Recent legislation passed in Germany (mentioned a couple days ago) has made hacking tools illegal. Um, OK. This sounds like such a bad idea on so many levels. Think of the countless sysadmins that use “hacking” tools to make sure that their systems are secure. I must admit this seems absurd. This will not preclude attackers from using them of course which would put the “defenders” on very unstable footing. Now, I’m curious if this would encompass tools like EnCase and Forensic Toolkit?
From The Register:
Taken as read, the law might even even make use of data recovery software to bypass file access permissions and gain access to deleted data potentially illegal.
“Forbidding this software is about as helpful as forbidding the sale and production of hammers because sometimes they also cause damage,” Chaos Computer Club spokesman Andy Müller-Maguhn told Ars Technica. “Safety research can [now] take place only in an unacceptable legal gray area.”
While making life more difficult for security consultants and sys admins, the new laws will, paradoxically, make it easier for police to use hacking tactics in gathering intelligence on suspects.
If Axel E. or Alex G. are reading I’d love to get a comment from you guys on this bizarre legislation.
Comments