Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

A server most definitely should not be looking at what random services a client has available.


Sure, like I said:

> Though port scanning can be (and maybe even frequently is) done with malicious intent

I agree that it's wrong for eBay to be doing this. What I disagree with is specifically the statement "Port Scanning is Malicious".


Surely in the context of a website performing a port scan on a client it is always malicious?

Unless it asks for explicit consent for a security audit or something.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: