Slashdot Mirror

← Back to Stories (view on slashdot.org)

What is Carnivore, and How Does it Work?

Posted by CmdrTaco on from the finally-some-details dept.

MainFrame writes "A friend of a friend of mine, Tom Perrine, was "invited" to testify at the Congressional subcommittee meeting concerning Carnivore. "I had seen Carnivore on a recent trip to Quantico and had the opportunity to discuss the program with some of the developers. This was all before the Earthlink flap. I hope that my (written) testimony was balanced and fair. Those of you who know me, know that I try to balance my firm belief in personal privacy and Constitutional rights with my belief that there *are* times when law enforcement has legitimate needs and a duty to access electronic communications, when properly authorized by a court. " There's a lot of confusion about what carnivore is and what it does, so its nice to see something like this which appears to be much more informed.

31 of 90 comments (clear)

  1. I just don't understand what the big fuss is about by Mark+A.+Rhowe · · Score: 3

    When it is MUCH simpler to encrpyt your eMail than it is to secure your phone communications - why not just HIDE anything you don't want the FBI to see?

    --


    M$: "We're #2!"
  2. The guts of the carnivore:DISCLOSED by Kalrand · · Score: 3

    Funny, all they found was a copy of Windows 95 with a copy of Back Orifice running....

    Kalrand

    -the voice of reason

    Kalrand

    -the voice of reason

  3. How much did they spend? by Mr+Krinkle · · Score: 3

    In college I spent 400$ on an old Mac and DLed a demo copy of etherpeek. I then wrote some filters and had a packet sniffer that could do the exact same things that it sounds like carnivore does. Maybe not with as pretty of an interface but it is still just a packet sniffer nothing more nothing less. For under a grand anyone can do this. I would bet our lovely tax dollars pay 50k or so for each one of these PCs. Gotta love government bloat. AS for privacy from it, like I said anyone including them with a network port and 1k can monitor packets. I prefer to encrypt anything special. Wonders if someone will sniff this since it is from work. Oh well

    --
    I am 31337 or something.
  4. Hrm by american_bongo · · Score: 2

    As this stated in this MSNBC article, Carnivore is just a good idea and system with a bad name.
    br"The need for a system such as Carnivore may be regrettable, but it is a necessary evil. And, just like a police search of your home or a wiretap of your phone, the FBI can use its Carnivore system only with a judge's permission." I dunno, it's a trade-off: personal safety for personal liberties. Everything has it's price, including safety.

    --

    Help me through college please!
    1. Re:Hrm by Anonymous Coward · · Score: 2

      Did you read the article? This was addressed quite specifically. Yes, you need a court order to install Carnivore. However, once the system is in place there are no controls or monitoring capabilities over how it's actually used. Suppose instead of getting a warrant for a specific house, the judge just issued a warrant to search any house in the city and we were just supposed to trust the FBI to search the right one, and only that one?

  5. I have faith in the FBI by Emerson+Willowick · · Score: 4

    Pardon me for going against the tide of slashdot opinions, but I still don't understand what has everyone so riled up. Perhaps I should blame the FBI for choosing a menacing sounding name like "Carnivore," but certainly their intentions are not to destroy or harm. The FBI is a very major government organization paid for by our tax dollars. I may not agree with their moves all the time, but I trust that they are only concerned about the best interest of our country. Why would they go out of their way to harm the very citizens who keep them running?

    Government monitoring is nothing new. The FBI have long had many wiretapping systems set up to catch criminals. The USPS scans threatening mail trying to prevent people from mailing bombs and traps to their enemies. Cameras are installed along many city streets to watch crimes and catch traffic violations. I don't understand why these survelaince methods aren't coming under fire as well... why is the internet so incredibly different?

    Besides, look at the results of these efforts. Many major crimelords and killers have been caught by slipping up in the presence of wiretapping. Mail monitoring has prevented possible serial terrorists from doing something like send mail bombs. And street cameras catch amazing ammounts of crime, from murders to robberies to prostitution to speeding. I expect Carnivore to be extremely helpful in capturing pedophiles, pirates, terrorists, and other criminals.

    Yes, I may be concerned about my own e-mail being read. But I know that I am a law abiding citizen, my messages to people are trivial to the FBI, and that I feel like I need to hide nothing. And even if you *need* privacy, what about encryption? PGP is extremely hard to crack from my knowledge. Use that. I know the Slashdot mentality may contradict it, but it's unrealistic to expect the internet to remain unregulated forever. Regardless, some form of government restricition and monitoring will come eventually, and having read a little about Carnivore, I am satisfied with their efforts.

    --


    Emerson Willowick: Thinker, Writer, Human Being.
    1. Re:I have faith in the FBI by pete-classic · · Score: 2

      I for one have faith in King George. Why would he want to harm his loyal subjects?

      Government, by its very nature, will exploit and trample the rights of its people. Therefore, people must actively and vigorously defend their rights.

      -Peter

    2. Re:I have faith in the FBI by quux26 · · Score: 2
      Perhaps I should blame the FBI for choosing a menacing sounding name like "Carnivore," but certainly their intentions are not to destroy or harm. The FBI is a very major government organization paid for by our tax dollars. I may not agree with their moves all the time, but I trust that they are only concerned about the best interest of our country. Why would they go out of their way to harm the very citizens who keep them running?

      I agree. Governments never break their own laws in the name of overzealous law enforcement. No country would ever, ever do something as silly as turning it's army against the very people that pay for it. We've never had a politician use the FBI to obtain damaging information about their political rivals. Police don't shove toilet plungers up people's asses and they certaintly don't use their influence to quash others in the department from testifying against them if they had.

      Oh, and Santa is compiling his list - you might want to get cracking.

      My .02
      Quux26

      --

      My .02
      Quux26
      www.crashspace.net
    3. Re:I have faith in the FBI by quux26 · · Score: 2
      Actually, PGP hasn't been cracked to anyone's knowledge.

      Somewhere there is a brown-haired individual. He's wearing pressed pants and a tie with a strawberry jelly-doughnut stain on it. He's wishing his badge wasn't digging into his ass so much, and he's laughing his balls off reading this post. =)

      My .02
      Quux26

      --

      My .02
      Quux26
      www.crashspace.net
    4. Re:I have faith in the FBI by w3woody · · Score: 5

      Pardon me for going against the tide of slashdot opinions, but I still don't understand what has everyone so riled up. Perhaps I should blame the FBI for choosing a menacing sounding name like "Carnivore," but certainly their intentions are not to destroy or harm. The FBI is a very major government organization paid for by our tax dollars. I may not agree with their moves all the time, but I trust that they are only concerned about the best interest of our country. Why would they go out of their way to harm the very citizens who keep them running?

      While I have no problems with a law enforcement agency such as the FBI enforcing a legitimately obtained wiretap order in order to catch the bad guys, it's clear that you don't live in Los Angeles.

      To review, the Los Angeles police department is currently being investigated for a number of crimes carried out by bad police officers from the Rampart division. Latest estimates I heard indicated that something on the order of thousands of court cases may be thrown out because a few bad cops planted evidence, engaged in illegal activities (such as selling drugs or murdering suspects) while transfering the blaim to otherwise innocent people who are now sitting in jail. Those thousands of court cases translate to thousands of otherwise innocent citizens who are now sitting in jail due to a few rogue cops.

      At the same time all this started comming out we also learned that the Los Angeles District Attorney's office in conjunction with the LAPD engaged in several hundreds or thousands of illegal wiretap operations, turning over the illegally gathered evidence to the LAPD for followup. Remember: an illegally obtained wiretap may be thrown out of court, but if no-one knows that the wiretap was in place in the first place, the evidence gathered afterwards will not be thrown out later.

      (As an example of how an illegal wiretap could lead to an arrest without any connection to that illegal wiretap, suppose Joe Blow decides to sell cocaine to his friend in the back of the Ralphs supermarket at 9:00 tomorrow. All the LAPD has to do is to have a cop "happen to drive by" the Ralphs. His police report will read "in my routine survalence activities, I happened to catch Mr. Blow selling narcotics", not "I was tipped off by an illegal wiretap.")

      Most of the people working for the LA DA's office and the LAPD are the most top-notch, professional police officers in the country, working under extreme conditions with very little community support. I have very deep respect for these people. And it is their sister organizations in the city of Glendale where I live, who I have interacted with at all levels (from being stopped on the street in the middle of the night while out walking to serving as a witness to a purse snatching) which has made Glendale the safest city of all cities with a population greater than 150,000 in the United States.

      However, it only takes a rogue few to fuck things up totally, as they have in Los Angeles. (By the way, estimates are placing the cost to settle the civil cases caused by this handful of rogue enforcement officers at something like 25% of the total discretionary budget of Los Angeles--which buys a lot of libraries, squad cars, and fire trucks...)

      That's the concern with Carnivore--not that it isn't a powerful law enforcement tool that will be used for lawful purposes. But that a few rogue officers (a'la L.A. Rampart) will abuse the tool in an illegal fashion--and we will have no way to discover their illegal activities. It's clear if you had read the paper refered to in the header that it is Tom Perrine's suggestion to modify how Carnivore is installed and maintained so that at least the ISP knows what the data Carnivore is gathering and if it is in accord to a legally obtained wiretap court order.

      Trust, but verify. Verification creates professionalism, and professionalism creates Glendale (which is spitting distance from the Rampart district), instead of the LA Rampart district.

    5. Re:I have faith in the FBI by Weezul · · Score: 2

      certainly [the FBI] intentions are not to destroy or harm.

      Wrong! The have definitly had intentions to harm people like Martin Luther King when they collected information on him to try and ruin his credibility.

      why is the internet so incredibly different?

      They do not need to do it at the ISP. They can monitor a criminal's data transmissions with an ordinary wiretap request, i.e. tap his phone line to capter modem or DSL. Now, you'd need a way to tap cable modems, but that's not a big deal. I think most people who do not use cable or phone lines for internet do not use an ISP, so Carnivore would not catch them anyway. The point is to force them to wiretap down stream where they can get only the suspects traffic.

      The only time they should really wiretap at the network level is when they think an entire ISP is dedicated to doing something illegal, like proving an ISPc is a money laundering job and not a real ISP by showing that it has no customers.

      Actually, Carnivore may not be a bad thing for privacy in the long run. i think it's a safe bet that someone will crack it and use it for industrial espionage. This will for everyone to encrypt their email. Plus, once someone has exploited one FBI wiretap system then people will be very careful about allowing another one.

      --
      The Christian religion has been and still is the principal enemy of moral progress in the world. -- Bertrand Russell
    6. Re:I have faith in the FBI by blakestah · · Score: 2

      Pardon me for going against the tide of slashdot opinions, but I still don't understand what has everyone so riled up. Perhaps I should blame the FBI for choosing a menacing sounding name like "Carnivore," but certainly their intentions are not to destroy or harm. The FBI is a very major government organization paid for by our tax dollars. I may not agree with their moves all the time, but I trust that they are only concerned about the best interest of our country. Why would they go out of their way to harm the very citizens who keep them running?

      Government is never to be trusted a priori.

      We have a Bill of Rights in the US. This assures us that private communication between its citizens is private unless there is a reasonable grounds for the government to remove that privacy - as decided by a judge.

      Carnivore is implementation of the capaciblity to listen to ALL communications with NO capability of anyone except the FBI to know who is actually being monitored. The government has no right even to install such capabilities.

      In the case of the phone system, the FBI obtains a WARRANT, and then goes to the telephone provider. The provider facilitates the action, and ALSO SERVES TO DOUBLECHECK THE WARRANT IS THE ONLY PRIVATE COMMUNICATION REVEALED TO THE FBI. With Carnivore there is no such check. There is really no way for anyone to know how much or how little sniffing those Carnivore boxes are doing.

      That is the essence of the problem. No one would deny the FBI the right to execute a warrant to sniff email from a particular party. But there is no check on their action as executed through Carnivore. And that is intolerable.

    7. Re:I have faith in the FBI by Mr.+Slippery · · Score: 2
      The FBI is a very major government organization paid for by our tax dollars. I may not agree with their moves all the time, but I trust that they are only concerned about the best interest of our country.
      At first I thought you had to be trolling, but I'll assume you're serious.

      Let's get it straight - federal law enforcement is, by and large, Concentrated Evil. Does the word COINTELPRO mean anything to you? We're talking about an organization that tried to blackmail Martin Luther King with information about his sex life. We're talking about an organization that lied again and again and again about the assults at Waco and Ruby Ridge.

      Very few federal LEO activities have anything to do with protecting the rights of citizens; mostly, they deal with the organized crime spawned by unconstitutional drug laws and with investigating and intimidating leaders of dissident political groups.

      Why would they go out of their way to harm the very citizens who keep them running?
      Power corrupts. Or, maybe as David Brin put it, power attracts the corruptible. We've seen it repeatedly in local police forces in New York and Los Angeles over the past few years.

      The rule these days is simple: never trust anyone with a badge. They can make a lot of trouble for you, they can do very little to help you when you're in trouble (it's rare that anyone has a cop standing by when they're mugged, isn't it?), they have no legal obligation to help you, and there's little evidence that they have any interest in doing so. Spend some time browsing the CopCrimes web site, it'll open your mind.

      (I gave up any last shred of hope in police "protection" last year when my housemate was being stalked by a psycho. The cops' best advice? "Well, you could change your phone number." Despite explicit death threats left of her voice mail, it took weeks for the cops to take action. I think I'm much better off relying on .357 instead of 911 for my personal safety.)

      --
      Tom Swiss | the infamous tms | my blog
      You cannot wash away blood with blood
    8. Re:I have faith in the FBI by Hard_Code · · Score: 2

      "I may not agree with their moves all the time, but I trust that they are only concerned about the best interest of our country. Why would they go out of their way to harm the very citizens who keep them running?"

      HA! Now that is funny. This is the organization that kept files on every major hollywood and artistic figure (lesse, Beatles, Elvis, Marilyn Monroe, etc.), because they were all commies. Just ask them for the Dorothey Kilgallen files, and why she all of a sudden was found dead, supposedly a "suicide", right before she was about to break her story...all her files magically missing.

      Remember, keep a VERY healthy skepticism of these been faceless organizations.

      --

      It's 10 PM. Do you know if you're un-American?
  6. Carnivore will NEVER be "okay" with some of us... by David+E.+Smith · · Score: 2
    There's a lot of people out there (like myself) who, perhaps having watched one too many episodes of "The X-Files," will never buy into Carnivore.

    Open source? Great. How do I know that's the source code the FBI actually used in the live unit? Not possible.

    Technical docs? Spiffy. Same question.

    Only with a warrant? Yeah, like I trust them to stick to that limitation. (Not to mention the fact that warrants can be issued very quietly, at three in the morning, by a "rubber-stamp" judge, and with ridiculously broad criteria.)

    And don't even get me started on the potential of the unit being cracked. Win2K? What were they smoking?

  7. Re:I just don't understand what the big fuss is ab by Anonymous Coward · · Score: 3

    I'll repost this from the previous Carnivore article. This post was way at the bottom, and thus was completely ignored by the moderators. I am its original author. It deals with the fact that even though your message text is encrypted, the FBI can still read the headers, and find out who is contacting who. This issue was brought up by another anonymous coward, to which I replied:

    --
    You've hit the problem right on the nail, my friend. Visit www.crimelink.com for an example of this program you are talking about. Organizational matrices and all that stuff are very key to finding out who is doing what, and what the odds are that what they are doing is illegal.

    For example. You email Joe Blow regarding a post you saw on a forum about gardening. Little did you know that Joe Blow had earlier emailed someone else, whose email he got off a forsale newsgroup advertising hydroponics. Turns out the guy selling the hydroponics was suspected of selling drugs, because his hydro bill was high enough to set off a flag. Now Joe Blow is just a gardener, but he was dealing with a drug dealer, and now YOU are dealing with someone who has delt with a drug dealer. You automatically have a "relationship" with a drug dealer based on an indirect contact. Carnivor can easily be used to setup such relationships, and programs like Crimelink can easily be used to give graphs and charts outlining any possible relationships.This means police and related agencies can establish a Whose-who in their ISPs neighbourhood.

    Now, I don't believe this sort of thing to be happening to the extent that others might believe (IE Echelon voice regognition crazyness and etc) however the potential is very real, and limited capabilities DO EXIST right now. With the onset of such systems as Carnivore, these capabilities grow exponentially towards the situations similiar to that I've outlined above. What I fear the most though is that by next week, Slashdot et al will have forgotten this and moved on to the newest "tiny computer" or Linux IPO news.

    Signed,
    Your Anonymous (?) Coward.

  8. Filtering criteria don't always work by AdamHaun · · Score: 4

    While I agree that the government needs to be able to monitor suspected criminals(with a warrant of course), I'm not sure that arbitrary filtering criteria is the way to go. What would they use? Keyword searches? TCP/IP headers? What's to prevent the FBI from picking up whole usenet threads or the actions of people reading Slashdot? If I post a response to Joe Child Molester on Slashdot will I come under FBI scrutiny just for mentioning his name? What about the people who quote my(and his) message? Admittedly, these are public forums, but it seems like a huge waste of time to have to scan through all of the fluff that will inevitably be produced. And heaven forbid there should be another person on the ISP with the same name.

    Why not just snoop at the (modem/DSLAM/etc) server? If packet sniffing were more like a literal wiretap, I would be a lot more comfortable and I'm sure the FBI would be able to get a lot more work done. It shouldn't be that hard to get only one user's packets.

    --
    Visit the
    1. Re:Filtering criteria don't always work by mindstrm · · Score: 2

      Umm.
      The point is, they get an order to get JOHN SMITH's email. They then configure carnivore and set it up in such a way that they are reasonably confident that THAT IS WHO'S EMAIL THEY ARE RECORDING, and NOBODY ELSES.

      Carnivore is not, and never was, intended to be a 'bad guy sniffer outter' for the internet.. all it is is a bloody piece of software/workstation taht is used when a court gets an order to snoop on email.

      How is this not like a 'traditional' wiretap? It's a network man, you *have* to packet sniff. YOu sniff using the easiest method available.. a wiretap traditionally tapped the users phone line because that was easiest. If the dude says that Mr. Joe's email at location X is to be sniffed, then they bring in carnivore...

      They aren't talking about deploying it by default at every ISP in America, are they?

  9. Cringely quotes by Money__ · · Score: 2
    As the latest Cringley article points out, Carnivore is over kill.
    I quote:

    "And the truly amazing part of this story is that there is nothing illegal about the data gathering, itself. Since the kiosk doesn't belong to you or me, we are bound by terms of usage that allow the kiosk provider to do pretty much whatever they want with the bits we run through their system. By simply using their machine, we give up our privacy without even knowing it."

    It sounds like we need some privacy laws to fill the lupole that Carnivore seeks to exploit. I, for one, favor the british aproach to seeking the informed consent of the people providing the data before collecting it.

  10. carnivore by VAXGeek · · Score: 5

    I like privacy as much as the next guy, so here's my two cents. I know that sometimes the govt. has to spy on people, but WHY DO IT AT THE ISP LEVEL WHERE YOU CAN SPY ON EVERYONE? I don't need my mail being 'accidentally' sniffed. If they want to watch criminals, put wiretaps AT the criminal's connection at his house NOT ON EVERYONE ELSE'S CONNECTION. 2 words: duh.
    ------------
    a funny comment: 1 karma
    an insightful comment: 1 karma
    a good old-fashioned flame: priceless

    --
    this sig limit is too small to put anything good h
  11. Filtering criteria may be changed by SEWilco · · Score: 2
    But the filter is aimed at a specific user and keywords. The judge approves such things, as telephone wiretaps allow tapping specific phones and may have restrictions on calls to which phone numbers may be recorded.

    However, notice that a Carnivore can be altered through its modem. A good guy, a bad good guy, or an intruder can alter the configuration remotely. I hope the security on that modem is as good as it should be.

  12. Am I in the right Subcommittee? by Duxup · · Score: 2

    Chairman:
    Yes, Mr. Perrine we appreciate your views on this subject. However, you have not answered my original question.
    Do you know the location of agent Mulder?!

  13. Encryption and E-Mail by Th3+D0t · · Score: 4

    I think sendmail should be updated to by default use encryption/SSL to connect to other servers. Sure, most other servers will refuse the SSL connection, and then sendmail could fall back to unencrypted transport. But, if it used encryption by default, as such a popular mail package, certainly more and more e-mails would begin to be transmitted with encryption. Other mail server vendors would likely follow the lead after it became commonplace.
    ---

    --
    I am the dot in slashdot.org
    1. Re:Encryption and E-Mail by wannabe · · Score: 2

      That would be great if every user had their own sendmail server at their home doing their email.
      MOre than likely as this will affect "small ISPs" you will see non-encrypted network traffic upto the ISPs mail server. If the FBI sniffs before the mail server, whether sendmail, qmail, postfix whatever is encrypted becomes a nonissue.
      The only way to stop this is for each and every ISP to supply encryption to their clients so from origination to destination everything is encrypted. But then again, do we really think that in this day and age, consumer level encryption algorithims are going to stand for more than a couple nanoseconds against some of these behemoth supercomputers the government uses for code breaking. If big brother wants to see what you got, he will pursue it with all the taxpayer money and resources he can find.
      Let's not forget that FBI agents are recruited from among Law and Accounting students. Do they get much more anoretentive?

      --
      "Draw them in with the prospect of gain, take them by confusion." Sun Tzu
  14. He hit the nail on the head. by Ungrounded+Lightning · · Score: 2

    Additionally, with the source available it could be:
    - ported to a more secure operating system.
    - examined for flaws.
    - easily patched if any security bugs are detected.
    - fixed if it has a bug that interferes with an ISP's systems.

    And with the configuration done by the ISP the ISP can look out for its subscribers' interests by refusing to tap anyone without the presentation of the appropriate court order. The FBI has a poor track record in that regard.

    ISP configuration of software on an ISP-constructed platform (in an ISP-supplied locked cage locked cage) using ISP-tweaked software has no more problems for evidence custody tracking than the ISP-provided signals to an FBI-operated box. (Especially one that is remotely accessable and reconfigurable.) The ISP might have to provide an expert witness to describe their tweaks. But the evidentiary issues are mainly that the evidence isn't forged or altered, not that the sampling filter is incorrect.

    --
    Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
  15. Re:What about Hoover? Watergate? McCarthey? by Money__ · · Score: 2
    From Tom Perrines writen testimony to the subcommittee on the constitution:

    "The FBI will always have to live with the legacy of the Hoover era, just as the Congress will have to constantly compare itself with the McCarthy hearings, and the Executive Branch must always remember Watergate. These and other incidents from our country's history have contributed to an unfortunate general distrust of our public institutions when they concern themselves with the rights of our citizens."

    All it takes is one power hungry nutball to go after anyone they consider "devient" and you're being tracked by your "warm and friendly" FBI for being a member of the NRA, watching Rosie, or enjoying a cuban cigar.

    History is prolog.

  16. Count your blessings by botsie · · Score: 2

    In India, where I live - a relatively free, democratic country all ISPs are expected to provide (at their expense) monitoring equipment for the government. The same goes for Cellular Telephone providers. There has not been a single peep of protest here.

    In most countries, including the UK and the rest of the EU, there is not as much concern for individual freedom as there is in the US.In Singapore, for example, when Internet access was first provided, it was through proxy servers so that the government could censor the 'net. This is still true of countries like Saudi Arabia.

    I am quite sure that the FBI will never be allowed to attempt the kind of monitoring that is probably going on right now around the world.

    If you live in the United States -- count your blessings!

    --
    "Rowe's Rule: The odds are five to six that the light at the end of the tunnel is the headlight of an oncoming train."
  17. can we afford to have faith in the FBI? by nels_tomlinson · · Score: 3
    I think that we could say everything that you have said about the FBI about the KGB, and with equal plausibility. The KGB is an arm of a recognized government, why would the harm the very serfs^H^H^H^H^Hcitizens who support them?


    Government monitoring is nothing new. Hitler's Gestapo did it, Pol Pot's gangs did it, and Mao's whatever, and Stalin's GRU, and Nixon's burglers, and Clinton's FBI, and each of these organizations believed that they were doing the right thing. Sometimes, all of them were doing things we'd approve of. Usually they were not.


    Your messages may well seem trivial to the FBI. Every government uses trivial people to make examples of, to keep the rest in line. You're as good as any to persecute for some trivial act which our government has chosen to demonize. Do you smoke pot? Do you tell people we should leave pot smokers alone, even though they smell bad? Have you ever carried cash across town pay for a used cars? Harmless people who represented no threat to society have been persecuted for these activities, recently, in the US.


    Law enforcement organizations indoctrinate their (usually stupid) employees with the mindset that there are three sorts of people: cops, suspects and convicts. If they haven't found a way to frame you yet, they should try harder. The US Fish and Wildlife cops are usually NOT considered to be corrupt or politicised. A friend of mine was cook on one of their enforcement boats in the gulf of Alaska. He was shocked to find that the two topics of conversation (other than cheating on their wives) were "how we framed so-and-so" and "how we'll plant evidence on this next guy we want to get". He quit after one trip; the cops were too disgusting to live around, morally at least.

    One last point: did mail monitoring really stop the unibomber? I thought it was the fact that some newspaper published one of his diatribes, which was recognized by a brother.

    In conclusion, I believe that law enforcement is vitally important. Allowing them to work in secret only helps them to become worse than the people they are supposed to protect us from: worse in the same way that the mafia is worse than a bunch of disorganized crooks. Corrupt government is the worst possible threat to law abiding citizens, and secrecy breeds corruption, just as does power.

    Nels

    --
    See what I've been reading.
  18. names? don't forget Omnivore. by griffjon · · Score: 2

    No, it's a great name doing exactly what it should be doing. Carnivore, when operating correctly, records only emails relevant to a court ordered case. It was used (not counting cases involving large ISPs which provide the logging themselves, *cough*AOL*Cough*) in somewhere between 25 and 100 cases in just 1999.

    Omnivore, an 'earlier version' (which I'm /sure/ has gotten totally replaced!) sucked in 6 gigs of data an hour. For comparison, James Joyce's Ulysses is 1.6megs. so, 3840 copies of Ulysses an hour.

    ( http://www.msnbc.com/news/431355.asp?0nm=B16M&cp1= 1 ; Calculation (6gig*(1024meg/gig)) * (1 book/1.6meg)) )

    Hear anything about Omnivore recently?

    Right. So, the Carnivore name is perfect.

    The real question is when are they gonna product an OpenBSD/Trusted Extensions or a Linux version? I mean, it's running on Windows. I don't want to trust the FBI with the power to monitor all my email, much less every skript kiddie in the world.

    --
    Returned Peace Corps IT Volunteer
  19. Re:They could have picked a better name... by LukeyBoy · · Score: 5

    Or they could have named it Herbivore, saying it gets to the root of the problem.

  20. Why You Should Use Encryption by goingware · · Score: 2
    Please read my web page on Why You Should Use Encryption.

    Tip: the Digital Telephony Act has been around for years mandating built-in wiretaps in phone switches, but Speak Freely is free, includes source, and provides your choice of strong encryption methods.

    Tilting at Windmills for a Better Tomorrow
    --
    -- Could you use my software consulting serv