This bird is sraeting to plss me off.
He keeps scanning my port 137.
First rule of this is to never scan from an insecure system.
I scanned him back and look how insecure he is.
None of the shares are password protected!
I was tempted to teach him a lesson but I restrained myself.

http://coolpagehelp.com/fool.gif

That's temptation waiting to be had!
*How far will this guy push TonyT before he takes action?*:rotfl:

no no no, I will not so anything rash.
This guy is probably just some kid learning about networking and such.

I "could" easily view his shares but I don't do that sort of stuff.
I'm too lazy. I'd have to enable sharing on my system first and then put my system in the DMZ, then change my subnet. Or I'd have to use a server somewhere else to work from. That's too much work just to take a peek at someone's mp3's and homework assignments!

Who knows, maybe he will end up at SG and get educated properly.

Tony, not insulting your integrity but be careful about who you do connect to, especially with nothing more than netbios over tcp/ip. I have set many vuln systms in the dmz and monitor them just for the purpose of watching people travers the system ... would someone with a windows box like that be doing this? probably not, but all the same, using a simple netbios scanner to connect to anothers system because you are scanned is something I am not in full agreement with.
You would'nt have to put your system in the dmz or change your subnet or enable sharing on your system to "view" his shares (that is what you have already done) as long as you have Client for Microsoft Networks in the protocol stack all this can be achieved very easily.

Not a flaming just a simple disagreement. :)

I'm not saying you would Tony.
Please don't take it as that. I find it amusing that someone would do as they have done and left their machine open like that. Your right, it has to be some kid experimenting, but I hope it's for a good cause and not another Darksider.

The scanning could also be done through a spoofed box...

greEd

I agree.
But I don't connect to them with netbios.
Netbios is "off" on my system.

Sure, the image demonstrates that I can view what shares he has open, but I cannot actually see what's on the drives. From what I understand, I would have to enable netbios on my machine to do that (bound to tcp/ip), which I don't have bound. That's a risk I do not wish to take.

".......using a simple netbios scanner to connect to anothers system because you are scanned is something I am not in full agreement with."

Neither am I. I actually ran into this by accident. Sometimes, when my isp network is laggy, I will scan a range of IP's to see who is running servers and slowing things down. I sometimes then report them. (level 2 has come to know me due to my past complaints)

My isp recently dropped RR and switched to their own broadband setup. Needless to say, they have not configured the network optimimly as of yet. Sometimes, I am on the same subnet as users in cities 200 miles away from where I live!