Path: utzoo!attcan!uunet!lll-winken!lll-tis!helios.ee.lbl.gov!pasteur!agate!garnet!weemba
From: weemba@garnet.berkeley.edu (Obnoxious Math Grad Student)
Newsgroups: news.sysadmin
Subject: Re: liability (was Re: virus et al.)
Message-ID: <16688@agate.BERKELEY.EDU>
Date: 8 Nov 88 12:51:30 GMT
References: <5331@medusa.cs.purdue.edu> <3259@ucdavis.ucdavis.edu>
Sender: usenet@agate.BERKELEY.EDU
Reply-To: weemba@garnet.berkeley.edu (Obnoxious Math Grad Student)
Distribution: na
Organization: Brahms Gang Posting Central
Lines: 17
In-reply-to: TEdell@ucdavis.edu (Thomas E Dell)

In article <3259@ucdavis.ucdavis.edu>, TEdell@ucdavis (Thomas E Dell) writes:
>In article <5331@medusa.cs.purdue.edu> spaf@cs.purdue (Gene Spafford) writes:
>>a class action suit could be filed for millions, not $10K.

>No one other than Sun should be liable for expenses incurred in
>distributing bug fixes pertaining to security holes, regardless of how
>the holes were discovered.

By the way: do Sun and other companies *REALLY* want to push for the
"site == deep pocket liability" theory of network damage?  Something
like this could boomerang very very nastily.  And you can all quickly
bury your fears that security holes or even worries about security
holes could someday kill off the ARPANET: fears of lawsuits would
more than suffice.

Think about it folks: we're all in this together.

ucbvax!garnet!weemba	Matthew P Wiener/Brahms Gang/Berkeley CA 94720