Re: [Full-Disclosure] Symantec wants to criminalize security info sharing

["Gregory A. Gilliss" <ggilliss@xxxxxxxxxxxxxxxxx>]

Sir:

A quick search did not obtain a citation for this comment. Do you have
one? If so, I'm sure that sseveral people will be happy to assist Mr.
Schwarz in clarifying his mistake ;-) However it would not be fair of us
to castigate a senior corporate executive with 25 years of experience with
IBM without being able to attribute his comment properly.

G

On or about 2003.09.11 09:47:07 +0000, Richard M. Smith 
(rms@xxxxxxxxxxxxxxxxxxxx) said:

> Hi,
> 
> Here's an interesting quote from John Schwarz, the COO of Symantec, in a
> Wired.com article from today:
> 
>    Just Say No to Viruses and Worms
>    http://www.wired.com/news/infostructure/0,1377,60391,00.html
> 
>    "But perhaps the most controversial suggestion came 
>    from John Schwarz, president and COO of antivirus 
>    firm Symantec, who called for legislation to criminalize 
>    the sharing of information and tools online that can be 
>    used by malicious hackers and virus writers." 
> 
> As we all know, when it comes to discussing information about computer
> security vulnerabilities, it is difficult to separate security uses of
> this information and hacking uses of the same information.
> 
> For example, if Symantec were to get this law passed, are they prepared
> to see their employees who work on the Bugtraq email list go to jail?
> ;-)

-- 
Gregory A. Gilliss                                    Telephone: 1 650 872 2420
Computer Engineering                                   E-mail: greg@xxxxxxxxxxx
Computer Security                                                ICQ: 123710561
Software Development                          WWW: http://www.gilliss.com/greg/
PGP Key fingerprint 2F 0B 70 AE 5F 8E 71 7A 2D 86 52 BA B7 83 D9 B4 14 0E 8C A3

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html