed.
> In the past you had to have broken a security barrier in order to be accused
> of hacking, now it has changed to "with the intent to  do harm".
> 
> Is it
> illegal? Not enough data to compute / that is one for the lawers...
> Is it
> unwise? Probably...
> Will you get cought/sued? Unlikely...
> Would I bother
> to sue you? No...
> 
> Schanulleke
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/