I would say that if you were to tell the person about their flaws without broadcasting the flaw to the world then they would be happy to know that information. Especially if you included a way to solve their security problem. I think you may also be able to place a lawyer in front of you before going to the company. Sort of like a turning states evidence to avoid prosecution. a "My client will offer information about your security holes if you promise to sign this document saying you will not prosecute them."
Worse comes to worse bounce an e-mail off an open relay to the post master. Not that that is legal either. :) -----Original Message----- From: Billy D Walls [mailto:[EMAIL PROTECTED]] Sent: Friday, February 22, 2002 10:54 PM To: [EMAIL PROTECTED] Subject: A question on the law. If one where to find, say, 44 networks in one night while war driving, and with net stumbler and windows, is able to jump on those networks using those networks bandwidth free of charge, is there a way LEGALLY to tell these people how bad the security is without getting shot. I don't want to go to jail, I don't want to be called a terrorist, I just want to tune these people into a clue...? I know WEP is weak, it was only supposed to be as "secure" as an unsecured ethernet cable, but atleast it keeps casual drive by hacking at bay! _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.
