[olug] nmap paranoia

DYNATRON tech dynatron at gmail.com
Tue May 19 00:11:36 UTC 2009


you may have just hit some other customer's equipment.
sounds like the security policy on the cox backbone needs some looking at.


when i first started using it, i played around with nmap on my ISP's network
with no response from them at all. i could have done some damage if i was
into that sort of thing, but i was just trying to learn the command, and
it's potential.

it did make me think about my personal network security, so i think you have
the right idea. don't be afraid to use it on your own systems.

if co(cks)x are that laid back about routing, then they might not even be
aware that you are port-scanning the equipment, but it's still a bad idea.

it's not illegal unless you try to compromise a system, or show the intent
to.

as long as you've done neither, i wouldn't worry about it.
pinging is just pinging.


On Mon, May 18, 2009 at 1:23 PM, Dave Rowe <dave at roweware.com> wrote:

> So, would this indicate that my Subnet Mask on my router is too broad?
> Would limiting it further than 255.255.255.0 limit nmap from getting
> outside of my cable modem (such that Cox doesn't think I'm trying
> something less than kosher).
>
> Phil Brutsche wrote:
> > RFC1918 addresses are only unroutable on the 'net by convention - they
> > are unicast addresses just like any other.
> >
> > If there is no packet filtering and the routing tables properly specify
> > the next hop at each intermediate routing device between you and and the
> > target then the packets will go through.
> >
> > And yes cable modems have an RFC1918 address on them - 192.168.100.1. I
> > doubt that the address is for Cox's management as all cable modems have
> > that address.
> >
> > Dave Rowe wrote:
> >> I'm fairly dense (obviously) when it comes to networking above the core
> >> basics.  But, wouldn't the 'private' in private subnets imply that I
> >> shouldn't be able to access that?  Or even see it for that matter?  With
> >> the cable modem having a public IP address, does it also have a
> >> 'private' internal address for the Cox network?  Thus, it can map to
> >> those subnets because Cox has explicitly set the modems for that
> purpose?
> >
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> https://lists.olug.org/mailman/listinfo/olug
>



-- 
dynatron digital services
box 191 - 68037
www.dynatron.org
dynatron at gmail.com



More information about the OLUG mailing list