> > Ian writes: > > Consider this case A web page /default.ida exists on a > server which when > > requested (via Code Red)pops up a message on the affected > computer. How > > can it be illegal when it was the affected machine which > requested the > > script in the first place ? > > It was not the owner or authorized user of the affected machine who > requested the script. And you knew it. >
True... Seems like a pretty grey area though. He is ultimately responsible for it. There has been enough publicity about CR to ascertain that the system admin was negligent in his duty. Ian
