Miller Harrison was still working his way down his attack protocol. N map started out as it usually did: giving the program identification and version number. Then it started reporting back on the first host in the SLS network. It reported all of the open ports on this sewer. Then the program moved on to a second host and began reporting back the open ports on that system, too. Once it reached the third host, however, it suddenly stopped. Miller restarted Nmap, using the last host IP as the starting point for the next scan. No response. He opened up another command window and tried to ping the first host he had just port-scanned. No luck. He tried to ping the SL8 firewall. Nothing. He happened to know the IP address for the SLS edge router. He pinged that and got the same result. He had been blackholed—meaning his IP address had been put on a list of addresses from which the SLS edge router would no longer accept packets. This was, ironically, his own doing. The lDPS he had been helping SLS configure seemed to be working just fine at the moment. His attempt to hack the SLS network was shut
Do you think Miller is out of options as he pursues his vendetta? If you think there are additional actions he could take in his effort to damage the SL8 network, what are they?