Re: NIPC and the community at large...

Johnie_Wood Mon, 22 May 2000 09:49:49 -0700

I would assume it means, "DO NOT contact the suspected perpetrator,"
because in criminal
type cases, the suspect can start deleting files and/or destroying
equipment when they
find out someone is on to them.



                                                                                       
                                  
                    Gregory Hicks                                                      
                                  
                    <[EMAIL PROTECTED]>        To:     [EMAIL PROTECTED], 
[EMAIL PROTECTED]                     
                    Sent by:                    cc:                                    
                                  
                    firewalls-owner@List        Subject:     Re: NIPC and the 
community at large...                      
                    s.GNAC.NET                                                         
                                  
                                                                                       
                                  
                                                                                       
                                  
                    05/22/2000 11:40 AM                                                
                                  
                                                                                       
                                  
                                                                                       
                                  





> Date: Mon, 22 May 2000 11:21:21 -0400 (EDT)
> From: "Paul D. Robertson" <[EMAIL PROTECTED]>
>
> I've just had a gander at a small 3-page fold-out brochure from the
> U.S. National Infrastructure Proctection Center (No publication number),
> and under "What To Do When You Have Been Victimized", the final bullet
> item is "DO NOT contact the suspected perpetrator."
>
> I'm wondering if this is the start of an end-run around the usual
> community practice of contacting technical contacts during incidents?  I
> know there's probably a lot of "Cybercrime" funding at stake here, and
I'm
> sure that contacting a single attacker is sometimes a bad idea, but given
> that this is a terse little handout, I worry about the implications of
> emphatic statements without serious qualification.

Well...  If everyone contacts the NIPC whenever an 'incident' occurs,
they (the NIPC people) will be able to go to Congress and say "...  See
how much cybercrime there is?  After we started, there was an X%
increase.  We have been able to 'contain' x%, arrest y%, and, by our
efforts, are making the internet more secure for "Motherhood and Apple
Pie".  Thus we need more money, poeple, resources, et al. ..."

Please pardon my cynicism, but ...

Regards,
Gregory Hicks
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]



-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
Re: NIPC and the community at large...

Reply via email to
