New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
No one knows what intentions you have. Show me the spammer person which really spam.
No, he is just sending tons of shi**y letters.
That is my point too. Block it, if you don't want to deal with that in the future.
No termination, only suspension until customer stop scanning network which owners don't want it and we reactivate the service.
No, IPS/IDS system is active. Owner of the networks informed us that we should stop this scans and they provided valid logs about this scans. He scans for VNC ports, looks like for VNC authentication bypass attacks.
@fileMEDIA if we don't look on this topic for one min, is it logic not to use IPS/IDS for your company and have 1'st level issues with your server providers?
I'm saying this for you and yours cool nights and working days. It will take you few hours or day to set all before making new VPS accounts.
Is this 100% secure solution? I don't thinks so, but it could be a good start.
We offer full and non-filtered access, only SMTP connections are limited for spam protection. We don't want to know your data, or analyze any data of the traffic from our customers because that can risky in terms of german data privacy act.
Thankfully school starts soon.
@fileMEDIA wondering why you skipped this question:
@fileMEDIA I think you should state that you are a law-abiding citizen when it is to your advantage, and would not hesitate to break the law if that means less profit for you.
About the VAT issue, I'm pretty sure they explained it well previously; it's too much paperwork and either accept it or find another host. Fair enough.
Been a customer since their 10€/y promo, and I'm very pleased.
i think @filemedia should put on everything in their TOS clearly according to the german law so that this problem gets solved altogether.
Plus , if someone is scanning my box like that , i will also send the logs to the respective network to make a stop at it. Unless ones get permission to do so , why is anyone scanning it in the first place?
Yeah, op seems like a good guy. I believe him when he says it wasn't ment to do harm, but I fail to see the reason for doing it in the first place. Why did you?
Not for me, plenty of time to waste during the year
What an accusation to make without any proof (and well, it's completely false).
I was bored, seen some guy posting fun screenshots of many open VNC servers on Twitter, scanned for some and grabbed plenty of screenshots myself too.
People can believe it or not, but I was only scanning for open VNC servers and grabbing a single screenshot of them. I did see some cool control systems, webcams and crazy stuff people does expose, no targeted scanning, no malicious intent, no nothing.
You were definitely wrong. He has every right to charge VAT, even if you have a valid VAT ID or if you are ordering from outsiede EU. Read the laws.
Sure.
caltech.edu
date.time srcIP srcPort dstIP dstPort proto #pkts 0813.17:37:03.722 62.113.205.219 46059 134.4.231.3 5900 6 1 0813.17:37:03.914 62.113.205.219 60990 131.215.21.209 5900 6 1 0813.17:37:05.667 62.113.205.219 56491 131.215.254.74 5900 6 2 0813.18:26:26.652 62.113.205.219 38325 134.4.106.130 5900 6 1 0813.18:26:11.420 62.113.205.219 42568 131.215.49.61 5900 6 1 0813.18:29:05.393 62.113.205.219 45619 134.4.101.105 5900 6 1 0813.18:41:07.173 62.113.205.219 43653 134.4.232.78 5900 6 1 0813.18:41:05.766 62.113.205.219 58867 134.4.13.32 5900 6 1 0813.18:41:07.110 62.113.205.219 52850 131.215.95.41 5900 6 1 0813.19:11:59.429 62.113.205.219 53550 134.4.219.163 5900 6 1 0813.19:11:59.875 62.113.205.219 52690 131.215.10.85 5900 6 1 0813.19:12:29.248 62.113.205.219 39086 134.4.238.134 5900 6 1 0813.19:12:36.867 62.113.205.219 57649 131.215.38.93 5900 6 1 0813.19:14:47.580 62.113.205.219 39467 131.215.254.194 5900 6 2 0813.19:14:34.881 62.113.205.219 51671 131.215.15.237 5900 6 1 0813.19:14:34.878 62.113.205.219 41932 131.215.216.30 5900 6 1 0813.19:14:41.601 62.113.205.219 55949 131.215.185.191 5900 6 1 0813.19:14:42.815 62.113.205.219 46754 134.4.21.217 5900 6 1 0813.19:14:44.353 62.113.205.219 52501 134.4.228.221 5900 6 1 0813.19:14:44.929 62.113.205.219 42027 134.4.217.72 5900 6 1Indiana University:
2014-08-14T02:28:31+00:00 swill 1407983309.359488 tcp Scan::Address_Scan 62.113.205.219 scanned at least 52 unique hosts on port 5900/tcp in 4m43s remote 62.113.205.219 5900swill6-8 Notice::ACTION_LOG 3600.000000 FThis is exactly it. You were malicious by entering into a network without permission. What you did is like opening the door to someone's house without asking them first. You obviously did target a specific group since you went after CalTech University.
In my books, you're just another skid.
Even charging people living outside of EU VAT is legal in German laws?
Interesting, care to show me where it is?
Obviously, I scanned complete subnets, what did you expect?
That would be the case if I did breach into a firewalled network. I don't need permission to ping your server nor do I to check for an open port. And I didn't target anyone specifically, those were only the guys which cried about it which is what happens with every port scan. I would love to be a kid but unfortunately that's not the case anymore
I've read the whole thread and I have one question.
So why didn't you give a partial refund to this guy when what he did isn't against your ToS anywhere, or any 'german law'. You fucked up - you can add 'port scanning' to your ToS now - but looks like you owe him in this case.
Don't give me any bullshit about how he's on a blacklist - that University said they blocked the SINGLE IP at their border, that's not a 'blacklist', and 999/1000 of your clients probably will NEVER need to connect to that universities network with their container. How many new clients do you plan on assigning this single ip address? 1000 with this same ip before that University truncates their old blacklist entries?
When you decide to get a house, please make sure all the walls and doors are made of glass. You obviously want to live in this world of transparency, let's see how it works out for you.
Perhaps it's time to stop acting like one.
Sure, as long as you forward it to the financial government. It's the same you buy a pc in germany (directly without shipping), you also pay VAT. Important is the place where the service will fulfilled.
Because we don't want to support such a behavior. Any other issue, no problem. But using our services for any malicious actions or something we don't provide it.
How VAT works in EU:
http://ec.europa.eu/taxation_customs/taxation/vat/how_vat_works/vat_on_services/index_en.htm#supply_services
http://ec.europa.eu/taxation_customs/taxation/vat/how_vat_works/telecom/index_en.htm#current_rules
New rules from 2015:
http://ec.europa.eu/taxation_customs/taxation/vat/how_vat_works/telecom/index_en.htm#new_rules
What does you supporting the behavior have to do with his partial refund since this wasn't listed in your ToS and he was unaware of this not being allowed?
You just keep repeating the same shit over and over. It makes me sick that we condone actions like this from providers.
Maybe you are not SO stupid, or maybe you are the best guy in the world. But companies are working in general terms: they don't know you, they don't know your intentions.
So, port scanning could have been done just for boredom, or you could try to see if you could be cached or you could test it via a legit box and then, after finding the open ports, use another box or another crypto method to use those ports. Nobody can guarantee what are your real intentions.
If you are bored, get out of the house, find some friends, live your life, play a game, watch a tv show, learn how to cook, do something that does not involve other person's property. Because ports from other computers, are other people's property and you should ask them first if you can search their open ports.
P.S. As of Filemedia, they could not hide behind their perspective of the law and try to communicate better with their client. A temp suspension with warning should be good. Also, even now, they should add all illegal (in their opinion) activities to their TOS/AUP, so, there will be no misundersandings in the feature. The part of the german law is generic and it is not specific about a simple port scaning without any actual harm to the machines, so, it is ndeed a grey area.
@Nyr isn't on trial here - @filemedia is. It isn't up to us to determine if his gray area actions are legal or not or to scold him for it.
Damage is damage and cause costs to unblock every single IP addresses and violates against the ToS as it EXACTLY described in the ToS. This must be done manually and costs time, more than this year fee. This also should prevent others to use our services for some activities.
Exactly. If you don't believe it, do as I did, ask your (German) financial advisor. He can be held liable for the information he gives you, so you would want to trust him.
He had one address, that one address was blocked at a single university. Please explain how it took you so long to reply to that universities email to tell them the customer was suspended and the scanning will no longer be coming from your network?
The ip wasn't on a BLACKLIST - it was blocked by a small network. Noone else will ever notice that it was blocked there - your argument is pretty moot.
Hold on while I send you abuse reports for all of your customers because they are blocked on my works network because we think their sites could be infected... then noone would get a refund ever...
Some people here must get really mad each time they tail their auth.log.
I don't really understand your comparison.
Sorry if I don't act like a stranger on the Internet would want.
I'm loving this life advice haha. I also love how you compare logical ports with physical property.
About my cooking skills, my friends created a whole tumblr about them, I hope you enjoy the visit: http://lascomidasdenyr.tumblr.com/
As a customer of many good providers here, I have no issues with how they do business. You on the other hand, is a "provider" I won't touch.