| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu) Subject: Name One Web Site Compromised by Download.Ject? On Wed, 30 Jun 2004 10:56:28 PDT, Morning Wood <se_cur_ity@...mail.com> said: > As a side note, I would like to know if using a exploit on a non passworded > site ( access restriction ) > to obtain / change data is in fact illegal ( in the USA ) , as I recall it > is a violation to bypass > an ACCESS CONTROL DEVCE. If no access control is present is there a > violation of a law? Note that 17 USC 1201(a)(1)(A) says: "No person shall circumvent a technological measure that effectively controls access to a work protected under this title". In other words, the anti-circumvention clause is *only* concerned with the case of you circumventing something to get at copyrighted data. If there's no copyright issue, or no access control, that clause doesn't apply. You however *may* still be in deep bovine-based fertilizer from possible violations of 18 USC 2101, 18 USC 1030, other US Code sections, and quite possibly any state laws that pertain to whatever you did... -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040630/21b5cc3a/attachment.bin
Powered by blists - more mailing lists