Back Orifice 2000 (often shortened to BO2k) is a computer program designed for remote system administration. It enables a user to control a computer running the Microsoft Windows operating system from a remote location. The name is a pun on Microsoft BackOffice Server software.
BO2k debuted on July 10, 1999 at DEF CON 7 computer security convention in Las Vegas, Nevada. It was originally written by Dildog, a member of US hacker group cDc. It was a successor to the cDc's Back Orifice remote administration tool, released the previous year. As of 2007, BO2k is being actively developed.
Whereas the original Back Orifice was limited to the Windows 95 and Windows 98 operating systems, BO2k also supports Windows NT, Windows 2000 and Windows XP. Some BO2k client functionality has also been implemented for Linux-systems. In addition, BO2k was released as free software, which allows one to port it to other operating systems.
There are several reasons for this, including: the association with cDc; the tone of the initial product launch at Def Con '99 (including that the first distribution of BO2K by cDc was infected by the CIH virus); the existence of tools (such as "Silk rope) designed to add BO2K dropper capability to self-propagating malware; and the fact that it has actually widely been used for malicious purposes. The most common criticism is that BO2K installs and operates silently, without warning a logged-on user that remote administration or surveillance is taking place. According to the official bo2k documentation, the person running the bo2k server is not supposed to know that it is running on his computer.
BO2K developers counter these concerns in their Note on Product Legitimacy and Security, pointing out—among other things—that some remote administration tools widely recognized as legitimate, also have options for silent installation and operation.