, SecurityFocus 2004-03-18
A pair of coders nurturing a deep antipathy for software pirates set off a controversy Thursday when they went public with a months-old experiment to trick file sharers into running a Trojan horse program that chastises users and reports back to a central server.
Expand all |
Post comment
Good for them
2004-03-19
nosebreaker.com (1 replies)
nosebreaker.com (1 replies)
Good for them? - Questionable Ethics
2004-03-20
Anonymous (4 replies)
Anonymous (4 replies)
Questionable Ethics? it's everywhere
2004-03-20
Anonymous (1 replies)
Anonymous (1 replies)
You all might think it's all fun and games..............
2004-03-20
neb (3 replies)
neb (3 replies)
You all might think it's all fun and games..............
2004-03-21
Anonymous (1 replies)
Anonymous (1 replies)
Don't blame real virus coders cause if you have real copies of Windows then you are fully patched!
2004-03-21
Geist (4 replies)
Geist (4 replies)
blame real virus coders cause if you have real copies of Windows then you are still not fully patched!
2004-03-21
Anonymous
Anonymous
Don't blame real virus coders cause if you have real copies of Windows then you are fully patched!
2004-03-22
Anonymous
Anonymous
We like to call that "Entrapment" in the legal world
2004-03-22
Reuben (4 replies)
Reuben (4 replies)
In my eyes, the hidden connections it makes to the website are most certainly a payload. He tries to say that trojans must use deviant methods. I would say that tricking a user into misunderstanding what they're downloading.
A user, when trying to run his illegal copy of Unreal Tournament 2004, is giving implicit assent to run Unreal 2004. NOT the program it's posing as.
I suppose it would be a waste of time to mention that the backweb connection and method of delivery qualifies it, without debate, as a trojen by Internet Security Standards. Even "phoning home" is illegal. It also happens to be a class F cyber crimes felony if it takes place between two states (or if the connection goes out of the state). His own logs, accessible on his own site, show that this has indeed happened.
He also publicly shares illegally obtained information on his site. I don't care if it's the color of my hair, publicly sharing illegally obtained data is illegal, and counts as a separate felony.
Open your eyes, dissenters. This man is a criminal. Sure, he only targeted other (alleged) criminals. Sure, he had good intentions, and went to pains to make sure no damage was done, and even that users would not be liable for their transgressions. (Though this is questionable when he publicly posts IP's that any cop can track down with a half hour on the phone to the ISP.(which can be determined by two minutes at a computer.) ) It's still breaking the law. Ignorance does not equal innocence, and good intentions don't make his own transgressions any less.
While I admire the ingenuity required to put all this together, I myself would have suggested greater discretion in the face of so much potential liability.
EricE (at) his (dot) com [email concealed]
"When you have to kill a man, it costs nothing to be polite."--Winston Churchill.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/articles/8279/25473#25473