Somz new thoughts on the new German "anti-hacker" law which outlaws means of circumventing security. I have been thinking about the scope of hacker tools in this. It's not only about vulnerability scanners. Do they differentiate between a password cracker and a password recovery tool? Or do they make difference between a utility designed to run DoS attacks and one designed to stress-test a networks? Even data recovery software to bypass file access permission and to gain access to deleted data is potentially illegal. So what about forensic toolkits?
I have the feeling expert advice was not consulted or ignored when making this law. Uh oh.
Thursday
New thoughts on german anti-hacker law
Subscribe to:
Post Comments (Atom)
Security4all Blog
Twitter
Slideshare
Facebook
Digg
Flickr
2 comments:
IMHO, this is a big mistake from the German Government.
The most of these attacks are a result from the following combination: not-so-knowledgeable script-kiddies + negligent System/Networks administrators.
If the government wants security, then they should hire better security officers.
This decision is a big mistake because the good security officers will be unable to test their systems and, therefore, all the networks will more commonly stay vulnerable.
Viele GrĂ¼sse aus Brasilien,
Rodrigo.
sparcslack AT gmail DOT com
Post a Comment