New German "anti-hacker" law

Just noticed this article on Anandtech:

The new rules tighten up the existing sanctions and prohibit any unauthorized user from disabling or circumventing computer security measures to access secure data (see the law, sections 200 and following [in German]). Manufacturing, programming, installing, or spreading software that can circumvent security measures is verboten, which means that some security scanning tools might become illegal. The Chaos Computer Club in Germany said of the decision, "Forbidding this software is about as helpful as forbidding the sale and production of hammers because sometimes they also cause damage."

Well, having up to date laws to "fight" the bad guys is good but not if it also limits the capabilities of the good guys. I wonder what impact this will have for security scanner vendors like Tenable, ISS or Qualys? It doesn't seem like a very good thought-through law.

Chaos Computer Club spokesman Andy Mueller Maguhn said that "safety research can [now] take place only in an unacceptable legal gray area." The group is also concerned that the new legislation will make it easier for the police to obtain information by hacking—something that was outlawed by the courts a few months back.

Hmmm.... it seems unlike before, police forces can hack others PC's to obtain information. Do they need warrants? For what type of crimes? I think this sets a dangerous precedent. Full article at Anandtech.

Bonus: Germany passes Anti-Hacking laws (heise-security.co.uk)