European Council hacking-tools ban - update
Hi,
recently we discussed the plans of the European Council to ban hacking tools
and to introduce an overall tightened surveillance of ISPs and their customers
in cooperation with the members of the european union.
The EC now has dropped their plans according the ban of these tools after
strong objections from the industry and a whole lot of angry sysadmins
(including myself).
However, there are more doubtful paragraphs in this draft convention which
still is more or less inacceptable for most of us.
The original draft version of the European Council's cyber crime convention can
be found here: conventions.coe.int/treaty/en/projets/cybercrime.htm
The EC-draft update can be read here: www.theregister.co.uk/content/1/15206.html
Boris
I agree with Boris all of this is outrageous. It's that same type of
attitude that a lot of people are taking on guns in the US. Think about it.
The only people with good hack tools are criminals??! It is something that
can not be allowed to happen. People need to band together. Let us all
come together here. Get the email address for the Council(somebody has to
have it, the site what ever, I'll get it and send another email) And let's
all put our two bits in. That is crap. Same goes for the people here in
the states that are so blind and ignorant to facts that they think a ban on
guns is smart. Sure give criminals nothing to fear. If criminals know you
know nothing of their arsenal then you are just a sitting duck. Unreal,
really. Hats off to the "MORONS" that run our governments. Don't guess
they gathered any logic from their math and philosophy classes in college.
Well what do you say. It's a start. There seems to be an abundant amount
of voices on this list. What about others?
Wade Chandler
Metro Information Services ISC
Division: Winston Salem, NC
http://www.metrotriad.com
http://www.metrois.com
wade.chandler@metrois.com
-----Original Message-----
From: bolo@snafu.lupabuero.de [mailto:bolo@snafu.lupabuero.de]On Behalf
Of Boris Lorenz
Sent: Tuesday, December 12, 2000 7:00 AM
To: suse-security@suse.com
Subject: [suse-security] European Council hacking-tools ban - update
Hi,
recently we discussed the plans of the European Council to ban hacking tools
and to introduce an overall tightened surveillance of ISPs and their
customers
in cooperation with the members of the european union.
The EC now has dropped their plans according the ban of these tools after
strong objections from the industry and a whole lot of angry sysadmins
(including myself).
However, there are more doubtful paragraphs in this draft convention which
still is more or less inacceptable for most of us.
The original draft version of the European Council's cyber crime convention
can
be found here: conventions.coe.int/treaty/en/projets/cybercrime.htm
The EC-draft update can be read here:
www.theregister.co.uk/content/1/15206.html
Boris
On 12-Dec-00 Wade Chandler wrote:
I agree with Boris all of this is outrageous. It's that same type of attitude that a lot of people are taking on guns in the US. Think about it. [...] The only people with good hack tools are criminals??! It is something that can not be allowed to happen. People need to band together. Let us all come together here. Get the email address for the Council(somebody has to have it, the site what ever, I'll get it and send another email) And let's all put our two bits in. [...]
The email address for commentaries on the cybercrime draft convention is
daj@coe.int
Have fun,
Boris
Wade Chandler Metro Information Services ISC Division: Winston Salem, NC http://www.metrotriad.com http://www.metrois.com wade.chandler@metrois.com
-----Original Message----- From: bolo@snafu.lupabuero.de [mailto:bolo@snafu.lupabuero.de]On Behalf Of Boris Lorenz Sent: Tuesday, December 12, 2000 7:00 AM To: suse-security@suse.com Subject: [suse-security] European Council hacking-tools ban - update
Hi,
recently we discussed the plans of the European Council to ban hacking tools and to introduce an overall tightened surveillance of ISPs and their customers in cooperation with the members of the european union. [...]
I agree with Boris all of this is outrageous. It's that same type of attitude that a lot of people are taking on guns in the US. Think about it. [...] The only people with good hack tools are criminals??! It is something
Boris, are you in? Send me an email and I'll keep a list of them, for each ten emails I get I will put together one large email to send to the council. Let's be explanatory and honest, so they don't think we are just trying to be rebelious. Wade. Wade Chandler Metro Information Services ISC Division: Winston Salem, NC http://www.metrotriad.com http://www.metrois.com wade.chandler@metrois.com -----Original Message----- From: bolo@snafu.lupabuero.de [mailto:bolo@snafu.lupabuero.de]On Behalf Of Boris Lorenz Sent: Tuesday, December 12, 2000 7:33 AM To: suse-security@suse.com Subject: RE: [suse-security] European Council hacking-tools ban - update On 12-Dec-00 Wade Chandler wrote: that
can not be allowed to happen. People need to band together. Let us all come together here. Get the email address for the Council(somebody has to have it, the site what ever, I'll get it and send another email) And let's all put our two bits in. [...]
The email address for commentaries on the cybercrime draft convention is
daj@coe.int
Have fun,
Boris
Wade Chandler Metro Information Services ISC Division: Winston Salem, NC http://www.metrotriad.com http://www.metrois.com wade.chandler@metrois.com
-----Original Message----- From: bolo@snafu.lupabuero.de [mailto:bolo@snafu.lupabuero.de]On Behalf Of Boris Lorenz Sent: Tuesday, December 12, 2000 7:00 AM To: suse-security@suse.com Subject: [suse-security] European Council hacking-tools ban - update
Hi,
recently we discussed the plans of the European Council to ban hacking tools and to introduce an overall tightened surveillance of ISPs and their customers in cooperation with the members of the european union. [...]
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Hi, first of all, please keep the gun discussion out here, because allthough it may be security relevant for some it defenitely is depending upon structures that are basically different for many nations. I do not care too much about the "hacker tools directive" as it will be hard to define that at court. A "hacker tool" is nothing much but a sequence standard utilities and the use makes it a hacker tool, so it must be prooven that I tried to "hack" someone for it to become a hacker tool (like a citchen knive that is only a weapon when I use it a s a weapon). I am more worried about the access to log files I had to provide, and a mechanism that I cannot realise that someone accesses these files. And that I had to provide (and pay for) the bandwidth to access them. That basically implies, that I had no longer control about my traffic and may not even monitor it and in the end, I was not allowed to have access to my logfiles myself! I do not think that collecting voices against that will do any good. To me they will have some kind of such regulation and the only chance to overcome it ist to *not* obey to such regulations. However I will participate in any petition against such regulation. mike
On 13-Dec-00 Thomas Michael Wanka wrote:
Hi,
[...]
I do not care too much about the "hacker tools directive" as it will be hard to define that at court. A "hacker tool" is nothing much but a sequence standard utilities and the use makes it a hacker tool, so it must be prooven that I tried to "hack" someone for it to become a hacker tool (like a citchen knive that is only a weapon when I use it a s a weapon).
I see your point but the european council is up to lay the power of developing security applications in the hands of industrial conglomerates "certified" in a special way, maybe according to some nebulous euro-standards. It would not be too hard for the ec to persuade the eu members to replace their own cybercrime legislation with such a catalogue of standard actions given the fear that is spread of a vague mass of ghastly criminals commonly entitled "hackers" (yeah, I know about the hacker-cracker thingy so keep your flames down ;).
I am more worried about the access to log files I had to provide, and a mechanism that I cannot realise that someone accesses these files. And that I had to provide (and pay for) the bandwidth to access them. That basically implies, that I had no longer control about my traffic and may not even monitor it and in the end, I was not allowed to have access to my logfiles myself!
I do not think that collecting voices against that will do any good. To me they will have some kind of such regulation and the only chance to overcome it ist to *not* obey to such regulations. [...]
I disagree that going together and stating our opinions is useless. At least we
should show *some* reaction. All of us security oriented admins and developers
would suffer should this convention become reality.
I for myself would rather quit my job and burn all my computers than giving
some official sniff-snaff unrestricted and covered access to our web farm or
customer networks. I totally agree that a regulation only is effective if the
majority acts accordingly...
I think we will have a lot of phun in the future... :-/
Boris
Please note: 1. The discussion about gun's states: "...In the US......." if your country or anybody else's does not begin with "US" then it shouldn't matter 2. It was only placed there for relevancy. Take away guns from everyone in the US by law only the unlawful(criminals) will have them not people who would use them in a good manner; people who could otherwise defend themselves against criminals. Take away crack and hack tools away from (Me: Programmer ;Somebody else: Sys Admin) by law and again only the unlawful will have them not people who would use them in a good manner; people who would otherwise be able to defend themselves with heightened knowledge of the arsenal opposing them and their own security. 3. I will not speak of guns here anymore...though you should refer to number one, and I thought criminals had guns everywhere not just the us, thought the latter is not what I was inferring in my last email. Please send me your email if you would like to help out. I would appreciate it. Thanks, Wade Chandler -----Original Message----- From: Thomas Michael Wanka [mailto:tm_wanka@earthling.net] Sent: Tuesday, December 12, 2000 8:29 PM To: suse-security@suse.com Subject: RE: [suse-security] European Council hacking-tools ban - update Hi, first of all, please keep the gun discussion out here, because allthough it may be security relevant for some it defenitely is depending upon structures that are basically different for many nations. I do not care too much about the "hacker tools directive" as it will be hard to define that at court. A "hacker tool" is nothing much but a sequence standard utilities and the use makes it a hacker tool, so it must be prooven that I tried to "hack" someone for it to become a hacker tool (like a citchen knive that is only a weapon when I use it a s a weapon). I am more worried about the access to log files I had to provide, and a mechanism that I cannot realise that someone accesses these files. And that I had to provide (and pay for) the bandwidth to access them. That basically implies, that I had no longer control about my traffic and may not even monitor it and in the end, I was not allowed to have access to my logfiles myself! I do not think that collecting voices against that will do any good. To me they will have some kind of such regulation and the only chance to overcome it ist to *not* obey to such regulations. However I will participate in any petition against such regulation. mike --------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Hi2all
Thanks Boris for bring again this issue. After the last draft revision was
released, I did think in drop a letter here about it, but since I was at
work, then my busy last weeks made forgot me to do it.
I did discust this lately with some people, inclunding some 'media', and my
opinion it was (and is) that the try for considerer illegall some kind of
tools was just a way that the 'police lobby' had for solving the lack
problem on their logistics and people ... IMHO the all point was since it
isnt easy to catch the criminal, everybody with a 'gun' would be one, then
they could show(-off) some work (not) done. Thanks God they dropped this
nasty plan.
Even so, and for just not saying the obvious (its moron, lame, flame it, etc
...), and since I allways try to put my self in the skin of the subject in
question, I must say that I can understand (but it is obvious, that I dont
agree with it) the frustration of police squads around Europe (starting here
in Portugal), because they really dont have neither the tools or the people
that can give them the proper ways to fight cybercrime. There is so many
other problems with higher priority regarding crimes that this is just the
way (they think) the problem could be solved ...
The comunity feedback was really important for politics can see *how* wrong
they were, and now they drop a part of the dangerous solution they first
arrange for this problem on cybercrime.
But the 'security' is not safe yet ... keep eyes wide open =;o)
[ ]'s bacano
----- Original Message -----
From: "Boris Lorenz"
Hi,
recently we discussed the plans of the European Council to ban hacking tools and to introduce an overall tightened surveillance of ISPs and their customers in cooperation with the members of the european union.
The EC now has dropped their plans according the ban of these tools after strong objections from the industry and a whole lot of angry sysadmins (including myself).
However, there are more doubtful paragraphs in this draft convention which still is more or less inacceptable for most of us.
The original draft version of the European Council's cyber crime convention can be found here: conventions.coe.int/treaty/en/projets/cybercrime.htm
The EC-draft update can be read here: www.theregister.co.uk/content/1/15206.html
Boris
--- --------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (4)
-
bacano
-
Boris Lorenz
-
Thomas Michael Wanka
-
Wade Chandler