Re: Is BuddySpy legit, or is it unethical and Ille

Author	All Replies
DarkSithPro join:2005-02-12 Huntington Beach, CA 3 edits	reply to JamPony9 Re: Is BuddySpy legit, or is it unethical and Ille said by JamPony9 : Seems to me the answer to whether it is ethical depends on how it works. Does it depend on sneaking something on to the other party's computer, or does it just use what it can get from the IM servers? Looks like it is the latter, based on this page. »www.buddy-spy.com/index.php?page=features If that is accurate, it's interacting with the servers in ways that may not have been intended, but doesn't actually run any exploits against the system, or change anything on it. Well I'm no security expert, but do modified packets that retrieve information that isn't supposed to be retrieved considered an exploit?
	to forum · permalink · · 2005-07-22 00:34:24 ·
JamPony9 Premium join:2004-12-08 Austin, TX 3 edits	You're right, it is a kind of exploit against the server. What I meant was that it's not designed to break in and install anything or root it or such. Really a borderline case! You're entitled to connect; the question is what the limits are on how you connect. As a reference point for comparison, I consider it OK for nonstandard clients to connect (I do it every day with AIM tho AOL might prefer their client be used). This goes beyond that tho. It is similar to certain kinds of port scans. Port scans can get you some attention from the net admin if detected, and maybe an abuse report (I've been on the admin side; I scan only my own networks). I'm not sure about the legality. On the other side of the equation, use of this app is apparently common, and is not aimed at the end user. A little on the shady side. The MSN people must be aware of it. I predict countermeasures soon.
JamPony9 Premium join:2004-12-08 Austin, TX 3 edits	to forum · permalink · · 2005-07-22 00:51:38 ·
MapleLeaf Premium join:2001-09-04 Burnaby, BC	reply to DarkSithPro When something attempts to take advantage of a bug, glitch or vulnerability - we can talk about exploit. Not the case here. For example, scanning netblock for open shares or ports is not an exploit. Does one have legitimate reason to run a scanner - that's a different question. -- Remember, I'm pulling for you - we are all in this together...
MapleLeaf Premium join:2001-09-04 Burnaby, BC	to forum · permalink · · 2005-07-22 00:56:15 ·


Saturday, 28-Nov 14:35:25	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF