The adventure continues:

"Thank you for your report of an AUP violation. We have identified the
offending user and will take appropriate action(s).

For more information regarding our Acceptable Use Guidelines, please see the
following URL: http://support.shaw.home.com/aup
<http://support.shaw.home.com/aup>









Acceptable Use Policy Management Team
Shaw@Home Internet Services
Shaw Communications Inc.
Phone 1(403)750-7420
internet.abuse@shaw.ca
(np)




-----Original Message-----
From: cam [mailto:************]
Sent: Saturday, December 11, 1999 10:58 PM
To: internet.abuse@shaw.ca
Subject: hacker


I know you most likely get tons of these all the time, but I just though I'd report
it.

Time: 1999-12-12 22:49:35
IP: 24.64.151.19
DNS: 24.64.454.19.on.wave.home.com
Node: 15453793-A
Group: HACKER UNION
NetBIOS: DEFENDER
MAC: 00500485D77B

Attepted a TCP trojan horse probe. (caught by BlackICE)"


Ha, atleast it's something!!! Go team BlackICE!!!....it's only you seti, it's only you.

Ha, I guess I'm easily amused when I've been awake for 39hours straight. http://www.sysopt.com/forum/smile.gif!!!!!!!!
These late night Perry Masion marathons rock! yeehaw!!!

[This message has been edited by seti (edited 12-12-1999).]

Seti, in case you and other BID users missed this, look here http://www.sysopt.com/forum/Forum1/HTML/002883.html

Way to go seti http://www.sysopt.com/forum/smile.gif
Go get them!
I wish more people would do this, maybe it would start a trend for the ISP's to really
get serious about this. Maybe when enough
people have been prosecuted, we will see less of this happening.

Boy, right after I posted that thing on the Black-Ice update there server got overloaded and crashed. Talk about the power of the press. This site really pulls some weight!
LOL

Dave

I think it is wrong, but it is not illegal to do a port scan on someone elses machine.

I'm not exactly sure what you mean....but I didn't do anything, if that's what your saying. My firewall automatic collects that information about them when they scan my IP. If that's not what you ment, sorry. Um, I don't think scanning is illegal. It's like a car theif looking through the window to see if it's locked or not.

Darn...I guess @home has an automated response system. I kind of suspected that due to there promt reply the first time. Well, I'm still going to tattle though!

"Thank you for your report of an AUP violation. We have identified the
offending user and will take appropriate action(s).

For more information regarding our Acceptable Use Guidelines, please see the
following URL: http://support.shaw.home.com/aup
<http://support.shaw.home.com/aup>




Acceptable Use Policy Management Team
Shaw@Home Internet Services
Shaw Communications Inc.
Phone: 1(403) 750-7420 Fax (403) 234-6280
internet.abuse@shaw.ca
mailto:internet.abuse@shaw.ca <mailto:internet.abuse@shaw.ca>

(mlt)



-----Original Message-----
From: cam [mailto:*************]
Sent: Sunday, December 12, 1999 11:12 PM
To: @home
Subject: hacker

BlackICE caught:

Time: 1999-12-12 20:32:39
IP: 24.64.126.62
DNS: 24.64.126.62.on.wave.home.com
Node: @HOME-ASSINGNED
Group: @HOME
NetBIOS: MMKK
MAC: 0080C893610B

Attepted a TCP trojan horse probe."



[This message has been edited by seti (edited 12-13-1999).]

I installed BlackIce 3wks ago and was getting
20+ "hits"/day. Now I only get 2 or 3.
Maybe some of these scanners are realizing that they can't even get a response from my
machine and have moved on. The hits I get now are legit or some idiot with PC anywhere that can't find his own *** much less his own computer.This "Mike At Home" guy is getting on my nerves but it could be his 5yr old brat or the moron himself and I don't want to get him in trouble for an honest yet annoying mistake.

[This message has been edited by reddog4629 (edited 12-13-1999).]

There's ligit ways to scan someone's IP for weakness??? Ha, that doesn't sound right to me. I know there's False Positves....like ICQ, you get an attack when someone gets disconnected while sending you something. Speaking of ICQ...I can't connect when I'm on Parnoid. Is this normal?? Oh, and another BlackICE question...why doesn't it report the scans done by the sheilds up site??

I think a port scan is more like a burglar
trying to open your front door. A person like that checks to see if your door is un-locked, if it is locked, he moves on to find an easier target.

bdog:
I agree a port scan is wrong and is not really illegal, but what do you think the persons intentions are?

I recall that the first few times I did the shields-up test I got several alarms, but they came later than I would expect them and not one for each port that was probed. I
did it again last (the short test) and didn't get an alarm either, Hmmmm.

Dave

Well I did the sheilds up test again...and BlackICE picks up the TCP port scan....but it doesn't register as stealth anymore!!?? Only closed. I'm perplexed.