Scotland...
Right, so if I'm in the Isle of Mann and I launch a DoS attack via a machine in England against a machine in Scotland using my ISP in Guernsey via a mobile phone connection to a network in Ireland.
Can I be arrested?
Denial of service attacks will not be criminalised in England and Wales for another six months despite measures lying unused in existing laws since 2006. Changes to the Computer Misuse Act will not be activated until October. The Home Office confirmed to OUT-LAW.COM that the long-awaited changes will not happen now as planned …
"...make it an offence to distribute tools which are "likely" to be used for hacking computer networks."
Right... and who gets to decide which tools are most likely to be used to 'hack' computer networks? Probably those who haven't the slightest clue how a computer works.
Anyone else already imagining how bad it's gonna get?
"ssh... that can be used to hack. that's banned..."
I know I'm probably preaching to the choir, but this is pointless... How many tools do you use everyday for administrating networks, testing servers, etc. that will get banned under this pathetic attempt to 'protect' us.
Sometimes, I wish the people who write these stupid additions to things actually knew what they were talking about... however, it would probably make it worse.
Mine's the black one with the external HDD, full of network 'testing' tools, in the pocket...
"This part of the law has been controversial because experts have warned that it could criminalise some research into hacking.
Anyone found guilty of launching a denial of service attack could be imprisoned for up to ten years."
And what of a denial of service attack from a Government department who would refuse/decline/ignore a request for information to allow for a determination of their requirements, such as was shared here on El Reg, [although I'll grant you, somewhat obliquely] I refer to this post ..... NIRobotIQs wants Matrix style virtual world for Perfumed Gardens of Eden .... Posted Wednesday 7th May 2008 16:25 GMT .... http://theregister.co.uk/2008/05/07/darpa_cyber_range_rfp/comments
And it is an affliction which appears to be endemic/systemic, for it is practised across many such ....... well, one would have to say old boy networks/closed shops which make a mockery of there being any semblance of due democratic process and engagement with the electorate, although that is hardly a surprise to many.
What is surprising, is the charade and cynical pretense that such honourable systems are employed and exist.
"...make it an offence to distribute tools which are "likely" to be used for hacking computer networks."
This is patently ridiculous.. so just do it :: http://www.writetothem.com
Offending wording is here: http://www.publications.parliament.uk/pa/cm200506/cmbills/119/06119.27-33.html#j383A
Not for having hacking tools, maximum sentence on that is 12 months, or a fine.
In any case the law says you have to intend to gain unauthorised access with it before you're guilty. Not as worrying as you may think, I'd be more worried if I was making programs specifically designed to break security though.
You're right that the law says you have to intend to gain unauthorized access. So be awfully darn careful--don't do any little knocks on the door, any scanning to see if the site's got security. Even if you find vulnerabilities and responsibly disclose them to the site owner, you're still technically breaking the law and are at the mercy of the site owner. Check out more about the Daniel Cuthbert case from 2005 and you'll still be a bit worried about the CMA.