[96141] in North American Network Operators' Group
Re: UK ISP threatens security researcher
daemon@ATHENA.MIT.EDU (Will Hargrave)
Thu Apr 19 13:27:50 2007
Date: Thu, 19 Apr 2007 18:20:50 +0100
From: Will Hargrave <will@harg.net>
To: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.21.0704171830080.15316-100000@linuxbox.org>
Errors-To: owner-nanog@merit.edu
Gadi Evron wrote:
> "A 21-year-old college student in London had his internet service
> terminated and was threatened with legal action after publishing details
> of a critical vulnerability that can compromise the security of the ISP's
> subscribers."
>
> I happen to know the guy, and I am saddened by this.
In his blog post [1] he did admit to accessing other routers of Be's customers
using the backdoor password; this is probably [2] a criminal offence in the UK.
I'm not sure I have as much sympathy for him as you do.
[1] http://blogs.securiteam.com/index.php/archives/826
[2] IANAL
