netstat scanner

[Michel Arboi]

On Tue Aug 17 2004 at 15:12, Hugo van der Kooij wrote:

> If your scan kills anything then you have a problem and the problem is NOT
> called nessus. It is the machine that is not resilient enough and not
> shielded enough that is your problem.

I agree at 90% (I love to code DoS plugins :) but the situation is not
so simple:

1. As far as I know, on a civil point of vue, you are responsible if
you destroy something, unless you warned your customer of _all_
risks. You cannot just say "I am responsible for nothing, whatever
happens, please sign here". Such a contract is void.
This is at least the situation in France, and I suppose that this is
true in many other countries.

2. Suppose you have a banking application that transfers billions of
dollars every day. You don't want to break it, because every minute
costs. The easy solution is to avoid it (don't scan, don't even look
at it!) but on the way you prefer to find a flaw before the bad guys.
Maybe there is an identical test machine: you can play with it. Or
maybe not. Or maybe the test machine is the backup machine, and it
should remain available "just in case"...

-- 
arboi at alussinan.org	http://arboi.da.ru
FAQNOPI de fr.comp.securite http://faqnopi.da.ru/
NASL2 reference manual http://michel.arboi.free.fr/nasl2ref/