Ahhh.. Good. I'm sorry if I sounded mean about that... I still haven't gotten over how the people who choose to host a web site and share information without a profit motive still have to pay good money to do it and then people will come along and abuse the server for their own needs... I shouldn't expect more, but it still bothers me sometimes... I guess I'm upset with myself for being dumb enough to think that everyone will respect the work behind the site. I noted 4 port scans after making that statement. And as a minor note, I didn't invite people to port scan me, but rather to try to break in by any means. I don't think anyone could expect me to NOT report attempts without having contacted me first and say, "please don't report attempts from IP x because I'm just testing your firewall." So I'm sorry if I reported your attempt, as I said, its automated and you didn't tell me to expect the scan. The mask is built into the firewall and I'm not going to tell anyone what model it is or how it is configured. Sorry, but doing so would be more like leaving the door open than just inviting an attempt to break in. There is a lot of documentation on using NT and IIS on my site at http://www.massmind.org/techref/inet/iis.htm some of the automated reporting stuff is not documented, but that wasn't hard... http://www.wallwatcher.com http://www.dshield.org http://www.spamcop.net http://techref.massmind.org/techref/language/basic/ol-spam-rpt-vbs.htm --- James. > -----Original Message----- > From: piclist-bounces@mit.edu > [mailto:piclist-bounces@mit.edu] On Behalf Of Shawn Tan Ser Ngiap > Sent: 2004 Dec 21, Tue 02:42 > To: piclist@mit.edu > Subject: Re: [OT:] James: Barred from Piclist.com > Importance: Low > > On Tuesday 21 December 2004 01:38, James Newton, Host wrote: > > That same form clearly explains how to ublock your IP. Why not just > > follow are being public, lets just go into why that IP was > blocked... > > Okay.. > > > Ahhh here it is: The IP was used to portscan my server on > 2004.12.16 @ > > (abuse@ntlworld.com) and logged at dshield.org > > Hey... great tool... is this fully automated by the tool?? > What is the name of the tool?? > > > If that IP address is used by other people and THEY did the > port scan > > at a about. If you port scanned my server... take your lumps. > > I only did a scan after you gave an open invite to do so.. I > would never do such a thing otherwise.. I was just interested > to confirm that you were really running MS NT4.. Since you > complained about not being able to set Linux up properly... > > And it seemed to mask itself quite well... The portscan > results confused me... > It seems to report that it was running slackware... was it > just echoing my ip fingerprint?? If it was, what is the name > of this tool?? > > Anyway, maybe you can write a howto on how to set up a proper > windows server... That way, everyone (including me), can > learn from your setup... > > cheers... > > -- > with metta, > Shawn Tan > _______________________________________________ > http://www.piclist.com PIC/SX FAQ & list archive View/change > your membership options at > http://mailman.mit.edu/mailman/listinfo/piclist _______________________________________________ http://www.piclist.com PIC/SX FAQ & list archive View/change your membership options at http://mailman.mit.edu/mailman/listinfo/piclist