Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Actual language:

  Content containing malicious computer code,
  such as computer viruses, computer worms,
  rootkits, back doors, adware, or spyware.
  This includes content submitted for
  research purposes unless agreed to in
  advance by npm. Tools designed and documented
  explicitly to assist in security research are
  acceptable, but proof-of-concept exploits are
  not.
I'm not sure this form of advertising qualifies as the kind of adware which is associated with rootkits and spyware.


Definition of adware: "software that automatically displays or downloads advertising material (often unwanted) when a user is online."

Sounds like adware to me. The messages are certainly unwanted. The messages are automatically displayed be default. It meets all the criteria.


It doesn't say that it has to be adware that is associated with rootkits and spyware. I can say that I have contacted abuse@npmjs.com to get a confirmation on whether or not this package is within their guidelines. Because it's highly possible that it's any kind of adware and they don't want to turn NPM into an ad delivery network, since today it might be Linode, but tomorrow it might be something really shady.


But surely this software must be considered adware? And the language specifically notes that they consider adware malicious not that adware is only bad if also containing rookeries or spyware.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: