Scanning the Internet for Vulnerabilities

Mark Seiden mis at seiden.com
Sun Jun 19 18:18:52 UTC 2022 

btw, if you want to do this yourself, you might consider using something like

https://github.com/opsdisk/scantron



> On Jun 19, 2022, at 11:17 AM, Mark Seiden <mis at seiden.com> wrote:
> 
> greetings.
> 
> it should be mentioned that shadowserver also notifies those who register as the owners of that address space.
> it’s very useful.  (it would be more useful if they calculated diffs and notified about changes/additions.)
> 
> my thinking about this sort of thing, in general, is:
> 
> - it depends on who’s doing it and why, and what they do with the information
> (so what keeps you from doing it for the benefit of your less clueful downstream customers?)
> 
> - absolutely nothing prevents bad guys from doing it, so discouraging it fits in the category of
> “politeness rules only observed by nice people”.
> 
> - it’s polite enough for me for the good guys to identify themselves so you (the target) can worry 
> less when you notice the activity.
> 
> (btw, this reasoning applies also about crawls of content from the wayback machine.)
> 
> 
> 
>> On Jun 19, 2022, at 10:45 AM, Forrest Christian (List Account) <lists at packetflux.com <mailto:lists at packetflux.com>> wrote:
>> 
>> Correction... shadowserver.org <http://shadowserver.org/>
>> 
>> They scan the entire ipv4 internet daily for select potential vulnerabilities. 
>> 
>> On Sun, Jun 19, 2022, 11:43 AM Forrest Christian (List Account) <lists at packetflux.com <mailto:lists at packetflux.com>> wrote:
>> See shadowserver.net <http://shadowserver.net/>
>> On Sun, Jun 19, 2022, 4:13 AM Ronald F. Guilmette <rfg at tristatelogic.com <mailto:rfg at tristatelogic.com>> wrote:
>> I would like to solicit the opinions of network operators on the practice
>> of scanning all of, or large chunks of the internet for known vulnerabilities.
>> 
>> In earlier times, this was generally viewed as being distinctly anti-social
>> behavior, but perhaps attitudes have changed relative to earlier eras.
>> I would thus like to know how people feel about it now, in 2022.
>> 
>> 
>> Regards,
>> rfg
>> 
>> 
>> P.S.  Just to be clear, I personally have neither any desire nor any intent
>> to undertake such activity myself, nor am I in communiacation with any party
>> or parties that have such an intent or desire.  I cannot however say that I
>> am unaware of any parties that may currently be involved in such activities.
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20220619/c2d23889/attachment.html>

More information about the NANOG mailing list