This is just one more attack. This attack however is not just the problem of Domino, but *any* server which fails to vaildate it's user entered data.
There are a lot more possible attacks which are specifically Domino related. However as the saying goes "The law is an ass". There is a Bill going through Parliament at the moment which is an ammendment to the 1990 Computer Misuse Act.
It reads:
----
A person is guilty of an offence if he makes, adapts, supplies or offers to supply any article —
(a) intending it to be used to commit, or to assist in the commission of, an offence under section 1 or 3 [of the Computer Misuse Act]; or
(b) believing that it is likely to be so used.
----
Telling people about the hack would be considered a breach of the law. However by NOT telling people about the hack you would have commited another breach of civil law by allowing potentially compromised systems to remain in service.
So what it all boils down to is don't write or release any system which can be misused. Here we have a whole can of worms that can really upset things.
Lets hope the Police and Justice Bill gets re-written properly or thrown out. Otherwise we're all in deep do-do.
This is just one more attack. This attack however is not just the problem of Domino, but *any* server which fails to vaildate it's user entered data.
There are a lot more possible attacks which are specifically Domino related. However as the saying goes "The law is an ass". There is a Bill going through Parliament at the moment which is an ammendment to the 1990 Computer Misuse Act.
It reads:
----
A person is guilty of an offence if he makes, adapts, supplies or offers to supply any article —
(a) intending it to be used to commit, or to assist in the commission of, an offence under section 1 or 3 [of the Computer Misuse Act]; or
(b) believing that it is likely to be so used.
----
Telling people about the hack would be considered a breach of the law. However by NOT telling people about the hack you would have commited another breach of civil law by allowing potentially compromised systems to remain in service.
So what it all boils down to is don't write or release any system which can be misused. Here we have a whole can of worms that can really upset things.
Lets hope the Police and Justice Bill gets re-written properly or thrown out. Otherwise we're all in deep do-do.