Slashdot Mirror


Nmap Author Receives FBI Subpoenas

spafbnerf writes "Fyodor, author of the open-source network scanning tool Nmap, posted a story to the nmap-hackers list about having received a number of subpoenas from the FBI this year, demanding webserver log data, none of which produced anything, either because they sought old information that had already been deleted from his logs, or because the subpoenas were improperly served. In every case the request was narrowly crafted, usually directed at finding out who visited the site in a very short window of time, such as a five minute period. Fyodor writes: "If they see that an attacker ran the command "wget http://download.insecure.org/nmap/dist/nmap-3.77.t gz" from a compromised host, they assume that she might have obtained that URL by visiting the Nmap download page from her home computer"." Update: 11/25 20:21 GMT by T : Reader kv9 adds a link to Kevin Poulson's story at SecurityFocus.

20 of 390 comments (clear)

  1. Trinity used Nmap....look where it got her. by Anonymous Coward · · Score: 4, Funny

    Up shit creek sans paddle.

    1. Re:Trinity used Nmap....look where it got her. by JamieF · · Score: 5, Funny

      Yeah but for a while she had a boyfriend who could morph himself, move super fast... putting any sex toy or porn star to shame. Not a bad deal.

  2. fpyodor by Anonymous Coward · · Score: 0, Funny

    first scan.

  3. She? by product+byproduct · · Score: 3, Funny

    Are we talking about Trinity?

    1. Re:She? by ravenspear · · Score: 3, Funny

      Could be, but only if someone was using Nmap to try to get her out of the Matrix and ran afoul of phone phreaking laws.

      What with all the new Gov. VoIP regulations being debated about, it's only reasonable that the FBI would want to prevent unauthorized access to the Matrix.

  4. New Christmas Version ... ? by oostevo · · Score: 3, Funny
    From the posted article ...

    Let me first wish you Americans a happy Thanksgiving. Meanwhile, I'm hard at work on a holiday Nmap version which should be available by Christmas.

    I suppose this new version will give a new meaning to the Xmas scan, no?

    --
    In soviet russia, You ask not what country do for you, but what you do for country!
    Oh wait...
    1. Re:New Christmas Version ... ? by Anonymous Coward · · Score: 5, Funny

      Making a list,
      Scanning it twice.
      The FBI knows,
      Who's naughty or nice...

  5. Bad joke... by gowen · · Score: 5, Funny

    No wonder he's reticent about providing information.
    Fyodors are supposed to remain closed at all times.

    (Sorry)

    --
    Athletic Scholarships to universities make as much sense as academic scholarships to sports teams.
  6. 'She'... in related news.. by pented_rage · · Score: 5, Funny

    The FBI has tracked down a perpetrated hacker after a slip-of-tongue by Fyodor in a recent nmap-hackers list posting, relating a female hacker using wget command to get nmap. After searching the homes of the 3 females known by Fyodor, they have identified and captured the assailant.

  7. A *real* webmaster by mobiGeek · · Score: 4, Funny
    Only real webmasters get subpoenaed by the FBI. If you haven't been subpoenaed lately, take a good hard look at your website...it has become meanlingless.

    :-)

    --

    ...Beware the IDEs of Microsoft...

  8. So, about this girl... by antic · · Score: 2, Funny


    So, this girl that has been downloading... are there photos of her? Huh? Huh?

    --
    'Thats they exact same thing a banana wrench monkey.'
  9. Re:Seems valid by mr_snarf · · Score: 1, Funny
    Hopefully the internet will continue to be unsafe, filthy, and represent all that is wrong with our species as a whole. It makes things more interesting and certainly more entertaining. Thoughts?
    Goatse, tubgirl, lemonparty. Ok ok, I'm lucky I haven't actually seen lemonparty, and I'm lucky enough to have not fully seen goatse (I've seen someone's bog.org avatar, and ascii goastse, but nothing more). However, I was caught by a drive by tubgirl at a lan party once. was tragic. 5 people ended up with minor retina damage, I wasn't so lucky, was rushed to the ER and sustained sever optical and brain damage. 4 years later and I'm still recovering.
    --
    printf("Goodbye cruel world!\b\b\b\b\b\b\b\b\b\b\b\b\b\b\b\b\b\b\b\b");
  10. Re:time to flame fyodor into reality by jdunn14 · · Score: 2, Funny

    made for backhats

    Are those over by the asshats?

  11. Subpoena automation? Hmmm.... by Spy+der+Mann · · Score: 2, Funny

    I wonder. Why can't they automate the subpoenas?
    That way they'd have one ready and well-written in case of a hacker emergency.

    Oh well.

  12. Re:Seems valid by kfg · · Score: 4, Funny

    Perhaps neglecting the fact that if a word has multiple meanings the existence of one meaning does not negate the proper use of another meaning is an oversight on your part?

    Your use of language might need some oversight.

    KFG

  13. And of course since our furry and scaly friends... by PaulBu · · Score: 3, Funny

    ... have feelings too, the proper way to refer to something unknown is he/she/it, to be abbrevaiated as s/h/it! ;-)

    Paul B.

  14. Re:Naked Nmap Chick... by Wizarth · · Score: 2, Funny
    I'm the one who wrote the script and shot the video

    Shame, shame! Aside from the bad outfit, and the bad acting, in the movie you scan first localhost (usually behind the firewall, so not to useful) then localhost/24 ... so good, you scanned 127.0.0.*, meaning you hit your own box 255-ish times! Again behind the firewall!

    That said, I do have a copy of that movie on the usb stick in my pocket.
  15. Re:Seems reasonable by KarmaPolice · · Score: 4, Funny

    Well, the suggestion is that they are trying to find out who downloaded the source onto a compromised machine. So - someone has cracked root on an unknown machine, visits insecure.org with the browser on their own machine, pastes the URL for the tarball into the shell on the compromised machine, and makes nmap. What it sounds like they are looking for is the IP address of the browser used to get the URL for the source.

    Well, now they can visit slashdot instead...

  16. Super fast would be a problem there, sport by Anonymous Coward · · Score: 1, Funny
    "Whoa!

    ...

    Umm, sorry."

  17. Re:Seems valid by Doomdark · · Score: 4, Funny
    In polite society you censor the bad,

    I think you misspelled "police"?

    --
    I like paying taxes. With them I buy civilization -- Oliver Wendell Holmes