[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] OT Hosting company scanning my Cobalt
- Subject: Re: [cobalt-users] OT Hosting company scanning my Cobalt
- From: "Rick Ewart" <cobalt@xxxxxxxxx>
- Date: Fri Aug 16 07:42:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
> I suppose what I'm annoyed about is that didn't bother to inform me they
> were going to do it. Obviously I'll be very happy to hear if they find
> something I've overlooked - rather than find out the hard way.
They probably have something posted on some policy somewhere. I was not
aware of any policy that monitored my machine and reboot it if it was found
unresponsive, but my data center claims its there. I just told them to stop
instead of bothering to actually look for it.
> I have since spoken to them again and they tried to sell me a new security
> service they are providing - I think what they were tying to do was find
> insecure boxes (whose administrators didn't notice their activities) then
> approach the owners with the results of the scan and try the hard sell.
That sounds likely. Of course if this were someone outside the data center
trying to do this, it would be illegal. Sounds pretty shady to me.
I am a CISSP and on the discussion group we have, this comes up frequently.
Recently heard of a guy who was arrested after doing some wireless
wardriving and found a company that was wide open. He told them about their
vulnerability and they had him arrested. Sounds similar to me, although they
probably have a clause permitting them to "protect their network".
Rick