Slashdot Mirror

← Back to Stories (view on slashdot.org)

Kiddie Porn - The Virus Did It

Posted by michael on from the control-issues dept.

The New York Times reports on a British man who was accused of downloading child pornography, and who successfully convinced the court that a virus did it. This is at least the second time this has happened. These cases are extremely interesting since they bring together all sorts of issues of computerized agents - who is actually responsible when your computer does something?

40 of 610 comments (clear)

  1. Virus? by Renraku · · Score: 5, Funny

    "It wasn't my fault, Officer. Honest, the video said it was Terminator 3 when I downloaded it!"

    "The evil hacker even took the time to arrange and sort those pictures by series!"

    --
    Job? I don't have time to get a job! Who will sit around and bitch about being broke and unemployed then?
    1. Re:Virus? by Blue+Stone · · Score: 4, Insightful
      Well, of course you don't need a license to use a computer. You don't need to pass a competency test to get your hands on a box connected to the net.
      But then again, you can't wipe out several generations of a family by crashing your computer.

      I think you're overstating the case. Nobody died.
      This guy's ignorance was only a danger to himself.

      --
      Corporation, n. An ingenious device for obtaining individual profit without individual responsibility. - Ambrose Bierce
    2. Re:Virus? by glesga_kiss · · Score: 5, Insightful
      If I notice that my car's brakes aren't working that well, I can do one of three things. [snip] If I run over somebody because my brakes don't work, I'm pretty sure I can get sued because I'd be responsible for my car.

      Yes, but common knowledge tells everyone what the brakes do in a car. You do a driving test that requires the use of the brake.

      A lot of the people who use the internet these days know nothing about it. I'm sure that at least 90% of web users are oblivious to the fact that it's possible for a mallicious web page to crash your browser, install a trojan, and do all sorts of nasty stuff. How many click OK to Comet Cursor or "magical time sync software"? Who here hasn't been asked to help a friend with a troublesome system, that was found to contain all maner of trojans and ad-ware?

      It's often said that ignorance isn't an excuse. I'd argue against that in many cases. Ignorance is an excuse where it would take 3-4 years of learning about IT to be aware of what's going on under that case.

    3. Re:Virus? by pantycrickets · · Score: 5, Insightful

      If I notice that my car's brakes aren't working that well, I can do one of three things. I can A: repair the brakes or B: take my car to someone who can to fix the brakes or C: drive around as if nothing's wrong. If I run over somebody because my brakes don't work, I'm pretty sure I can get sued because I'd be responsible for my car.

      Once again, someone who tries to apply a metaphor from the real world, and fails.

      You see, almost every day I get kiddie porn spam. Young russian girls, y.o.u.n.g BOYZ!, girls and horses, all kinds of crap. Sometimes they attach pictures, usually they don't. I always delete them. They're not actually deleted of course though, and the thought has crossed my mind: could something like this be used as a form of entrapment?

      "Look, we found KIDDIE PORN in his TRASH FOLDER!!!"

      So, if you wanted to make a little comparison with real life, in this case it would be more akin to someone cutting your brake lines and you driving into a crowd of people and then being held responsible then sent to prison.

      Of course, since the moderation system on Slashdot was meant to censor anyone with an even slightly unpopular opinion.. this will be posted at 0. Oh well..

    4. Re:Virus? by another_henry · · Score: 5, Informative

      Being a close friend of the the man's son, Alex Green, I can attest that his story is true - but there is more to it than that. Mr Green's older daughter (14 at the time, I think) had a vendetta against him for several years. She was the one who reported it to the police, and most of the Green family believe she put the porn on there to incriminate him. Of course Mr Green wouldn't testify against his own daughter, although he doesn't consider her a daughter any more...

      --
      "Studies have shown that people who eat peanuts live longer than those who do not eat."
    5. Re:Virus? by UnknowingFool · · Score: 4, Informative

      Unfortunately those who should know about computers don't. Former CIA head John Deutch was found to be using his non-secured home PC to store sensitive government files, despite the fact that the CIA set him up with a secured PC at home. This is the former freakin' head of state intelligence for the US. He probably isn't a total idiot, but his lack of computer savvy extends to most of the population.

      --
      Well, there's spam egg sausage and spam, that's not got much spam in it.
    6. Re:Virus? by Hentai · · Score: 5, Insightful

      Yes.

      And just like the Committee on Anti-Communist Activities, or the Salem witch trials, the answer will continue to be "yes" until a sufficient number of high-profile people have been inconvenienced by it. Right now, the witch-hunt is under control. But like all fires, it will quickly go wild, and the frenzy of the mob will take over - at which point, there will be a few nasty incidents until someone powerful and influential is damaged, at which point the tides will change and we'll all realize what a mess we've created.

      Then we'll find a new name and a new face for it and start the whole process over again.

      --
      -Hentai [in vita non pacem est]
    7. Re:Virus? by 0111+1110 · · Score: 5, Insightful

      Are you saying that most people like to look at kiddie porn?

      If you define kiddie porn as any sexually suggestive photo of a female under the age of 18 (the legal definition), then yes. If you define it as the same type of photo of a female under the age of 11 (the pre-pubescent, almost boyish look), then I would say no.

      Everyone seems to have their own definition of "too young". Forget about how bad most guys are at actually being able to differentiate the photo of a 14 or 15 year old from on 18 year old in real life. Of course, some people are very good at guessing people's ages.

      --
      Quite an experience to live in fear, isn't it? That's what it is to be a slave.
  2. From Star Tribune by 2674 · · Score: 5, Interesting

    One evening late in 2001, Julian Green's 7-year-old daughter came upstairs from the computer room of their house in the resort town of Torquay, in western England, and said, "The home page has changed, and it's something not very nice."

    When Green checked the family PC, he found that it seemed almost possessed. The Internet home page had been switched so that the computer displayed a child pornography site when the browser software started up. Even if he turned the computer off, it would turn itself back on and dial the Internet on its own.

    Green called the manufacturer and followed instructions to return his PC to a G-rated condition. The porn went away, but the computer still often crashed and kept connecting to the Internet even when "there was no one in the blinking house," he said.

    But Green's problems were only beginning. Last October, police knocked on his door, searched his house and seized his computer. They found no sign of pornography in his house but discovered 172 images of child porn on the computer's hard drive. They arrested Green.

    This month, Green was acquitted in Exeter Crown Court after arguing that the material had been gathered without his knowledge by a rogue program created by hackers -- a so-called Trojan horse -- that had infected his PC, probably during innocent Internet surfing. Green, 45, is one of the first people to use this defense successfully.

    While a case that played out in the British legal system sets no precedent in the United States, legal experts say the technical issues raise two troubling possibilities. For one, actual child pornographers could arm themselves with a new alibi that would be difficult to disprove. Or, unknowing Web surfers could find themselves charged with possessing illegal material that a lurking software program has acquired.

    "The scary thing is not that the defense might work," said Mark Rasch, a former federal computer crime prosecutor. "The scary thing is that the defense might be right," and that hijacked computers could be turned to an illegal purpose without the owner's knowledge or consent.

    "The nightmare scenario," Rasch said, "is somebody might go to jail for something he didn't do because he was set up."

    Green was eventually exonerated, and he said he had no clue how the rogue software showed up on his computer. "I never download anything, and as far as I knew, no others had," he said.

    When his solicitor, Chris Bittlestone, hired a computer security consultant to examine the PC, nearly a dozen Trojan horse programs showed up on the hard drive.

    "When the report came in, it was very much what you would call a eureka moment," Bittlestone said. But Green took the news differently.

    "He was very quiet and said, 'See? I told you,' " Bittlestone recalled.

    "There's some little sicko out there who's doing this," Green said, "and he's ruined my life. I've got to fight to get everything back."

    Green's case could point the way to a new defense in U.S. courts , said Andrew Grosso, a lawyer and former federal prosecutor. The presence of a Trojan could mean that the computer is "not entirely under your control," he said, and a defendant could "legitimately point a finger elsewhere."

    1. Re:From Star Tribune by gujo-odori · · Score: 5, Informative

      As a former abuse admin at an ISP, I actually find his story pretty plausible. It's been common for a couple of years now for Outlook/Outlook Express worms to have their own SMTP engine for propagating themselves. "Special viewers" from "free" pr0n sites that disconnect a dialup connection and dial back to a 900 number or similar in an offshore location have been around since the early days of the commercial Internet. They're apparently a huge problem in Japan, because Japanese long distance companies were for a long time (and could still be) including warnings about that scam along with their bills.

      There are countless varieties of peer-to-peer networking programs out there. Lots of spyware, too.

      In other words, all the technology to create a worm that will, upon installing itself, set up to dial the Internet, harvest child pornography, and make it available to other zombies with the same program, is already on the shelf. All some sicko has to do is assemble it and release it in the wild. I find it entirely plausible that someone already has. Very disturbing, but plausible.

    2. Re:From Star Tribune by Molina+the+Bofh · · Score: 5, Interesting

      Another possibility I see is that the cracker was using stolen credit cards to access these sites,or doing other risky operations.

      The cracker would do it from a remote (hacked) machine to avoid being traced.

      In this scenario, it was not a set up with the intent to fuck his life. Green would just be used.

      Another question that comes to my mind. According to the article, it was a family's PC. Supposedly, mom, dad and their daughter would use it. So why did they choose Mr. Green to be arrested ?

      What if it was their daughter ? Or even mommy ?

      Just because most sexual offenders are male ?

      --

      -
      Roses are #FF0000, Violets are #0000FF, find / -name '*base*' |xargs chown -R us && mv zig greatjustice
  3. Reg Free Link by FannyMinstrel · · Score: 5, Informative

    Here

  4. responsibility by mirko · · Score: 4, Interesting

    who is actually responsible when your computer does something?

    If it's passively, this could either be the user's or the software architect's fault (if some OS's security hole allow one to get into trouble).
    This could also be due to the ISP's neglect.

    if it's actively, the answer should be the same but now, the problem is that we (as in "the consumers") would have to argue about this against some ISP's or worse, against a software editor's lawyer, in which case, we don't weight enough not to be in trouble.

    concerning the present situation, I'd be somehow concerned if I learnt that like my ISP, my OS was actually logging whichever off my actions in order to prove the Law how bad I am actually behaving...

    --
    Trolling using another account since 2005.
  5. Newsgroups... by Anonymous Coward · · Score: 5, Interesting

    Many of the common adult newsgroups are polluted by paedophile images sent by hard-core porn sites. It's a serious problem because it means that the majority of newsnet-carrying ISPs and servers are actually carrying large amounts of kiddie porn.

    1. Re:Newsgroups... by glesga_kiss · · Score: 4, Interesting
      Many of the common adult newsgroups are polluted by paedophile images sent by hard-core porn sites.

      It's reassuring to me that someone else has noticed this. A friend suggested to me that I checked out the pr0n on usenet, which I did (and found some good stuff). However, I combined & decoded several series of files, one of which turned out to be kiddie filth. In my 10+ years of internet use, I've never actually stumbled across any before.

      In a panic (kiddie crap is a serious mess-up-your-life thing here in the UK, the media love the sales it produces), I deleted the images and removed the newsgroup cache file, never to get filth from usenet again. I was still paranoid that night at every knock of the door though. It's not too much to think that the police might be monitoring the ISP's newsserver, logging IPs against post viewing.

      The same problem could exist in any net technology, where you might not get a preview prior to download.

      This is a truly serious issue. Most of the folk here could fake this either way, to set someone up, or cover your own tracks. I was once asked by a lawyer to brief him on what is possible regarding date-stamps on files. My advice was that anyone who knows what they are doing can create any "evidence" they want in the digital realm. This will become a serious problem for many of our court systems, as they focus on hard evidence. Soon, digital evidence may be regarded as weak as eyewitness reports.

    2. Re:Newsgroups... by gillbates · · Score: 4, Interesting
      My advice was that anyone who knows what they are doing can create any "evidence" they want in the digital realm. This will become a serious problem for many of our court systems, as they focus on hard evidence. Soon, digital evidence may be regarded as weak as eyewitness reports. [emphasis mine]

      Hopefully, this will happen sooner, rather later. By far, the biggest problem I see with our society's dependence on computers is that they believe that computers are infallible. Most people are unaware of the ease with which a hacker could frame a person, leaving behind no evidence of his activities.

      IIRC, several years ago a man was almost convicted of embezzling based on a series of computer printouts in which the framer had altered the date and time stamps on the printed reports in order to show "evidence" of embezzlement. Fortunately for the defendant, the police had ripped the printouts out of the printer in a roughshod manner, and managed to pick up the first page of a subsequent report, which showed the correct date and time in the header. Had this not happened, this man would have been sent to jail for a crime that someone else committed.

      --
      The society for a thought-free internet welcomes you.
  6. Pissed at your neighbor? Don't bother to nag... by Anonymous Coward · · Score: 5, Interesting

    Roughly twenty years ago it was hyperbole for the Dead Kennedys to "sing" about things like this. I forgot which song it was, and you have to remember the culture was more conservative in some ways twenty-odd years ago, but the words went like this:

    Pissed at your neighbor?
    Don't bother to nag.
    Pick up the phone.
    Turn in a fag.

    Well add about a million times as many transistors and just a little bit extra effort on the part of the spiteful neighbor, and change the setup, and bingo--instant permanent damage to the private citizen you hate, for whatever reason!

  7. Where I come from... by Phekko · · Score: 5, Funny

    the law in Finland (IANAL, but still) says "if you know or SHOULD know..." I believe this one falls under the "should know" category.

    Now that we're on this topic, though, does anyone know where to get a virus that downloads high quality images of nubile women with scant clothing who are of legal age?

    --

    Sigs for Nerds. Sigs that Matter.
  8. The problem is over-aggressive law enforcement by heironymouscoward · · Score: 4, Insightful

    This is probably an unfashionable idea, but the problem appears to be more that law enforcement agencies are treating child porn as an easy way to increase their scores. In truth there is probably little basis for treating downloading of child porn as "criminal behaviour", although the making and selling of it is most definitely so. I'm not defending child porn, but it's entirely possible that it represents for many would-be child molesters, an alternative way of satisfying their unhealthy sexual tendencies.
    Aggressive policing against people who have (for whatever reason, and there may be many, both innocent and less so) child porn on their computers is counter-productive. It does not protect children, it does not prevent child abuse, it does not catch the real exploiters, but it does create grief for many people who have done little more than click on the wrong button.
    Crime and punishment must be based on some kind of real moral injustice and the redressment of this. I don't think this is what we're seeing in these cases.

    --
    Ceci n'est pas une signature
    1. Re:The problem is over-aggressive law enforcement by JaredOfEuropa · · Score: 5, Insightful
      Firstly, there is a mass of evidence that photos are taken to order within groups of abusers

      This is the argument often used by those that want to throw the book at buyers/downloaders of child pornography. Some of them would even agree that looking at such pictures in itself is not a bad thing, but going after 'users' of kiddy porn results in a diminished demand for such stuff, and as a result less children are abused. (Not my argument, but this is the line of reasoning often quoted). However, the fact that 'consumers' of child pornography create a market for such material, does not automatically make the act of looking at or posessing the material a crime.

      those with pictures are statistically likely to go on to physical acts

      That is a very dangerous statement for two reasons:
      1) If people who look at these pictures are more likely to go on to physical acts... is that because of the pictures, or did they have the tendency anyway? In the latter case, giving them such pictures might actually help getting them their fix, so that they will not go on to the physical act.
      2) If colored people are statistically more likely to commit crimes (disclaimer: this is just an example which I picked because it's a widely held stereotype). Does that mean we should pre-emptively go and arrest them all? Propensity to commit a criminal act is not a crime! Besides, just like in the example I gave, the propensity to commit the crime isn't even proven... it's just a statistical correlation.
      Too right this sort of thing should be followed up. It will protect children.

      It should be followed up, but it must not turn into a witchhunt. Too bad that these days it seems that when it comes to our rights and due process, anything goes when 'the safety of our children' might be involved.
      --
      If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
    2. Re:The problem is over-aggressive law enforcement by Hoi+Polloi · · Score: 4, Insightful

      "It will protect children."

      If kids never got molested before the invention of photgraphy I'd believe you. Also, most kids are molested by relatives or friends of the family who don't need pictures to see little kids in bathing suits, etc.

      --
      It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
  9. It has to be a conspiracy by __aadhrk6380 · · Score: 5, Funny

    Did anyone check the name of the company that located the virus? Vogon International, LTD.

    I suspect the Prostetnic Vogon Geltz.

    1. Re:It has to be a conspiracy by laughing_badger · · Score: 4, Informative
      Vogon are a kick-ass data recovery firm in the UK. I've used them to recover data from a couple of HVD scsi drives from an old HP workstation and they wrote code to extract the data and shipped it back on a bunch of DVD's in a couple of days. I guess that they were founded by an Adams fan.

      Didn't know that they did computer forensic work as well. Sensible, considering their other talents.

      --
      Help children born unable to swallow - www.tofs.org.uk
  10. Innocent until proven guilty by RichLooker · · Score: 5, Interesting

    Joe Average is an easy victim for the countless malicious trojans floating around. Visiting a straight porn site is no crime. Being deceived by messages like "Install browser enhancement (OK/Cancel)" is no crime. I have removed countless porn-related trojans from friends' PC's. If someone wants to put kiddie porn on unsuspecting victims' computers, this is no hard task. Removing a trojan when your anti virus software detects it would be the sensible thing to do. If the trojan has downloaded contraband to your PC, it will still be there, but you have removed the proof that you didn't dowload this intentionally. I would say proving intentional downloading of child porn should be pretty hard.

    --
    "And you are dying so slowly, you believe to be living" - Bertrand Besigye
  11. Valid Defense? by CB-in-Tokyo · · Score: 5, Interesting

    I am not a lawyer (I still can't bring myself to write that abbreviation,) but if it is a valid defense in a criminal child pornography case to say I wasn't responsible for downloading it, could this not set a precedent for Civil copyright cases? Or are the RIAA's rights more compelling than that of the victims of Child pornography?

    "I was hacked. You know, ever since all the Lawsuits started happening, there has been an increase of people hacking computers to download music."

    I think a case could be made of that.

  12. Statistics by heironymouscoward · · Score: 5, Insightful

    "those with pictures are statistically likely to go on to physical acts..."

    Do you have figures to back up this claim?

    The study of pornography and its impact on sex crimes is always highly charged, but there is a good basis for believing that free access to pornography actually reduces sexual offenses (not just against children, but of all kinds).

    And yes, there are "wrong buttons" that will download images to your PC. Someone else here mentioned that Newsnet is regularly spammed with child porn.

    Criminals should be punished, no doubt about it. But witch-hunts are never productive. You think you are catching the real crooks? You're not. In fact, you're driving the sale and distribution of child porn underground, causing it to become harder and more violent.

    Pushing even an obnoxious trade into the hards of real criminal networks is not wise: you may get that rosy feeling of 'doing good', but the cost is paid by huge numbers of new victims in far-off places.

    --
    Ceci n'est pas une signature
  13. Come to think of it... by Kronovohr · · Score: 5, Interesting

    ...I've seen this one before (by the description). When I was working on PCs for a living, an optomologist's secretary brought in her computer, which was acting "strangely" and all sorts of "foul things" were coming up on her screen. I figured something had just replaced her homepage on IE with a porn site or something like that, so I plugged the machine up and let it boot, explaining to her "well, there's some bad shit you have to look out for, but there's always worse". I was quite wrong. This was worse.

    When I fired up IE on the system, it went straight to a child pornography site that was obviously a typoed URL (freecilpart.com or something like that...don't hold me to it since my memory's terrible), and the default homepage setting was being updated constantly (like kak). This program was listening on some oddball high-numbered port.

    Since the box was inside a Novell network and wasn't exposed to the outside world (much) I figured it wasn't a normal compromise. I told her to contact the FBI over the site, and I went looking for the malware, but couldn't track it down (limited time on it, though) and wound up wiping the box clean and reinstalling Win98. She's very religious about keeping the a/v definitions updated now (:

  14. Re:ISP logs by glesga_kiss · · Score: 4, Insightful
    If I knew that my ISP keeps such logs and is prepared to give them to the authorities, I'd become a former customer in no time

    You'd better call them up then, if you live in the UK or USA. Both countries have legislation forcing ISPs to be able to do this.

    May I suggest two tin cans and a piece of string as a more private medium? ;-)

    Sure kiddie porn is awful, but the right to privacy should not be eroded even if few people abuse this right.

    Yup, and that's how people have been manipulating other people for (at least) hundreds of years. Claim that in order to prevent one horrible thing, another horrible thing should be done. Examples:

    • The Nazis claimed that the Jews were a threat to German peoples freedom and prosperity, and as a result the world had the holocaust.
    • The Israelis claim that the Palestinions are a threat to Israel, so Palestine must be turned into a police state
    • The Americans claimed that Terrorists were a threat to the USAs freedom, and that many freedoms should be taken away to prevent this.
    • Colgate say that if your breath smells, you will have an unhappy life, and you must buy their products for the rest of your life to prevent this

    Manpulation is easy. Issues like kiddie porn are so emotive, we should be careful what liberties are taken by those who seek to use the problem to their advantage. Taking the US example from above, the new snooping powers have been saught for many years by several organisations, long before terrorism was thrust into the spotlight. They used the situation to achieve their goals. I can see the same potentially happening here.

  15. You are confusing two things by heironymouscoward · · Score: 5, Insightful

    Possibly intentionally: child molesters, and people who download child pornography.

    Uhm, I've a large collection of videos about cars crashing, but that does not make me a dangerous driver.

    You are being somewhat wicked when you imply that everyone with a penchant for watching a kind of act is also likely to go out and commit it. This is a tired pseudo-psychology that has tried and failed to link TV to violence, games to violence, foreign-language films to political insurrection, what have you. Monkey see, monkey do? I don't think this argument has any provable basis.

    You cannot save children from exploitation by making such falacious arguments. You must show a clear connection between the person in possession of pornography, and those committing the acts.

    Imagine we're talking about rape videos. Now rape is a crime. Does this mean that someone luridly watching a rape video (real or faked) is actually a criminal too?

    How about someone watching the film of a bank heist. Or the millions of viewers who watch 'cop reality shows'. Are they all likely to jump up and start stealing cars?

    You can't stop using logic just because you're discussing an emotive subject - if anything you have to be more clear headed than usual.

    Lurid interest in an illegal act is not (in the general sense) a crime, and is often a substitute for the real thing. Think clearly and you will see that there are better ways of preventing abuse of children.

    One example: to recognise that most abuse of children actually happens in countries where children's rights are totally ignored, and often takes far worse forms than sexual exploitation.

    --
    Ceci n'est pas une signature
  16. Mmm, an temporary insanity plea for computers by SmallFurryCreature · · Score: 4, Interesting
    So, anyone here skilled enough to write a trojan that
    1. automatically installs kazaa
    2. Generates semi randomly a list of music to download.
    3. Sorts the music into directorys sorta like most of us do by default.
    4. Set all file creation times and accesstimes to a random date
    5. Hides itself a bit so you can claim "I didn't know it was there"

    Anyone then faced with an RIAA lawsuit can just accidently install it and claim that the virus did it. Am I missing something here? And why isn't there any mention of wich virus did it?

    --

    MMO Quests are like orgasms:

    You may solo them, I prefer them in a group.

  17. Culpability by The+Famous+Brett+Wat · · Score: 5, Insightful
    I didn't RTFNYTA. Even so, this is Slashdot, and I need not care much about that.

    The question of culpability for the actions of a computer is going to become increasingly interesting. Spammers and other miscreants are getting more brazen about the use of third party computers by which to make mischief. I'm not saying that it's a new concept -- far from it -- only that the audacity factor is going up. Dealers in kiddie porn and other widely-considered-bad things may start to see third party computers as a safe medium for their wares; a good way to cover their tracks.

    It seems unfair for a person with a virus-infected computer to be accountable (even in part) for the actions of a malicious third party who takes control of that computer without the owner's knowledge. On the other hand, it's risky to let them off the hook for it: genuinely culpable parties may install a virus on their own system as a legal defense measure! And if the owner of the computer were nailed for the actions of their computer, could they then sue some software or hardware vendor for enabling a malicious third party to use their computer without authorisation, thus exposing them to this risk? Presumably the end user doesn't haven't much of a case against the Internet Service Provider: I would expect the ISP to be offering a network service, leaving it up to you and your equipment as to what use is made of that service.

    The real problem here, as I see it, is that we want to discourage systems which facilitate abuse by evading accountability. The real culprit -- the malicious third party who uses the computer as a zombie slave to get up to no good -- is safely hidden from accountability through anonymity. The owner of the equipment is deemed not culpable on the basis of inability to know or do anything about it. The owners of the network infrastructure are just providing the advertised service, and should be thought of as common carriers. The owner of the software which enables the virus, well, no software authors seem to want to be held accountable for their software either, and that's somewhat understandable.

    But if we don't come up with some strategy for discouraging systems which facilitate abuse by third parties, the natural consequence will be an increase in unpolicable lawlessness. To complicate matters, insecure systems are already pervasive, so it's hard to know where to start. Who do we put the pressure on? I didn't RTFA, as I said (don't read NYT's website on principle), so I don't know what conclusions were drawn. It strikes me that perhaps we need to start holding the end user accountable for the mischief of their system if they don't take reasonable precautions to prevent it, such as using anti-virus software, or keeping modestly up to date with security patches. Maybe we can also hold commercial software/hardware sellers accountable to do their fair share in selling a merchantable product, with particular reference to reasonable standards of safety, and working as advertised. In the case of OEM-installed operating systems, it's probably the OEM that should foot the bill, as the seller of the product. Penalties should be relative to the cost of the product.

    I'm not suggesting that these ideas ought to be implemented, but we ought to think about them. What seems fair and would have the desired impact? Most end users aren't aware how unsafe the Internet is, with regards to this kind of abuse, and they should be educated about it, or protected from it. Computer manufacturers are selling computers as internet-ready but by and large they are selling an unsafe product. Selling a machine bundled with anti-virus protection might be sufficient to make the product "safe", from a merchantability perspective. Removing (or not providing) Internet functionality would also protect the manufacturer from Internet-related issues. Providing clear warning material on the dangers of connecting to the Internet might also be sufficient ass-cover.

    Stuff to ponder. And note that I didn't rant about Microsoft Windows, despite opportunity and motive.

    --
    proof, n. A demonstration that a conclusion is implied by certain premises and axioms.
  18. Deceptive website practices illegal? by mabhatter654 · · Score: 4, Insightful
    If it's the case that you are responsible for your PC contents, then shouldn't programs like the famous Gator be considered illegal. It stands as the best example of a program that is downloaded to your computer under false pretenses and basicly "hacks" windows without the user's ability to easily turn it off. Downloading countless AntiVirus and AdWare software isn't the answer...someone's always finding a way around it.

    With the wild DAs making accusations, perhaps it is time to finally delcare any software that acts without the user's knowlage to be illegal hacking...whether it be Windows "phone-homes", Gator advertizing, or of course malicious virii!

    Of course I wouldn't condone hacking Gator to put inapproperate pictures on unsuspecting users' computers in any way...

  19. If it's a joejob, it could have been done better.. by Kjella · · Score: 4, Interesting

    If I was seriously out to get someone I could do a much better job than this, and so could you.

    1. Get him infected with a trojan. Just send him shit on email (from free accounts), icq, irc, latest windows exploits and whatever until you find something his antivirus doesn't bite on.
    2. Drop him a shitload of illegal stuff. As techies, I'm sure you'd be able to find it, it's just that we don't *want* to. Maybe even download it directly to him through the trojan, keeping yourself completely clean. If he gets logged downloading it, all the better.
    3. Jerryrig the dates, to make it seem as if they've been collected over extended period of time, accessed repeatedly etc.
    4. Uninstall the trojan. Give him a total clean-up and remove any over shit he might have happened to have too.
    5. Tip the cops. Payphone, anonymous note, whatever. Anything untracable.

    OTOH, his life is pretty damn screwed already (even if you get aquitted, everyone will still wonder... did he *really* do it or not). This is if you want someone really thrown in jail and lose the key. Maybe I shouldn't give anyone the idea, but at the same time it might also get people to actually *care* about their security.

    Kjella

    --
    Live today, because you never know what tomorrow brings
  20. Good idea! by Zeddicus_Z · · Score: 4, Interesting
    Yes, but common knowledge tells everyone what the brakes do in a car. You do a driving test that requires the use of the brake.

    So, using that as an example and considering how much more common computers are in every day life than cars (know anyone how hasn't driven in the past 12 months? Now, know anyone who hasn't touched a computer in any way shape or form in the same time period?), why don't we have compulsory "basic operation" licsenses for computers?

    Most people outside the IT Industry use computers as a tool, a means to an end. And yet there are NO requirements in place to ensure people are competant when using that (potentially dangerous) tool

    Think about it this way; Truck drivers are forced to undergo rigerous driving training (in the form of logged experience and lessons from qualified staff) before they're allowed to sit for their license and operate the tool they use to make a living. Builders are required to undergo at least two years of apprenticeship plus TAFE (think community college) courses before they can build any type of large structure. People who pilot any form of marine vessel are required to sit a test and get their license before they can command a vessel capable of going over a certain speed/weighing more than a certain tonnage. Hell, even short-order *COOKS* are required to undergoe some form of food preperation and service training before most places will give them a job.

    And yet companies all across the world will hire someone into a position that required daily, extended user of office type computers at the drop of a hat. At best you can expect "Can you touch type? DO you know Microsoft Word?" Hell, even that's only mostly for secretaries!

    A basic computer competency test should be *compulsory* before anyone is allowed to purchase a computer. Said test should include the following areas;
    • Basic hardware in a computer (stops the old "my cupholder is broken and the tv wont start!" support call when whats actually happened is that they've kicked out a cord at the back)
    • Basic use of word processing, database, presentation and spreadsheet software (by basic I mean VERY basic. "This is a spreadsheet. It does simple simple calculations, like so")
    • Basic Internet skills ("this is how to use email, this is SPAM - its bad, dont ever reply. This is how to browse the web" etc)
    • Basic computer security (in fact, dont even include the word "security". Include this in the "basic operation" section. Cover topics such as viruses ("don't open email with attachments unless you have an UP TO DATE virus scanner running, and the file is NOT an exe/vbs/whatever", spyware, password security (and the importance of it, with say a "your internet banking and hotmail account are vulnerable! listen up!")
    • How to report a problem (if you have a support line/helpdesk/manufacturer to call under warrenty.
    When computers are in as widespread use as they are in our society today, rivaling even vehicles in their numbers, people should be forced to prove at least some BASIC competancies. I'm not talking about doing us out of a job (I am paid to fix problems, among *other* things), but ensuring that the damage/aggrivation/grief caused by computer-ignorant people is minimised.
    --
    Janie took my gun...
  21. Re:In Japan... by glesga_kiss · · Score: 5, Insightful
    The Japanese goverment has been suspiciously lax in pursuing enactment of Child Porn laws

    Yeah, but their culture see's it differently i.e. not so much of a problem. To them, it's like Saudi Arabia asking us to clamp down on alcohol, because their society doesn't tolerate our activies. A lot of Asian porn features school girl references there, and they really dig the whole cute china-doll thing. I'm sure many of the legal ones get made up to look as young as possible, jeez that even goes on in Western porn as well, 25 year-olds masquerading as 18 year-olds.

    With different ages of consent around the world, policing this planet is not an easy task. I think I heard once that the age in Spain was 12, though that may have been years ago and it's probably standardised through the EU now. How exactly to you legislate based on widely differing laws and cultures?

    Remember also that our society is very diffent to many others, and has only become that way recently. Several hundred years ago, most people were married and had had several children by 17-18 years old. You'd be lucky to reach 30 years old and have half of your children reach adulthood. Our ever extending life-span has lengthened the "age of innocence", but it's not "naturally human". If a boy/girl can conceive children, that's natures way of saying it's time to start having sex, regardless of what abstinence groups or abusive catholic priests regard the issue.

    It's a very muddled issue. Where do you draw the line?

  22. I posted this as a blog entry a few weeks ago... by marmoset · · Score: 5, Interesting

    I had an interesting experience helping my cousin with his computer a few hours ago. I've done this plenty of times before, and I'm sure every computer professional has served as volunteer tech support for family members at least occasionally. The difference this time is, instead of simply doing a few quick fixes for the things that were broken/nonfunctional (which is what I usually do, in the interests of time), I actually thought long and hard about what was broken, and more importantly, how and why it got that way.

    I will state from the top that I don't intend for this to be a Windows bash session. Though it's plainly a software environment I try to avoid when it's practical to do so, I recognize that I'm a kook and that most of the rest of the world has decided otherwise. Since, like death and taxes, Win32 is omnipresent, unavoidable, and in the end always victorious, it's prudent to learn how to efficiently work with it.

    My cousin purchased a basic home system earlier this year, a modest (but powerful enough) system with Windows XP Home Edition preinstalled. It also came with Microsoft Works (which he's just starting to use for his classes) and the various and sundry shovelware that no user ever bothers to either run, nor uninstall. We live very close to each other, so we both have the same network provider -- in this town it's basically Comcast for broadband or the highway (read: craptacular dialup). He uses Yahoo as a portal page, and occasionally uses Yahoo Messenger. He likes tuning in to streaming radio, so he has dozens of stations bookmarked. And that's pretty much it -- he uses his machine for web surfing, internet radio, and the occasional short word processing or IM session.

    I stopped by today to help him with a project he's starting up and he went to log into his computer. My first clue that something was very wrong: it took forever. The interval between the time when he entered his password and when he gained full control of the machine (i.e. when the busy cursor went away and the machine finally became responsive enough for him to do anything as basic as using the cursor to launch a new application) was at least 90 seconds. This box isn't a server, he's not compiling code or serving pages or rendering frames or anything else that ought to be stealing major cycles from the foreground UI. After that eternity has passed and he finally gains control of the machine, he gets a dialog box advertising cheap university degrees. By this time, I'm all like "what the f___?!?" It seems that in my time away from mainstream (i.e. Win32) computing, something known as "Windows Messenger Service Spam" has become a serious nuisance. How goddamned evil can they get? You don't even have to open your mailbox before some lowlife jumps in your face trying to sell you merde? How fricking evil is that? I do wonder what kind of krakk kokane your software engineering staff has to be smoking for them ship an operating system that, in its default configuration, allows an unauthenticated tcp message from any random spot on the internet to display a dialog on a client workstation, but, as I mentioned earlier, that's not where I want to go today. I felt a sick feeling in my gut, realizing that there are probably millions of grandmothers out there getting these stupid things popping up in their faces all day, without the vaguest clue of how to stop them.

    After closing the messenger spam, my cousin started his browser, which happens to be IE 6. This took an extroardinarily long time. Once it came up, I noticed that he had a Yahoo toolbar underneath the standard Explorer toolbar, bristling with gewgaws, animated crap, pulsing buttons and links to, erm, "synergistic content". In addition, there was a vertical pane along the left side of the window, also Yahoo branded, also full of pulsing, flashing, irrelevant happy crap. In the middle of trying to throw up (and I do mean "throw

  23. Go out and try it? by heironymouscoward · · Score: 4, Insightful

    "someone watching a child porn may go out and and try it"
    How on earth do you reach this conclusion?
    It matches nothing demonstrated or seen elsewhere. In no domain do people jump up and imitate the things they see unless it is clearly part of an ongoing social movement.
    A person who intends to molest children will do so with or without porn. Children have been sexually abused for all history.
    It's the same old argument about violence on TV: people forget that the western world (US included) has the lowest levels of violence of any society in any place, any time. Although the levels of violence portrayed are higher than ever, the actual violence we encounter is rarer than ever.
    You cannot just state that child pornography is an exception to this trend. People commit criminal acts because they have the means, the motive, and the opportunity. Not because they watched some illegal pictures.
    And I have a daughter, yes, and if someone touched her or took pictures of her, I'd hunt him down. Nonetheless: there are ways to attack crime, and the current witch hunt on people who have kiddie porn on their computers is a mistake and it will eventually be seen as such.
    I'm going to stop discussing this subject now but I will say one last thing: most of the 'science' in the public discussion on child porn comes from the police, and this is a party with a vested interest in depicting all child porn viewers as twisted criminals. The police are a large part of a public perception that is painting huge segments of the population as criminals. It makes no sense except when you are trying to "act tough on crime."

    --
    Ceci n'est pas une signature
  24. Considerable Issues by virg_mattes · · Score: 5, Insightful

    > There are lots of issues to consider here, firstly the daughter claim... his daughter may have had a vendetta against him because he molested her, or she knew that he was commiting acts against children and just wanted him to get what was coming to him. Who knows...

    To be blunt, who cares? If she was molested, she should accuse him of that. If she has reason to believe he's molesting other children, let her present that evidence. Framing him for a crime he didn't commit is never right, even if he committed some other crime.

    > also the other thing to consider (and i have some experience in this) when i was getting started in computers and did some stupid things (bruteforcing passwords from my own system), i always ran a copy of BO on my own pc, so i could blame "the evil hackers" if it came down to it. Possibly he was doing the same thing with much more sinister acts.

    Sorry, but "possibly" doesn't do in a court of law. Sure it's possible he set up an alibi, but if there's not sufficient evidence that he did it's not the court's right to assume guilt. That's how "beyond a reasonable doubt" works.

    Virg

  25. Lies, damn lies and statistics... by Kjella · · Score: 4, Insightful

    "those with pictures are statistically likely to go on to physical acts..."

    Do you have figures to back up this claim?

    In other news, people looking at gay porn tend to have gay sex, and people looking at straight porn tend to have straight sex. Scientists are shocked.

    The statistical question is: "Would there be more or less people commit child abuse if child porn was freely available?" This decomposes into two questions:

    A-1. How many current abusers would be sufficently satisfied with only looking at child porn, had it been easy available in great quantity (reducing abuse)?

    A-2. How many people that otherwise wouldn't have abused children get so inspired by child porn that they choose to abuse children (increasing abuse)?

    Note that there are two groups that are simply irrelevant to this question:

    B-1. Those who would abuse children, porn or no porn
    B-2. Those who wouldn't abuse children, porn or no porn.

    Due to the

    a) total inability to measure this (child abuse records show A-1 and B-1, child porn arrests don't really say anything because you don't know if they're abusers or not (could be any of the four categories), or how this affects the statistical likelyhood of being arrested and so on and so on).
    b) the incentives to not answer truthfully (Me? Commit child abuse? Never! Never, I tell you!)
    c) the inability to answer truthfully (no I wouldn't do that even if I looked at child porn... would I?)

    I don't think we'll ever get a solid statistical answer to this question out of police records, censuses and other second-hand data. It would require an "Eye of God" view to get the real data.

    And running a controlled experiment? Yeah right. For one it'd have to ensure that those that shouldn't have porn don't have it, which would require detailed personal surveilance. And at the same time, if they wanted to abuse children they'd have the opportunity to do so (and if they were abstaining from it because they were being surveilanced, the entire experiment is down the shitter. OTOH, if they knew they would get away with it for the same reason, it'd also wreck the correctness). Not to mention the idea of letting children knowingly be abused in the first place.

    To summarize, you simply won't get a good statistical answer to this. Ever.

    Kjella

    --
    Live today, because you never know what tomorrow brings
  26. Re:Just out of interest... by 0111+1110 · · Score: 4, Insightful

    Is it illegal for a minor to download sexual pictures of people his or her own age?

    It is indeed. Otherwise the mere presence of a male teenager in a household would excuse anyone else living there of any ViewingCrime. What is even more strange is that a 16 year old guy is not even allowed to take naked photos of his 16 year old girlfriend. If she were in an even slightly sexually suggestive pose and possibly even if she weren't, he could go to prison for quite a while.

    Also, if there were an age limit below which it were legal to possess "child porn", imagine the absurdity when, after a couple of years, the 16 year old guy wants to keep the nude photos of his girlfriend from when she was 16. Or maybe he just forgot about them on his hard drive. Now that he is 18 and a full legal adult (in the US at least), he would be prosecuted as an adult for the heinous crime of possessing child pornography.

    Two 13 year olds having sex or just being naked in the same room may or may not be illegal depending on the state, but as soon as one of those 13 year olds takes a photo of the other one, it is indeed a very serious crime.

    All of this pretzel logic is in the name
    of "protecting the children" however. So it's ok. Sometimes I am just so astonished by the stupidity of our species.

    --
    Quite an experience to live in fear, isn't it? That's what it is to be a slave.