Berkeley Lab Computer Protection Program: Policy Guidelines: Use of "Strike-Back" Tools

Emergencies | Site Index | Contact Us


	CPP Home

	Contacts

	Policy Guidelines

	Minimum Security Requirements

	Employee Guidelines

	Computer Protection Agreement

	RPM

	DOE Notice to Users

	Scan Information

	System Procedures

	Tools & Services

	ALERTS

	Recent CPP Actions

	News & Articles

	CPP Intranet

POLICY GUIDELINES

Use of "Strike-Back" Tools

Warning: Do Not Use the Mugu Marauder

A new "strike back" tool, similar to the Lycos screensaver that was released several months ago, is now available on the Internet. Called the "Mugu Marauder," this tool is designed to send a massive amount of network traffic to bank "phishing" sites, used to trick users into revealing credit card and account information. The Lab's Computer Protection Program does not use strike-back tactics; use of this tool on Lab machines, or by machines not owned by the Lab but connected to Lab networks is therefore not allowed.

Lycos has also released a free screensaver designed to fight spam by flooding web sites referenced in spam messages with connections. This screensaver is a "strike-back" tool that in effect launches an attack against these sites. Although fighting spam in this manner might superficially seem desirable, the way in which Lycos' screensaver does this is not. The Lab's Computer Protection Program does not use strike-back tactics; use of this screensaver on Lab machines or by machines not owned by the Lab but connected to Lab networks is thus not allowed.