OK, I think both McCarthy and the Clintons would be very proud of all the
rules suggested to control and track the masses. One thing is for sure. If
this list is created with all the fancy, uninforcible rules, then the hacker
will just break into a primary network before breaking into yours. Remember
the sniffer posting from CERN several weeks ago and all of the sites that
had been considered compromised, WELL, well, this the sniffer deamon was on
a ????.net network, do you disallow this address. OH BOY! I am deleteing
all the rest of the mail I have gotten on this issue, because its not
security, its a witch hunt.
----------
From: firewalls-owner
To: firewalls
Subject: Re: Hacker Site List?
Date: Thursday, August 25, 1994 6:33AM
The Hack List sounds like a good idea,
I would feel BEFORE a site is listed
1a.) the Site Admin be contacted.
1b.) a Capture be provided which shows the attempt
The listing should
2a.) use verbage statement should read something like...
"The following abnormal activitiy was noticed....."
2b.) avoid statements like REMOVE, DENY, HACKER
2c.) allow the Site Admin 48-72 hrs before posting
OR
We could just post Items 1b, 2a, 2b and cc: the Site/System Admin
But whatever we do, it should be a seperate NEWS/Listsrv feed
or we could check with CERT/CIAC about managing the info
J. Kida
|
|
