Appeals Court Rules TOS Violations Aren't Criminal

← Back to Stories (view on slashdot.org)

Appeals Court Rules TOS Violations Aren't Criminal

Posted by Soulskill on Tuesday April 10, 2012 @08:45AM from the by-reading-this-you-agree-to-not-commit-felonies dept.

Trepidity writes "In a decision today (PDF), the Ninth Circuit Court of Appeals ruled that the Computer Fraud and Abuse Act 'does not extend to violations of use restrictions,' and therefore violating terms of service and corporate use policies is not a federal crime. Law profesor Orin Kerr cheered the decision, but since three other Courts of Appeals have reached opposite decisions, it might be heading to the Supreme Court."

120 comments

Min score:

Reason:

Sort:

Corporations don't make law by Anonymous Coward · 2012-04-10 08:48 · Score: 5, Insightful

And therefor, violating a TOS can't automatically be seen as criminal activity. Kudos to the Ninth Circuit Court of Appeals for having their head on straight.
1. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 08:50 · Score: 0
  
  3:1 against common sense so far, at least we're moving in the right direction...
2. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 08:56 · Score: 3, Insightful
  
  Unfortunately the 9th Circuit is the most overturned court in the USA. I'm not having high hopes that the SCOTUS will affirm the ruling.
3. Re:Corporations don't make law by Baloroth · 2012-04-10 08:59 · Score: 4, Informative
  
  And therefor, violating a TOS can't automatically be seen as criminal activity. Kudos to the Ninth Circuit Court of Appeals for having their head on straight.
  Actually, the question is whether the law on the books that makes it illegal if an action "exceeds authorized access" applies to TOS violations, since the TOS outline what counts as authorized access. You can argue very easily that using a service in a manner that breaks the TOS does, in fact, violate the law (by exceeding what you were authorized in the TOS), but this court argues that the language is somewhat ambiguous and in the case of criminal law, you should always err on the side of leniency unless Congress makes itself clear. Basically, an action cannot be criminal unless the law clearly and explicitly states it is.
  The case has nothing to do with corporations ability to make an action illegal, specifically, but rather whether an action (violating the TOS) is already criminal under the current law. Agreed about the court having it's head on straight, this judge seems extremely rational.
  
  --
  "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
4. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 09:06 · Score: 0
  
  Corporations don't make law?
  I see, you must be from... wait, I can't think of any country where corporations don't make the law. (Even if they don't admit it.)
5. Re:Corporations don't make law by AuMatar · 2012-04-10 09:15 · Score: 4, Informative
  
  No it isn't. The 9th circuit court is by far the largest appellate court in the country, so while it has the most appeals overturned, it also has the most cases. By percentage it's actually in the middle of the pack.
  
  --
  I still have more fans than freaks. WTF is wrong with you people?
6. Re:Corporations don't make law by Qzukk · 2012-04-10 09:21 · Score: 2
  
  Which is exactly what I said.
  Which is why what you said was the most retarded second response to the first post.
  
  --
  If I have been able to see further than others, it is because I bought a pair of binoculars.
7. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 09:22 · Score: 5, Insightful
  
  Which is exactly what I said.
  What you said was deceptive and someone pointed out that deception. Saying you intended to deceive people don't help.
8. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 09:24 · Score: 3, Insightful
  
  Did you not understand the parent's post at all? It doesn't matter that you 'exactly said something' if you fail to grasp basic mathematics enough to realize that the total number of appeals is fucking meaningless metric by itself.
9. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 09:31 · Score: 0
  
  N Korea
10. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 09:35 · Score: 0
  
  At most, wouldn't that be a contract violation between 2 Civil parties, and be a matter for Civil court?
  Of course, when law contains the word Federal, I automatically think Interstate boundaries, and not Corporate TOS. Silly me for thinking private contracts are well, private.
  Can you say BIG GOVERNMENT!
11. Re:Corporations don't make law by AmiMoJo · 2012-04-10 09:37 · Score: 2
  
  The case has nothing to do with corporations ability to make an action illegal, specifically, but rather whether an action (violating the TOS) is already criminal under the current law.
  That's the same thing. TOS say "making a backup copy is illegal" or "one install only, if your PC dies you buy a new license" and doing otherwise becomes illegal. Or not, as the court has said.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
12. Re:Corporations don't make law by nschubach · 2012-04-10 09:37 · Score: 1
  
  Doesn't the "exceeds authorized access" apply to owned property? (ie: a server, mainframe...) I'm sure this is going to border on that ever popular "ownership" aspect of software.
  
  --
  Every time I start to have faith in humanity, I ruin it by driving to work between 7 and 8 am.
13. Re:Corporations don't make law by SuricouRaven · 2012-04-10 09:52 · Score: 3, Informative
  
  The legal reasoning, simplified, goes like this:
  
  1. Accessing a computer system without authorisation from the owner is a crime.
  2. A ToS specifies what a user can do, and upon violation becomes invalid - thus, the user is no longer authorised, legally. Even if their account still exists.
  3. So any access breaking the ToS is, in legal fact, unauthorised - and indistinguishable from if they had, say, used an exploit or guessed a password. The means by which unauthorised access is granted is legally unimportant - it doesn't matter if it's via sophisticated hacking, script-kiddie work, social engineering, finding someone's password on a postit or pure luck in guessing. The important part is that the user, having broken the ToS, is no longer authorised by the system owner to access that computer system. See point one.
14. Re:Corporations don't make law by Anonymous Coward · 2012-04-10 10:04 · Score: 0
  
  In other words, breaking the ToS is a civil offense but after doing so accessing a computer system covered by those ToS is a criminal offense.
  Is that your point?
15. Re:Corporations don't make law by similar_name · 2012-04-10 10:32 · Score: 3, Insightful
  
  To apply this same idea to meatspace. If I rent an apartment and my lease says no pets but I have a pet anyway should that make me a criminal? I don't think so. Seems like for a couple hundred years the U.S. has considered it a civil matter and I fail to see why it should be any different on a computer. At the same time if I break into an apartment that is criminal, likewise it should be for a computer. Companies are pushing to make breaking a TOS criminal and that's a very scary thing. Especially when they change it whenever they feel like it.
16. Re:Corporations don't make law by fast+turtle · 2012-04-10 12:17 · Score: 2
  
  because a TOS is not a valid contract is why the courts have ruled that it's a criminal offense to violate one. Contract law absolutely requires the ability to negotiate both sides, otherwise it's an EULA that is not recognized by half of the United States - the 9th district is in California IIRC
  
  --
  Mod me up/Mod me down: I wont frown as I've no crown
17. Re:Corporations don't make law by gnasher719 · 2012-04-10 13:23 · Score: 1, Insightful
  
  To apply this same idea to meatspace. If I rent an apartment and my lease says no pets but I have a pet anyway should that make me a criminal? I don't think so.
  Let's make that a bit clearer. If your lease says "no pets" but you have a pet anyway, does that make you a trespasser? No. You live there, and as long as you live there you are not a trespasser. You may be in violation of your rent agreement, and the landlord may use this to cancel your tenancy agreement, and then ask you to leave, and if you don't leave the landlord may send bailiffs to remove you, but until they remove you, you are not trespassing.
  
  On the other hand, you might take your pet rat on a walk, and when you come home you find the locks changed and a notice on the door - if you then break into what used to be your apartment you would be trespassing. Back to cyber space: If you have a Facebook account and you violate their TOS: No crime. If Facebook cancels your account and you hack into their servers to get the account back: Criminal.
18. Re:Corporations don't make law by Baloroth · 2012-04-10 14:16 · Score: 1
  
  You seem to be thinking of EULAs, which are different from TOS. Terms of Service are for... well, services that you run on computers (notably, in this case, computers you do not own, such as using Facebook). For example, Facebook can have it in their TOS that you cannot host, say, a picture of your butt on Facebook. If the Computer Fraud and Abuse Act was interpreted broadly, it could be a crime to put such a picture on their servers (it would count as "unauthorized access"). Making backup copies of software or restricting it to only one copy may involve a TOS, but more likely it is part of the EULA (which is similar but not the same). There really isn't any way you can justify making a backup copy of software as "unauthorized access" even in the loosest possible sense, so that wouldn't apply (it may be considered illegal under copyright law, but that would be a different issue). Violating copyright is illegal because copyright is already enforced by law. TOS are not.
  Note that conducting actual hacking without permission would definitely count as "unauthorized access", but not because it violates the TOS (although obviously permissive TOS may make it not a crime, just as permissive copyright makes copying software not a crime). Anyways, the court basically said that what counts as computer fraud and abuse under the law is open to interpretation by judges, not simply the company involved... which is good, and sane, and logical, and consistent with legal precedent. Note of course that a TOS violation may be a criminal act, but only because it is illegal already.
  Oh, IANAL BTW: the above is simply my armchair opinion.
  
  --
  "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
19. Re:Corporations don't make law by Baloroth · 2012-04-10 14:22 · Score: 1
  
  I'm not sure exactly what you mean. I think in this case the question is whether an action that effectively takes place on a server you do not own, that happens to violate the TOS of whatever service you took the action under, counts as "unauthorized access" of that server. For example, uploading porn to Facebook (I presume that is against their TOS, anyways). In that case, Facebook could argue that they did not authorize you to upload porn, and therefore you accessed their server in an unauthorized fashion. It's certainly a weak argument, IMO, but the text is open to that interpretation. But only if you interpret it broadly, which you shouldn't.
  
  --
  "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
20. Re:Corporations don't make law by rtb61 · 2012-04-10 15:03 · Score: 1
  
  Still really, violation of a term of service should only be a criminal act if that actual violation is legislated as such otherwise it should just be a civil breach of contract.
  Private corporation should not be able to just stick in arbitrary terms of service, things like you are not allowed to publicly criticise the company whilst using it's services etc. etc.
  
  --
  Chaos - everything, everywhere, everywhen
21. Re:Corporations don't make law by geogob · 2012-04-10 19:08 · Score: 2
  
  I'm not even convinced he was trying to be deceptive. Maybe the AC simply doesn't get it. Or stopped reading the reply half-way through, as he was satisfied with himself.
  Regardless, the subtlety pointed out by AuMatar is very disappointingly very hard to understand by a large portion of the population. Yes, I know, citation needed, but I can only give my own experience and observation as reference. Every time I face this situation, I turn out highly disappointed - in what exactly I don't know, but i'm just sorry for something. Happens all the time.
22. Re:Corporations don't make law by 91degrees · 2012-04-10 20:00 · Score: 1
  
  It is an important question.
  
  Reading the law as widely as possible would mean I'm breaking federal law by setting up a second gmail account, or not using my real name on facebook. This clearly wasn't the intent of the law. It was a reaction to hackers breaking into systems that they had absolutely no rights to at all. At the time, public access services weren't that common. Those that were typically had a TOS agreement that was fairly narrow in scope.
  
  I'm not sure how much the courts are allowed to take into account intent. It's certainly something they can consider.
23. Re:Corporations don't make law by crypticedge · 2012-04-11 00:55 · Score: 1
  
  In most states it's illegal to just change the locks on a rental if there's a renter there. They have to file with the court, then get the sheriff
24. Re:Corporations don't make law by painandgreed · 2012-04-11 03:14 · Score: 1
  
  I'm not even convinced he was trying to be deceptive. Maybe the AC simply doesn't get it.
  Not surprising if they can't even figure out how to create an account and log in.
25. Re:Corporations don't make law by swb · 2012-04-11 03:59 · Score: 1
  
  Sure they do.
  They buy the politicians, and the politicians pass laws in a way that allows them to structure their policies and contracts in a way that makes violating them a criminally enforceable action, allowing them to use the government's police powers to guarantee compliance to their policies.
  Ultimately the US is going to be just like China; same corrupt style of government, complete with in-name-only ideological justifications for repression ("stability" there, "war on terrorism" here), same group of guys on top manipulating the power of the state for their own financial compensation.
26. Re:Corporations don't make law by Khyber · 2012-04-11 05:06 · Score: 1
  
  Logically that would be the correct course of action. Set forth a contract of service. You violate said contract, you've lost the right to use the service. Further access to the service is unauthorized, and thus would then fall under the Federal statutes regarding said unauthorized access.
  
  --
  Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
27. Re:Corporations don't make law by Khyber · 2012-04-11 05:07 · Score: 1
  
  It's called "Right to Possession" and that falls under Tenant Rights.
  
  --
  Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
28. Re:Corporations don't make law by jahudabudy · 2012-04-11 06:38 · Score: 1
  
  The important part is that the user, having broken the ToS, is no longer authorised by the system owner to access that computer system.
  
  While I understand that is the argument, it seems faulty to me. If I break the TOS, that is cause for me to lose authorization. Once I have been authorized, however, until the system owner/system actively removes that authorization (or it naturally expires due to policy or something), I don't see how I can be considered unauthorized. I, personally, do not have the power (legally or technically) to authorize or deny authorization to access the system. How can my actions therefore determine my authorization without some action on the part of the system owner/system?
  
  --
  ...sometimes, in order to hurt someone very badly, you have to tell that person terrible lies. - PA
29. Re:Corporations don't make law by SuricouRaven · 2012-04-11 19:53 · Score: 1
  
  You assume that having an account authorised in a technical sense is in some manner equivilent to being authorised in the legal sense. Other than sharing a name, they are completly unrelated.
30. Re:Corporations don't make law by jahudabudy · 2012-04-12 01:07 · Score: 1
  
  Yes, I understand that. But my argument is that I was told "Here, this is an authorized account. Go use it thusly." If I am never informed at any later time "Your account is no longer authorized. Stop using it.", how can I know that it is unauthorized? It works exactly like it always did, no one has told me anything different. I am not an agent of the system (or at least, not an authorization/deauthorization agent), how can it possibly be my responsibility to determine my own authorization status? I maintain that until I am told that I am unauthorized, either explicitly or implicitly through failure of my credentials, that I can not be legally held responsible for unauthorized access. If the speed limit on a road drops, but it isn't posted (for instance, the sign is vandalized or removed) then my speeding ticket will be thrown out. How is this different?
  
  --
  ...sometimes, in order to hurt someone very badly, you have to tell that person terrible lies. - PA
31. Re:Corporations don't make law by DM9290 · 2012-04-12 08:22 · Score: 1
  
  The law could theoretically give the power of making things illegal to a corporation. but probably such a law would need to be written in such a way that it was clear that the corporation has that power, and which corporation it was, and how that corporation performs this task. So that way it is not vague as to whether or not any particular action was illegal.
  even if facebook happened to have clearly written TOS that themselves are not vague. that doesn't guarantee that the statute isn't also enforcing crappy or non-existant TOS terms written by other corporations or private agreements. The danger of simply interpreting criminal sanctions where congress wasn't clear on its intent.
  And if the TOS itself is law,then doesn't that mean the TOS could compel acts which are criminal acts? (i.e. all members of the ACME crime family, may only access their mob-book account if they are up to date on their criminal syndicate support payments --- therefore, give us our cut or not only will we break your knee caps, but the government will throw you in jail for unauthorized access to a computer system.) Wouldn't congress want to say exactly what kinds of requirements a TOS actually may possess?
  I think this court made the right decision. If congress really wants TOS terms to be the law, then congress should have been a lot more explicit about this.
  
  --
  No one has a right to their *own* opinion. They have a right to the TRUTH.
32. Re:Corporations don't make law by DM9290 · 2012-04-12 09:48 · Score: 1
  
  "authorize" is a verb performed by the owner. nothing in the statute says a TOS document can perform this task. So the court can't simply assume it. It is criminal law.
  So the issue is whether the owner authorized something. And it is pretty clear that if the owner put a computer up for people from the public to use, then the owner authorized them to use it. or else authorized them to authorize themselves. He can't authorize a computer to authorize anyone, nor a TOS.
  Under contract law there could be a TOS with binding terms, and you can agree to that and you can deauthorize yourself as far as the contract itself goes, but criminal law is far more explicit and does not depend on private parties to define arbitrary terms to describe what is a criminal act.
  In the criminal statute the term "authorize" does not gain its meaning from the TOS because the statute does not say so.
  I don't think anyone actually seriously believes congress intended to make TOS terms the criminal law anyway. the prosecutors are being dweebs.
  
  --
  No one has a right to their *own* opinion. They have a right to the TRUTH.
Ex post facto by NoNonAlphaCharsHere · 2012-04-10 08:48 · Score: 5, Insightful

If a corporation can unilaterally change a TOS agreement AFTER someone has signed up for the service (which they do all the time), how can anybody then claim that violating it is a criminal offense?
1. Re:Ex post facto by pwnyxpress · 2012-04-10 08:53 · Score: 2
  
  Don't corporations regularly write into the TOS agreement that they can change the terms with minimal (if any) notification to the customer, thus putting the responsibility of terminating the agreement onto the customer?
2. Re:Ex post facto by JoeMerchant · 2012-04-10 08:54 · Score: 3, Informative
  
  If a corporation can unilaterally change a TOS agreement AFTER someone has signed up for the service (which they do all the time), how can anybody then claim that violating it is a criminal offense?
  Even more, how can a corporation (say: JoeMerchantCorp) create a TOS and then get the police and courts of the land to enforce it for them? My TOS can state that you must dance on your hands naked in the waiting room after a late payment or your account will be revoked... and it can be a criminal offence to violate it?
3. Re:Ex post facto by LostCluster · 2012-04-10 08:55 · Score: 1
  
  They can't without permission, but continuing to use the service can represent permission.
4. Re:Ex post facto by FunPika · 2012-04-10 08:57 · Score: 1
  
  They will probably just try to make "Ignorantia juris non excusat" apply to the TOS as well and be like "You didn't read the updated TOS? Your fault".
  
  --
  After years of not using a signature, I am going to make one to say the following: Fuck Beta
5. Re:Ex post facto by NonUniqueNickname · 2012-04-10 09:00 · Score: 2
  
  So? Laws change unilaterally all the time too, it doesn't make them ex post facto. Only if the corporation takes action against a user over a violation of the new TOS that ocurred before the new TOS was instated (and agreed to by the user). Only then would it be ex post facto.
6. Re:Ex post facto by Surt · 2012-04-10 09:02 · Score: 2
  
  If it weren't unconscionable or illegal (and in this case both), yes.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
7. Re:Ex post facto by dbet · 2012-04-10 09:03 · Score: 4, Informative
  
  They can amend the contract, however, you are allowed to not accept the new version. So for example you're one year into a 2 year contract with AT&T, and they change the terms. You are now free to walk away. Because of this they usually grandfather in people who are in existing contracts.
8. Re:Ex post facto by Surt · 2012-04-10 09:04 · Score: 2
  
  Which seems entirely reasonable. I don't use any websites subject to unilaterally modifiable TOS without reading those TOS every single time, and neither should anyone else.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
9. Re:Ex post facto by Beardo+the+Bearded · 2012-04-10 09:09 · Score: 3, Funny
  
  I would hand-dance naked in my living room for you.
  I mean for a late payment. For a late payment.
  
  --
  
  ---
  ECHELON is a government program to find words like bomb, jihad, plutonium, assassinate, and anarchy.
10. Re:Ex post facto by Sique · 2012-04-10 09:22 · Score: 1
  
  One of the main reasons to have a state and a judicary is to have contracts enforced. There is a whole body of law just for contract disputions, it's called Civil Law.
  
  --
  .sig: Sique *sigh*
11. Re:Ex post facto by Anonymous Coward · 2012-04-10 09:24 · Score: 1
  
  I dunno that I like this argument. I agree with the conclusion, but the reasoning you take for it is a bit scary.
  I mean, I *can* change my terms and make you a criminal /if/ you persist. In computing it's as simple as "John, you're fired--don't login as administrator"
  A very simple alternate meatspace analogy is trespass.
  If I invite you to my home, you're welcome there. If I then order you to leave, you have a reasonable amount of time to gather your things and exit. If you delay unduly, or refuse--you've committed trespass.
  In some states, depending upon time and circumstance of your trespass (but basically including if you commit another felony crime such as types of assault) you may now be a felon. I may then have the right to:
  1) Remove you with force (up to and including the lethal variety)
  2) Detain and execute an arrest--with the above force.
  So...I know we don't want corps setting the laws. But to say that a civil manner can't escalate to criminal is...misleading. Quite simply --people, and corps...have the freedom to change their mind.
  CAPTCHA: autocrat. Amused.
12. Re:Ex post facto by ohnocitizen · 2012-04-10 09:27 · Score: 1
  
  I can't wait to re-read the parent comment after the supreme court rules it is a criminal offense. I'll have myself a nice little cry then. It'll be cathartic.
13. Re:Ex post facto by CanHasDIY · 2012-04-10 09:28 · Score: 1
  
  They will probably just try to make "Ignorantia juris non excusat" apply to the TOS as well and be like "You didn't read the updated TOS? Your fault".
  Which is, as we all know, complete bullshit.
  
  "Ignorantia juris non excusat" is only legitimate when applied across the board, without exceptions, and we all know that's not the case.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
14. Re:Ex post facto by SuricouRaven · 2012-04-10 09:53 · Score: 2
  
  When I got my iPod touch*, I got to see the agreement to use the app store. Ninety-nine pages long. That was one of the shorter ones.
  
  *Don't worry, it was a freebie with something else and went on eBay.
15. Re:Ex post facto by CanHasDIY · 2012-04-10 10:32 · Score: 1
  
  A very simple alternate meatspace analogy is trespass.
  No; trespassing is a criminal matter, not a civil one (unless we're talking trespass to chattels, which you are not). "Analogy" implies a commonality.
  
  A real meatspace analogy would be if you offered me access to your property in writing, then at some point changed the contract to revoke my access.
  
  The difference is, with a written (paper) contract between two individuals, changing the terms requires the physical signature of both parties; in terms of service, one party can unilaterally change their policy, with minimal notification to the other party, and so long as the original party offers some sort of notification (i.e., Sony 'allowing' consumers to opt-out of their "no-sue" clause by forcing them to snail-mail a written rejection within 14 days), it's all considered perfectly legal.
  
  In summation, the system is fucked, and it's going to stay that way until someone like Sony or facebook step on the wrong toes.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
16. Re:Ex post facto by sconeu · 2012-04-10 10:52 · Score: 1
  
  You agreed to be part of a human CentiPad
  
  --
  General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
17. Re:Ex post facto by tepples · 2012-04-11 00:08 · Score: 1
  
  They can amend the contract, however, you are allowed to not accept the new version.
  However, by continuing to use the service after the new terms are published, a user is considered to have accepted the new terms.
18. Re:Ex post facto by JoeMerchant · 2012-04-12 10:38 · Score: 1
  
  At what point does unconscionable start? AT&T tripled their rates without telling me until I got the bill - should I have to pay that triple expected bill? How about 10x? How about 100x? Where's the line?
  TOS are modified at a dizzying pace, if there were one TOS to read for a service per 10 years and 10 services with TOS in your average daily life, sure, that's fine. As it is, I have 2 hours of reading a month to do for my PS3, another 3-4 for my Apple products, about 10 hours a month for the various websites I like to visit, just for updates. Where does it stop?
  If I were King, I'd require any TOS modifications to be compensated to the affected consumers at a rate that would pay a normal lawyer to read and interpret the changes for you. If the service is a "free" website, they can pay a "TOS modification tax" of the number of pages of TOS modified multiplied by the number of customers affected multiplied by the $50 per page it would cost to get a decent legal analysis of the change.
  O.K. - maybe that's a little overboard, but I feel like we're just as far overboard in the other direction, with the bulk of consumers going through life never reading these "legally binding" things, the people writing them knowing that less than 1/100 consumers do more than even skim through them, and corporations "writing law" for themselves with virtually no review, checks or balances. Last time I went to the ER, I didn't have my reading glasses with me, I had to sign at least 5 different forms to get treatment, I suppose I could have had somebody sit down and read it to me for an hour while I bled and the infections spread... but, I might have lost consciousness before they got through the section releasing them from liability for malpractice.
19. Re:Ex post facto by JoeMerchant · 2012-04-12 10:39 · Score: 1
  
  And TFA is talking about Criminal penalties...
20. Re:Ex post facto by Surt · 2012-04-12 12:57 · Score: 1
  
  http://legal-dictionary.thefreedictionary.com/unconscionable
  "An unconscionable contract is one that no person who is mentally competent would enter into and that no fair and honest person would accept."
  You're probably stuck with your contracts so long as your carrier is able to attract significant numbers of new people to sign on to the same terms, as that pretty much blows the unconscionable requirements.
  Personally, I don't use any services with frequent TOS changes. It's not that hard to avoid.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
21. Re:Ex post facto by JoeMerchant · 2012-04-12 14:08 · Score: 1
  
  This sounds pretty slippery to me, not sure how often it changes, I never even looked at it before:
  http://geek.net/index.php/terms-of-use/
  Geeknet, Inc. comprised of the internet sites Geek.net, Sourceforge.net, Slashdot.org, ThinkGeek.com, and freecode.com (the "Sites"), provides the information and services on the Sites to you, the user, conditioned upon your acceptance, without modification, of the terms and conditions of use applicable to such Sites. Your use of any of the other Sites constitutes agreement with the terms and conditions of use set forth herein (the "Terms"). Before using Geeknet Sites, please carefully read this agreement relating to your use of Geeknet Sites. By using Geeknet Sites, you agree to be bound by these terms and conditions. If you do not agree to these terms and conditions, please do not use Geeknet Sites. Geeknet reserves the right, at Geeknet's sole discretion, to change, modify, add or remove portions of these Terms periodically. Such modifications shall be effective immediately upon posting of the modified agreement to the website unless provided otherwise (e.g., when implementing major, substantive changes, Geeknet intends to provide users with up to fourteen days of advance notice). Your continued use of the Geeknet Sites following the posting of changes to these Terms will mean that you accept those changes. Use of Geeknet Sites constitutes full acceptance of and agreement to the Terms; if a user does not accept Geeknet's Terms, he or she is not granted rights to use Geeknet Sites as defined herein, and should refrain from accessing Geeknet Sites. Geeknet reserves the right at any time and from time to time to modify or discontinue, temporarily or permanently, any or all Geeknet Sites (or any part thereof). Geeknet shall not be liable to any user or other third party for any such modification, suspension or discontinuance except as expressly provided herein.
22. Re:Ex post facto by Surt · 2012-04-12 14:33 · Score: 1
  
  Thankfully that's not a contract I've accepted.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
23. Re:Ex post facto by JoeMerchant · 2012-04-12 14:59 · Score: 1
  
  While I would disagree in principle, they say you have:
  
  Use of Geeknet Sites constitutes full acceptance of and agreement to the Terms;
  Stuff like that is what bothers me.
24. Re:Ex post facto by Surt · 2012-04-12 16:52 · Score: 1
  
  Yeah, there's no chance of that holding up, particularly since they've never forced me to see either the use requirement or the actual contract. Click-through has a small chance of holding up, but this? None.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
25. Re:Ex post facto by JoeMerchant · 2012-04-13 00:06 · Score: 1
  
  Yeah, there's no chance of that holding up, particularly since they've never forced me to see either the use requirement or the actual contract. Click-through has a small chance of holding up, but this? None.
  And, what I intensely dislike about that is that, regardless of merit, suit can still be brought and you are compelled to defend, and usually appear. In my opinion, just being compelled to appear is a major nuisance.
  Having all this, presently, meritless basis for suit generated as regular course of business should be in some way discouraged. A few bad decisions out of the courts could basically strip everyone of their rights by making everyone criminals due to violation of B.S. TOS (yes, it should be a civil issue, but so far, 3-1, the courts are calling it criminal?!!)
  I barely trust our system to not screw everybody as it is, but the way the TOS thing is shaping up, it's just the Supreme Court that stands between us and insanity, and I feel like there's a non-vanishing chance they will rule in favor of the insane on this issue.
26. Re:Ex post facto by Surt · 2012-04-13 04:50 · Score: 1
  
  My solution if things are headed that way will be to set up my own terms of service for sending me web pages over my internet connection. I will make sure my terms are at least equally visible and available.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
Can't complain by Anonymous Coward · 2012-04-10 08:50 · Score: 0

I think it's hard to tell whether this is good for consumers (because we have the freedom to do what we want with our programs, etc), or bad for consumers (because it makes things less safe for companies). Either way, I'm happy for now, I guess.
1. Re:Can't complain by CanHasDIY · 2012-04-10 08:52 · Score: 5, Insightful
  
  I think it's hard to tell whether this is good for consumers (because we have the freedom to do what we want with our programs, etc), or bad for consumers (because it makes things less safe for companies). Either way, I'm happy for now, I guess.
  It's not hard to tell at all: being able to throw consumers in jail for ToS violations is most definitely, unquestionably, bad for consumers.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
2. Re:Can't complain by Surt · 2012-04-10 09:06 · Score: 1
  
  The direct action is obviously negative, the question is whether the indirect incentive more than outweighs that negative. One could argue, for example, that perhaps facebook wouldn't exist if they didn't think this was possible, and facebook is so awesome it outweighs the cost. I wouldn't argue that, but someone could.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
3. Re:Can't complain by CanHasDIY · 2012-04-10 09:33 · Score: 1
  
  One could argue, for example, that perhaps facebook wouldn't exist if they didn't think this was possible, and facebook is so awesome it outweighs the cost. I wouldn't argue that, but someone could.
  You and I both.
  
  Besides, yea, one could attempt to make that argument, but it's obvious bullshit; the Zuckerburgs of the world don't give two shits about being able to incarcerate their customers for ToS violations, so long as people keep signing up and the skrilla keeps flowing in.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
4. Re:Can't complain by sabt-pestnu · 2012-04-10 20:57 · Score: 1
  
  > or bad for consumers (because it makes things less safe for companies).
  If Congress (or lobbyists acting through congress) really really wants to criminalize TOS violations, they can try to pass a bill that explicitly states that.
  Or they could just try again with the fuzzy language and call it CISPA.
I must be reading something wrong... by gatfirls · 2012-04-10 08:51 · Score: 1

Lower courts have held that violating a (basically TOS) is a crime? Is there ever real world logic applied to these decisions or is it basically (let's rewrite every law when it applies to the internet). "What are you in for?" "Leaving food stuffs in the fridge after 5pm on friday, clearly against company policy".
1. Re:I must be reading something wrong... by CanHasDIY · 2012-04-10 08:56 · Score: 5, Insightful
  
  Lower courts have held that violating a (basically TOS) is a crime?
  Not just a crime, a felony crime. Which means being convicted of ToS violations not only takes away your physical freedom, but also damages your ability to find a job upon release, makes it impossible to own a gun, removes your right to vote (although some states restore that right after a prescribed period of time), and all the other wonderful disadvantages that come with being a convicted felon.
  
  Land of the Free, my enslaved ass.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
2. Re:I must be reading something wrong... by Jeng · 2012-04-10 09:11 · Score: 5, Funny
  
  Ya know, if they want to charge you with a felony you might as well commit one and kill the motherfucker who wrote the TOS.
  
  --
  Don't know something? Look it up. Still don't know? Then ask.
3. Re:I must be reading something wrong... by Trepidity · 2012-04-10 10:19 · Score: 1
  
  Fortunately it does at least require that it be a TOS violation "with intent to defraud", which provides a bit higher burden of proof. It's still better not to have the CFAA in this mess at all, though. If you want to ban fraud, then write a law banning fraud (which already exist, naturally), not criminalize random things just because "with a computer" is tacked on.
  
  --
  10 PRINT CHR$(205.5+RND(1)); : GOTO 10
4. Re:I must be reading something wrong... by jamstar7 · 2012-04-10 10:52 · Score: 1
  
  If you want to ban fraud, then write a law banning fraud (which already exist, naturally), not criminalize random things just because "with a computer" is tacked on.
  But it's ok to 'create' and 'patent' something already out there by adding 'on a computer hooked to the internet or not'?
  
  --
  Understanding the scope of the problem is the first step on the path to true panic.
Go to SCotUS, Go directly to SCotUS by LostCluster · 2012-04-10 08:52 · Score: 5, Insightful

A court ruling out of line with three other rulings is certainly a sign that the court wants a higher court to look at this... 3-1 scores don't matter, just that the case got there.
of course by shentino · 2012-04-10 08:56 · Score: 1

Violating terms of use is not a criminal offense.
It's a civil matter known as breach of contract, the solution for which is getting sued.
Now if you were forging a mac address in an attempt to masquerade as another subscriber, or hacked the service to get free internet or evade a service termination, that would be different and probably *would* qualify as criminal.
Breaking TOS and having your service yoinked is like going shopping at a grocery store and getting thrown out by security for swearing, or like getting an eviction notice from your landlord because you didn't pay your rent or because you broke the door. It's not the same as shoplifting or burglary.
The only time a TOS violation should be criminal is if what you're doing amounts to trespassing.
1. Re:of course by X0563511 · 2012-04-10 09:33 · Score: 1
  
  Aaah, but you forgot! The magic words! "With a computer" change everything!
  
  --
  For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
2. Re:of course by GiMP · 2012-04-10 09:37 · Score: 1
  
  Without any contract, you have no authority access. If you breech the contract, you have no authorization to access. Access without authorization is a felony.
  I tend to agree that the other courts were probably right. Whether or not the Computer Fraud and Abuse Act is too broad is another matter and something for higher courts and the legislative branch to determine.
3. Re:of course by gstrickler · 2012-04-10 09:54 · Score: 2
  
  I've discussed this many times. Any while your interpretation could be valid, I most strongly disagree with it. I agree with the OP and the 9th CC, this is not a crime, it's a contract dispute, which makes it a civil case, not a criminal case. That's how it should be handled, breach of contract.
  Consider what happens if it's the other way around, what if the company violates their responsibilities under the TOS? Is that automatically a crime? No. In some cases, if you can show they were willfully misleading, to a large group of customers, then it might be treated as criminal fraud. But the company violating the TOS is not automatically a crime, it's a civil breach of contract. And if it's not automatically a crime for the company to violate it, then it's not automatically a crime for the other party to the contract to violate it. It's a civil dispute unless there are other considerations (e.g. massive fraud) that make it a criminal one.
  
  --
  make imaginary.friends COUNT=100 VISIBLE=false
4. Re:of course by jamstar7 · 2012-04-10 10:58 · Score: 1
  
  Consider what happens if it's the other way around, what if the company violates their responsibilities under the TOS? Is that automatically a crime? No. In some cases, if you can show they were willfully misleading, to a large group of customers, then it might be treated as criminal fraud. But the company violating the TOS is not automatically a crime, it's a civil breach of contract.
  
  I'd have an attorney read over the TOS before suing, though. I've read some that have a clause saying that by using the service I accept the TOS and agree to hold the provider blameless in anything that may come up, up to and including the Second Coming of Elvis.
  
  --
  Understanding the scope of the problem is the first step on the path to true panic.
5. Re:of course by causality · 2012-04-10 11:54 · Score: 1
  
  Consider what happens if it's the other way around, what if the company violates their responsibilities under the TOS? Is that automatically a crime? No. In some cases, if you can show they were willfully misleading, to a large group of customers, then it might be treated as criminal fraud. But the company violating the TOS is not automatically a crime, it's a civil breach of contract.
  I'd have an attorney read over the TOS before suing, though. I've read some that have a clause saying that by using the service I accept the TOS and agree to hold the provider blameless in anything that may come up, up to and including the Second Coming of Elvis.
  I'm not a lawyer and this isn't legal advice, yadda yadda. Owing to the legally protected freedom of speech, they may write whatever they want into a document. That doesn't necessarily mean it will hold up in court. Some states are better than others about rejecting unreasonable clauses in such contracts.
  
  --
  It is a miracle that curiosity survives formal education. - Einstein
Not a TOS by Desler · 2012-04-10 08:57 · Score: 5, Insightful

Once again a terrible title and summary. This had nothing to do with a TOS. It was about trying to prosecute someone criminally for violating their workplace's authorized access policy.
1. Re:Not a TOS by gatfirls · 2012-04-10 09:04 · Score: 1
  
  An "access policy" is basically "terms of service". You are right though the word "policy" is enough of a description to make a criminal charge (an upheld appeals) seem ridiculous.
2. Re:Not a TOS by tacokill · 2012-04-10 09:04 · Score: 2
  
  Mod this up. The fact that an employer / employee is involved changes everything. This is not a case of TOS and Customers violating said TOS.
3. Re:Not a TOS by Desler · 2012-04-10 09:09 · Score: 2
  
  No, a ToS is in common use an agreement between a company and a consumer when providing you a service. This was about an internal company policy for its employees. It's not the same.
4. Re:Not a TOS by gatfirls · 2012-04-10 09:12 · Score: 2
  
  Exactly what does it change? They're both loose "contracts" on what is authorized for the service/network/etc. Using horribly vague, ambiguous and broad laws to cover civil matters (especially big corporate civil matters) is a crazy concept that people seem to just ignore as "welp don't break the law" until they get snagged up in it.
5. Re:Not a TOS by Anonymous Coward · 2012-04-10 09:22 · Score: 0
  
  It *is* about TOSes, because this exact same bit of legislation *is* being used to prosecute for violating TOSes.
  You are right that using it for a workplace access policy is different, but a workplace access policy probably has an even better argument for being considered subject to criminal penalties under the CFAA for its violation.
  So, the fact that it the 9th Circuit rejected a broad interpretation of the CFAA for this policy is an even *stronger* repudiation than if they had just rejected a broad interpretation of the CFAA for a plain old website TOS.
6. Re:Not a TOS by gatfirls · 2012-04-10 09:30 · Score: 2
  
  You do know that "basically" and "same" have very different meanings right? The point is that neither of them (should) carry a criminal penalty for the violation of them unless the violation actually violates the law. The problem here is that they are using their *policy* to stipulate what is illegal. ....using very ambiguous overreaching laws. Even though using criminal courts in place of civil is all the new rage.
7. Re:Not a TOS by Anonymous Coward · 2012-04-10 09:40 · Score: 0
  
  Wrong. Please see post by Baloroth (2370816) on Tuesday April 10, @04:59PM (#39636607).
  The Computer Fraud and Abuse Act defines a felony offense for violations of "authorized access". A TOS (or an equivalent Corporate Use Policy) defines what is authorized. So the question before the court was whether or not violating a specific TOS constitutes such a felony offense under the law as written.
  The problem with the law is that there is no definition of "authorized access" and could even allow after-the-fact determination (again, also with no definition) by the "victim" that any arbitrary prior access was "unauthorized". By defining "authorized access" in a TOS or CUP, the "victim" can at least claim the access was "unauthorized" prior to the access.
  The case is about whether an action (violating the TOS) is already criminal under the current law. The 9th got it right. Congress needs to fix the definition of "authorized access" or the courts should rightfully strike down the law.
  This gets into sticky areas like "How many near-simultaneous "requests" for my PUBLICLY ACCESSIBLE SERVICE constitutes "popular" versus a denial-of-service attack?" In effect, the slashdot effect could be deemed a federal felony offense if the law stands. SCOTUS will likely have to take it up.
8. Re:Not a TOS by CanHasDIY · 2012-04-10 10:01 · Score: 1
  
  This gets into sticky areas like "How many near-simultaneous "requests" for my PUBLICLY ACCESSIBLE SERVICE constitutes "popular" versus a denial-of-service attack?" In effect, the slashdot effect could be deemed a federal felony offense if the law stands. SCOTUS will likely have to take it up.
  In other words, the fate of our technological freedom is in the hands of 9 dinosaurs who are of the generation that honestly believes the internet is made up of physically interconnected tubes?
  
  $diety help us, we are FUCKED.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
9. Re:Not a TOS by Anonymous Coward · 2012-04-10 10:19 · Score: 0
  
  Not the same, except for the part where they are both agreements about how a system should be used by users. The fact that employees use a system (supposedly) for productive purposes doesn't mean much. Especially when "consumers" are doing the same (hello cloud services..)
10. Re:Not a TOS by urulokion · 2012-04-10 10:20 · Score: 4, Insightful
  
  No. The fact that is an employer/employee type setup doesn't change a thing. An employee violating a company policy in regards to accessing information they are authorized to to access via their computer credentials isn't a violation of the CFAA. Let's take another CFAA case involving the Social Security Adminstration. Certain employees in the SSA have access to personal information of people in regards to SSN payroll deductions, benefit payouts, etc. They have authorization via their computer credentials to look at virtually anyone's personal information. But the SSA has policies in place they speel out when it is proper to access that personal information. When an employee is working a case that is assignment to them, they policies says they can access personal information about persons related to that case as an example.
  Now if an SSA employee starts to just access information about celebrities or other persons in the new just because they are curious. They would be a clear violation of SSA policy. Remember that the employee's credentials allow access to virtually anyone. The employee used their assignen credentials to access the information. They didn't breach any technological measure to access the measure. They didn't "hack" to gain access to the information. Their access is a violation of SSA policies, may be violations of criminal statutes of misusing government data, violations of the Privacy Act, etc. But their access was not a violation of the CFAA. That was what the 9th Circuit ruled on.
  The 9th Circuit got this one right. Yes, I'm shocked as much as you are. If this ruling goes to the US Supreme Court, I don't think it'll be overruled.
11. Re:Not a TOS by Trepidity · 2012-04-10 10:20 · Score: 1
  
  If you read the court's opinion, it discusses both ToS and workplace access policies, and holds that the CFAA applies to neither, for similar reasons.
  
  --
  10 PRINT CHR$(205.5+RND(1)); : GOTO 10
12. Re:Not a TOS by Trepidity · 2012-04-10 10:23 · Score: 1
  
  It doesn't change anything, as the decision notes. The question is whether exceeding authorization to use a computer, by violating the terms of a policy authorizing you to use that computer, is a federal crime. Whether the policy is a workplace policy for employee usage of computers, or a user policy for customer usage of computers, doesn't make a difference.
  
  --
  10 PRINT CHR$(205.5+RND(1)); : GOTO 10
Whoop-de-do, big deal. by istartedi · 2012-04-10 08:57 · Score: 3, Insightful

So you're not in jail. Big deal. They can still take all your money via the civil courts. Then you're homeless. It's like jail except that the cell has poor climate control and the 3 hots and a cot are unreliable. Nothing will change until civil suits are reformed. For starters, guaranteed right to a jury trial with the possibility of nullification required to be informed to the jury from the bench (not the bench lying and saying that it doesn't exist). Also, reasonable doubt, not prepoderance. Also, no civil trial for the same matter already settled in criminal courts.
Wow, it might actually be a free country again if we could pull that off. Oh and look, I expressed it in one paragraph that everybody can understand. Just like back in the 1700s. Imagine that!

--
For all intensive purposes, "whom" is no longer a word. That begs the question, "who cares"?
1. Re:Whoop-de-do, big deal. by gl4ss · 2012-04-10 09:04 · Score: 1
  
  well.. at least then you get to still vote that should be changed?
  usa style settling in criminal cases is bullshit. it distorts statistics, history and murkies wtf actually happened so badly... that should only happen in civil, non criminal, disagreements.
  
  --
  world was created 5 seconds before this post as it is.
2. Re:Whoop-de-do, big deal. by interval1066 · 2012-04-10 09:15 · Score: 1
  
  Has anyone ever been rounded up for violating an access TOS?
  
  --
  Python: 'And then suddenly you have a language which says "we're all stuck with whatever the whiniest coder wants".'
3. Re:Whoop-de-do, big deal. by mark-t · 2012-04-10 09:45 · Score: 1
  
  They can't take your home away if you don't own it... and they can't garnish your wages below what is necessary to survive, taking into consideration standard costs of living in your area.
  
  --
  File under 'M' for 'Manic ranting'
4. Re:Whoop-de-do, big deal. by sabt-pestnu · 2012-04-10 21:01 · Score: 1
  
  From the ruling:
  In a recent Florida case, after an employee sued her employer for
  wrongful termination, the company counterclaimed that plaintiff violated
  section 1030(a)(2)(C) by making personal use of the Internet at work --
  checking Facebook and sending personal email -- in violation of company
  policy. See Lee v. PMSI, Inc., No. 8:10-cv-2904-T-23TBM, 2011 WL
  1742028 (M.D. Fla. May 6, 2011). The district court dismissed the counterclaim,
  but it could not have done so if "exceeds authorized access"
  included violations of private computer use policies.
5. Re:Whoop-de-do, big deal. by Anonymous Coward · 2012-04-11 03:02 · Score: 0
  
  Homeless is NOTHING like jail. Trust me.
Damn it by Fned · 2012-04-10 09:09 · Score: 5, Funny

I was so looking forward to forcefully citizen's-arresting the next HR asshole to demand my Facebook login.
1. Re:Damn it by Elldallan · 2012-04-10 12:55 · Score: 1
  
  That has not changed, unless the HR asshole has Facebook he never had a TOS with FB so he could always(and still can) demand your account details. You would however be in breach of the TOS if you gave it to said HR asshole so you would be the one tossed in jail.
  
  BUT what has not changed is the fact that if said HR asshole did access FB(with your account details) without having a contract with FB in the first place it will still be a felony.
  Things gets muddy if he has his own Facebook since he would technically have legal permission to access FB's servers(just not with your account details).
  
  IANAL
2. Re:Damn it by Xaositecte · 2012-04-10 13:27 · Score: 1
  
  He's not violating the TOS, but he's certainly accessing the computer system without authorization, which is the actual felony crime being discussed. If anything, his guilt is even more unambiguous.
3. Re:Damn it by Anonymous Coward · 2012-04-10 13:41 · Score: 0
  
  That has not changed, unless the HR asshole has Facebook he never had a TOS with FB so he could always(and still can) demand your account details. You would however be in breach of the TOS if you gave it to said HR asshole so you would be the one tossed in jail.
  True, but consider that conspiracy to commit a felony is also a felony...
4. Re:Damn it by MobyDisk · 2012-04-10 13:46 · Score: 1
  
  Allow me to play devil's advocate here: what is to say they don't arrest you for giving the information out? Asking for it probably doesn't violate the TOS. Either giving it out, or using it are more likely to violate it.
5. Re:Damn it by darkonc · 2012-04-10 14:00 · Score: 1
  
  It's not just the asshole who demands your Facebook login that gets charged with counselling a felony. You can also go after the asshole who set the policy (usually further up the food chain). Now that should get the attention of legal (especially if it was legal who set the policy).
  
  --
  Sometimes boldness is in fashion. Sometimes only the brave will be bold.
Authorized access to my (physical) mailbox by Anonymous Coward · 2012-04-10 09:10 · Score: 1

"Credit card companies are not authorized to have their mail access my (physical) mailbox, unless they enclose a cashier's check for $1,000 in my name."
Now go ahead send me another one of these credit card offers!
Don't get excited by BBTaeKwonDo · 2012-04-10 09:18 · Score: 0, Troll

First, as other posters have pointed out, it's an employer/employee agreement, not a consumer ToS. Second, the decision was by the Ninth Circuit a.k.a the People's Republic of the Ninth Circuit. The five Republicans on SCOTUS like to slap down the Ninth Circuit's rulings out of principle or spite or both. This will not end well for the employee.
1. Re:Don't get excited by Anonymous Coward · 2012-04-10 09:32 · Score: 0
  
  I mentioned this above, but it bears repeating:
  The fact that the agreement was an employer/employee agreement seems to make it much more likely that both parties (1) understand the nature of the agreement, (2) have knowingly agreed to be bound by it, and (3) have a good channel of communication for updates to the policy, etc.
  All of these cut in favor of giving more weight to employer/employee agreements than to your typical website TOS. So this decision seems to be (at least as far as I can tell from the summaries, haven't read it) a *stronger* repudiation of a broad CFAA interpretation than if they had gone with a narrow interpretation of the website TOS.
  Maybe I'm way off base here, but I can't think of any convincing arguments giving an emplorer/employee agreement a narrow view under the CFAA, but giving a website/visitor TOS agreement a broad view.
2. Re:Don't get excited by Trepidity · 2012-04-10 10:25 · Score: 1
  
  Wrong on both points: 1) the decision covered ToS in general, not only employer/employee agreements; and 2) the Ninth Circuit has plenty of conservatives on it, with its Chief Judge, who wrote this opinion, being a libertarian-leaning Reagan appointee.
  
  --
  10 PRINT CHR$(205.5+RND(1)); : GOTO 10
3. Re:Don't get excited by BBTaeKwonDo · 2012-04-10 11:39 · Score: 1
  
  Yeah, you're right, my bad for not RTFO. Though the Ninth circuit, while it may have some conservatives, is still the most liberal circuit by a wide margin.
Opinion by Kozinski by Anonymous Coward · 2012-04-10 09:21 · Score: 0

Kozinski's opinions are usually worth reading.

Under the government’s proposed interpretation of the CFAA, ... describing yourself as “tall, dark and handsome,” when you’re actually short and homely, will earn you a handsome orange jumpsuit.
Employers demand access to employee account ... by Spectre · 2012-04-10 09:21 · Score: 1

So, those employers that demand access to your social networking accounts, or, say, bank accounts, personal e-mail accounts, etc. They get a free pass at violating those sites' Terms of Use and can sign on with employees' access credentials ... NO PROBLEM?

--
"Flame away, I wear asbestos underwear"
1. Re:Employers demand access to employee account ... by GiMP · 2012-04-10 09:40 · Score: 1
  
  Those companies are not violating the TOS, the employee is. What the company is doing is worse, the company is arguably accessing without agreeing to the TOS at all, which falls under unauthorized access and is criminal under the Computer Fraud and Abuse Act. I think. IANAL
2. Re:Employers demand access to employee account ... by mark-t · 2012-04-10 09:59 · Score: 1
  
  If you're going to work for a company that expects access to such accounts, then I would think that your best course of action is to just not have any such accounts. Even better is to just not work at such a company.
  In at-will states, employers can fire you for pretty damn near any reason they want, or no reason at all. I'm pretty sure that not supplying them with access to your facebook account doesn't quality as some form of legal discrimination (even though they might be able to obtain some information from your facebook page that they could potentially discriminate on, I think you'd have to somehow show that searching for such information to discriminate against you for in your facebook profile was somehow at least a genuinely likely motive for asking for the login information).
  
  --
  File under 'M' for 'Manic ranting'
3. Re:Employers demand access to employee account ... by gnasher719 · 2012-04-10 13:35 · Score: 1
  
  So, those employers that demand access to your social networking accounts, or, say, bank accounts, personal e-mail accounts, etc. They get a free pass at violating those sites' Terms of Use and can sign on with employees' access credentials ... NO PROBLEM?
  Not at all. If I give you my Facebook password, then I am in violation of the Facebook TOS - which as discussed is not a crime. But _you_ have no authorization to log into my account. I can give you the password, but I cannot give you the authorization to log in, because it is not my server that you are logging in to. So by accessing my account, using the password I gave you, _you_ are committing the crime of unauthorized access to a computer.
4. Re:Employers demand access to employee account ... by HexaByte · 2012-04-11 05:38 · Score: 1
  
  If you're going to work for a company that expects access to such accounts, then I would think that your best course of action is to just not have any such accounts. Even better is to just not work at such a company.
  Tell your employer" I won't give you the keys to my house, my car, my bank accounts nor other personal accounts unless you do the same for me."
  Should they agree to this, drain their accounts, take everything from their house that you want, put it in their car and take off for the border. When you get there, post (as them) on their facebook and tweet from their account that they love Hitler and the Nazis, hate minorities and women and are having an affair with someone of the same sex in the workplace. Chance are it will be worth it to live like a king for a while on their dime and make their life miserable to teach them a lesson.
  
  --
  HexaByte - he's a square and a half!
extradite the chinese gold farmers by Anonymous Coward · 2012-04-10 10:16 · Score: 0

We should use the CFAA to extradite the 1000s of Chinese gold farmers creating inflation in World of Warcraft. They are in esense printing money.
So any kid who cheats at a computer game can go to jail? Imagine filling up the jails with all the fat kids who hacked Diablo ?
The people who mod the IPAD so it runs Flash?
1. Re:extradite the chinese gold farmers by Anonymous Coward · 2012-04-10 15:19 · Score: 0
  
  no one gives a shit about your old lame whack-off-fest mmo
stuff on the level traffic tickets should not felo by Joe_Dragon · 2012-04-10 10:19 · Score: 1

stuff on the level traffic tickets should not be a felony.
Now lot's of tos violation are on the level of some traffic tickets where most people don't follow the rules 100% and some of them are very technical when you get down to them.
This could go bad seriously fast by powerspike · 2012-04-10 10:29 · Score: 1

and therefore violating terms of service and corporate use policies is not a federal crime.
If it was a Federal Crime, Basically what it would lead to, is private entities been able to send people to jail for breaking rules not set by the government (ie laws...). If this does start to happen, then the corporations have effectively directly taken over law making in this country, and could even possibly put in jail terms and penlites for breaking their tos's.
Civil suits by Anonymous Coward · 2012-04-10 10:32 · Score: 0

Having won a civil suit for a 3,000 debt on a customer I can say it's a pain in the ass to collect. You can seize certain assets, say a car parked outside of their home. But if it's in a garage forget it. You can file paperwork to seize a bank account but you only get that one shot to do it and you don't know how much is in there. You can garnish wages, provided they have a job and/or are not working for cash. You can place a lein on property, if they own any, but you only get paid if they want to sell. If they have a mortgage forget it, bank gets first dibs.
The way I see it by __aaltlg1547 · 2012-04-10 16:12 · Score: 1

violating TOS can only be seen as breach-of-contract. That makes it a civil offense.