Mailinglist Archive: opensuse-security (757 mails)

< Previous Next >
Re: sysadmin ethics after security breach
  • From: pinard@xxxxxxxxxxxxxxxx (François Pinard)
  • Date: 24 Jan 2002 11:41:40 -0500
  • Message-id: <oqg04vya4b.fsf@xxxxxxxxxxxxxxxxxx>
[Martin Leweling]

> If you have waterproof evidence, contact law enforcement authorities.

Not that simple, at least where I live. You have to prove damages as well,
and it is easier when you are a bank or a big industry. Small sites have
little chance, and personal sites almost none. In any case, the small
investigation team is so overwhelmed that you might have a hard time just
getting their attention.

And then, unless the attacker is an adult (which is usually not the case),
youth protection comes into play, and the most you will get is that they
will confiscate the pee-cee for a little while, as a vain attempt to
frighten the kid, or probably less than his parents.

--
François Pinard http://www.iro.umontreal.ca/~pinard


< Previous Next >