• FreeAdvice has a new Terms of Service and Privacy Policy, effective May 25, 2018.
    By continuing to use this site, you are consenting to our Terms of Service and use of cookies.

Business Idea Legality Issue

Accident - Bankruptcy - Criminal Law / DUI - Business - Consumer - Employment - Family - Immigration - Real Estate - Tax - Traffic - Wills   Please click a topic or scroll down for more.

B

bildy

Junior Member
What is the name of your state? New York

I have a question related to internet law. In short, can I scan a website for possible vulnerabilities (i.e. penetration testing) which would allow a hacker to possibly compromise a site without a companys permission, and then offer my services to fix them for a fee?
 


J

JETX

Senior Member
bildy said:
What is the name of your state? New York

I have a question related to internet law. In short, can I scan a website for possible vulnerabilities (i.e. penetration testing) which would allow a hacker to possibly compromise a site without a companys permission, and then offer my services to fix them for a fee?
Click to expand...
As long as you tell them you are doing it first, yes.
 
B

bildy

Junior Member
So it would be illegal to do the testing and then provide the results without telling them?
 
C

Crazed98

Member
bildy said:
So it would be illegal to do the testing and then provide the results without telling them?
Click to expand...

That would be like breaking into someones house while sleeping to wake them up and hand them an ADT home security pamphlet.

Hacking a website is illegal unless the owner of the website is aware of it and permits you to do so.
 
E

EvilWizard

Member
Well port scanning a system isn't necessarily illegal unless you connect or cause a noticible degradation to services such as bandwidth utilization, but scanning a system and then going to the system owner with a proposal to fix vulnerability X could be construed as extortion. Its a bad idea in general unless you get a signed contract stating you are allowed to do X and Y.
 
J

JETX

Senior Member
EvilWizard said:
Well port scanning a system isn't necessarily illegal unless you connect or cause a noticible degradation to services such as bandwidth utilization, but scanning a system and then going to the system owner with a proposal to fix vulnerability X could be construed as extortion. Its a bad idea in general unless you get a signed contract stating you are allowed to do X and Y.
Click to expand...
Please change your name to 'EvilEcho'.... as that is all your posts do.... is echo comments already made (more clearly) by others. :eek:
 
E

EvilWizard

Member
Well I didn't see where anyone above me had posted anything about port scanning being legal or the fact that connections have to be made or services affected to be illegal... But hey if you feel like acting like a child to make your inconsequential life a bit more pleasant than go right ahead. (I will still be smarter than you though.)
 
You must log in or register to reply here.

Find the Right Lawyer for Your Legal Issue!

Fast, Free, and Confidential
Top