Hacker News new | ask | show | jobs
by throwawayeo5 3070 days ago
No, because it’s not against the law to scan servers on the internet. If you don’t want people to scan listening services, don’t let those services listen publicly on the internet. If you were to log into the server, though, that would violate the CFAA.
1 comments
greyface- 3070 days ago
I know that current caselaw holds that it's not a violation of the CFAA to portscan in the general case[1]. I'm not asking in the general case; I'm asking specifically in the case where the scans are regular and ongoing, and the scanning party has been explicitly given notice that they are unauthorized.

[1]: https://nmap.org/book/legal-issues.html

link
pfg 3070 days ago
The courts recently ruled on a similar case[1] and came to the conclusion that it was not a CFAA violation. That said, there's a difference between a public website such as LinkedIn and a host that just happens to be reachable over the internet, so I'm not sure it would be fully applicable.

[1]: https://arstechnica.com/tech-policy/2017/08/court-rejects-li...

link
tokenizerrr 3070 days ago
"Stop looking at my house from the public street! It's not authorized!"
link