Hacker News new | ask | show | jobs
by BLKNSLVR 736 days ago
> these Internet security companies are mostly legitimate

This is both subjective and highly dependent upon the scope of services being run. My setup would probably progressively create more hassle than it saves as on a scale from small business to large business. For the setup I have, I quite specifically want to block their traffic.

I'm possibly overly militant about this, but they keep databases of the results of their scans, and their business is selling this information to ... whoever's buying. I don't want my IP addresses, open ports, services or any other details they're able to gather to be in these databases over which I have no control and didn't authorise.

To steal an oft-used analogy, they're taking snapshots of all the houses on all the streets and identifying the doors, windows, gates, and having a peek inside, and recording all the results in a database.

I believe all of them are illegitimate. They 'do' because they can, and it's profitable. "Making the internet safer" is not their raison d'ĂȘtre.

Happy for any else to form their own opinion, but this is my current stance.
2 comments
drpixie 736 days ago
Yes - Anyone who's FAQ answer to "How to avoid being scanned" is "We don't have an opt-out, you must block all these addresses" isn't behaving like a legit business.

"Nice network you've got there."

"We noticed something might be open. We're not telling you what it is."

"It would be a pity if something happened to your business."

"Give us lots of money."

Sounds like a movie strong-arm thug.

link
appstorelottery 736 days ago
Would be cool to have a "don't scan me bro" list of IP's that engage in this that we could share - is there such a thing?
link
BLKNSLVR 736 days ago
The problem is that becomes a concentrator of IPs behind which privacy conscious individuals exist, which probably has higher value to "whoever's buying". It's a conundrum.
link
yesbabyyes 736 days ago
It sounds like what GP is suggesting is to collect ips of all the scanners, and share the list of ips among ourselves, so we can collectively route their traffic to /dev/null.
link
BLKNSLVR 736 days ago
aaaaah, that makes sense. See the links in my original post.
link
kjkjadksj 736 days ago
Why not also sell the scans of scanners to the scanners customers and make a little pocket change?
link
zbentley 736 days ago
There's a comment downthread discussing something similar; I haven't tried it though: https://news.ycombinator.com/item?id=40695179
link
dataflow 736 days ago
You're being sarcastic, right? We did this for telephone numbers and saw how it turned out...
link