Mark Rasch, 2002-08-05
HP's ill-advised DMCA threat actually had a few legal teeth. Will federal prosecutors soon start chomping at bug finders?
Colapse all |
Post comment
Post to Bugtraq -- Go to Jail
2002-08-05
ktwo (1 replies)
ktwo (1 replies)
FUD FUD FUD Post to Bugtraq -- Go to Jail
2002-08-05
FUD PATROL
FUD PATROL
Rasch is a FUD Monger. There is no "engineer", there is no "employer",no "message" to Bugtraq describing anything and there is no "use" of the DMCA. He makes their threat of the DMCA seem as a statement of fact. That they could use it, and that it can be used. Nonsense.
SnoSoft: "a loosely organi...
[ more ] [ reply ]
SnoSoft: "a loosely organi...
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-06
Anonymous (1 replies)
Anonymous (1 replies)
"A few days after the HP letter was made public, a company public relations official reversed course, noting that the initial threat "was not consistent or indicative of HP's policy" and that "HP will not use the DMCA to stifle research or impede the flow of information that would benefit our custom...
[ more ] [ reply ]
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-07
Psuedo-Anonymous Coward (1 replies)
Psuedo-Anonymous Coward (1 replies)
In the letter from HP, extortion under Massachusetts General Law, Chapter 265, Section 25, was mentioned. "Finally, SnoSoft and its members may face additional penalties under various criminal statues of the Commonwealth of Massachusetts including, but not limited to, criminal extortion (M.G.L. c. 2...
[ more ] [ reply ]
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-13
Mark D. Rasch
Mark D. Rasch
Saying fix your software or I will hack you may be extortionate or otherwise criminal. Saying fix your software or I will reveal the vulnerability is probably protected speech. Saying, fix your software or I will release an exploit for others to hack into you is sort of in between....
[ more ] [ reply ]
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail: Now hacker can get in!
2002-08-07
Alberto Cozer
Alberto Cozer
HP had a "very smart" approach. Now the Security Specialists that usually subscribe to those mail lists won't get the information about new security threats.
On the other hand, all the professional hackers that exchange messages about vulnerabilities and threats in the underground will be able t...
[ more ] [ reply ]
On the other hand, all the professional hackers that exchange messages about vulnerabilities and threats in the underground will be able t...
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-10
blacklight
blacklight
HP is making the following points to all of us by threatening prosecution: (1) HP is not a responsible vendor - everybody has bugs, but the dividing line between a responsible vendor and an irresponsible one is the willingness to deal with the bugs as they are being announced; (2) HP's top priority ...
[ more ] [ reply ]
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-12
Mel
Mel
DMCA is a lousy law. I don't see the justification for it in the first place. Unauthorized use of copyrighted material (unless covered by Fair Use) is a crime. Why do you need another law (badly open to abuse) to make it a crime to defeat a measure which is seeking to prevent you from commiting a cr...
[ more ] [ reply ]
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail -- Redux
2002-08-12
Annoyed at this whole mess
Annoyed at this whole mess
This little 'threat' or FUD is just the latest parting shot by Vendors who don't want to have to take the time to write their code securely. This is further complicated by the rash of 'security professionals' that have recently added themselves to this field of endeavor after the lure of money in t...
[ more ] [ reply ]
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-13
T-1000
Seems someone missunderstand how it's dangerous to kill bu g report information which SHOULD be posted to bugtraq. There's only two ways:
1) If OS/software errors is posted to bugtraq, the software/OS patch comes quickly and people can avoid to get their systems compromised by hackers(do not mi...
[ more ] [ reply ]
T-1000
Seems someone missunderstand how it's dangerous to kill bu g report information which SHOULD be posted to bugtraq. There's only two ways:
1) If OS/software errors is posted to bugtraq, the software/OS patch comes quickly and people can avoid to get their systems compromised by hackers(do not mi...
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-13
Gonlo
Gonlo
IMHO the law and the justice often are in disagree.
Isn't the mission of the consumer to show the factory bugs of the products. If the provider sent to the jail a person for show that, then all others customers can send to the jail the provider in order to release a very risk and unstable hw/sw p...
[ more ] [ reply ]
Isn't the mission of the consumer to show the factory bugs of the products. If the provider sent to the jail a person for show that, then all others customers can send to the jail the provider in order to release a very risk and unstable hw/sw p...
[ more ] [ reply ]
Post to Bugtraq -- Go to Jail
2002-08-14
A disgrunted American
A disgrunted American
Goddamn, there is something wrong with the country/world when somebody has the ability to educate the world and it becomes illegal for education in the greatest form, security.
If one man can beat you to the vulnerability, beat him to the patch.
You missed the code, your goddamn fault HP!...
[ more ] [ reply ]
If one man can beat you to the vulnerability, beat him to the patch.
You missed the code, your goddamn fault HP!...
[ more ] [ reply ]
[ more ] [ reply ]