Law Scholars Say WaveLAN Hacking Is Legal, In Germany

← Back to Stories (view on slashdot.org)

Law Scholars Say WaveLAN Hacking Is Legal, In Germany

Posted by timothy on Monday April 8, 2002 @01:59AM from the aber-irgendwo-anders dept.

An Anonymous Coward writes: "Seems in Germany sniffing other peoples WaveLAN is no criminal offense. At least the authors of this Article from the German magazine 'Datenschutz und Datensicherheit' claim that even intercepting and decrypting WEP-encrypted traffic is perfectly legal. Wow." (The PDF file is in English.)

10 of 29 comments (clear)

Min score:

Reason:

Sort:

Wow. by booch · 2002-04-08 02:43 · Score: 2

Wow, lawyers actually came out and had an opinion on something without being paid to have that opinion? I've never heard of a lawyer saying something was legal or not -- they prefer to deal in the gray areas, so they can help you get away with anything.

--
Software sucks. Open Source sucks less.
presedence in US court. by j-turkey · 2002-04-08 06:04 · Score: 2, Interesting

Its too bad that this won't affect any of our (bad) US legislation.

Hell, we still can't use radar retectors in some states (to listen in on somewhat public frequencies that are used to surveile us).

Even without encryption, I'll bet that just about any US court would rule it illegal to sniff 802.11a/b/d packets.

If you add breaking WEP, it becomes a DMCA issue...again, US courts would be even more likely rule it illegal.

Are there any other capitalist countries out there that are just a little smarter than mine?

-Turkey

--

-Turkey
1. Re:presedence in US court. by uradu · 2002-04-08 06:14 · Score: 2
  
  > Hell, we still can't use radar retectors in some states
  
  Hold your horses, cowboy. Just because you (might!) be allowed to intercept WEP traffic doesn't mean you can use radar detectors in Germany. In fact, you can't! You'll get a good spanking for that--in most of Europe, AAMOF.
2. Re:presedence in US court. by Negadecimal · 2002-04-08 09:52 · Score: 2
  
  doesn't mean you can use radar detectors in Germany. In fact, you can't!
  
  When did that happen? When I left Germany six years ago, there were still automated photoradar systems all over the place... you'd see a bright blue flash, and get a bill in the mail shortly thereafter. No fuss, no muss.
3. Re:presedence in US court. by doooras · 2002-04-08 14:01 · Score: 2
  
  >we still can't use radar retectors in some states (to listen in on somewhat public frequencies that are used to surveile us).
  
  What frequencies can you listen in on using a devices that beeps at you while your ass is going 90 MPH through a school zone?
  
  do you mean scanner?
4. Re:presedence in US court. by uradu · 2002-04-08 17:17 · Score: 2
  
  > BTW, what does AAMOF stand for
  
  I made it stand for As A Matter Of Fact :-}
5. Re:presedence in US court. by uradu · 2002-04-08 17:20 · Score: 2
  
  > When I left Germany six years ago, there were still automated photoradar systems
  
  I believe the original poster meant radar detectors as in "detectors of radar", those little black boxes on your dash that beep when they detect radar frequencies.
Re:Datenschutz und Datensicherheit by uradu · 2002-04-08 06:11 · Score: 2

> Is that "Chips and Dips" in German?

No, it's "dataprotection" and "datasecurity". Once you grasp (say, in the second or third class of German 101) that those apparently endlessly long German words are actually compound nouns composed of multiple simpler nouns--rather than atomic words that you can look up in a dictionary--their apparent length ceases to be all that amusing.
Re:Datenschutz und Datensicherheit by GigsVT · 2002-04-08 08:45 · Score: 2

German is doubleplusgood!

--
I've had enough abrasive sigs. Kittens are cute and fuzzy.
No they don't by osolemirnix · 2002-04-12 02:31 · Score: 2

Sigh. Did the submitter even bother to read the whole PDF?

...claim that even intercepting and decrypting WEP-encrypted traffic is perfectly legal...

No they don't claim that. As stated in section 5.4 of the PDF, german law says that if you break "special safety measures against unauthorized access" you are certainly violating the law. Now wether WEP encryption is strong enough to be considered a valid safety measure in terms of this law is yet to be determined in a court case.

But that is not what the PDF is mainly about anyway. As it goes on in the following sections, it just claims that merely intercepting the WEP-encrypted data is definitely not a crime, at least as long as you're not decrypting it. So, simply sniffing/netstumling is legal. Decrypting WEP-encrypted data and further meddling in a thus cracked WLAN is most likely illegal (has yet to be determined by a german court).
Sniffing unencrypted (WEP disabled) WLAN is not illegal, since there is no "special safety measure to prevent unauthorized access" as stated in the law.

Still an interesting read, but not nearly as mindboggling as suggested in the /. story.

--

Idempotent operation: Like MS software, wether you run it once or often, that doesn't make it any better.