Topic: Harvard University researcher punished for finding bugs  (Read 3373 times)

0 Members and 1 Guest are viewing this topic.

Offline Mr_Tricorder

  • 3D modeler /animator
  • Hot and Spicy
  • Lt. Commander
  • *
  • Posts: 1040
  • Gender: Male
  • Trekkie at Large
    • My myspace page
Harvard University researcher punished for finding bugs
« on: March 08, 2006, 10:44:36 pm »
I was checking out Slashdot and came across this interesting article.
http://www.zdnet.com.au/news/security/soa/Harvard_University_researcher_punished_for_finding_bugs/0,2000061744,39240570,00.htm

I had just finished reading more about Vista before I saw this, and this is even more writing on the wall.  I really don't like the way the commercial computer industry is going.  It's reading things like this that drive me further and further into the open source camp.

Offline Nemesis

  • Captain Kayn
  • Global Moderator
  • Commodore
  • *
  • Posts: 13067
Re: Harvard University researcher punished for finding bugs
« Reply #1 on: March 09, 2006, 09:42:43 am »
It seems that his conviction was based on his distributing of source code from the anti-virus program.  It does not explain where and how he got the source code.  I suspect that information on how he was in possession of the code might explain the conviction.

Do unto others as Frey has done unto you.
Seti Team    Free Software
I believe truth and principle do matter. If you have to sacrifice them to get the results you want, then the results aren't worth it.
 FoaS_XC : "Take great pains to distinguish a criticism vs. an attack. A person reading a post should never be able to confuse the two."

Offline Javora

  • America for Americans first.
  • Commander
  • *
  • Posts: 3002
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #2 on: March 09, 2006, 09:47:44 am »
Plain and simple, he should never had published the source code.  He did and was fined for it, I find it a little hard to believe that he could only prove his findings by publishing the source code.  Or at least that he could prove his finding to his distractors in private.  I do however take issue with the fact that some companies will try to sue if a flaw is discovered.  Someone should create a list of companies that do that so we the consumers know to stay away from their product.  Kind of like a Smoking Gun for software.

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #3 on: March 09, 2006, 10:14:23 am »
He published 65 bytes. Those company guys are smal checkered amoralic retards.
I bet they are  impotent in real life issues which are not connected to software.
FRA.E.Kehakoul_XC

Director - Diplomatic Division

Offline Nemesis

  • Captain Kayn
  • Global Moderator
  • Commodore
  • *
  • Posts: 13067
Re: Harvard University researcher punished for finding bugs
« Reply #4 on: March 09, 2006, 11:05:07 am »
He published 65 bytes. Those company guys are smal checkered amoralic retards.
I bet they are  impotent in real life issues which are not connected to software.

It depends on the origin of the code.  If he had it through illegal means then his publishing even 65 bytes is a crime.  If he had it with a non disclosure agreement or other contract that forbade publishing it then again it is a crime.  How he acquired that code fragment is very important.  Also of course does France have a "fair use" policy?
Do unto others as Frey has done unto you.
Seti Team    Free Software
I believe truth and principle do matter. If you have to sacrifice them to get the results you want, then the results aren't worth it.
 FoaS_XC : "Take great pains to distinguish a criticism vs. an attack. A person reading a post should never be able to confuse the two."

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #5 on: March 09, 2006, 11:43:56 am »
I am aware that there are always so called laws that allow to criminalize behaviour, even if its  the moralic right thing to do.
Doesnt change the fact that those guys are what i stated in my first post.
FRA.E.Kehakoul_XC

Director - Diplomatic Division

Offline Tus-XC

  • Capt
  • XenoCorp® Member
  • Commander
  • *
  • Posts: 2789
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #6 on: March 11, 2006, 07:28:26 am »
I am aware that there are always so called laws that allow to criminalize behaviour, even if its  the moralic right thing to do.
Doesnt change the fact that those guys are what i stated in my first post.

Actually yes it does, if you want to give the guy a moral high ground then aware that he loses it when he breaks a binding contract (something w/ this john hancock on it) or does something illegal in order to achieve the end result.

Remeber, the ends do not justify the means, no matter how many good intentions you attribute to them.
Rob

"Elige Sortem Tuam"

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #7 on: March 11, 2006, 09:54:32 am »
Thats only true if you accept the base for those LAws, which i dont.
FRA.E.Kehakoul_XC

Director - Diplomatic Division

Offline Tus-XC

  • Capt
  • XenoCorp® Member
  • Commander
  • *
  • Posts: 2789
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #8 on: March 11, 2006, 01:10:49 pm »
Thats only true if you accept the base for those LAws, which i dont.

Ignorance of the law or even acceptance does not matter, the law is an attempt to create a moral standard based on that of the society.  In short SOCIETY says  that if the above scenario resulted from breaking a contract or through immoral means (IE stealing) then no matter what he does, not matter how much good it might bring, he was still in the wrong and should deal with the punishment that comes w/ breaking the law.

This is why Nemesis used the imfamous words "it depends", because it does depend entirely on the circumstances in which he had gotten the codes (ie if he was payed to test it, signed no nda covering the release source code, then he would most likely be in the right and the company would be as you said amoralic retards)
Rob

"Elige Sortem Tuam"

Offline Just plain old Punisher

  • Vice Admiral
  • *
  • Posts: 36927
  • Gender: Male
  • I'm not facist, I just like wearing jackboots
Re: Harvard University researcher punished for finding bugs
« Reply #9 on: March 11, 2006, 05:46:50 pm »
Thats only true if you accept the base for those LAws, which i dont.

Woo hoo! Let's go rob a liqour store together! I need some cash.

"Sex is a lot like pizza.  If you're not careful you can blister your tongue". -Dracho

Offline Nemesis

  • Captain Kayn
  • Global Moderator
  • Commodore
  • *
  • Posts: 13067
Re: Harvard University researcher punished for finding bugs
« Reply #10 on: March 12, 2006, 06:26:40 am »
Woo hoo! Let's go rob a liqour store together! I need some cash.

To buy booze?

(for molotov cocktails of course.)
Do unto others as Frey has done unto you.
Seti Team    Free Software
I believe truth and principle do matter. If you have to sacrifice them to get the results you want, then the results aren't worth it.
 FoaS_XC : "Take great pains to distinguish a criticism vs. an attack. A person reading a post should never be able to confuse the two."

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #11 on: March 12, 2006, 06:21:15 pm »
Hehe:)Bear with me guys, i sometimes get overwhelmed by my inner revolutionary self.
FRA.E.Kehakoul_XC

Director - Diplomatic Division

Offline Commander Maxillius

  • You did NOT just shoot that green sh-t at me?!?
  • Lt. Commander
  • *
  • Posts: 2299
  • Gender: Female
Re: Harvard University researcher punished for finding bugs
« Reply #12 on: March 18, 2006, 12:08:45 am »
I want to see one instance of 65 bytes of VITAL code.  65 bytes of code than can be used to extrapolate an OS, or tell who's antivirus software is different or flawed or whatever.  65 bytes these days doesn't amount to an ant turd when FREE EMAIL SERVICES THROW AROUND GIGABYTES (1,000,000,000's)!!!  This message exceeds 65 bytes in length for crying out loud!!!!
I was never here, you were never here, this conversation never took place, and you most certainly did not see me.

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #13 on: March 18, 2006, 08:06:30 pm »
Thats only true if you accept the base for those LAws, which i dont.

Ignorance of the law or even acceptance does not matter, the law is an attempt to create a moral standard based on that of the society.  In short SOCIETY says  that if the above scenario resulted from breaking a contract or through immoral means (IE stealing) then no matter what he does, not matter how much good it might bring, he was still in the wrong and should deal with the punishment that comes w/ breaking the law.

This is why Nemesis used the imfamous words "it depends", because it does depend entirely on the circumstances in which he had gotten the codes (ie if he was payed to test it, signed no nda covering the release source code, then he would most likely be in the right and the company would be as you said amoralic retards)
Doesnt that lack a level of ojectivety here , which would be needed ?
Like Maxillius already pointed out.

Is there a factual objective threat to the interist of those companys,or are they simply trying to impose the law in a situation where rational calculus would be much more needed,for justicias sake.
If i remember right she is often pictured as a balancing entity.
I cant see the balance in this judgement.

I
FRA.E.Kehakoul_XC

Director - Diplomatic Division

Offline Tus-XC

  • Capt
  • XenoCorp® Member
  • Commander
  • *
  • Posts: 2789
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #14 on: March 19, 2006, 12:46:53 pm »
it depends  ::)
Rob

"Elige Sortem Tuam"

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #15 on: March 20, 2006, 08:22:42 am »
Well Tus, it does not ,as there is no effective damage.
IF being blind is used as excuse for unfairness and amoralic  justice ,then face it, are those lAWS BS and the peoole who where so shortsighted to support and enforce them are too.
FRA.E.Kehakoul_XC

Director - Diplomatic Division

Offline Tus-XC

  • Capt
  • XenoCorp® Member
  • Commander
  • *
  • Posts: 2789
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #16 on: March 20, 2006, 10:03:05 am »
you know i gave a pretty decent example on why it does depend, and there are dozen of other possibilities.  Of course this idea that it amoralic IS your OPINION and i haven't been talking opinion, i've been talking in terms of what the LAW would do (though i'm not expert, but i have enough understanding that it ain't black and white)

So again i say  It Depends, and i can tell you now that there is really no way you can prove that statement wrong, unless you believe your opinioins are always right....
Rob

"Elige Sortem Tuam"

Offline FRA.E.Kehakoul_XC

  • Administrator
  • Lt. Commander
  • *
  • Posts: 1100
  • Gender: Male
Re: Harvard University researcher punished for finding bugs
« Reply #17 on: March 20, 2006, 04:51:54 pm »
The technical point of view lies in front of us Tus i think,i also think critical reevaluation of them is a must, and is something that was done througout history,which lead to refined new laws in some cases.
Accepting a obviously not pleasingly working approach is no option imo.
In the end i could say,this whole discussion is worthless.
I just think that this approach never advanced humanity one bit.
FRA.E.Kehakoul_XC

Director - Diplomatic Division