localzuk (17th January 2010)
I think this is crazy, i've followed this for ages now (the story, not this thread).
I have watched how DarkMarket fraudsters have got away with next to no punishment, probably with e-gold & liberty reserve accounts bursting with laundered funds/sale of illegal goods.
Although Gary had compromised the systems did he actually do anything wrong other than point out a clear inability to protect government systems? If it was the case things were deleted they'd of course have a robust data backup procedure, if it was the case he could have read things they could have had permissions set!
As I read it... he literally just dialled in, and went to a server UNC and went to the hidden share. Whether or not it was a trap... debatable, I'd imagine it was more a neglectful IT guy...
Although he was acting as a blackhat, based on what's said... he was just being a bit annoying rather than malicious. Aspergers or not, this has gone to far - the punishment doesn't fit the crime, IMO at least.
Your emollient tone has gotten me purring like a kitten. I must leave now. This environment is corrosive to the Iconoclast.
On second thoughts, one last growl before bedtime:
"In fact just 12 days after the attacks that left more than 3000 Americans dead, McKinnon, pursuing his belief that the Yanks had hidden extra-terrestrial beings in the computers at a Naval Munitions Yard, returned just to double check in the corners"
Would you grant me, "Annoying and Malicious"?
"the Indictment charges that on Sept. 23, 2001, McKinnon again broke into the NWS (Naval Weapons Station) Earle computer network by accessing the previously-installed RemotelyAnywhere software and using the stolen passwords."
"During this intrusion into the network, McKinnon allegedly caused approximately $290,431 in damage to NWS Earle by deleting computer files needed to power up some of the computers on the network, deleting computer logs that documented his intrusion into the network, and compromising the security of the network "
Last edited by Socrates; 17th January 2010 at 01:28 AM. Reason: Edited to add extra Growl
Why must you resort to this sort of childish behaviour. Going on about his 'mummy', making out I know nothing because I point out what the actual law states.ie "With the likely three year sentence" is referenced here with the words of the first prosecutor.
(Also linked to the Wired article that references the Federal sentencing guidelines).Code:http://www.computerworld.com/s/article/9111981/Former_prosecutor_UFO_hack_looked_like_terrorist_attack?taxonomyId=82&pageNumber=2
But of course if you and Google are the greater authority...
Just because someone says he may get 3-5 years does not remove the possibility of a lot longer. The law is clear on it, and the judge is perfectly capable of presenting a sentence up to the 70 years possible.
A week of down time for 300 computers. I've had that happen at our school. Ok, it was 200 computers, but those machines were back up and running within 7 days. Backups were available for each type, and they were reimaged with ease, by me alone. ok, the military may have more complex needs but the fact remains, they should have had backups and better security.And the estimates of damage are from the Indictment... For example at the Weapons Station, a week of downtime for 300 computers, and restricted availability of services for a further 3 weeks was costed by the Yanks at $290,431.
Why would they need a replacement? Get the backups out...This equals $34.58 per computer, per day. Tell me, if your school network got hacked by a stoned, unemployed McKinnon - would you be able to get a better deal for a replacement?
The discussion of repatriation has only been brought up as a form of bribery - 'come to the USA admit guilt and you'll get a minimal sentence, which you'll serve most of in the UK. If you don't we'll throw the book at you, and then the bookcase, followed by the library, brick by brick'.Being so au fait with Google I'll leave you to ferret out the details of the discussions about facilitating his speedy repatriation that have already taken place...
My guess would be that he thought that leaving the messages would leave some form of 'stop withholding information' message to the US govt. But the only person who could answer that is McKinnon.
The 2003 one way extradition law requires 'suspicion' of terrorism (probable cause if you are a US citizen). Unless you you follow the American definition: 'everything is terrorism' and ignore the court documents claims of what he is actually charged with: several counts of computer fraud.
The crime was a breach of the computer misuse act in the UK. He has not been charged by the CPS. Why everyone (including our government) is pandering to calls for erosion of national soverienty is beyond me (well its not, but it 'll save a bit rant).
Lucky it was him that walked through that open door, because someone with more malicious intent could have done some real damage. The US is trying to blow this out of proportion because once again they got caught with their pants down.... once again. Gary stated stated many documented facts in his 'rants', facts that dont like to be heard because they cause embaressment to the system and go against the PR, read the facts people.
Disgusting subtlety in 'the new republic' republishing the 'hang gary' picture. GTF .
Last edited by Theblacksheep; 17th January 2010 at 11:24 AM.
‘What I did wasn't very clever. There were slightly lower-than-expected lines of defence. I searched for blank passwords, and wrote a tiny Perl script that tied together other people's programs that search for blank passwords, so you could scan 65,000 machines in just over eight minutes. There was a permanent tenancy of foreign hackers. You could run a command when you were on the machine that showed connections from all over the world, check the IP address to see if it was another military base or whatever, and it wasn't.’Not sure how that ties in with your theory.“US foreign policy is akin to government-sponsored terrorism these days? It was not a mistake that there was a huge security stand-down on September 11 last year . . . I am SOLO. I will continue to disrupt at the highest levels.”
Anyway, what about the convenient way that his "Asperger's" only manifested after his alleged crimes? I found the quote from his brief:
My italics to highlight the overly(?) careful way that she describes her client's condition.Why aren't they stopping the extradition of a man who is clearly vulnerable and who on the accepted evidence suffers from Asperger's?
I will henceforth use [irony] tags.
Why must I resport to childish behaviour ?- well, what's sauce for McKinnon is Gravy to Socrates.
I quite agree - but if you leave your front door unlocked, this is unlikely to be allowed as mitigation for an offence of burglary.They should have had backups and better security
Last edited by Socrates; 17th January 2010 at 11:37 AM. Reason: Added hyperlink sentence and "?"
bossman (18th January 2010)
What's GTF?Disgusting subtlety in 'the new republic' republishing the 'hang gary' picture. GTF .
And did you miss me supporting Liberty's campaign to save McKinnon, with this picture of an "Extradition Watch" plane inserted Umm... You know where?
#NOT WORK SAFE# THE NEW REPUBLIC: Autism 2010 - A Look Forward #NOT WORK SAFE#
He deserves what's coming to him.
I can't understand your eAttitude, socrates - alot of IT guys agree that this has gone to far, of course you're entitled to an opinion... but respect ours too.
Simply put, Gary got into the US systems and made them look inept. If Gary could do it how many trained terrorists could have done this, do they even know if other people got access?
What ever the US say... it has to be taken with a pinch of salt, what evidence do we have it is true? It is more likely to be a campaign for retribution to hide the fact they were slack on setting up machines & made to look silly, the US have quite clearly tried to make an example... when truth is they don't know if anyone else had access during this time - they were slack.
Any damage he could have done remotely shouldn't have been possible, think of it in terms of a teacher on VPN... any damage they do is my fault as the network manager, they should not have access to cause any problems. Any damage done should have been repairable simply from back-ups.
If he had installed remote software, how on earth didn't they notice it! Most keep an icon in the system tray, if not software should be used to monitor apps installed/removed on these clearly very important machines. If it was a trojan they would have surely found with AV.
He looked for unset admin accs, how is this stealing passwords, did he find a passwords.txt file on the root of the machines he got on?
Let's face it the US messed up, they did not give the necessary care into setting up systems which potentially held sensitive information & they want a scape goat, they want to pass the buck and blame Gary for the clear inability to setup the network securely.
In terms of cost... to deny remote access is quite simple, netstat -b would have shown the connections and app running, netstat -n would have shown IP and ports.
How about people running botnets and have government laptops infected, are they to get the same treatment? I doubt it.
The point is... does the crime warrant the punishment? In my opinion no it doesn't - people do far worse on-line and get away with tiny sentences (if any), if we think about it in-terms of cost, google darkmarket fraudsters... look at what they had done and how much it cost then review the sentences.
Last edited by dwhyte85; 17th January 2010 at 12:39 PM.
witch (17th January 2010)
If someone attempts to hack the gov from your school network. The school network was the place where the crime was commited. The UK Crown Prosecution Service have not charged him.
The US are trying to do him on FRAUD. Considering the financial turmoil over the last few years they should look a danm sight closer to home for some decent fraud charges. This is pathetic.... the people securing those computers should be ashamed of themselves, knowing the US, they've probably got a promotion.
Is the US going to extradite the chinese government for hacking google? LOL.
Last edited by Theblacksheep; 17th January 2010 at 01:19 PM.
My position is informed by the fact that I have Asperger's Syndrome [AS] too - and I see AS being used as an excuse and a justification for avoiding justice and that makes me angry.
Spammers and Botnet herders deserve equal attention from the Yanks. But unfortunately the Yanks have Gary's address, not theirs - I've no doubt if they did, they'd be getting a ride to the US too.
What do you think the penalty should be for say, just the Weapons Station 'incident'?
I reckon there's a high probability that he was just one of a long line of "visitors" and he got tagged for it because he was the "lowest hanging fruit", so to speak.Lucky it was him that walked through that open door,
I note that trespassing is of course a civil offence i.e. no prison.if you leave your garden gate open, someone who comes on to your property is not a trespasser.
There are currently 1 users browsing this thread. (0 members and 1 guests)