Greetings
I am a security researcher who is working on a project in my free time,
without going into details - the project will end with a powerful tool
being publicly released.
Obviously most cyber security tools have the potential for abuse. What sort
of legal hurdles (if any) do you need to ov
If I recall correctly, version 1 of metasploit actually had exploits for
*live* sites (a bank) and things, so that is obviously an issue. I don't
even think you will find a copy of the first version of metasploit (does HD
have one locked up somewhere, who knows).
Currently, metasploit is a hammer.
Hi. As w3af's project leader I've not received any legal threats over
the seven years this project has been alive.
Only a couple of months ago, and just to be sure, I added this
disclaimer which users need to accept to run the tool.
DISCLAIMER = """Usage of w3af for sending any traffic to a targe
Software is SO different to a gun... you can't really compare them.
Real people will die in most cases when a gun is misused, only
electrons are disturbed (in the great majority of cases) if you misuse
a hacking tool.
On Fri, Apr 4, 2014 at 3:50 PM, Not EcksKaySeeDee
wrote:
> Re: Use of a disclai
I believe Germany passed a law about exploits and/or "security tools". Also
in the UK, some of the amendments to the CMA has a statement about
distributing "articles" which some believe also includes software. I don't
know of any case in the UK though where someone has gotten into trouble
with this
After a dozen-ish years of Nikto and some other tools, it's not been a
problem for me either.
However, it doesn't have to be illegal for someone to sue you, or include
you in a court case, which can ruin your day and possibly cost you money
regardless of right or wrong. Having disclaimers and a l
True, s/ware is different from a gun. I mostly meant it tongue in cheek.
But I can't help but wonder, what with the increase of people learning to
code (mind you, there's a diff between hobby and serious, I accept that),
and the whole Internet of Things, and the fact that most modern hardware
(nucl
://www.brookfield.com/emaildisclaimer.
-Original Message-
From: Fulldisclosure [mailto:fulldisclosure-boun...@seclists.org] On Behalf Of
Andres Riancho
Sent: Friday, April 04, 2014 2:57 PM
To: Not EcksKaySeeDee
Cc: fulldisclosure@seclists.org
Subject: Re: [FD] Legality of Open Source Tools
Greetings!
> I believe Germany passed a law about exploits and/or "security
> tools".[...] I *believe* it is taken pretty seriously in
> Germany though.
Of course it's taken seriously here in Germany.
We take EVERYTHING seriously.
;-)
The law (§202c StGB) and its application already have b
Greetings from Finland.
I know that here it is illegal to import, manufacture, sell
or otherwise distribute such machine or software which
are designed to endanger or harm information and
communication systems.
This is stated in chapter 34 § 9a. Then again § 9b states
that it is illegal to poses
Sorry.
For the last message and that I forgot to include where
the chapter 34 sections 9a and 9b can be found..
They are on the following translated document of the
Finnish Criminal Code:
http://www.finlex.fi/fi/laki/kaannokset/1889/en18890039.pdf
You can find sections 9a and 9b on pages 143 a
osure-boun...@seclists.org] On Behalf Of Andres Riancho
Sent: Friday, April 04, 2014 2:57 PM
To: Not EcksKaySeeDee
Cc: fulldisclosure@seclists.org
Subject: Re: [FD] Legality of Open Source Tools
Software is SO different to a gun... you can't really compare them.
Real people will die in most cases when a
On Sat, Apr 05, 2014 at 01:23:51PM +0300, Toni Korpela wrote:
> Greetings from Finland.
>
> I know that here it is illegal to import, manufacture, sell
> or otherwise distribute such machine or software which
> are designed to endanger or harm information and
> communication systems.
Basic examp
On Fri, Apr 4, 2014 at 3:29 PM, John Young wrote:
> Would you suggest it is time to license security professionals like
> architects, engineers, doctors and others lawfully empowered to
> police hazardous systems in the public interest?
the industry itself is the problem; no more security differe
On Sun, Apr 6, 2014 at 4:24 AM, Henri Salo wrote:
> On Sat, Apr 05, 2014 at 01:23:51PM +0300, Toni Korpela wrote:
>> Greetings from Finland.
>>
>> I know that here it is illegal to import, manufacture, sell
>> or otherwise distribute such machine or software which
>> are designed to endanger or ha
On Fri, Apr 4, 2014 at 3:58 AM, Bryan Bickford wrote:
> ...
> I am a security researcher who is working on a project in my free time,
> without going into details - the project will end with a powerful tool
> being publicly released.
yes, but released under what license? :)
> Obviously most cy
Hey Salo.
I know that the act of port scanning without permission
is illegal even though easily done thanks to Fyodor's nmap.
The thing is that I find it really funny that I can not distribute
nmap legally to a friend at some other point of the Internet
and ask him to port scan my IP address.
T
On 04/06/2014 11:54 AM, Jeffrey Walton wrote:
On Sun, Apr 6, 2014 at 4:24 AM, Henri Salo wrote:
Basic examples, which I have personally encountered:
1) Not allowed to port scan. Some ISPs are already monitoring and warning users
in case they do port scanning, but the reason for alerting might
Toni,
The English version has this information in Chapter 38, I didn't find it in a
Chapter 34.
The key to all this is the language of intent, using verbiage such as
"aggravated", "unlawful", and "to cause detriment". This is the same as the
United States and many other countries; if you don'
19 matches
Mail list logo
