At 09:21 27/06/99 -0400, you wrote:
>Slightly off-topic: - could the owner of a LAN (be it company, university
>or whatever) be held responsible for a hack attack on another computer
>system originating from one of the computers on its network?
As far as I know it should not be unreasonable to assume that this will
occur sooner or later. I can see two areas for a case here..
One is the one of direct assult on behalf of the organisation. In
otherwords someone within your org mounts an attack against another org -
it can be held reasonable that the originating org had full knowledge of
this occuring.
Two A tort case for criminal negligence. In other words if the attack came
form your systems then you should be aware and your security should be good
enough. Therefore you have a duty to ensure that you are not aiding or
abetting criminals.
Anyway - if its in the US - I'm sure someone will try and sue sooner or
later :}
Cheers,
Bret
Technical Incursion Countermeasures
[EMAIL PROTECTED] http://www.ticm.com/
ph: (+61)(041) 4411 149(UTC+8 hrs) fax: (+61)(08) 9454 6042
The Insider - a e'zine on Computer security Call for papers Vol 3 Issue 2
http://www.ticm.com/info/insider/index.html
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
