On Mon, Aug 06, 2001 at 10:24:04PM -0500, John Hasler wrote: > Ian Perry writes: > > You could, but wouldn't be better to alert then than shutting them > > down... there could be legal ramifications in lost income etc etc for a > > public server. > > Making any use at all of the backdoor, even just to send the admin a > message, is probably a crime under US law. When I worked for a cable ISP, we had a customer who thought it would be cool to alert other people on the network about their security problems by printing a message on their printers. Some (clueless) customers thought this was prelude to an attack and called the cops. I have to agree with John ... using a security hole in someone else's server for good or evil is probably not a good idea legally. I'd advise against it. -- Nathan Norman - Staff Engineer | A good plan today is better Micromuse Ltd. | than a perfect plan tomorrow. mailto:nnorman@micromuse.com | -- Patton
Attachment:
pgpcX8RUpbreR.pgp
Description: PGP signature