"Hugo van der Kooij" wrote Sunday, June 23, 2002 3:07 AM > However leaving a compromised system online makes you guilty of criminal > neglect. (Aiding and embedding criminals and all that sort of thing.) IANAL, but my understanding is that if you want to prosecute the offender, you shouldn't touch the box again after discovering the compromise (i.e. could be construed as tampering w/ evidence). Just one of many legal catch-22's I've run into on the job. Personally, I'd prefer the risks of not being able to prosecute over my own criminal neglect liability. Mike ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Sun Jun 23 2002 - 16:21:00 PDT