cyber-"terrorism"?

iriXx iriXx at iriXx.org
18 Sep 2002 10:10:09 +0100 

On Wed, 2002-09-18 at 00:52, alastair wrote:
> 
> Secondly, what makes you think a free (or 'open-source') OS is harder to
> hijack?
> 
> Notice the 'bugtraq.c' SSL (mod_ssl/apache) worm doing the rounds at the
> moment, attacking Linus/Apache/SSL systems. A large number of Linux
> users (I hesitate to use the word 'system administrator') are as
> clueless as their Windows equivalent.

> Do you check the signature on the package you download and install? What
> about scanning the source code for a trojan before compiling, installing
> and loading? How do you know 'that' service you run isn't vulnerable? Do
> you subscribe to 'bugtraq'? What about all the 'underground' 'black hat'
> channels?


this is true - those who are vulnerable to bugtraq.c are generally those
who havent got around to updating their mod_ssl since the vulnerability
was patched some time ago... personally, i keep ahead of this, but i'm
a) interested in security and b) at present just running machines from
home. certainly sysadmins should be doing all that you've suggested
above... 

> Lastly, the word 'terrorist' should be consigned to the dustbin I think.
> It's been over-used so often, for so long, that it's lost any meaning it
> might have had. 
> 
> I'm sure that the danger is over-played, but the threat exists.
> 

yes, i agree. 

but i also agree that the word 'terrorist' is overused - in fact in this
context i believe it is being used as a label to subtly sneak in
legislation on the use of TCPA / Palladium - which as we've been
discussing, has little to do with actual security and more to do with
content control - and therefore control of the masses. the reference i
posted to an article in todays Register demonstrates this (posted in
reply to Peter's message)

thanks and bw
miriam
-- 
iriXx
www.iriXx.org

copyleft: creativity, technology and freedom?
info@copyleftmedia.org.uk
www.copyleftmedia.org.uk

 _
( )  ascii ribbon against html email
 X
/ \    cat /dev/sda1 > /dev/dsp


Replace global capitalism with something nice!