Comment Re:What a joke (Score 1) 527
"Reportedly, his access to the NYT systems was by using publically accessible proxy servers. Saying he needs prior authorization to do that is naive -- do you need prior authorization to access arbitrary mail or web servers on the Internet? Leaving the systems open is prima facie authorization."
So if you forget to lock your door is that "prima facie authorization" for me to enter your home, rifle your possessions, copy, edit, and distribute your address book, etc? No. Its breaking and entering, or trespassing. Is attaching a computer to the Internet and failing to configure your software properly "prima facie authorization"? "Once inside, Lamo exploited weaknesses in the Times password policies to broaden his access" He was not just using public services. He was exploiting known flaws. The proxy server was only his gateway. He used this public gateway to access private information on the intranet. "Does it not worry you that so many networks are poorly secured in identical ways? I believe that is a much more significant issue." It worries me that businesses and individuals don't take the time to hire a professional or educate themselves on simple security methods. It worries me that Adrian Lamo hides behind a fictional white hat. It worries me that people like you think this is somehow morally correct. Entering systems without permission is reprehensible and illegal. "You are further amused that he does it not for money, but for publicity. HELLO MCFLY." I'm amused that he makes a point of his moral high ground while revealing his hipocracy. "Without him, many of them would rather than sit fat and lazy and hope whoever penetrates them gets caught." _I_ hope he gets caught. And punished. I think he should receive a lighter sentence for revealing his work, but what he is doing is still wrong. You really wouldn't care if a stranger broke into your private computer, read your personal email, copied your credit card numbers, and so forth, just because they told you afterwards? "That publicity also brings business to the security professions who you think consider him a joke. Talk about biting the hand that feeds you." The slammer worm brought alot more publicity when it infected hundreds of thousands if not millions of computers around the world. You think viruses and worms are good publicity? No. These types of attacks result in increased legislation and governmental control of the Internet. Is that really what you want?
So if you forget to lock your door is that "prima facie authorization" for me to enter your home, rifle your possessions, copy, edit, and distribute your address book, etc? No. Its breaking and entering, or trespassing. Is attaching a computer to the Internet and failing to configure your software properly "prima facie authorization"? "Once inside, Lamo exploited weaknesses in the Times password policies to broaden his access" He was not just using public services. He was exploiting known flaws. The proxy server was only his gateway. He used this public gateway to access private information on the intranet. "Does it not worry you that so many networks are poorly secured in identical ways? I believe that is a much more significant issue." It worries me that businesses and individuals don't take the time to hire a professional or educate themselves on simple security methods. It worries me that Adrian Lamo hides behind a fictional white hat. It worries me that people like you think this is somehow morally correct. Entering systems without permission is reprehensible and illegal. "You are further amused that he does it not for money, but for publicity. HELLO MCFLY." I'm amused that he makes a point of his moral high ground while revealing his hipocracy. "Without him, many of them would rather than sit fat and lazy and hope whoever penetrates them gets caught." _I_ hope he gets caught. And punished. I think he should receive a lighter sentence for revealing his work, but what he is doing is still wrong. You really wouldn't care if a stranger broke into your private computer, read your personal email, copied your credit card numbers, and so forth, just because they told you afterwards? "That publicity also brings business to the security professions who you think consider him a joke. Talk about biting the hand that feeds you." The slammer worm brought alot more publicity when it infected hundreds of thousands if not millions of computers around the world. You think viruses and worms are good publicity? No. These types of attacks result in increased legislation and governmental control of the Internet. Is that really what you want?
