Is it Just Me, Or Is Our Mainframe Missing?

xnuandax writes "Here's a salient lesson for those system security personnel who spend their time fretting over the theoretical crack-ability of their 1024 bit encryption keys. Australian Customs have recently suffered a rather unfortunate set back in their "War Against Terror" with the admission that two of their secure mainframe servers have been wheeled out of the building by persons unknown. I'll bet my $2 that the root password on those boxes was 'trustno1'."

This is what happens ...

[B3ryllium]

... when you don't do retinal scans on pizza delivery people.

Re:This is what happens ...

[phagstrom]

don't you mean:

"That's what happens when you forget to tip the pizza delivery people".

Don't underestimate the "disgruntledness" of pizza deliverly people. They will Take Over The World!

I bet I know where those machines are...

[Capt'n+Hector]

*starts looking for cheap parts on ebay*

Re:I bet I know where those machines are...

[Shimari]

NO NO NO NO NO !!!

Don't bother checking on Ebay, or even the recycle bin. It is the dream of EVERY programmer to have an IBM mainframe in the living room at home. Doesn't matter what software does or doesn't run on it. This is the ultimate conversation piece.

Just like it was from the IS department where they stole it. Obviously.

Mainframe repairmen!

[tekrat]

Isn't that how they always did it on Josie and the Pussycats cartoon? They'd dress up as "computer repairmen" and then wheel the computer out the door, which would then infuriate the bad guy and they'd have the chase scene set to a song.

I kept saying that's how I'd get my SGI Onyx that way, but it never seemed to work out. Anybody that steals a mainframe is either looking to part it out and sell it on Ebay, or they are going to melt it down for the valuable metals.

Re:Mainframe repairmen!

[Large+Green+Mallard]

I have an SGI Onyx in a cupboard at work, turned off and doing nothing.

No you can't have it, I thought I'd just taunt you tho :)

Re:Mainframe repairmen!

A local computer games company tried to impress a client by lying about the amount of SGI kit they had: when the client visited they broke into the university, took the distinctive SGI montiors, plugged them into PCs for the duration of the client's visit, then broke back in to return the monitors.

Re:Mainframe repairmen!

"I have an SGI Onyx in a cupboard at work, turned off and doing nothing"

Really? Maybe you should look again....

PC

[Timesprout]

The men, described as being of Pakistani-Indian-Arabic appearance

Thats PC for terrorist isnt it ?

Re:PC

[Edgewize]

The men, described as being of Pakistani-Indian-Arabic appearance

Thats PC for terrorist isnt it?

That's not PC at all! It's like describing someone as Scandinavian-Russian-French.

"All you fsckers look the same to me!"

Re:PC

[hype7]

"All you fsckers look the same to me!"

Ha ha! After reading the description of "pakistani/indian/arab", I'm betting that the person whose job it was to look after these things didn't see anybody at all.

Tell an Australian that a person from any one of these three sub-cultures stole something, they'll instantly believe you.

-- james

Re:PC

[clambake]

The men, described as being of Pakistani-Indian-Arabic appearance

No no no! It's not like that at all... These men CLEARLY came from a mixed Pakistani, Indian and Arabic heratiage (20%/15%/65%, respectivly). What else are people who majored in Physical Anthropology in Austrailia going to do if they aren't going to schlep it as security guards? They have to make a living somehow, as there are only so many days that you can eat spit-roasted kangaroo in a row before you need a decent chicken wing or two...

Re:PC

[Brad+Mace]

A Pakistani, an Indian, and an Arab walk into a server room...

I forget the rest, but the Australian government ends up looking like a bunch of tools

Re:PC

[Trejkaz]

You'd convince more Australians if they were Lebamese, but then with thinking a bit harder you'd realise that a mainframe can't be used to soup up any sort of car, and thus it couldn't be a Leb who did it.

Re:PC

[ozbird]

Thats PC for terrorist isnt it ?

It's a slightly more PC version of the previously used description "of Middle Eastern appearance", which non-Middle Eastern people found offensive, especially those born in Australia. A more accurate description would be "two smug looking guys, each with a server on a trolley."

Ack!

You just gave out my root password!

Re:Ack!

[NanoGator]

"You just gave out my root password! "

Liar. I've seen your password. It's eight asterisks.

stole this idea from Peter Kay's Phoenix Nights...

[rokzy]

we thought you'd arranged it. they were wearing overalls.

overalls!?

Yeah, typical

[heironymouscoward]

Like for ages IBM's mainframes has a standard privileged technician account with the password "musigate", very useful when some BOFH expired my accounts. Ooops, you mean it's still musigate now?

Possible Scenario

[cybermace5]

Sysadmin: "HA! I have patched all my software, yelled at all the users with weak passwords, locked down every possible port and continously monitor the allowed ones, and with this keystroke I will enable UNBREAKABLE encryption on every critical data file!"

*slams hand down to hit Enter key*

*hits bare desk*

Reminds me of the story

[nagora]

of the three guys that walked into a Belfast pub and stole the newly fitted carpet while the pub was open. They just said the wrong stuff had been delivered and apologised to the customers as they worked around them.

TWW

Re:Reminds me of the story

[Timesprout]

Bit like the one about the guy in Dublin walked into a bar/offie just before Chrismas with two kids. Sits the kids at the bar, buy them coke and the prodeeds to order his christmas drinks list. He as asks the barman to keep an eye on his kids while he puts the two crates of spirits in the boot of his car. 5 min later the barman asks the kid where their dad is.

"He's not our dad. He just asked us if we wanted to come in and have a coke"

Re:Australia

[lucifer_666]

In the last 24 months:

Afganistan: Australia's Special Air Service was there, saved a few yanks in a downed helicopter. The American soldiers seemed to thing these Aussies were all right.

Iraq: Australia sent 3 boats and about 2000 special forces personell. Did a lot of (if not all of) the ground based reconisance, plus about half the search and rescue missions.

East Timor: Liberated the poor little country from the Indonesians and wiped out the resistance. Free elections were held for the first time.

Indonesia: Sent Federal Police over who "helped" with the investigation into the recent Bali Bombing.

North Korea: We'll Be There!
Iran: Be a walk in the park!
Saudi Arabia: Hey, we all like cheap petrol!

Plus there's the fact we're all reasonably well off here in Aus, excellent education and health systems, great democratic political system, fair moral sense.

So you can see there's a few reasons the terrorists might not like us, although, if they do come here, we can easily melt their hearts with our koala bears, or melt their skin with our radiant sun :-)

Maybe they were just for decoration?

[AJWM]

Customs has been advised that the servers did not contain personal, business-related or national security information.

Okayy.... So just what was on them, then? Somebody's pr0n collection?

Re:Maybe they were just for decoration?

[clambake]

Customs has been advised that the servers did not contain personal, business-related or national security information.

Okayy.... So just what was on them, then?

They were completely empty. Completely. They never were used to and never inteded to be used, ever. Ever. Seriously. They were shut off since they were bought in 1982 and never, never, ever used for anything secret or anything. Especially not for anything secret at ALL... I SWEAR! This is a complete non-story, please stop asking about it. Nothing to see, nothing to write about, just normal EDS maintence contract gone wrong on some completely unused servers, pretty standard stuff. Here, look at the monkey.

Relax

[Timesprout]

It was the just RIAA removing a couple of infringing servers

I'm Kevin Mitnick...or am I???

[teamhasnoi]

1. Post classified in paper - ad reads: "Wanted: People to test our security. Great pay, benefits, and excitement." (blah blah blah)

2. Meet with people. Hire everyone (especially Austrailian Customs agents). Wear a fake mustache. Give each person a different assignment. "You are to go in to our bank/store/house/hospital/police station and using any uniform/disguise and verbal means, physically take our hardware. Do not get caught. If you do, hand them this card - they know this card as Phsyical Security test E8T-m3 - we are contracted with them to to this test."

3. Promise bonuses for high-priced items. Take items, have them load your (rented) car. Congratulate them on their first day. Hand them a schedule for next week & note high performers. Leave.

3a. If your employee gets caught, remove mustache and look nonplussed. Walk away.

4. Profit!!!

Re:Biggest security hole in any corporation...

[CGP314]

The fastest way to look like someone important: Carry a clipboard.

Re:My IT team did that once.

I knew Windows would be involved somehow! Slashdot hasn't let me down yet.

They don't even know what was on these computers

[Brad+Mace]

Customs has been advised that the servers did not contain personal, business-related or national security information.

Really? Then what the hell were they for?

They say

"They would have personal internal email accounts, probably the passwords for those accounts, and any information harboured within them.

hmm. 'personal email' sounds like personal information, and probably business and security related too. But then say:

The Australian Customs Service has admitted the security blunder, but told customs officers in an email that no sensitive operational information was lost.

So I guess they're just using their mainframes to advertise penis enlargement pills

"Customs officers use the accounts to communicate volumes of sensitive operational material and intelligence to each other, including information from other agencies such as AFP and ASIO. This would be at risk."

I give up.

Re:Not Mainframes at all

Apparently you lost your slashdot passwords though ?

Testra IT savings

[mokeyboy]

Now we know how Telstra will save all that money...

It's been a while hasn't it?

[Mulletproof]

Imagine a beowolf cluster of-- FUCK, they're gone!!!!/I>

My IT team did that once-Can you see me now? Good!

"I knew Windows would be involved somehow! Slashdot hasn't let me down yet."

Of course. Window's security is pretty transparent.

Re:they didn't need that server anyway

[mrpuffypants]

It was either root name server or a international pr0n server. Which would be missed more?

Um

Free, as in mainframes?

Are you sure...

[fwc]

The tech guy didn't just replace them with one of IBM's linux servers?

(Google for heist60.mpeg if above if slashdotted)

Im a New Zealander

So i reserve the right through inter-tasmin rivalry to say...

Typical Aussies

joke its just a joke..

Re:Australia

If I were a terrorist I'd mainly be afraid of drop bears. Because at the moment, I'm mainly afraid of drop bears, and I can't really see why that would change.

Re:simple security procedures

Didn't anyone learn anything from losers like Kevin Mitnick?

Oh, I think the thieves mentioned in the article did.

Re:they didn't need that server anyway

[Mahonrimoriancumer]

So are you saying that RIAA is responsible for this theft???

Hey Look It Wasn't Stolen

[pyrrho]

It's just been replaced by this little linux server over here.

Heh...

[BJH]

This reminds me of a story...

I live and work in a certain large Far Eastern city, which has quite a few major financial institutions.
Several of these institutions use Sun hardware.
One of these institutions found that on Monday morning, their production system didn't work.
A bit more investigation found that the CPUs (8, IIRC) had all been removed. Apparently, someone walked in over the weekend and then walked out with several thousand dollars worth of UltraSPARC IIs under his arm.
They made a bit of fuss about this, boosted their security, and bought a bunch of new CPUs.

Then, a couple of months later, they found that their production system wasn't working on a Monday morning...

Re:Those pesky Pakistani-Indian-Arabians!

[MoonFog]

Obligatory Simpson quote :
"If something goes wrong, blame the guy who doesn't speak English"

Australians always one better

[BenjyD]

The Ozzies always have to do things that bit bigger, don't they? UK intelligence services has laptops with sensitive information stolen (well, left in a pub after a drinking binge and then stolen), so the Ozzies have to get a mainframe stolen.

crosshead screwdriver and a coil of cat5

[RMH101]

...you can get in *anywhere* with them if you frown hard enough

Re:My IT team did that once.

[Jawn98685]

Oh, they also used the signs on the buildings you could see through the windows as admin passwords.

Oh, great! Thanks a pant-load there, Chet. You gave away my secret to unforgettable passwords. Now I'm gonna have to go and change my admin passwords back to my dog's birthday or something.

The rubber hose method

[Sindri]

Of all the possible password attacks mentioned in my favourite cryptography book the rubber hose method is my favourite.

The rubber hose method consists of kidnapping someone who knows the password and beating him with a rubber hose till he tells you the password.

Guess this could be called the wheel out method.

Three words

[Erik+Hensema]

Encrypted root filesystem.

Re:Those pesky Pakistani-Indian-Arabians!

And how tells that YOU are not a servant of the evil one ? Thus all your arguments would be tained and their only purpose would be to lure us into the realms of sin and damnation.

Your failure the acknoldge the truth and wisdom of the BIBLE and the Chicago printing style guide show indeed that you are either misguided or a servant of the son of dawn.

Priceless...

[dstutz]

Implementing stricter airport security standards - $800,000
After hours security guards - $2,000
2 Mainframes - $2,000,000
Having your machines wheeled out by Islamic terrorists - Priceless

Re:How is this unusual?

[surprise_audit]

I seem to remember a while back reading about some college (don't remember which one) where they couldn't find a server. The server was up and running, they just couldn't locate it... Turned out that part of the server room had been walled off, and the server was completely enclosed in a room with no doors or windows. Apparently the wall had been put up some 4 years previously and nobody had had to touch the server in that time.

Not in quite the same league as walking out the building with a server, but it still took a special brand of stupidity to forget to put a door in the new wall... :)

Re:Trump Card

[MickLinux]

Well, I know a guy who pulled something almost like that. But it was Christmas, so instead of dressing up in a workman's outfit, he actually went in dressed in a Santa Clause suit; and when someone challenged him about the loot he was carrying, he just said "Well, thars a laht balb that won't laht up on one side. I have to take it back to my workshop; I'll fix it there and bring it back." The amazing thing is that it actually worked. He was extremely slick.

Fortunately, he had a change of heart later, though. The world would be a much riskier place with more people like him around, I think.

By the way, I kindof wonder just what my kid is learning in 2nd grade, nowadays. Some of those Dr. Seuss' Crime for Kids series are a little extreme, don't you think?

What really happened

[bahamat]

No, no, no, you've got it all wrong.

This is what really happened to them.

(That's a link to a 5MB mpeg, please be gentle, mirror and post a link!)

Lucky you!

[holstein]

I am not allowed to change my password! Seriously!

I'm just waiting for _the_ major security incident...

What Indeed...

[virg_mattes]

I imagine he'd say, "Crikey! My last name starts with an I, not an E!"

Then he'd problably add, "Crocs rule!"

Virg

Re:Biggest security hole in any corporation...

[EvilTwinSkippy]

A friend of mine used to get into amusement parks with his College ID, a labcoat, and a clipboard.

Re:unused SGIs

[Large+Green+Mallard]

I live in Perth, Australia. Remote place.. in most cases, the cost of shipping an oldish SGI out of here is more than they're worth. Somehow tho, I seem to have become known as the old-sgi-man. People come to me and say "Don Alex, I have these old SGIs that need to be gone", I take them, then mysteriously others come to me and say "Don Alex, my poor family needs an SGI". I charge and take no money for this service. Mostly they've gone to students who are after some non-intel hardware to play with a unix on. Indys run Linux particularly well.

In the last 6 months, I think I've helped dispose of about 40 unwanted SGIs to good or better homes. Mostly Indys (about 30), but some O2s and Indigos as well. i'm working on the Onyx still...