undefined | Dark Hacker News

3 points by YLYvYkHeB2NRNT 2 years ago

superkuh 2 years ago |

Legally, yes. In practice, no. But if you ever do so and happen to piss off someone with a lot of money or power they can go buy a district attorney in some friendly region and then have them indict your for violation of the computer fraud and abuse act. It worked to put Weev in jail for 3 years for using wget to access a public website.

With the CFAA in the USA it's not so much, "What is illegal and am I breaking the law?" because the answer is always, yes, you're breaking the law. Everyone violates the CFAA's many provisions multiple times per week.

The real question is: have you rocked the boat enough to get slapped down for it?

bradley13 2 years ago |

If someone puts material on the internet, available with a simple GET command, then they have made it publicly available.

There are lots of reasons why JavaScript might not be executed, ranging from accessible browsers to privacy concerns.

nness 2 years ago |

I suppose there's two parts to this question — morally and legally.

Morally, yes — You know the intent is not to share that content and you are deliberately circumventing the mechanisms to prevent access. I think about corner shops which have produce outside. It's obviously there for sale, but you can easily walk past and grab an apple without any intervention. The fact that they haven't instituted a complicated security system doesn't mean you are morally free from your actions. (I think it is fair to equate physical property with intellectual property in this case)

Legally, I think "no" — at least, I don't think it's been tested in court — but I can also draw a line to a "yes." If a court were to hold that a site's terms and conditions prevent you from accessing paywalled content, and you do so anyway, the argument could be made that you have intentionally accessed information without proper authorisation. But, its intellectual property, as long as you don't store it or re-transmit it, it would be hard to argue you saw it in the first place. Since it's already in the payload, it does raise an interesting question as to whether it was "accidentally/unintentionally disclosed." If someone sends you IP by accident which don't own, you don't suddenly get rights to it...

Of course this is absurd, but just because its easy to circumvent doesn't mean you didn't circumvent it. The CFAA can be interpreted quite broadly...

bigyikes 2 years ago |

Suppose you use a browser that doesn't even contain a JS engine, like Lynx[1]. You couldn't run the JS even if you wanted to. I don't see how that could be stealing.

The site developers should add a better paywall if this is a serious concern

[1]: https://lynx.browser.org

spirit557 2 years ago |

No, but it doesn't work that well anymore or at all. We all know the easy, common solution to paywalls here....and where if I actually subscribed to all the required news or journalism sites, Id probably be spending a thousand a month or more.

gorenb 2 years ago |

No. Blocking JavaScript to access paywalled content is not stealing.

CrzyLngPwd 2 years ago |

A Betteridge would say; No.