Battle Creek, Michigan Settles Dispute with ORBZ

← Back to Stories (view on slashdot.org)

Battle Creek, Michigan Settles Dispute with ORBZ

Posted by timothy on Thursday March 21, 2002 @05:46PM from the retractions dept.

Peter Sachs, Esq. writes: "According to a press release that now appears on its official website, the City of Battle Creek, Michigan has 'settled"' its dispute with ORBZ.ORG. The City concluded that ORBZ.ORG had no criminal intent to cause the City harm by testing the 'open relay' status its server. In fact, the Assistant to the City Manager said, '...we recognize that [ORBZ.ORG] has done us a service. We are going to be taking a close look at our policies regarding Lotus security updates and how we can avoid the issue in general'"

13 of 259 comments (clear)

Absolutely amazing. by nurightshu · 2002-03-21 17:56 · Score: 3, Funny

A government entity thinking clearly and levelly, and actually thanking geeks for trying to help them? Astounding.

Okay, everyone, it's time to pack up and go. Would the last one out of the server room please hit the BRS?

--
They that would sacrifice their .sig space for that cliched Franklin quote deserve neither.
1. Re:Absolutely amazing. by darkonc · 2002-03-22 06:54 · Score: 3, Funny
  then one day, you find a house where the door is unlocked, and the house is armed.
  Er, um.. that should have been "and the house (door) is alarmed. This actually happened to me once, when I was trying to find my way out of a place where I was doing some late night admin work.. I tried a door that turned out to be an entrance to a neighbor's space. The door was unlocked, but had a chain on it and an alarm (which was set up).
  It was kinda half-amusing the conversation I had with the police when they arrived...
  Are you authorized to be in there?
  
  yes.
  
  then can you come out and talk to us for a while?
  
  no.
  
  why not?
  
  I don't have a key.
  
  are you sure you're authorized to be there?
  
  Yes. I've called the owner, he's on his way. . . . .
  --
  Sometimes boldness is in fashion. Sometimes only the brave will be bold.
Battle Creek and Kellogg's by asackett · 2002-03-21 17:57 · Score: 4, Funny

My personal boycott of Kellogg's products continues at least until they repay Ian for his legal expenses incurred as a result of the need to defend against the city's stupidity.

I understand that Kellogg's has nothing to do with the stupidity of the city, but they're the biggest taxpayer/employer in Battle Creek, and that's close enough for me. As an American, collateral damage means nothing to me!

--
Warning: This signature may offend some viewers.
1. Re:Battle Creek and Kellogg's by hymie3 · 2002-03-21 19:45 · Score: 3, Funny
  
  Wait, is this a joke? What legal expense? Dude took down his site almost immediately.
  
  He rolled over like a puppy getting patted on the belly precisely *because* he wanted to avoid legal expenses.
  
  Of course, kelloggs does make Smacks. Maybe that's what I'm smelling.
Bad day in IT by Nethead · 2002-03-21 17:58 · Score: 3, Funny

First the boss makes a stink about ORBZ an then they get slashdotted. Glad I don't work there.

--
-- I have a private email server in my basement.
Also by NiftyNews · 2002-03-21 18:10 · Score: 5, Funny

"The City concluded that ORBZ.ORG had no criminal intent to cause the City harm by testing the 'open relay' status its server.

The City also announced that it really like to be capitalized when referred to. It also notes that the word "of" is still banned when referring to stories about The City.

--
------
Today's Top Deals
Wait until they get /. 'ed... by buff_pilot · 2002-03-21 18:52 · Score: 3, Funny

for a better link...

The email test triggered a weakness in the version of Lotus Domino software used by the City and caused a major slowdown of the City's email network for about a day on February 25, 2002.

The ./test triggered a weakness in the version of Lotus Domino software used by the City and caused a major slowdown of the City's network for about a day on March 22, 2002.

-jim
Wrong analogy? by deepestblue · 2002-03-21 19:30 · Score: 2, Funny

"But, if I can draw the analogy that just because everyone should wear a computerized bulletproof vest doesn't mean that shooting people to find out who isn't wearing one is the best answer. ..."
Oh, no, you can't. People who don't wear bulletproof vests (unlike badly configured mail-servers) harm only themselves, not others.
Re:Shooting people to tests for vests by Skapare · 2002-03-21 19:32 · Score: 2, Funny

Is that something you do with your boyfriend?

--
now we need to go OSS in diesel cars
Latest News Story - Battle Creek Enquirer by Lokinator · 2002-03-21 20:13 · Score: 2, Funny

http://www.battlecreekenquirer.com/news/stories/20 020322/localnews/1871053.html

Oh, my. These folks need Tech Help in just the worst way - won't someone write them with a set of correct definitions?

--
"It is morally wrong to initiate the aggressive use of force.." Of course, defensive force is fair game...
Score one for common sense, for a change. by phillymjs · 2002-03-22 00:57 · Score: 4, Funny

Must be something in the air in Battle Creek. I don't know what Kellogg's is belching out of their smokestacks these days, but I wish the RIAA and MPAA assholes would get a whiff of it.

~Philly
Nope, you missed it by hawk · 2002-03-22 01:40 · Score: 4, Funny

"The City" is known to mean San Francisco by all educated persons. The *real* question is why SF is involved in this. Was it infiltrating Battle Creek? Having dealt with California agencies while practicing law in Nevada, and being aware of their imperial pretensions, I want to know (and so should the residents of Battle Creek!).

:)

hawk, watching for californians under his bed . . .
What an embarrassment! by dcavanaugh · 2002-03-22 02:27 · Score: 4, Funny
First, the writer [of the press release] describes spam as a "computer prank" instead of unsolicited commercial e-mail. The comment proves they don't know what spam is! Then we have the unmentioned IT person who somehow traced back the activity to ORBZ without realizing their Lotus server was a sitting duck for a DOS attack (intentional or not).

Let me guess (based on pure speculation):
- Lotus sever set up by the "consultant du jour", who handles support on a pay-as-you-go basis
- City calls for support, consultant quickly scans the log & points finger to ORBZ
- City mgmt. goes bezerk; legal dept. goes to DEFCON 1; unleashes nastygrams vs. ORBZ
- ORBZ explains cluelessness involved in having unpatched Lotus server; makes consultant look like idiot
- City finds new consultant; recommends upgrade to Linux+Sendmail+Amavis+Sophos
There are always exceptions, but the average municipality is not stealing the top minds from NASA to run their IT operations. Every once in a while, I peruse IT job listings. When I see a huge list of unrelated requirements combined with a pitiful salary, it's usually (a) municipal gov't, (b) school systems (same thing), or (c) retail. Before I get flamed by an army of municipal IT workers, I will clarify this sweeping generality: Municipalities hire too few people, they overcommit their resources, and the salaries encourage turnover. Surely, any reasonably qualified sysadmin (certified or not) would have detected & fixed the Lotus vulnerability (even if after-the-fact). The press release tells a story that makes it look like they have no dedicated IT staff whatsoever. I could be wrong on this, but if they spent less on lawyers and more on IT, this problem would have been prevented or quickly resolved.

According to Netcraft, the website at ci.battle-creek.mi.us is running "Microsoft-IIS/5.0 on Windows 2000." The prosecution rests. This Battle Creek operation must have been a real bundle of joy when they discovered the "Code Red" worm.