Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cryptome Log Subpoenaed

Posted by chrisd on from the john-has-my-tie dept.

PaulBu writes "Stopped by on Cryptome tonight... It seems that their logs have been subpoenaed by Massachusetts Assistant Attorney General Chief, Corruption, Fruad (sic) & Computer Crime Division. Cryptome's answer was that "logs of Cryptome are deleted daily, or more often during heavy traffic, to protect the privacy of visitors to the site." (Good job!) See here"

20 of 492 comments (clear)

  1. Re:"or more often during heavy traffic" by grub · · Score: 4, Informative


    Most software can do that, if not just send the logs to /dev/null

    --
    Trolling is a art,
  2. Mirror by Anonymous Coward · · Score: 5, Informative

    This will be interesting...

    http://130.236.229.26/cryptome-log.htm

  3. Previous slashdot story by Anonymous Coward · · Score: 4, Informative

    You mean like this?

  4. Google Cache by Anonymous Coward · · Score: 1, Informative

    http://216.239.57.100/search?q=cache:NW6ZES17aTcC: cryptome.org/sec-con.htm+cryptome.org+sec-con.htm& hl=en&ie=UTF-8

  5. Re:Good move, hope they don't get in trouble by Universal+Nerd · · Score: 3, Informative

    From the site:

    Documents are removed from this site only by order served directly by a US court having jurisdiction. No court order has ever been served; any order will be published here or elsewhere if gagged by order. Bluffs will be published if comical but otherwise ignored.

    It'll be intresting to see what happens.

    --
    Ash nazg durbatuluk, ash nazg gimbatul Ash nazg thrakatuluk agh burzum-ishi krimpatul
  6. Simple Fake Email by Deton8 · · Score: 5, Informative

    I read this story on Cryptome before the /. effect took hold -- what happened is some jerkoff is sending around fake emails with forged headers which purport to come from a legit company essentially trying to extort money from people to keep their personal data private. Obviously, the DA has a suspect and a grand jury has been empaneled to try to indict the guy behind the joe job, and they are hoping that the perp has been accessing the cryptome site (less likely, but possible, is that it's a fishing expedition and they will simply check everybody who surfed that page during the timeframe in question). The story has almost nothing to do with the true mission of the cryptome site. As far as posting the subpoena, there is a clear notice on the cryptome site declaring their intention to post the contents of all such legal notices unless it is illegal for John Young (a resident of New York IIRC) to post them.

  7. Here's what they're after... by imag0 · · Score: 5, Informative

    about 1/2 way down the page you get the gist they were looking for anyone who visited the page http://cryptome.org/sec-con.htm

    Of course, the page was taken down / slashdotted, I guess. Google to the rescue!

    1. Re:Here's what they're after... by Anonymous Coward · · Score: 2, Informative

      Oh my god.

      They are trying to find out who visited a page, which showed a forged email that claimed to be from the ISC or CISSP or something. It also included conversation between Cyrptome, and a representative of that organization who indicated that it was a forgery. The following is an excerpt from their email:

      "Regrettably, it is easy to "spoof" someone on the Internet. It is very easy for an e-mail message to appear to come from Pr[]sident B[]sh or Bill Gates, when indeed they did not. "

      I seriously hope that this wasnt some mindless drone, with a semi-automated keyword checker automatically checking any page which mentions the obsucured terms (which I did to prevent /. from having similar trouble, if that is the issue)

      This would be

      1. An absolute waste of government time/money/etc.

      2. Completely wrong, and an invasion of privacy.

  8. I found a European Mirror For January 2003 by Anonymous Coward · · Score: 1, Informative

    Here it is

  9. Re:Who are the criminals by jdreed1024 · · Score: 4, Informative
    Did someone pass a law while I was sleeping: "Thou Shalt Not Read Cryptome"?

    Nope. But they certainly did pass a law saying "Thou shalt not commit wire fraud". That's what they're looking for (some guy who is passing himself off as a security specialist and is just stealing people's data), and they think the suspect might have visited one page on cryptome. They only want the logs for that page - they don't give a shit about the rest of the site. Why don't you go read one of the mirrors (or one of the many comments paraphrasing the mirrors) before crying "Big Brother"?

    Also, when posting something controversial like this, with headlines that can easily be misinterpreted, the editors should really go make copies of the pages (it's just text - that doesn't require bandwidth) and have them available for viewing so people don't jump to conclusions. Of course, while I'm dreaming, I'd like a pony.

    --
    There is no sig, there is only Zuul.
  10. No... by Anonymous Coward · · Score: 1, Informative
    For the same reason having a standard document retention policy is not an obstruction of justice. You are not obligated to retain the data prior to a supoena (Afterwards is another issue.) In fact, I don't believe you are obligated to log accesses to your system at all, although such logs could prevent you from being held responsible for intrusions originating from your system (See, the hackers used a CGI bug and my web logs prove it!)


    Of course, if you listen to me, you'll be accepting legal advice from an anonymous coward...

  11. Actually, No by pythorlh · · Score: 2, Informative

    The subpeona specifically states "between 11/7/02 00:00:00 GMT and 11/14/02 23:59:59 GMT." Therefore, as logs are deleted daily, and the subpeona is dated 1/16/03, they have literally nothing to submit. The bottom of the page shows croyptome.org's official response, which was basically, we ain't got none.

    --
    Do not confuse duty with what other people expect of you; they are utterly different.Duty is a debt you owe to yourself.
  12. What the AG wants access logs of... by dietlein · · Score: 2, Informative

    This is what the AG is requesting access logs of, from 11/7/02 to 11/14/02.

  13. Re:"or more often during heavy traffic" by watchful.babbler · · Score: 5, Informative
    If you've been served with a subpoena for documents, you can't destroy them, even if your policy is to dispose of them (I have another post around here that doesn't make that clear, so there you have it). So, yes, you are legally liable for obstruction of justice if you don't stop the cronjob.

    It's also worth noting that, in some cases, you are obligated to retain documents even though no subpoena has been served: if you have reason to believe that a subpoena will be served on you, destroying related documents may be grounds for an obstruction of justice charge. See, for example, U.S. v. Gravely, 840 F.2d 1156 (4th Cir., 1988).

    The burden of proof would, in such a case, be satisfied by showing that the subpoena was served before the deletion took place. After that, the burden is on you and your organization to show that the deletion was impossible to stop -- and, no, a coffee break is not an affirmative defense. ;)

    --
    "Freedom is kind of a hobby with me, and I have disposable income that I'll spend to find out how to get people more."
  14. Re:Just a thought.. by Anonymous Coward · · Score: 1, Informative

    Just a quickie, since the Patriot(?) Act (or was it the Homeland Security Act) the CIA now operates in the US.

  15. Re:virtual private server? by endoboy · · Score: 2, Informative

    It means: don't try to followup with a subpoena for my harddrive (in case you want to try to un-delete the logs), cause I don't have it, and don't even know where it is....

  16. Cryptome logs by ssimpson · · Score: 5, Informative

    John Young has posted quite a lot of information about his log policy before....It's pretty widely known that he deletes them very regularly to prevent this kind of thing.

    People have asked why logs aren't just sent to /dev/null - that's because John does scan the logs for "interesting" visitors - see e.g. his previous stories about catching various US departments and agencies (FBI, Whitehouse) looking at his site.

    The site is currently down I wonder if it has been slashdotted, or.......

    --
    "Mary had a crypto key, she kept it in escrow, and everything that Mary said, the Feds were sure to know."
  17. No, it's not by Anonymous+Brave+Guy · · Score: 3, Informative

    The government would like to do that, and have tried to get the ability into law for some time. Such powers as they have come from the Regulation of Investigatory Powers Act and its brethren. However, in spite of widespread worry when that particular Act was passed, nothing much has come of it, mostly because the ISPs turned around en masse and told the government where to go and just how practical it was(n't) to keep all the records they were supposed to have on the terms they were supposed to have them.

    We do have problems with Internet-related law in this country, with ISPs being in danger of having no tenable legal position one way or another, but fortunately, thus far the sort of harm we're talking about here has yet to materialise.

    --
    If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.
  18. Re:Anyone notice his pgp signature? by Anonymous Coward · · Score: 1, Informative

    There was recently passed an electronic signatures act. I don't recall the specifics, but that's mainly because the legislation didn't either.

    PGP can be used to ensure that the sender of an electronic document is who they say they are. This accomplishes the function of a traditional signature.

    Anyways, its better than the system my school uses for eSigning. Typing my name is *NOT* acceptable, though they think it is.

    -Xoder

  19. Re:How about legal requirements to *keep* logs? by devmike · · Score: 2, Informative

    New Canadian laws for ISPs include keeping all system logs for a period of no less than 120 days for potential review and subpe...subpeon---subpoena...however the hell you spell it.

    Damn, this was about to be a serious post.