Honeypots mailing list archives
Re: Honeypot legal ramifications....
From: Valdis.Kletnieks () vt edu
Date: Mon, 07 Jun 2004 22:33:55 -0400
On Mon, 07 Jun 2004 18:08:25 MDT, Pitts said:
Regarding the privacy of hackers...IMO they waive their rights if they are confronted with a banner stating ...authorized users only, all events are monitored... This seems to be fair warning to anyone, although I am unaware of any legal precedents.
Just keep in mind that there's a severe flaw there - it's the rare exploit indeed that launches /bin/login and provides the banner - most of them launch a /bin/sh and go directly to a shell prompt.. so it's *very* unlikely that your hacker ever sees your login banner. You're *much* more likely to make a warning banner stick against your *own* users, because then they can't argue that they didn't know what the policy was, and you're probably able to show that they saw the banner when they logged in via the usual authorized channels.
Attachment:
_bin
Description:
Current thread:
- Honeypot legal ramifications.... Ryan Trost (Jun 07)
- Re: Honeypot legal ramifications.... Pitts (Jun 07)
- Re: Honeypot legal ramifications.... Valdis . Kletnieks (Jun 07)
- Re: Honeypot legal ramifications.... Lance Spitzner (Jun 08)
- Re: Honeypot legal ramifications.... Lance Spitzner (Jun 08)
- <Possible follow-ups>
- RE: Honeypot legal ramifications.... Adam Shaw (Jun 08)
- Re: Honeypot legal ramifications.... dreamwvr () dreamwvr com (Jun 08)
- Re: Honeypot legal ramifications.... Freddie Beaver (Jun 08)
- RE: Honeypot legal ramifications.... Polazzo Justin (Jun 09)
- Re: Honeypot legal ramifications.... Pitts (Jun 07)