On Fri, 21 Mar 2008, Randy Mueller wrote:
>> The FBI has recently adopted a novel investigative technique: posting
>
>> hyperlinks that purport to be illegal videos of minors having sex, and
>
>> then raiding the homes of anyone willing to click on them.
>
>
>
> Let me come at this from another angle. After my sons brain injury his
> sexual or pornography needs increased greatly. We had to change TV
> programming because of the billing from Pay-Per-Views. He is 21 with the
> mind and curiosity of a 13 year old. I have had to put parental controls in
> due to finding him up late "clicking" on anything dealing with girls. You
> don't think "young girls having sex" wouldn't attract him? And for this I
> would get raided.
In the UK you would get raided for much less if CP is involved.
We developed a kind of best practice advice: don't click/visit it, don't
download/store it, don't process/analyze it.
Any could ruin your life long before any trial, in the US and especially
the UK. Around the world to a lesser degree.
Unrelated, I only had the misfortune of visiting a CP site ONCE, while
investigating it. I was deeply--deeply disturbed and I don't recommend it
to anyone, to say the least.
These are not teenagers, or even kids. Think babies, think graphic.
Actually, try and not think it. It incapacitates some crucial "night"
functioning.
This is also where we came up with the above best practices. I zipped the
site and sent it in to a "top secret" security list which took down
phishing sites circa 2004. I password protected the zip and suggested
only those who want to create signatures use it.
I got several emails explaining the situation to me, and stating that if
such information is to be shared, they'd like to be unsubscribed.
What we ended up doing was running away. CP, child pornography or kiddie
porn, whatever you want to call it, is "dealt with". Even if not as best
as law enforcement could, far better than any other type of cyber crime.
We can gladly stay away from it and let law enforcement do its' job at
least in one place where it counts, and deal with other things to maintain
our networks, the network and the users' security.
Current practice is "here is a spam I got supposedly linking to a CP site,
URL is broken up for safety. Please forward to law enforcement. Visiting
this site is a Very Bad Idea (tm)".
Gadi.
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
