Slashdot Mirror
Felony Charges For H.S. Hacking
jayrtfm writes "Last year the Kurtztown Area High School approved a program which gave every student an iBook. Now 13 students face felony charges for violating the district's usage policy." From the article: "Shrawder said the secret password '50Trexler,' was widely-known among the student body and distributed early in the school year. It allowed between 80 and 100 students to reconfigure their laptops, he said. The more computer-savvy students began to disable the administrations' ability to spy on the students' computer use. For others, it became a game, trying to outsmart the administration and compete with fellow students who held the secret, Shrawder said."
This news was also reported in the Reading Eagle/Reading Times.
In that article, it was said that the students were accessing porn sites, and HAD infact hacked the administrative network.
However, living in this area, I feel it necessary to point out that the papers around here can't handle technical articles, and and usually get the facts wrong. For all we know, they got the admin pass, and disabled the proxy (which was likely the n2h2 Bess Proxy), and all of this is being blown out of proportion.
Once more facts become clear, maybe we'll learn why the rest of the 80-100 students weren't charged.
I attended and worked IT for Conrad Weiser Area School District which is about 20 minutes away from Kutztown, where we had the BCIU come in to do a lot of work on machines. The BCIU is clueless, and security is their lowest priority. It wouldn't surprise me at all if the BCIU worked with Kutztown High to setup this network, making it all the easier for these kids.
Also, here are the nyud mirrors of the links:
FAQ
Kutztown Area Patriot Article
Laptop Initiative
May this post be indexed by spiders, and archived for all to see as my Internet epitaph.
I guess not only information wants to be free, students do as well. What a bitch for the tyrannical albeit wussie school officials who need cops and judges to enforce school rules that they cant. Unfortunalty things have gone so far in this country that they probably will be charged and therefore destroyed.
"It's so convenient to have a system where everyone is a criminal" - A. Hitler
13 students face felony charges for violating the district's usage policy? Could this open some eyes and increase interest in alternative (Linux, Mac) offerings?
Blame the students for the school's own poor security? That's the school system for ya...
What is it that causes legal-types to completely lose their marbles whenever anything high-tech happens? This seems roughly the equivalent of doodling in a textbook (in eraseable pencil) and sharing a Maxim magazine around in the halls. Hardly a felony.
"I knew it was against school policy," he said. "But I didn't know it was a felony."
Of course they didn't. You know why? Because, "Students who violate the computer policy will be disciplined" does not imply that criminal charges will be filed. It implies that the students could receive in-school sanction.
This is a bunch of hyped up and unnecessary bullshit. If you're going to give laptops out you better bet that they are going to be used for unintended purposes. By bringing criminal charges you are doing nothing but wasting even MORE of the taxpayers dollars for something dumb.
Discipline them in-house (like they did to us in high-school - made us sit in the hot school all summer doing NOTHING - it's worse than paying a fine and doing community service)
I hope they had the sense to change their password...
It's "Computer Trespass" if a student breaks into the computer that they're being lent, but it's not if they're being monitored without their knowledge? Okay...
But seriously folks, don't get too worried about this. I mean, if they prosecuted people for this sort of stuff, half of us would already be in jail, and the other half on death row. It's all just hot air from the administrators.
My Systems
I just kept thinking "Enders Game" !!!
I ate my sig.
Dear Zonk,
Please, dear... It's "Cracking", not "Hacking"
Also, since when is passing the administrator's password around considered [Hacking|Cracking] anyway?
Skavinsky consulted with the Berks County District Attorney's office and recommended charges of "Computer Trespass," in violation of PA criminal code section 7615, which carries a third degree felony charge.
The best way to get poor laws changed is to enforce them strictly.
We recently had heard in the office over one of the Yellow Machine that's made by Anthology Solutions.
Thank you for posting my password. I guess I will have to change it now.
Looks like the school should teach a network security class and things of that sort, maybe the students coud end up making something better than they already have because it seems like there are some pretty bright ones there.
Some friend of mine installed Firefox on his network drive at school and caught a great deal of flack for it. Because we know what a great risk a proven, secure web browser poses...
Do Not Eat iPod Shuffle
From the FAQ... Will students be able to email, chat, and play games on their laptops? Chat, IM, games, and email software will be removed from all computers. Student use of email, chatting, IM, and game playing is a direct violation of the KASD computer policy. Students who violate the computer policy will be disciplined. These were school-owned laptops for approved uses only, and with a pretty tight leash on what could be installed.
Why are they giving these children felony charges for being intelligent enough to see through such pathetically weak security? At the very least, the school should have assigned each machine a separate password based on serial number.
In all seriousness, if they really wanted to ensure security on these systems, they shouldn't have allowed the students to take them out of the school.
8==8 Bones 8==8
I don't agree that it's a felony level offense, but...
I'm a student computer tech at my high school, since the school is too cheap to hire a full time technical staff. You wouldn't believe the amount of times I was asked for the local administrator passwords to the campus computers, just from people who wanted to 'mess around'.
The main problem is twofold: first, that the school doesn't want to be held liable for any 'bad' content (the obvious part), and that IT MAKES MORE WORK FOR ME. The admin password was leaked many times, and you wouldn't believe how many times I've had to either reformat computers or wipe Kazaa/Steam/random emulators from computers where students wanted to mess around. The worst part, when some of them tried to remove SynchronEyes (our 'spy' program), they were so incompetent with what they were doing that they ended up fuxxing the domain privileges and rendering the computer inoperable on the network. We rarely, if ever, monitor student activity, since we don't have enough staff.
If you want to mess around or do anything 'cool' with a computer, DO IT AT HOME. If you're at school, use the computers for school work. It's not a game as to how much work you can cause for the local techs and admin, the computers are always for WORK. If you go ahead and make it a game, we get VERY pissed at having to clean yet another computer.
Or better yet, do what I did and join the tech support staff.
"To provide an interactive educational environment which encourages students to acquire the skills, knowledge, and attitudes, necessary to become responsible members of society"
What kind of assholes are these school administrators?!
Their JOB, hopefully their PASSION is to help students learn and be prepared for life as adults. How does giving them felony records for typical high school curiosity do that? How can these administrators go home at night and think they are doing the right thing here?
I think a protest is in order.
The entire student body should boycott the school. Stop going. Perhaps they should ALL have accidents with their laptops too. Ooops, dropped it from the second floor.
Damn... I know these are stupid retaliations, but I'm so pissed.
Am I the only person here that thinks that it is the most flimsy form of chintz that educators use the legal system and literally ruin students futures over something so minor as this...
Wait a minute - the administrators have to show them who's in charge... and having the cops do their enforcement... that'll show them.
-- $G
In my high school in the late 80's we got a new network and the default password for all students and teachers was "IBM". 5 bonus points to whoever guesses which company set up the network. At the time it wasn't a big deal to mess up the network, it was considered buggy. Now you get lynched.
I rather thought if you had the key to someone home you couldn't call it "Breaking and entering" even if you were a dumb ass and put it under your mat. Would not the same rule of common sense apply if they were dumb enough to let the students at the password? Ok, TFA isn't clear how they got the password, but 100 people had I'd hardly call it felonies hacking or computer trespass.
There is no sanctuary. There is no sanctuary. SHUT UP! There is no shut up. There is no shut up.
A couple things seem out of whack with this, the first being that only 13 people were charged, when 100 (ish) had access to the password. Also, there is nothing at all in the rules about the securutiy system, or lack there of, so what can the be charged with, if they didnt break a contract. Finally how is this a felony, at worst, they broke thier written contract with the school, its not like they installed pirated software on it (i hope) Bottom line, this is a case of the students knowing more about computers than the school wants them to, and the school lashing out because it was one-uped. Funniest thing about the faq 'Viruses written for windows cannot affect macs'... what about viruses written for macs?
Like the saying goes, never underestimate the bandwidth of a station wagon full of tapes. -Pyrotic
What did the 13 who got charged do differently that made them stand out from the "80 to 100" students who used the compromized password?
"Shrawder said the secret password '50Trexler,' was widely-known among the student body..."
;-)
If it's widely-known, how can it be secret?
Should read ... - "For the administrators to monitor the students computer usage and for students that held the secret password to monitor one another. In order to keep the student's privacy safe while using the badly configured laptops the students had to get in and change the password. Upset by the fact they where made to look like noobs the school district are now bringing charges on all students that changed the password. When ask for comment the network admin had to say "I have an MCP, I think I can configure some laptops securely, the students are just messing with stuff using illegal haxor tools that they downloaded off P2P, I have contacted Microsoft, Apple and the MPAA about them!""
i personally think thats cool ;D
Life is like a bag of chips you never know whats next
Speel
What if you bring in your own laptop?
One line blog. I hear that they're called Twitters now.
Anyone else get Enders game flash backs?
For those that don't know Enders game, it is a great science fiction book by Orson Scott Card.
The Internet is full. Go Away!!!
7 years ago, in my junior year of high school, the principal pressed felony charges against me for computer hacking. Thankfully, since I was a minor, the decision whether to prosecute me was left to the State's Attorney, who declined.
What horrible crime had I committed? I installed Space Quest 5 on a computer to play at lunch. Any sane person (and especially any slashdotter) would find me guilty only of being a geek.
What the hell do you expect from giving every student a laptop? Teenagers are stupid! And putting a usage policy and monitoring software on it is tantamount to entrapment!
FELONY charges for reconfiguring the laptops the schools give the students to use?!?!?!? Any parent should be outraged that their student could be subject to a felony for something like this. Parents should have do sign off on ANYTHING that might subject their children to such bogus charges. And they should be riled their own district would act such a way if some porno and ebarrassment to the school administration is all that happened.
Watch your butt, Bernard is watching.
-God
PS: I know there is no mod for "I Don't Get It." Please don't substitute "Off Topic".
Thanks,
Peter
Cool kids in my opinion. They'd be my best friends. I wish my school gave out iBooks, or any laptop for that matter.
Q: What about computer viruses?
A: A virus that is written for the Windows Operating System (Win98, 2000, XP) cannot infect the Macintosh Operating system.
Hey! Neat! But um, what about computer viruses?
As a high school senior in pennsylvania who has done things similar to those being described in the article, I'm worried. Before, my school district basically just slapped a student on the wrist for things like this, but I have the feelings that students in EVERY school district in the state are in trouble if schools start prosecuting because they are too stupid to handle anything technologically with reason. Hell, a kid in my district got 12 days out of school suspension for getting around the BESS Proxy wheres a kid who ripped a hunk of flesh off of another one's chest got 2 days in school suspension. People are fucktards...
Those who study history are doomed to watch others repeat it.
A server breach does seem pretty impossible. Considering the complexity of the password and how few people knew it, it's doubtful they wouldn't know if the server was breached anyway.
Guess what? Kids are curious, they like to push boundaries.
If you are too inept to implement security properly don't blame it when the students when they walk over you.
That's what they are in school to learn.. how to get to the next level, not be brainless automatons.
A big F U all the incompetant a-holes who can't get their shit right and then blame the rest of the world for their problems.
Yea, I'm pissed 'cuz I'm *still* at work.
I got out of high school two years ago and I have good and bad news about what's changed: The Bad News: School administrators are still morons The Good News: At least they've learned to pick better passwords. In my day all the passwords were things like "staff" or "teacher" or (my favorite) "inspire"
This happened at our school too. We all got laptops and we did the same stuff. They spied on us, we got the passwords. They had student volunteers running the helpdesk. They were challenged to break the passwords. One did it and told the rest how the next day. The helpdesk was given fully unlocked computers to do whatever they wanted with, while the rest of the school was given the locked-down, awful, spyed computers.
503 Sig Unavailable
The Signature could not be accessed. Please try again later or contact the administrator
.. the same thing that caused many Americans to lost their marbles after Sept. 11: FEAR caused by a LACK OF UNDERSTANDING. These politicians do not understand technology, hence they fear it with all their might. And the legal response by politicians to fear is to pass fucking moronic laws.
Cyric Zndovzny at your service.
Only vaguely related, but this reminds me of my high school, which spent somewhere in the vicinity of $50,000 on a school wide security system with individualy armable zones in every classroom, complete with door, window, and motion sensors. Then set the system-wide disarming code to 2468 so the teachers could remember it.
"Now 13 students face felony charges for violating the district's usage policy." Bull$hit. Violating a usage policy is not a felony offense. What EXACTLY are they facing felony charges for?
Back in HS we had Win3.11 boxes locked down with the stupidest security software ever. The only thing you could use was Notepad and the crappy applications you were supposed to be using (which was really just a typing tutor thing that couldn't even keep up with you if you could type over 70wpm). I hacked that stupid security program using Notepad every single day and then put it back together before class ended. I did forget a few time but the admin was too stupid to figure out how I did it and couldn't prove anything ("I dunno, it broke?"). Of course this was pre-Columbine and the militarization of schools...
These are the most ridiculus set of rules for computer use I have ever seen. Not allowed to install software on the laptop? Are they afraid some student might install Java, Perl, or Python and actually learn how to program? Are they afraid the students would install photoshop/gimp and be artistic? What is the point of these computers if they are restricted to a predefined set of a circulum some idiot came up with. I guess this is just another case of schools not wanting kids to think for themselves
I guess this is fair enough, but not really. Can't have students colaborating with eachother on homework assignments, or e-mailing their teachers for questions.
Well, It's reassuring to know that at least they allow the students to be good consumers and purchase iPod's and digital cameras. We wouldn't actually want them to learn anything.
"Or better yet, do what I did and join the tech support staff."
yeah -- that worked for you, now you can fix all the kid's computers like you are some sort of janitor.
sounds like one school that "earns it's money"
"The laptop cost would be ~$1385.00 with a 4 year parts and labor warranty.
The cost of the software installed on the laptop computer exceeds $1800.00 per unit.
The cost of the padded sleeve is ~$20.00
The cost of a 4 year software upgrade protection plan is $135.00
The cost of tech support is $45.00 and up per hour."
They say there is $1800 worth of software on the laptops... what a waste of money, I'd just have them put openoffice on a just a cheaper laptop running linux.
I have a feeling that the reason that only 13 kids are charged is because the 13 might have been the "geeks" who figured it out, and the rest of the kids just followed.
Death to them. They've done it exactly the wrong way, and it's only natural for students to protest and disobey the dictatorship. Under this conditions, it's alright to set up a resistance armed with AK-47s.
Why not just use a live-on-CD linux bootdisk? I haven't seen that many for Macs, but I'm pretty sure that Yellow Dog has one. That would give the students the ability to run their own OS, although it would be slow because of read speeds. At my school, we run crappy little 900mhz pIII Win98 SEs. Originally, they had almost no security, but now it's building up. I sometimes use Knoppix, without any modification to the system itself.
It sounds to me like this is just a story about a bunch of script kiddies who got caught *gasp* without covering their tracks.
Due to financial difficulties, the light at the end of the tunnel has been turned off.
this is dumb, all you have to do to change a password on a ibook is put the mac os x software boot from cd, change password. boom!
That's absurd. I don't see how this can be charged as a felony...
:/
The thing the adminsitration should be asking is how the password was leaked.
What version of the article are you reading? It doesn't say that.
I'm so proud.
Want to know where that quote comes from? I'll make you work for it... Search for my other post in this thread.
The Internet is full. Go Away!!!
When I was in high school I convinced my Mom to get free internet access through the local college. It was part of the usage terms that no one else was supposed to use the access, so I guess I was a felon just for doing that. Then I figured out that the public_html directory was accessible through the anonymous FTP server, and that's where I got caught. I guess that'd be a second felony computer trespass charge there.
As it turns out I didn't get in any trouble, and though the account was disabled my Mom even was able to get it reinstated after sitting down with the head of the computer services department and promising that any time she logged on and used the service she would be the one physically typing on the keyboard. So I got my internet access back, but had to be more careful from then on.
About a year later someone in my local calling area came out with this nifty pay service called PPP.
But hey, I could have been a felon. Or, maybe I am a felon? What's the statute of limitations for computer trespass, anyway?
I was a tech for an Edison project school. They use the same password for every computer in every school the operate. This includes the servers that hold all the individual passwords.
Now please, dont you go playing with this tool because we all know that play promotes learning and we can't have you do that as.. students.
Hangon?
Typical. Lets persecute the nerds more. I bet if the f'ing jocks were doing it, it would be rewarded.
I would have blanked the HD and installed Ubuntu the first night... and after the lovely administration found out I would 'inform' them in the most unkindly way how their PC-use policy is contradictory with their mission statement. (Must have had the expensive macs sponsored by the **AAs).
at my school, I can see how the administration would be pissed. However, being a student at my school, cut these kids some slack! Granted, it's more work for the admins, but if these kids are bright enough to do this kinda stuff, make a class about it, and funnel this intuitiveness into forming future sysadmins. Just a thought
I think computer viruses should count as life. I think it says something about human nature that the only form of life
Your post made me laugh out loud.
For what it's worth, I've made one of those posts, and I'm not the guy you referenced. And I'm sure it's not just us two.
THERE IS NO ESCAPE!
Actually, it's an absurdist commentary on what Slashdot has become. Posts like that are only one step removed from how the editors actually talk around here: that every tiny thing is somehow furthering Linux!!! Or is it? Of course not. This isn't news for nerds; it's a collective self-reinforcing delusion.
Oh well, sit back and enjoy the ride I guess. Just don't let yourself be drawn into the madness.
we get VERY pissed at having to clean yet another computer.
Why are you bitching? You've got job security because of them don't you? If you want to be like the Maytag repair man, be my guest. But you don't have a leg to stand on if you can't lock down the machines well enough so that this does not happen.
Don't the kid's have a perfect defense here under the legal concept of "attractive nuisance"?
I'm an American. I love this country and the freedoms that we used to have.
The administrative password for the machines was 50Trexler.... Ummm, where did this come from? Why it's the address of the high school!
What, me worry?
It would be nice to know exactly what law was broken here. Remember, "breaking school policy" is not the same as "breaking the law". Only the legislature(s) can make law.
And so to claim a felony, they're claiming that some law was broken. Why can't anyone describe that law?
I heard the kids were reading Slashdot. Waste of time, those poor souls already lost....
Student use of email, chatting, IM, and game playing is a direct violation of the KASD computer policy.
It seems to me that this is a violation of the Constitutional rights to freedom of speech, freedom of assembly, and freedom of association.
Let's see, the postal address of the district office is.....50 Trexler Ave!
50 Trexler Ave.
Kutztown, PA 19530
Excellent, nobody would ever think of "50trexler"
What ever happened to detention? Suspension? Expulsion?
Schools seriously go nuts over computer related "violations". Everybody knows that people who do not understand computers are more often than not, afraid of them. Even though what those kids did was probably something really small, having it blown out of proportion is very normal. Because of that, kids who toy around with computers need to be careful. Is what you are about to do worth the possible trouble?
Example: I was kicked out of my private boarding highschool a month before graduating. The assistant headmaster called my college of choice, told them I was a "security risk". My scholarship was pulled and so was my acceptance. My crime: moving myself and a few friends from the student router to (turned off at night) the teacher router (24 hour internet access). This didn't involve hacking, cracking, password stealing or anything. Just moving a few cat5 cables from one router to the next. If any students are reading this, and are considering playing a dumb joke or something like I did, be careful. Do not underestimate the power of ignorance.
teh police state, teh great Satan, full of evul, 12 year old hackers out to destroy teh werld. A country generally has the government it deserves...
Oh well, what the hell...
Someone here minimaly needs to loose his/her job.
I wouldn't blink at a stiff fine. I certainly wouldn't protest a prison sentence.
And for those of you that are too dense to figure it out, I am NOT talking about the students.
I don't care what porn sites the students accessed or what damage they did. There is NOTHING they could have done that warrants a jail sentence.
Something stuck out to me. WHY WASN'T THE PASSWORD CHANGED? I mean, most places change important passwords a minnimum of every 6 weeks. That by itself should have put something of a lid on things. I mean, who cares if the kids knew an old password?
No, I am with the kids on this. They are being wronged in a very serious fashion.
I was a student tech staff at my highschool. We weren't all given iBooks, but we were an all mac school. The student tech staff was given the admin password and we fixed almost all of the computer problems in our school, granted our school was tiny (200 students k-12) but we and the 1 Network Administrator/English Teacher did all the network stuff.
We used remote desktop on all our computers, but once the admin password (the same one that was used for 8 years) was leaked to the student body, anybody could get on remote desktop and control their friends computer.
That is probably one of the problems that the school was having with the iBooks. Another way they could change the password was if one of the students had an install CD. Pop in the CD, go to the file menue at the top of the installer and click on change password. Easy
If one of the accused was my kid, I'd have a lawyer at the courthouse Monday morning with all of his knives sharpened. School boards and principals love power and tought talk. The point where the rubber meets the road is when an equal or higher power responds with bigger guns. A well connected and/or wealthy parent on a mission is their worst nightmare. I'm guessing that the accused children have been well chosen based on having parents who will either capitulate or don't have the resources to fight. Still, it won't be long until lawyers start getting involved on behalf of the accused children. The school officials are on thin ice when they start intimating that these students are somehow fellons by running sideways of a "usage policy." School records of children are strongly protected by federal law and by nearly every state law too. By accusing these minors the school is possibly breaching certain areas of student privacy, plus setting themselves up for a slander or libel suit. Minor children can not enter in to a legal contract. Conversely, they can't be in breach of a contract. You just can't be a felon for breaking a school rule of not using a computer in the way you were asked. By the way, committing assault, battery, and other violent acts are not the breaking of school rules. They are breaking established state and sometimes federal criminal laws. The school district needs to remember that they are a public entity that is likely subject to open records and sunshine laws of their state. Wait until the right parent seeks a court order to have a looksee at some of the administrations' machines and records. I have to think that the local prosecutor and police want no part of this game and will turn on the school at the earliest chance.
I guess I will have to change it now
Dont worry! I've gone and changed it for you!
So let the school give your kid a laptop, tell him *not* to play with it...
Charge him with a felony for when he finally does...
You know what's next? The kid thinks, "If I'm going to get time and a fine for this, I'm going to do something WORTH being charged!"
And bam, there you have it, your school administrators have just created the next violent school attackers who shoot up the school.
Wake up school administrators! You are pushing your kids into being criminals, and likely endangering yourselves and your other students in the process! I can hear the story on CNN now, and this time you won't be able to blame their music or their video games.
*TheDarb
This sig intentionally left blank.
More like a ball and chain. The school my son goes to has laptops all over for student use and there is a pretty strict policy on their use. You can even check them out from the library. The kids are all saavy enough to know those are for certain specific tasks and most have their own computers at home for other things like IM, chat (downloading inappropriate pictures...) etc.
The point being, when they loan you a computer, it is only for projects they tell you to do. My son's school isn't nearly as strict as TFA's school but that is how many schools see it. The way to deal with this is to only use the school's computers for what is absolutely necessary and everything else must be done on non-school machines. Lack of use may kill the program, but that is the result of their policy, no more, no less.
It's been a while, but when I was in HS we had one teletype with acoustic modem to a county timesharing computer (HP 3000). I was the school geek and shared passwords with head geeks at other schools and of course we figured out the alternate password trick on accounts and also how to get the admin password so we pretty much owned the system. We never messed anything up but one day were discovered and told in no uncertain terms to CUT IT OUT or we would lose access permanently. No police, no heavy handed shit, just cut it out or we would lose our toy.
The people in this country need to adopt a "zero tolerance" attitude toward stupid knee-jerk laws like these. Fire the school administrators, elect a new DA. Our kids are our future!
As there is no way to construe any of what they did as appropriate.
BUT . . . felony? c'mon. Even _IF_ they had "hacked" (and I use that lightly here since it sounds like they simply elevated local privileges and did nothing to the network, servers, or corporate data) a suspension, detention, etc would more than suffice.
This is at best an issue between the school and the children's parents. The police don't need to be involved.
This is just the latest escalation of the erosion of the traditional barriers between teachers and students. In the past, the teacher was the person facing the class, who knew more about the given subject than the students. Sure, there was always the girl in the front of the class who always got 90's and knew all the answers (Christine, I still have a crush on you), but the teacher could still stump them, albeit less often than the average student.
Nowadays, there are students, especially in computer/technical courses, whose knowledge and abilities far exceed the teachers. This change in the balance of power/knowledge must feel threatening to the teachers, since they have less use if the students already know more than they can teach them. People in positions of authority who feel those positions are threatened sometimes go over the top. That's exactly what this is.
BTW, if these students are convicted of a felony over this, will it affect their ability to vote?
Finally, last September, were the parents of the students who were the beneficiaries of these laptops informed that improper use could result in such harsh penalties as their beloved children being unable to go to a decent college, or the loss of their freedom? If so, did they explicitly and informed-ly agree?
Stasis is death. Embrace change.
Put Damn Small Linux on a CD or USB stick and then you don't have to hack the shitty software on the laptop - just run your own.
Ooooh, those eeeevul hackers...
Oh well, what the hell...
Times have changed,
Our kids are getting worse!
They wont obey the authorities
They just want to hack and surf!
Should we blame the government?
Or blame society?
Or should be blame the images on TV? Heck no!
Blame Vice City! Blame Vice City!
All the guns and blood and gore
Shootin' cops and killing whores
Blame Vice City! Blame Vice City!
We need to form an assault, it's all Vice City's fault!
This slashdot-related signature is a stub. You can help kihjin by expanding it.
When someone in my class tried to steal the instructors password to a networking class that used online materials. (Sent a message to the company that provided them forging the e-mail header to look like it was from the teacher, saying "I forgot my password, please send it to address@aol.com")
The next class instead of going to the computer lab we were sent to a classroom instead. Once we were all there, the district network administrator came in, and started giving a lecture on how to track down where an attempted intrusion is coming from, Using a real life case study. It was quite an interesting presentation actually, exept for one student who was watching in HORROR (with a complete look of shock on his face) as they described in great detail exactly how they tracked him down and learned exactly who did it. He was visibly shaking at the end of the lecture. (Before the lecture he had absalutely no idea that anyone else knew about the password theft attempt)
Besides that he got a few days of in school suspension, but that was it.
All misspellings and grammatical errors in the above post are intentional and part of my artistic expression.
What horrible crime had I committed? I installed Space Quest 5 on a computer to play at lunch.
Well, that is pretty offensive. You got off lucky though. I used my trig workbook to keep a table at the lunch room from wobbling.
I'll be out in only 20 more years.
KFG
I remember being in high school and encountering this sort of thinking. It hasn't changed in several years, apparently.
I think the school staff know exactly how inconsequential the security breaches were. But nobody likes being made to look stupid - especially by kids many years your junior. These students took advantage of security problems that never should have been there in the first place. Certainly the students were wrong in what they did - no question about that. But making this into a felony issue is a defensive move on the part of the school to divert attention away from how badly they did their job.
On another note - apparently the school had $900,000 to spend on this. Why couldn't they afford a competent IT person to run it?
i've been charged with a felony as a minor and now i'm working for nasa :P
And when did this happen? At one tyme it wouldn't of mattered much but with governments and businesses tightening the reigns an arrest can be harmful to a person's future. It used to be that one of the things that mattered most was if you could do the work, but now even employers like Home Depot give potential employees a battery of tests including personality tests and your credit history. What used to be childish pranks are now crimes.
FalconShould there be a Law?
Wonder what the teenage Steves would have thought about this? Wonder what comments they might make now, when pissing off school systems might mean cutting into sales of Apples?
Contact the district and let them know what you think. Of course, being polite and giving sources to any facts would be great for karma.
<sarcasm>
These aren't exactly cherub faced youth! They're felons. Throw them in the slammer!
</sarcasm>
I posted the following awhile back on slashdot, but I think in some ways it bears repeating here. Not because it is amazingly unique or insightful, but more because I learned a ton by screwing around with computer--sometimes school-owned ones. And I think I'm the better for it. If I did this kind of stuff now, I'd probably have been in jail at the age of 16 or something. This trend needs to change.
:)
----
There was a lab that I used to hang out in. Being one of the few geeks in the school, I pretty much had run of the place. The teacher who oversaw the lab encouraged creativity and ingenuity. Sometimes he'd get pissed with something I did, but in those cases I just fixed it and moved on. This kind of activity, over a year or so, ended up earning his trust as I would also fix the odd problems with windows/autocad and such that would crop up.
Eventually I became the de-facto admin for that entire lab. During my required study period he would give me a pass to hang out in his lab--sometimes even when other classes were in there. Talk about heaven. I had the run of a computer lab that was networked. It was like being a king.
Around my junior year or so, they replaced the computers in the lab (aging 386/486 era machines with DOS, mostly) with shiny new Pentiums running Windows. For a few months they were basically just open and normal Windows machines. I think they even had Internet access. This was, of course, a total disaster. The net was new, then. People didn't have it at home. They downloaded anything and everything. Porn, viruses, music, etc.
The result was an *cough* admin *cough* who ended up being in the room almost everyday for awhile. He would spend his time poking around in control panels and "fixing" the computers. Eventually he must have gotten sick of that because they hired a local consulting company to come in to secure them all. Pretty soon the whole place was all passworded up with all these layers of cheap third party locks, etc.
I broke all of them--with full (unofficial) support of the teacher who taught in the room. They had tried to lock the systems down so much that half his programs wouldn't work right anymore. He had endless problems with students just trying to save their completed CAD drawings. I made a lot of those problems go away by circumventing the security, showing him how, and then giving him pointers to try to minimize the visibility of the hole so that other kids and the admin dude wouldn't find it. Not perfect, but it helped.
After some time of this the teacher pulled me aside one day and tells me in a reasonably loud-so-that-others-near-by-can-hear voice that I need to be careful because Mr. Admin is getting pissed that someone keeps getting into his expensively secured systems and he's going to try for suspension of that person when he is caught. Of course nearly every one of his students knew it was me--but they weren't going to talk. I had helped them all out of computer jams at some point or other. So after doing the semi-public speech, he later pulls me aside in private and says, "Hey, keep doing what you're doing. I'll make sure they don't do anything to you. Those bastards are making my life such a living hell and they won't listen to my needs that I've given up trying to deal with them. You at least make it possible for me to teach my classes."
So of course after the next round of "security upgrades" I was once again on the job. Eventually I figured the way into the system and changed all the screen savers to be the marquee one and had it read, "Ha ha! I got in Mr. Security Guy!" Hoo boy did the shit hit the fan. I was shielded from it, but the teacher just loved it. The admin dude was pissed. The consulting guy was there almost everyday for like 2 weeks. My teacher would just smile and nod. Eventually they locked it down pretty heavily, but by this point I was a senior and I was graduating early and was out of there.
Those were some good times. Seriously, though, I swear that in this
Hexy - a strategy game for iPhone/iPod Touch
Heck, the school should hire these kids (the ones who actually figured out the password, not the ones who just followed the directions)
So it was freshman year in Cornell, 1990, and I had doubly no hope of getting laid, being a freshman and also a geek guy, the one girl on my floor that I had a crush on ended up dating some jock, so I fell in with a group of cool malcontent geeks who liked to play early Mac network games looong before they existed on PC's (all hail Spectre, Bolo, and NetTrek 3!) and got to breaking some rules.
At the time, Cornell was Mac-dominated (oh, happy memories) and the Upson lab had a network of IIci's just waiting to have their security hacked. I forget the tool that was used, but we figured out that it stored the password in a certain file that we could reach by bypassing the file security with Norton Utilities for Macintosh (haha Mac OS 6 security, bah). We procured a copy of the software, installed it and created a password on my own IIci, then took a copy of that file (with the obfuscated password) and replaced the file on the lab IIci. Instant admin access.
But we didn't stop there. We had such organization that we managed, as a team, to use this trick to install a fun little background process called NetBunny... on ALL the macs in ALL the labs. NetBunny does nothing on its own, but paired with a little utility called StartWabbit that we pointed at any campus AppleTalk network we wished, would begin the chain reaction. What then happened is that the Energizer Bunny would walk across the screen thumping the drum, going literally from screen to screen across the whole lab. It was pretty much a riot, if you were in on the joke, but the admins couldn't figure it out (we had hidden the executable well through obfuscation by renaming it and pasting another icon on it) and after they heard the recognizable "thump, thump, thump" sound would jump up and run around helplessly yelling "It's the bunny!!" We did it a few times with "agents" at each location to witness the mayhem. Good geek times.
I think it's the nature of very talented people, that when The System is not challenging them sufficiently (or when they refuse to take on the offered challenge due to lack of interest or motivation), that they seek out their own challenges, and fun.
I don't think these kids should get punished this harshly. Felony charges? Simply for trying to break the rules? Please. Face it, it takes some effort and talent to break in, it's just misplaced effort and talent. Find a way to redirect it. I mean come on, it probably started with some high-school geek starving for attention who wanted to seem cool.
When you live in a police state - and the United States has become a dictatorship in all but name - it's important that you teach your kids the new ways early on. Can't have your citizens think for themselves now, or even think they can get away with even small freedoms. Off to the labor camps with them I say!
I just dealt with some students who abused positions of trust (as tech aides) to install keylogging software on multiple computers. We came down hard on the student who initiated this because he used the information he gathered to access email and grades of the teachers whose passwords he caught. I never considered recommending this to the police, though, because I knew that we could suggest expulsion (which we ended up on a compromise with the student and his parents on) and scare the student into not doing this again. Or, at least, we now know who he is and we can ensure that he won't do the same thing.
The primary downside is that high school computer experiences shouldn't have to be as controlled and locked down as they are in most places. While we absolutely need security surrounding our student information system, grades, attendance and teacher files, I don't like locking down computers and trying to force certain behaviors. Let these kids work normally on the computers and be clear about what is appropriate. Locking them up will only, in the end, produce exactly what these district's saw -- students who do everything possible to break the security.
Oh, and the parent who said, "and I don't know that it has cost the taxpayers any money" is delusional. Everything I do in my job costs the taxpayers money, so if I have to spent dozens or hundreds of hours tracking down the source of a security breach instead of working with students on a multimedia project or with teachers on instructional applications, then it costs money.
Are you implying that you wouldn't reimage a laptop before giving it to another student? You would leave whatever they left behind on the computer for the other students to see?
Any compentent tech would always reimage a laptop before giving it to another person. This shouldnt take more than 1 minute of work and about 5 minutes of waiting.
Never got the admin password though. Aparently, it was changed every week or something like that. At first, I put firefox and some emulators on a network drive, and latter made the folder hidden. All student account were limited users though, and we couldn't type c:\ into the IE bar and browse files. However, you can get around that by typing the path you want to browse in Word's web toolbar. Later, I just started putting the files on my USB stick. Put it in, autoplay comes up, select open in explorer, execute program. To any students: I don't recommend doing this. It can seriously hurt your grade.
I noticed this was listed under "Apple" because the students were using iBooks. Could this open some eyes and increase interest in alternative (Linux, Windows) offerings?
My school also had this. I was a computer technician for my school... About 20 students did that. We had about 1500 students with laptops... Yeah. That was fun.
Everything that happened in the article happened in my school, pretty much. AFAIK, no one was charged with anything for changing anything, the only thing was students that damaged the computer and refused to pay or tried to keep it over summer (Theft charges.)
We had to go through about 4 passwords because they kept getting out. Eventually, the computers had to be locked down so that just about nothing could be done on them.
One difference, though, was that there was no way to get around blocked websites on the laptops, as all the connections in the school were filtered through the county servers. Students still managed to get porn onto the computers, through connecting at home. That was a 10 day suspension and the laptop priveledge being removed for their time at the school, I believe.
Officially, we weren't allowed to connect to the internet at home, but there was nothing preventing it. I believe that next year my school is going to be putting a program onto the laptops to allow for (screened) home access, though.
Again, this all only applies to my school, but the situation is similar.
When Mitnick was arrested the cops wouldn't let him have a phone. They thought he could launch nuclear missles by whistling into a phone at specific frequencies.
I'm not sure if his probation is over now but one of the terms was that he couldn't even use a computer.
FalconShould there be a Law?
That question doesn't really *have* an answer on the mac. What about viruses?
It's not just "there aren't any now, but there may be eventually so you should install a scanner." A virus scanner on the mac is such a nearly useless thing that the scanners available are very bad.
One of the best ways to break a Mac has traditionally been to install Norton Antivirus.
You can't *really* protect against a threat that isn't there yet. It's easy to build a virus identifying engine on Windows because you know what sorts of things you'll be looking for. You know what the various Windows virii look like so you can test the software.
On the mac you're writing into a void. Are mac viruses going to be executables, widgets, PDFs? What vulnerability is going to be popular for creating them?
In addition, Macs having only 5% marketshare means that even if there were a virus, there wouldn't be many carriers spreading it. Low-density populations don't spread infection easily.
All this is to say that, even though only a cock-eyed optimist would believe there will never be a virus on the mac, the prevention is currently more effort and more risk than the non-existent disease. The answer they give regarding viruses is a pretty reasonable one for the time being. Another good answer woud be "always have your data backed up," but that's generally true.
The rest of your post is equally inapplicable. Apple did *not* administer this network. Your assumption about having only a single password to protect the users from themselves is bizarre...
The idea that a school can hand out laptops to all its students with software on those laptops to restrict their use is inane. The students will always crack the system because the client is in their hands. If they didn't want the students accessing porn on those computers, they shouldn't have provided them.
No actual server was breached. All that happened here is that a bunch of horny students got around the school's filtering, downloaded some music and some porn, and are now facing felony charges. Very american, but not a case of failed security. A case of foolish expectations.
The 'Secret Password' that was 'Widely Known'.
Don't think that a small group of dedicated individuals can't change the world. It's the only thing that ever has.
Just for everyone's information, here's the statute they might be prosecuted under. According to the sentencing provision, a third degree felony carries a maximum penalty of up to 7 years imprisonment (18 Pa.C.S.A. 1103) and a max $15,000 fine (18 Pa.C.S.A. 1101).
(a) Offense defined. A person commits the offense of computer trespass if he knowingly and without authority or in excess of given authority uses a computer or computer network with the intent to:
(1) temporarily or permanently remove computer data, computer programs or computer software from a computer or computer network;
(2) cause a computer to malfunction, regardless of the amount of time the malfunction persists;
(3) alter or erase any computer data, computer programs or computer software;
(4) effect the creation or alteration of a financial instrument or of an electronic transfer of funds; or
(5) cause physical injury to the property of another.
(b) Grading.--An offense under this section shall constitute a felony of the third degree.
Funny thing is the same thing is said for violating a school's drug policy or violence policy. And I'd fully expect criminal charges in either of those cases.
;-)
What the heck is "violence policy" and how it is different in the US schools from "the laws of the land"? Is it something like a Catholic school punishing a student for not turning his other cheek when hit in the first one?
Seriously, the more stories like this I read, the more sorry I feel for the kids in the US public school system. No, never been in one, got my schooling "in Soviet Russia" and even there (and then, late 70s-early 80s) they would let parents give the punishment for something as harmless as this, not the federal penal system!
Paul B.
if these had been DELL computers, would it have got DELL in the title? No! what has the brand got to do with it??
There was an unknown error in the submission.
Ok, so all the students know the password, and when they use it the school complains? The students were given the machines to increase their proficiency, and when they did, the school complains? Looks like the person handing out the notebooks had no clue about how to admin the whole scheme and it backfired; now the students are the ones getting the blame for the lax security and systesms set up by the school. Its like a bank complaining about being robbed when they left all their cash blowing around the city streets. The school should be the ones in the most trouble, not the students.
The hardware costs are correct, but the software cost stated is an outright lie. The academic cost of the software is probably around $600 to $800. IMHO it is a good mix of software.
How can ANYONE that posts on Slashdot be saying that the kids should receive punishment for what they did? I've seen several ridiculous postings and I'll respond to a couple of the more asinine ones.
The password was widely known and easy, it's not the kids fault
Riiiighht. And If you leave your window open or door unlocked then everyone has the right to walk into your house and do whatever they feel like? Or maybe it's YOUR fault that you didn't put a strong enough lock on the door.
It's not that big of a deal, they shouldn't face charges.
Yes it is a big deal, in more ways than one. The kids were all old enough to know the difference between right and wrong. They all knew that "hacking" their computers and downloading music and porn was wrong. One of the kids even was quoted as saying, "I knew it was against school policy but I didn't know it was against the law." Well, now he knows and will always remember after being charged with a crime.
What crime did they commit? Not sure as the article really doesn't say but based on some of the things they did, I can assume that they didn't download free music that didn't require a payment. Anyone trying to make an excuse for what they did should be sent back to school as obviously you need to learn a few things.
My sig of choice is Marlboro
If I were a parent in the school district in point, I'd not allow my child to use a school owned computer, or so much as touch a school owned computer. I can easily afford Powerbook, or an iBook for my child. If the school refuses to allow my child to use *my* laptop, then my child will do with out.
End of story.
"Oh drat these computers, they're so naughty and so complex, I could pinch them." --Marvin the Martian
What fucking genius came up with 50trexler for an admin password. Even I know better than that.
What is the point ? District/school officials make some money on this (or throw money around) ?
Just provide the kids monitored PCs on the LAN as usual.
"Skavinsky consulted with the Berks County District Attorney's office and recommended charges of "Computer Trespass," in violation of PA criminal code section 7615, which carries a third degree felony charge."
At my (now former) high school, the IT admins were absolutly inept, to the point that the Head honcho DOWNGRADED every last ibook from OSX.1 to 9.(whatever) because "OS Ten is too complicated" referring to the TCP/IP config and printing setup (entering IP's manually in a box for printer setup is apparently too complicated for him.)
this is the same guy who thougt you could deploy 30 non-multicasted disk images @ 4GB a piece over a 10Mb unswitched LAN within a day...
I know more about LAN security and the school's setup then he did, as the bloody student aide who's supposed to know shit...
I got a school issued ibook, immediatly RESTORED OSX proper, changed the admin codes to something SECURE, threw Firefox on there (as opposed to INTERNET EXPLORER!), and got IP printing working, and carried around a netgear WAP to every class to "allow me to print" when really i was surfing from class , i did do the work, though.
I patched security holes the IT staff knew nothing about though I could not get them to keep the Primary Domain Controller / File Server box locked down (the console was logged in as admin, unlocked in a student-accessable room, every time i walked by i locked it down and even tyed with the idea of making the password something real.
I COULD have smashed the entire school LAN to cyberdust from my ibook and have the techs crying uncle, but I didn't, because every time there was a glitch, they came running to me!
Logistical Chaos Officer http://www.slagg.org - LAN Gaming in Sarasota FL,USA
I love this sort of attitude - "Just do X, it'll only take you 10 minutes, right? Sheesh, wtf you bitching about - chill out."
It'll take a lot more than 10 minutes when you have to do it to EVERY workstation EVERY day, just because people can't learn the difference between their property and other people's property.
because then they'd have their DNA put in the database whether they are convicted or not.
Most laptops and commercially made desktops have a serial number, so if you make an simple algerithm out of that code (example if the serial number is "6835x" you can make the admin password be "yietx" because "[Y][I][E][T]" are the keys under "[6][8][3][5]" on a QWERTY keyboard. so that way hopefully maybe someone would find the password for one computer, but hopefully they wouldn't figure out the simple algerithm you made. or you could just make a simple database with the laptop serial number that is linked to a truely unique password.
now here comes some A.C. post about how "This is slashdot and we use dvorak keyboards"
Issue laptops that you know kids will tinker with and leak the admin pass. It's nothing more than a honeypot. Lawyers are going to have a field day with counter suits. Parents will spend big money to fight felony convictions!
They should have just loaded up a Knoppex CD and got around the whole issue
wow, that was beautifully handled. It's nice to hear stories of teachers/principals with a real clue on how to deal with things like this.
Ahh memories.
:/
When I was a senior in highschool, we got a spiffy new computer lab filled Mac LC II's. Pretty damn nice.
well they put one of the advanced math teachers in charge of them. He even taught some simple programming classes.
Well the computer lab was open to anyone at anytime. If you were in studyhall, all you had to do was ask to go use the lab. No monitors, nothing. You could play whatever games you brought in off a floppy.
A friend and i discovered this lovely program in the math/programming folder called HexEdit. And it had this cool BLUE jack-in-the-box icon that was just screaming, "CLICK ME!!" It was literally 2 clicks in off the desktop. Well it did exactly what the title described. let you edit the hex code of any file you wanted.
first thing we checked; disable the lockdown software on the macs. Yup. works fine. Change one little hex char and the computer was wide open.
After (ahem) borrowing a couple of nice programs (sweet physics prog and couple math progs, and the hexedit prog); we reenabled the lockdown software.
We then went down the hallway that afternoon and TOLD THE TEACHER ABOUT IT.
He DID NOTHING.
Less than a week later, Macs were failing left and right. Not booting, crashing, etc. It didn't take a lot of brains to figure out that other people had found the program.
However, people with less brains immediately cornered me and my friend. Cuz when the computers break, you blame the geeks, of course.
They completely suspended our computer use, and sent letters to our parents. We were threated with detention and suspension. This didn't happen. Particularly after we explained to the administration how we had informed the teacher of his stupidity and he did nothing. And it helped that my mother was on the school board at the time, and she knew more about computers than most of the administration.
Still ended up with restricted use. No other students got even talked to. Even though my friend and I could name at least 6 obvious culprits. Most of the rest of our class thought it was the stupidest thing ever. Since they, and many of the teachers, relied on us for computer help.
The lab was no longer wide open, and they had a teacher/staff person in there all the time after this. too little, too late.
To quote another poster; People fear what they don't understand.
I would add; And if you understand it, then they fear you, too.
No unauthorized use. Trespassers will be shot. Survivors will be shot again.
Am I wrong in assuming that the age of consent for a contract in the US is 18? Why should high school kids, of whom the majority are under this age, be held liable for a contract formed between the user agreement and themselves?
Certainly, I think it's within the rights of the school to enact discipline upon these kids by revoking privileges and sentencing suspensions, but I don't think there are any legal grounds that may be enforced in this case as the contract, in the eyes of the state or federal government, is in almost all cases, not valid.
just stating the obvious. I was quite grey hat in high school; one time i was being set up with porn in my network drive - right click, go to properties (Novell, btw), hey, look, i'm not the file owner! You might want to talk to this guy!
I may have tested some security myself, but just for curiosity. I certainly never gave any n00bs the password (actually, a password unlocking application) - that's how to get caught. Same goes with bragging.
Actually did a little consulting work later in life when a teacher showed me the new iBooks they were getting. Two minutes later: here's the root password hash. Lock down OpenFirmware, thanks.
It's almost always pride/confidence that ends up in big hacks, whether 'I set Novell to allow execute, but not copy' or 'I used two numbers in the password - it's _unbreakable_', or the worst: '[vendor] told me it's [bulletproof/_foolproof_/hax0rproof]'
From the faq:
What if a student already has another model or brand of laptop computer?
Students will be required to use the school district issued laptop for school purposes. This is necessary to ensure that the principal has the ability to spy on the students. We'll also quote: students have a computer that gives them network capability and the ability to run the software that students will need in their classes. For these reasons, other computers will not be used on the Kutztown Area School District network. but that's really not true. See, we're lying, we really need the ability to spy on the students because every principal believes they have that right and every central school district will back us up. Even though just about any other laptop out there can be configured for the network capability and software necessary for classes, we'll still stick to our guns so that we maintain the ability to be able to spy on our students. But we'll avoid telling you that. Instead we'll write the TOS in such a manner as to fool a parent into thinking that an infraction of the TOS will only result in normal school discipline such as detention or a reprimand, instead of a felony charge which will ruin your son or daughter's chances in higher education, job applications, legal firearms possession for hunting/collecting/defense of business/home, employment in the judicial field, public service employment, fireman/policeman/mass transit divisions/federal jobs including post office, and more.
See, we'd rather retain the ability to spy on your son/daughter, than to have you object to the laptop program which is making the school administration look so good.
Now that the cat's out of the bag, wait till you see how many parents opt out next year. And if Drudge gets a hold of this story, let's see how long the school board hold onto their jobs vs. the principal getting replaced.
This is a childish ignorant and scared administration handling children.
Perhaps the administrators would have grown up more if they had been teachers for 20 years beforehand.
Democracy Now! - uncensored, anti-establishment news
Comment removed based on user account deletion
well, I didn't read the usage policy either. I spent 20 minutes or so trying to find it online, without success. That's why I linked to the FAQ, since it was better than nothing, and did describe parts of the policy. Their policy MAY discuss "charges may be filed".
Comment removed based on user account deletion
Anyone see the link between the Principal's ability to spy on the entire student body, and the "Tech Director"?
Eric Erb, Principal
Mark Erb, Technology Director
Lol, what a bunch of morons. This is a classic case of not understanding children.
Children tear the heads off dolls. They take apart clocks. They have a natural curiosity to see how things tick, how they break, etc etc.
Now, that's not to say you don't use the opportunity to teach them right from wrong. But to prosecute children using criminal law for something *YOU* as an adult should damn well know is in their nature, well that's fucking retarded.
At my school, we have 1 network technician. He doesn't have enough time to monitor what we do. The computer class teachers are cluess when it comes to using a PC. They know the basics, which is word processing and internet, but they don't have a clue about security or the network. We still have Novell on our PCs, and everyone used the Novell Send Message function to send messages to each other. The school figured that it was a horrible offense, and started suspending kids for using it.
My computer teacher let me use her classroom PC to do some web designing, and when I was checking the proxy settings, I "browsed" to the last entered form information. Needless to say, she had a bunch of credit cards in there, and a few site passwords (including the admin login for the network).
It's a Mac, most kids I know have an iPod. Install OS X and boot from that, or go buy a cheap firewire HD, or better yet, I'm pretty sure these ibooks had airport and not airport extreme, which is supported under linux. Boot from a Linux live cd and have at it...
And we wonder why Columbine happened?
I say kudos to the kids, and fuck the administrators. What a bunch of pricks.
Heh, that's brilliant.
Really, all these kids need is a good shock to indicate that they're not all the shit they think they are.
The thought of all your friends and enitre school thinking you're a dip is much more compelling than the threat of a felony to a kid.
...unless they relocate to a new street address first.
We do this sorta thing every day at hs school. I have not looked for the admin pass but I know how to find it. But there is tons of ways pass the web filter by using the ip/ssl/ssh tunnel/vnc... :P
Most people who read this site have been in these kids seats at least once in there life. That is why this is a great place to gain support for your side. Except that none of us have a slight influence in your situation. It just goes to be said, life is about politics not about technology. These kids are obviously stuck in a power struggle that they stumbled upon. Luckly they will graduate in a few years and life will move on. The administration has made it their life, so they will be less likely to give to reality on the topic. Unless your losing something that you have a right to, (such as your achievements or ability to publicly voice your oppinion) the administration normally wins.
This past year, my friends and I essentially butchered and burned the usage policy at our high school.
We dismantled computers, swapped hardware (none of it was removed or introduced to the campus, all of it was from one school computer to another), even configured our own network in one of the rooms. At one point, we had indeed hacked the administrative network for the sole purpose of putting the World of Warcraft beta installer somewhere the admin would never look and thus be able to install it anywhere... But I digress.
My point is that we raised hell for the admin and never heard a word about it. Admittedly, the guy didn't know his nostril from a USB port, but still. We pirated software, downloaded music and video, hacked the network, etc... and no one ever did a thing. According the usage policy we were given, we almost should have been burned at the stake, yet... *shrug*
I guess it just surprises me to see this kind of crack-down on high school hacking where I've experienced none...
Having read slashdot for some time, it seems that, in almost all circumstances where group of elected, or non-elected officials in power do something that the /. community decides is, well, stupid, said officials get thousands of emails from slashdotters.
Within a few days, administrators have a change of heart simply to stop the flow of email.
Well, i fer wun gona houm skool me kidds. The whol worl gon crazie.
Anyone who thinks it is a good idea to have a password based on the mailing address of the school district demonstrates that at least half of the problem is in the inability to approach security problems intelligently (like, say, actually balancing security and useability).
LedgerSMB: Open source Accounting/ERP
Secondly, I wouldn't be surprised if some parents decided they could sue the school district over this. They'll claim they didn't want their kids exposed to porn or whatever on the internet and claim the school failed in its responsibility to deny students access to this. Parents buy software for home computers to deny access to smut to their kids. If the kids get around the software easily, I imagine the parents would be still upset with the software company, even though the kid was at fault. The students are minors - they aren't expected to always know or do what is appropriate (otherwise there would be no need for this protection in the first place), so perhaps it could be argued the school was so negligent that it too needs to be punished. This kind of lawsuit would be stupid too, but plausible.
Lastly, even if everyone involved ends with a felony, does it deter future students who would have had malicious intent to begin with? I would argue not only does it not deter malicous bahavior, but might even encourage it. It was now made public knowledge that the security was a joke, and that the school spends a disproportionate amount of time and effort on minor stuff, thus probably not leaving enough time and manpower to watch for sophisticated cracking.
Schools should find other things to do besides,
giving a criminal record to future potential computer freaks. Of course teenagers will do
this, it is expected. They certainly didn't
think that they would get a felony for this.
Plus they only did, what they do on their home
computers anyways.
I remember the good 'ol days when we would get into simpler trouble by dipping the girl in front's pony tail into the desk ink well. You young wippersnappers get into trouble all the wrong ways. -Fogey
Table-ized A.I.
I thought I'd share my thoughts, since this is a subject near and dear to my heart.
I was convicted of a felony three years ago, and my life was pretty much destroyed. I lost my job, my apartment, my college loans, and got slapped with thousands of dollars in fines to boot. I'm unemployable: I've shown up to different jobs to start my first day, only to be let go after because they got the results of the background check. The real kicker was that I checked "yes" to having a felony conviction on my application, but the managers claimed that "the computer says we can't hire you".
Since I am now unable to finish school and am stuck making six bucks an hour at McDonald's, I've been giving serious consideration to joining the Army. The recruiters say a waiver is no problem and they can wipe the felony from my record. I'd say gambling my life in Iraq beats the hell out of being doomed here in the Land of the Free.
where the comment ends and sig begins
This is probably too edumatational of a comment for the slashdot communtiy (not to say the intelligent people of /. are not smart enough, just that they do not care much about K-12 matters)...
/. community) will spend most of their free non-drinking time trying to break it - just for the challenge.
As someone who is actively planning a 1:1 (that is 1 student 1 laptop program) this is somewhat of a confirmation of all of my [ours] reasoning behind selling the students the laptop.
A little boring background first:
We deployed 5 wireless labs in our secondary buildings in 1999 and have added two more since (JGranholm - we need money). District owned equipment is an animal in its own. Whatever happens on it we are liable for. Hell, we cannot even ask the students to sign up for a free email account without the fear of a lawsuit. This early sampling of wifi happiness has taught us a lot. Most importantly, a student with a wireless device with Internet access is a powerful thing (can anyone say "ultimate smart ass tool" - teachers, start checking your facts) even if they use it for random browsing and online gaming.
My district has opted for a 2 part 1:1 program.
*Part 1: Volume purchase agreement with my favorite laptop company, Lenovo - wait I mean Think - no it is probably just IBM. Any ways, a T or an R.
*Part 2: HS and MS students can enter a lottery to bring in either family owned or newly purchased (see Part 1) laptops based on wifi capacity.
My network is very simple when it comes to wireless clients - you are either with us or against us (you damn terrorists!). All non-district owned machines are on a public wifi network with access to network services through a plethora of portal solutions, except for printing (IPP is really starting to piss me off). Allies (district owned machines) function just as they normally would.
Plain and simple, with our 1:1 program the student buys the equipment or brings their own. Either way it is their laptop. This article further demonstrates that if you give them a tool with some sort of security to bring home, the geeky ones (myself included and hopefully most of the
My advice to these jokers - Protect your network.
JC
Lol, kudos to the kids. Did the school really think they could just give out laptops and the kids wouldn't mess with them? I can't say I blame them. I wouldn't want my school peering over shoulder at what I'm doing either, illegal or not. Beyond that with a weak shit, dictionary style, patterned password like 50Trexler they need to be hacked. Serves the school right for being stupid. I know as for me personally, I never let a factory install, or any previous install stay on a pc I just got.
After all, the Unix core of the Mac OS operating system was developed in 1969. People have gotten smarter since then.
Best Buy can have you arrested
BOO F*CKING HOO! Nobody got hurt, its not a felony. If they want to suspend the students thats their problem, but they shouldnt bring the police in to it. High school administration are all a bunch of whiners, no damage done to a school network is irreversable, as long as they got proper backups. They should use this opportunity to better secure their network. I know what its like because I've gotten in trouble for "breaking the TOS" on my school network a few times.
In soviet Russia, Linux compiles YOU!
As someone who has never had to manage a large group of computers, I'm curious:
How difficult would it be to assign a different, random password to each system, and keep track of the passwords via serial number?
Back in the day, my high school computer lab used Mac LCII's, and the password -- "dylanmac", heh, I still remember it! -- was widely known. The students had LAN access to all other Macs, and used it to install extensions on each other's systems that caused random annoyances. Well, one day, I got tired of the games and showed the teacher what my system was doing. She watched as the Energizer Bunny walked across my screen, said something to the effect of "how cute!" and left...
After class, I explained to her that everyone knew her password, ratted out the kids who provided me the password, and recommended she change the compromised password to something a bit more complicated than her son's name. (Apparently they had simply watched the keyboard one day as she typed it in. Those clever h4x0rs.) She said that was "silly" and that "no one knows what my password is." After that, I just gave up, and took advantage of the situation.
It was the school's street address. It wasn't leaked, it was guessed. If it had been leaked, it would have had to have come from someone in the school administration. Leaks come from the inside. (unless there's something in the terms of use that say if you happen to guess our pathetic password you aren't allowed to tell anyone)
Although it might be tempting for the attorney for the defense to claim that none of the students could have guessed the password so one of the school staff must have leaked it in an entrapment attempt. :-)
I see even classic Slashdot is now pretty much unusable on dial up anymore.
...or the MAC equivalent, as long as you don't modify data on the hdd it should be very close to completely undetectable, just hold C during boot and you're set.
F7 doesn't work, ignore spelling and grammar
I'd hand it right back. "No thanks".
The students had a wonderful opportunity to show what a complete failure such draconian policies can be. But, just like with illegal file sharing, they'd rather push the other way, and end up further behind than when they started.
Just curious.
The way my old high school had everything set up, it ran diskless Windows 3.0 workstations, about 30 of them in the computer lab running off an OS/2 server. With one security flaw: the swap files of each machine were on a public shared drive. The upshot of this is that you could remotely bluescreen any (or all) computer of your choice by deleting their swapfile.
They eventually figured it out and set some security permissions, but for a while anyone who was mean to the computer geeks tended to have very bad luck trying to get any work done on the computer.
I am a former PA Highschool student...
Lemmie just say one thing the BESS proxy set up is a joke.
It filters sites that school officials wouldn't want their students to access during school hours such as pornography and the like.
But it also filters potentially academically worthwhile sites as well.
Works of Shakespere (Especially Hamlet) - BANNED
Reason: "Mentions the word 'Death'"
Medical Journals when refering to an STD or other normal health class related topic - BANNED
Reason: "Possible pornographic material"
ANY site on Geocities, Angelfire, or any other free web site provider - BANNED
Now if your trying to look up something to work on a report for Hamlet and the only place Google or Yahoo points you two is a 4 page thesis from a college student on a free webserver. You are SOL.
But that's not all. Even some of the more trivial aspects of the web are banned and for some odd reason NOT.
Anything involving Professional Wrestling - BANNED
Playboy.com - APPROVED!
- This was "corrected" eventually.
Now I'm gonna go off on a tangent here and gripe about our school's librarian.
He had it in his mind that if you were on a message board looking at information (Didn't matter what kind of message board. If it was a Shakespere discussion group that acctually worked for instance) he would ask you to please leave the site.
Didn't matter if you were posting or not. It was school policy. I can understand some of it...but to crack down on it to the point that you risk getting suspended because you want to see what some college students think about Madea and Antigone???
That's going to far.
I did some great webwork with a few teachers there. Though one teacher I would LOVE to kick in the head repeatidly because he acted like a total ass to all his students. He even taught a course on "CISCO Systems" on how to do networking... And he's color blind
Splicing ethernet cable... and he's color blind.
I'm not saying it can't be done...but imagine learning from someone that can't tell the different between some wires and it get's frustrating.
ok I'm done...
Being a student who has "tampered" with school computers many times myself there are three golden rules you MUST obey to stay clear of trouble.
1. If you hack it make it so they have to goto you to get it fixed(if you are caught) or pay massive amounts of money.
2. Make it so there is not enough evidence to charge you. Even if you are "caught" any punishment they try you just ask to bring it to a judge and if they dont have the evidence you're not guilty.
3. Just get around there rules, find loop holes.
Recently my school gave everyone sony craptops, eh I mean laptops. Being a huge supporter of open source I used knoppix. This goes ageinst there hole no installing non-approved software, hacking(had to crack WEP and I had a few novell cracking tools), and of course I had a few games on it. The admin of the school found out I did this and ignored it because he was to busy fighting kids who play games non-stop, fucked up other peoples computers, and who were looking at porn(I swear after we got these laptops ive never seen so much porn in my life). Basicly I didnt make his job harder or gloat about it at all.
This is a matter of perspective undoubtedly.
If you're the person who set this up, it's an atrocity.
If you're the student who knowingly broke the rules, then it's unfair.
Lesson #1: Life is not fair
Maybe felony charges are harsh, but they're minors so the record would be expunged when they reach legal age. It's a painful, but poignant lesson.
This is not am ambiguous issue. Regardless of whether or not the security was proper, at some point you have to respect that these young adults have a decent grasp on the concept of right and wrong, and violating rules and laws carries with it a punishment that they must face.
Last year my school district decided to get iBooks for all the students too. USD 489 Hays, KS if you dont believe me :P. Anyway early on in the year the admin password was leaked. It was "$unFl0w3r" Pretty 1337 eh? Well just about all 1000 of us students started "reconfiguring" our laptops. And in doing so tons of us got caught, but none of us were ever in any legal trouble even though we broke the agreement that we signed. Having enough common sense myself I never got caught and next year I'll be working in the ICU (iBook Care Unit.. Crappy name huh lol) as a student tech support guy. Sure our school district was stupid and didnt even try very hard to beef up the security. Computer sauvy people like me (are quite a few actually) just changed the root passwords at the begining of the year. The school didnt use it and as far as I know it was never leaked. But speaking of felonies there is a case that is still going on where they are probably gonna charge 2 students wtih 2 felonies each, but not for hacking into the laptops instead they stole them and that is grounds for such punishment. I dont even remember where I am going with this.. so I'm gonna leave it at that.
I'm a good honest person, yet if I were in the same situation as these kids I would have circumvented the security on the laptops as well.
First off wtf are people doing loaning high school kids free laptops instead of just having a computer lab in the school and computers in the school library? Its a waste of tax payers money to hand a bunch of kids who can, and frequently do, reduce a new text book to shreads in just one year expensive laptops. At least in a computer lab or library the students can be monitored, and those that don't have computers at home can stay in school after hours or over lunch to do their work like they've been doing for years.
Secondly why wouldn't the kids want to disable the spyware installed on the iBooks? The kids that want to break rules would disable it so they wouldn't get caught doing something off limits, and honest kids would disable it because they don't like the thought of having everything they do monitored. I wouldn't use computers if everything I did with them became school records that I didn't get to see; why would anyone want to trust an institution that collects information on them without disclosing what the information is or whether its even accurate.
Anyway, I'm a high school student, and I would love to get a free iBook just as much as anyone else, but I still think people trying to loan high school students laptops at the expense of tax payers are fscking nuts. If they really need them, give the kids jobs so they can buy their own; education existed before computers, and it can continue to exist fine without them.
If they were just knew the password so they could change the settings on their iBooks, there's no way in fucking hell anyone can charge them with anything criminal. Don't waste my time with these stupid fucking jokes.
have nothing to do with the schools software... at all. they gave you hardware, so use it. point a wifi antenna or 2 at the school, and boot from a linux liveCD and bypass their software entirely. I don't think they can sue you for using hardware they gave you, can they? this is coming from a guy who had to blackmail his principal after computer troubles at his old highschool oh so long ago. ( btw, if you do break their security, take copy's of everything, you might need them later!)
-and occasionaly a giant moose.
When you issure a computer to a student and let him carry it around everywhere with him/her and take it home, you're basically putting it in their position for an extended period of time. They have charge of it, and they are the only user. Also, they are liable if the computer physically breaks.
Given these conditions, I'd say that this affectively gives the student practical administrative rights. The school is way overstepping its bounds here with some of the restrictions they have tried to put on the machines. No e-mail, no chat? No personal software? It's none of the school's business.
Examples: Not EVERYTHING has to be used for academic purposes. The schools that I went to issued books, and we could do any damn thing we wanted with them as long as we didn't physically damage them. I can use the book as a door stop, a pillow, play a game of catch with it, etc. None of these uses are approved by the school, but I can do it anyway.
Just because with computers the school CAN block students from using the computer for things other than school, does that mean they should? Also, don't you think that students LEARN by being given control of their own computer system? Lots of kids don't on their own computers, and they don't have the freedom to customize or mess around with a system as they want. Laptops from school give them that opportunity (when I was a kid I had complete control over my own computer at home, and I learned so much about computer systems this way).
The school doesn't have the right to spy on the kids either.
That's my radical, left-wing opinion. :-)
Of course when i was in school this meant erasing the chalkboard when he was in lunch.
I just graduated from highschool a year ago, and my school also had the same laptop policies as this one. Now, I am very linux savvy, and we were given powerebooks. Me and some firends installed a linux distro on em and we were up and running. The password protection kicks in when OS X starts up, so this wasn't an issue with linux, but we had to get the network password, which we knew. When we got connected, all we needed to do was use a user agent switcher to fool the server into thinking Konqueror was safari.
Then we just used rotating proxy servers to access whatever we wanted to, and every chat program we used was JAVA based, so they couldnt detect them.
What they're doing to these kids is way outta control. They should just give em detention and it'll be sorted out. I mean, if the kids were a little smarter, they wouldnt have gotten caught (easily done), but hey, you learn from your mistakes and move on.
I know everything, I just don't remember it all..
the admin just came over and asked me why my desktop looks like xp and what the hell i just did to his computer
<KP> leet hax was not an acceptable answer
The school district should have given the laptop to students as a one-time grant and let it be their own responsibility. If they lose it, they have to worry about getting another one. If they mess up the software installation and can't get schoolwork done, they have to reinstall the software.
For the district to own the laptops and then use the criminal justice system to try to tell students what to do with the laptops just sets all the wrong incentives. Under those conditions, I would have just locked up the school-provided laptop in a safe place and brought my own.
Just because security isn't good, doesn't give you permission to break it. THat's one of the things I find the most disturbing about Slashdot, this attitude that if you can break someone's security, it ought to be ok to do so.
No, people's vitrual property (their data) is just as much theirs as their physical property. You have no rights to break in to it just because you can. Even if you do no damage it's a crime. I certianly think you'd flip if you found me poking around in your bedroom, even if I hadn't taken anything.
The other thing is you fail to consider the physical analogue. Your home security sucks. I can say this with almost complete confidence because it's generally true. Let's cover some of the basics:
1) Do you use high security locks, like Medeco? If not I can pick them with little trouble. All the major brands at Home Depot or the like are weak as hell. Even the high security ones are venurable, but they are hard at least.
2) How's you door? Is it solid hard wood, with a steel frame? Do you have a reinforced strike plate for the deadbolt? If not I can kick you door in with no additonal tools.
3) How about your windows? Do they even have locks? I don't mean the little pussy handles that click in place, I mean an actual physical stop in the window. If not, I'll open it from the outside. If they are locked, are they security coated? Can they take a hit form a rock and not implode?
4) Any sort of security system? Does it have a battery backup? Does it phone for help? Does it use motion sensors? If not, it's easy to get around and you'd never know I'm there.
I could go on. Point is, unless you are one of the very rare peopel that are extremely security concious, your home security sucks. Even if it's better than average, it's still probably trivial to defeat. Even if you have excellent security, it's still not a problem for a group of professionals. You really have to spend a shitload to get real security that can't be circumvented.
However, I imagine you would not think it's ok for osmeone to break in to show you your "pathetically weak security". It's your house and peopel are welcome to stay the fuck out of it without your permission. Likewise it's my computer and you are welcome to stay the fuck off it without permission.
The above is a blatant attempt at karma whoring.
It is the same post as here
Heck, if i had been prosecuted for my cracking in HS, I would've been just another hard case in juvie instead of the valedictorian. I graduated from MIT, and now I understand that the HS and Uni years are periods of ACTIVE learning. If a pupil with exceptional aptitude is suspected of some illicit activity, "I just wanted to see whether it would work," should be grounds for exoneration. Or for sentencing to MIT.
Take off, every Hoser
In the FAQs you can find the rules that were "broken". But you can also find this incredibly helpful Q and A.
What about computer viruses?
A virus that is written for the Windows Operating System (Win98, 2000, XP) cannot infect the Macintosh Operating system.
I just wish the next one was:
What about hackers?
People don't try to hack Macs. Ever.
Lets face it. If you know a REALLY good secret that you SHOULDN'T know, its going to leak out. And when information leaks, theres no telling who learns about it. For every one of those 'good half-dozen people' you told the password to, there was probably 10 other jerks who went around screwing up the school computers.
I'm not saying 'hackers' (if you can call them that in such cases) should charged as a felony, but you've got admit there is a line. We all know students will install and download whatever crap they want onto computers and theres nothing teachers can do about it, so accept it. But when students start changing grades, breaking computers, or wasting bandwidth on something they'll probably never get to use or move off the computer (anything large than a .mp3 file and the kid shouldn't even be on the computer that long); you draw a line and punish those who cross it. The ultimate question, however is, where do you draw the line? Too close and you get pointless cases such as the parent news report. Too far and you get kids hacking into school computers to change grades and get let off with a 'slap on the wrist' type punishment (in-school suspension? Some schools outright flunk you for the year or expel you for that. Hell, most colleges fail you for the course just for plagiarism, imagine how they would react to a hacking attempt to change grades.)
Has anyone questioned the absurdity of them being charged with 'computer trespass' against machines IN THEIR POSSESSION?
Isn't there a more applicable crime somewhere in the DMCA that they can just have the kids executed by firing squad for? Like uhh... 'circumvention of blah blah blah' ? I mean, my god! They didn't want to get spied on and have everything they do monitored, they must be terrorists!
Friend: "The NIC is misconfigured..." Me: "No prob, I'll just telnet in and fix it." *Silence*
This sounds so much like the "student laptops" (more like tablets) that the cadets(?) used in Ender's Game. Guess we're finally headed for that promised "21st century future", eh?
"Good news, everyone!"
Technically you could argue that breaking this security involves learning, which is assumedly what these laptops were provided for in the first place, so it's not even really a misuse of resources.
After you whistle into the phone to establish the connection, then what? Drag your fingers across the phone to think you're sending data?
Use your head just a *leeeetle* bit.
FFS never mind this, why the fuck are kids being given laptops in the first place? High school students have NO use for all this equipment, they are going to use it for music, porn and games and very very occasionally write a report on it. Seriously is it that important to waste that much money so some students can do word processing?? what the fuck happened to using the computer room or their home computer or even just writing with a bloody pen? This is just an insane waste of resources for no purpose other than to hype the fact that everyone has laptops. Yeah sure it would be _nice_ to give kids laptops but at the moment it just costs too much, when the price eventually drops to a reasonable level then this will be a viable option. For the price of this project they could probably have afforded smaller class sizes, useful equipment or more one-to-one tutoring. These computers will be useless in a few years - many of them will be broken (they're not designed to last forever), some lost or stolen, and the rest will be nearing the end of their useful life as glorified word-processors with computing power that would have only been found in a Cray a few decades ago. I would sack who-ever is responsible for this and who ever DARED to pass the buck for their mother fucking failure on to kids that are doing what kids do (at least they aren't jacking cars).
This comment does not represent the views or opinions of the user.
The thing that is needed is that the teachers has a ability to trust the pupils. Without this fundamental trust, everything goes titsup! There should be no reason at all to spy on the pupils, and I myself would quite clearly either demand that spyware removed, or I'd refuse to use the laptop.
The last year, I've been in school into electronics. I've been trusted with handling systems, out of the idea that I have not done harm so far, and if I do, it will be logged. Sure, normal workstations on school has been locked down. But on the electronics course, we need full access to our boxes, so we get to install whatever we want. Our it-guy had no problems with me running linux on it, nor with me doing snmpwalk on his switches. Because he was confident in that the setup on the switches did not crash due to a snmpwalk, nor that I would in any way try to abuse it.
School also has a 802.11b network. This is for teachers only, so encrypted. I and a few friends put up a laptop to crack it. We was fully open about it, and did it to demonstrate for the it-admin that encryption was close to useless. No, he didn't even change the encryption, because he was confident in us not sharing it with the rest of school.
It all falls back to basic trust! If IT can't trust the pupils, they should be more self confident. A porn filter on the schools line is OK, but if pupils want to surf porn at home?
Assembling etherkillers for fun an profit
I joke! I joke!!
Huh? Thanks to illegal file sharing, we now have iTunes and a dozen other shops selling songs online at reasonable prices without having to buy a whole album.
And thanks to these kids' shenanigans, some fussbudget technophobe school administrators are ending up with red faces, the kids are getting an education in the law, parents are going to get together and organize and start paying attention to what goes on in the schools, and if you think a single kid from this story will serve a minute in jail or pay so much as a penny of fines, you're crazy.
"Patriotism is your conviction that this country is superior to all other countries because you were born in it." -- GBS
I shall put a sign on my car today
in support of the kids.
"The Kutztown password is 50Trexler".
I've worked for companies that would shut down your website if they found out your password was too weak.
A number and then a real(ish) name is one of the worst passwords one can come up with.... and is boring at that.
Here's a nice tool for coming up with random passwords. It doesn't seem to recognize including spaces (which are usable in passwords with Linux, BSD, htaccess passwords, Windows XP, gmail, and who knows where else) within the generator. I guess we're left to our imagination at that point.
So that's a law under which anything that they "might" have done is illegal. Marvellous. However, taking them down the station to have them fingerprinted and saying "they might be charged with a felony" is surely just a way of trying to scare the kids (and their parents) into not doing it again.
If it were to come to court "in excess of given authority" would be an interesting thing to prove given that one the admin pw was given out on some occasions and was the postal address of the school district (as mentioned elsewhere here).
The school and the admins already look stupid in the local paper. I doubt that they want to look stupid in court too.
id say blame the technicians responsible for that crappy password... i worked at a school, we ANTICIPATED these kind of problems, so we did our best to secure things -- an 8 character password is hardly what i would call a secure password. that would take what, all of 20 minutes to brute force?
a28dmn3bdk29$ks^ldj223
If the technical department took security seriously this wouldnt have happened -- i mean the password could have been "admin" or "cat123" in which case EVERY student would be messing up the laptops, but thats what kids do. ANTICIPATE and make a real password.
for the tech community at that school ill do the hard work for you:
djw!d35!2jdm*sd03d8awr
reasaji%dbne3f2#6k3h2d
you can use these for free. or it will be a $5,000 lisence for this one:
a28mn3bdgrfecv@#k$fss28dn324bd^cldj223
Mike
I heart the RIAA & MPAA, im sure its mutual...
It seems to me that if the school was making the kids financially responsible for the laptops (which is implied by the "recommendation" that they take out insurance on them), then don't the students get corresponding rights? I know that if I was going to be made personally responsible for two grand of computer hardware I wouldn't consider accepting those kinds of restrictions on how I could use it.
Good one, kid. Brings me back to my own HS days... ;>
I think this is a dead on comparison on attitudes to day, and in years gone by.
50 years or so ago, the analogue (trespass charges from the article) would have been a bunch of schoolkids wandering off and stealing apples from some local orchard/garden. Just a handful, and just as it's 'the rebellious thing to do'.. That stage that many kids go through. And hey, adults do too.
Technically, it may be illegal, but common sense tells you it's a light hearted prank. Someone blowing off steam
You didn't just lump them in with somone who broke in your house and stole all your prized possessions.
If it were reported to the headmaster/headmistress of your school, you'd get a stern talking to, a series of detentions, lines to write, and probably a week kicking your heels in your bedroom.
All of which would say very strongly "It's really not worth the waste of your time to do it!".
An eminently sensible, and time tried solution. Everybody forgets about it in a few weeks, apart from maybe a slightly elevated reluctance on the part of the kids to 'scrump' for apples like that again.
Exactly as it should be.
Now: We get people like the teachers who went screaming to the police department at the first sign that somebody may have done something they didn't like.
Now, a suitable punishment would have been a series of detentions, letters home to the parents who would most likely have grounded the kids. And everyone would have gone on as usual.
Now, instead, you have a set of scared (and intensly angry) kids who if they do it again, are going to be much more careful, and if it looks like they're going to get caught, will likely cause collateral damage to hide their activities in.
And a series of shocked and angry parents who have suddenly lost faith in the ability of teachers to even try and keep some semblance of common sense in and out of the classroom.
Then, of course, the media, who love this, sending word far and wide to a generally disbelieving population, most of who are going to be shaking their heads at how far stupidity and knee jerk reaction has pervaded socicety and become the norm.
One thing's for sure: The image of that school is very badly damaged. I'd hazard a guess that several students will be moving (voluntarily) to another educational establishement.
The intake will likely be down (hey, would you prefer a school that'll give your kids a felony charge for a prank, or one that'll give them a detention and teach them pragmatism?).
The cost in PR and face for this action is incredible.
If the school holds it's current position, it'll likely cut off any possible stream for kids with a prankish side (who often tend to be highly creative; note this isn't just kids who misbehave just to be disruptive. Difference between Ferris Bueler and Bart Simpson) coming into the school.
And most other kids whose parents just don't want to risk it.
If they turn it around, and quash the teacher's wishes so completely, the administration will just never be treated as a joke, and it's authority will be seriously undermined (can you imagine, every small action a kid gets pulled up for, they'll be saying 'what are you going to do? Report it to the police?').
Maybe I'm just getting old, but all this leaves me with is the wish that things would go back to before the politically correct and lawsuit hungry era back to times when common sense was actually held in esteem. When you could actually learn to respect someone for being harsh but fair, rather than having them try to force respect by waving the threat of a lawsuit in your face at every corner.
Just curious....does anybody know what they used (or tried to use) to keep users (standard users) in OS X from installing software within their /user directory?
Rule number 1 of security, if the attacker gains unsupervised physical access to the box, game over. What in the world did they think was going to happen?
You can raise the bar quite high if you use various crypto signature techniques, but ultimately a soldering iron and a flash burner will defeat that. A CPU that can check the BIOS signature in micricode on powerup would raise it much higher still(probably beyond a student's reach, in fact), but could be defeated by a determined attacker with the right laser and microscope.
Despite all of that, the real crime here is school administraters who have forgotten why they are there and who they serve. They are supposed to provide the students with a safe learning environment where they not only learn what's in the books, but how to get along in society. Part of that includes the school modeling society in microcosm. Part of that includes demonstrating that poor choices have unpleasant consequences while protecting them from the worst of those consequences while they are learning. Whenever outside law enforcement is called in, the school has failed in it's primary purpose. When outside law enforcement is unnecessarily brought in, the school has WILLFULLY derelected it's duty to the students, parents, and society.
Schools often claim to be acting in loco parentis and so need not recognize a student's 4th ammendment rights amongst others. Courts tend to agree with that. What they have forgotten here is that there are duties and responsabilities that go along with acting in loco parentis. Would any decent parent file felony charges in retribution if their high school aged child hacked their computer to bypass the parental netfilter?
The administraters are embarrassed that the students got the best of them. In their embarrassment, they have rather childishly decided to do as much harm to the students as the law will let them get away with. It sounds like the administraters responsable for this shouldn't be allowed anywhere near responsability for children until they spend some quality time with a qualified psychologist. In addition, given that the administraters have demonstrated an emotional age equal to or lower than that of the students, perhaps they should serve a few weeks of detention as well.
Were I one of the parents, I would probably petition for the administraters' immediate dismissal for incompetance.
Er, that should be "Kutztown" in the article title. Located in beautiful east-central Pennsylvania.
We have to prepare kids for the future. And once the DMCA was enacted, we no longer own our stuff. Thus, kids should get used to the idea that we can't use products they way we want. Thus if we use them in a way that society deems harmful, no matter how mundane that use is, there are going to be consequences.
If someone says he and his monkey have nothing to hide, they almost certainly do.
It now seems the rage to pass laws that make more and more of being a naturally rebelious teenager illegal. Are we as a nation shooting ourselves in the foot (head?) by making felons out of the brightest of our young students, simply to score political points for toting the party line?
Our nations technological competitors and national adversaries must be jumping with glee over the mentality for zealotry this administration has ushered in.
Should these kids be disciplined? Yes, of course, but do we as a nation really need to do damage to ourselves and our educational system in the long run by pointlessly harsh punishments for the sake of political purity? So much for Christian compassion for those who go astray.
" Sovereign individuals can buy their own laptops and do with them as they please."
No, that's against the law according to the MPAA, the RIAA, and most government agencies
I think they should go for the death penalty. It is important to send a message to teens across the US that surfing the Internet is not to be tolerated and will be quickly and decisively punished. Not allowances for the, we didn't know defense. They need to learn early and now, that their actions contitute a grave threat against this country and that grave actions will be meet with grave concequenses.
So, please, everyone rise up with me and insist that the death penalty be employed to send the right message, to help protect our children.
From http://www.readingeagle.com/re/news/1401578.asp
"The way the school district handled this whole situation was unbelievably atrocious," said Hillary A. Thomas, the mother of Sheldon Thomas, 17, who completed his junior year and is one of the students charged.
Hillary Thomas was among five parents who agreed to talk about the case.
They said the students' actions would have resulted in nothing more than grounding or loss of computer privileges if they did with a home computer what has happened on school laptops.
No permanent damage was done to the district's computer system and nobody was hurt by the students' misdeeds, they said.
"I'd have pulled the modem plug and it would have been hidden," said LeAnn M. Shoemaker, mother of John L. Shrawder, 15, a charged student who was a freshman.
The parents said they didn't learn of the charges until they received a recent letter from police.
Dr. Brenda A. Winkler, superintendent, said Friday that district officials contacted several parents.
"The high school did a lot of contacting," she said.
Parents also are upset they still have not received a copy of the complaint that lists the charges.
They said the district should have tighter security on its computers.
Kutztown Police Chief Theodore R. Cole has said it would be up to the Berks County Juvenile Probation Office to send the parents copies of the charges.
The students are not in custody. The letter from police asked them to go to the Kutztown police station for fingerprinting and identification. The parents said their children have not done that.
Thomas said her son downloaded iChat, a messaging program, and Acquisitions, a program for downloading music.
"We have not even seen the charges, so the whole thing's in limbo," Thomas said.
One of the things I find disturbing about Slashdot is, no matter how many years we've been reading articles like this, people continue to make specious analogies with the physical world. And then someone responds on why the analogy was flawed. Then someone replies to that with a new, amended analogy. Etc., etc.
I conducted a security assessment for a large school district about two years ago. Yup cracked %80 of their passwords in 20 mins. I was called in after some student changed his grades and attendance records in the district's database. They had no brute force detection on anything. No password aging. No real security policy at all. Did not find one strong password. Some if not most of the teachers login passwords to the main database (an Access db at that) was the same as their email name. They would not have caught this guy except he talked about it to a "friend" that then ratted him out.
After seeing how security was run at this LARGE district I don't have a whole lot of sympathy for IT Directors when their systems get cracked.
A long time ago as a freshman in H.S. I changed the names of the icons on the desktop to some rude (but halarious) names. They had put in security (the files were read only). and they had removed the DOS icon from windows 95.
I was punished by not being allowed to use computers without supervision until graduation. I was threatened to being turned into authorities and being formally charged with trespassing computer property and disabeling security measures.
I do not blame them, they feared what they didn't understand. But this type of reaction will discourage learning. Our youth will be taught that testing the boundaries and challenging Authority can be catestrophic. "The earth is not flat" - you will be beheaded. This type of thinking is what slowed progress in the Dark Ages. In the Dark Ages they thought they were intellegent, but we can see in hindsight that some of the political (theocratical) culture slowed intellectual growth.
The danger lies not in the one you fear, but in the fear that controlls you.
Sometime around 1977 my father stood in front of my state's legislature and gave testimony regarding a computer crime bill that was up for consideration. He pointed out that this bill would not only have little or no effect upon it's intended targets (white collar criminals), but would instantly felonize the bulk of the state's computer science and engineering students. It was a really stupid law, created with the usual "we have to appear to be doing something so let's do something in a hurry without out thinking it through" mentality.
... the teachers and administrators in this case probably feel the need to "send a message" to the student body. They think that message is "respect the law!", when the actual message is "the law doesn't respect you, so why should you respect the law?" All this kind of treatment will do is create more Kevin Mitnicks.
They hadn't thought of that.
That bill didn't pass (only because an intelligent, well-spoken engineer gave the politicians some facts they chose not to ignore), but there always those that feel the need to increase the crime/punishment ratio to insane levels. Oh I know
The higher the technology, the sharper that two-edged sword.
Just reading the number of comments in regards to "nazi network policies" and whatnot, you have to understand something: It's NOT your network, nor are the computers you're using yours. The computers and network you are using is your employer's or school's. If they set AUPs, fucking abide by them.
It's people like you that's the reason for such strict policies. "Dah, I didn't know I wasn't supposed to look at boobs on company time." "Dah, I didn't know I wasn't supposed to install pirated software on my work machine."
People like you make my job hell. I don't like having to police my users, but I have to. If I only had the authority to enforce, "Well, you only worked 30 hours out of your 40 hour week, so here's 75% of your paycheck." If only...
That was very, very well said but (of course) I'm totally out of mod points so you'll have to settle for an "atta'boy!"
I agree - this shit is a total scam.
To answer your rhetorical question about why computers instead of additional tutoring or other materials? It's all about metrics. It's easy to measure whether a student has a computer... it's difficult to measure whether an instructor is efficient or whether tutoring sessions are effective.
BTW: My daughter is attending a state college and IIRC their MINIMUM requirements for a PC is (are you sitting down) a 3Ghz P4 or a 1.6Ghz Mac or faster(!) with a half-gig of RAM and 40GB HDD, an absurd amount of processing power for IM, email, web browsing and writing a few reports. Three thousand four hundred clock cycles (x # of cores, x #preinstuction fetching/multiple pipelines, etc.) adds up to a LOT of power. I mean, damn, you could compute a moon orbit insertion in less than a second on that machine but 99% of the time it'll be used as a glorified typewriter. How did anyone ever survive college with only pencil, paper and a typewriter?
Of course, when asked why top-end systems were necessary for freshman students, the staff couldn't tell me *why* they required a hot-rod computer, simply "that's our requirement." When asked what tasks the system must be able to perform, the staff said "general computing." Yeah, right. And the school **REQUIRES** MS Office, student edition ($150). According to staff, OpenOffice (free) is not an acceptable substitute. Again, no reason why could be given, simply "that's our standard."
Makes me wonder how Microsoft, Gateway and Apple are listed as "recommended" brands. I have no reason to suspect a kickback or paid product placement, do you?
That's not as bad as it is here. I live in a dying town, and the school district is constantly 'upgrading', making it seem as though it is getting closer to competing with other districts in technology. Well, now we have toasters and an ActiveX program called citrix. Guess what? It doesn't work on Linux, it doesn't work on mac, it doesn't even work on older (3+ years old) computers. And you know what the tech department is saying? That it's the computer owner's fault; they should buy a new computer. I'm sorry; not everyone runs windows; not everyone has the money to buy a brand new computer.
Show this to your friends and family that don't know what a real hacker is
n/t
*Stop commenting on sig*
Okey dokey.
-
- - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
Thanks, I didn't know for sure if Kevin's probation was over.
He's now a security consultant.
Now this I did know. Kevin has also testified before congress.
FalconShould there be a Law?
When i was in 6th day, oh i dunno 12+ years ago, I somehow managed to get into the network of my school, this was when I was 1st learning about computers. Well like any childhood ass I deleted lots of stuff from lots of computers. Well because all this stuff is logged it wasnt hard to track me down. I got banned from the computers in school for 6 months. I guess the good news is the pc lab teacher saw my potential and after the ban was up she converted me to a white hat and i spent the next 3 middle school years helping her out and she taught me alot of stuff. When I went to high school I was smarter then the PC lab teacher their and she ended up letting me teach the class alot of stuff that she just didnt know.
Makes me wonder how Microsoft, Gateway and Apple are listed as "recommended" brands. I have no reason to suspect a kickback or paid product placement, do you?
Well I guess that might be why these students were given these computers.
Anyway back to the topic, school is all about making mistakes and learning for real life and thats what these kids have done. im sure in the future they will remember to do it more discretely and avoid getting caught. They should have been more careful though, you don't just go through your school-issued computer willy-nilly, they should have first thought to themselves "why have we been given these machines?". They should have gathered some dirt on the principle - any kick-backs etc. If they didn't find anything they could either have written a report on his managerial incompetence or just made some dirt up - keeping it secure incase it was needed as 'coercion'. After that it would be prudent not to get caught, ok so its not right they should get felony charges, I would have made them write a report on 'covering your ass' and left it at that. They need to learn how to deal with this crap before they leave school.
This comment does not represent the views or opinions of the user.
Its got nothing to do with Apple.
MSBPodcast.com The opinions expressed here are my own. If you don't like 'em... Think up your own stuff.
I did just that to our internet use policy back in high school. My father is a lawyer, so I had him look over the paper before I signed it. He took one look at it and informed me that I would be stupid to sign.
The policy did not have a list of offenses or punishments. It just stated, basically, that "if we don't agree with what you are doing, we can do whatever we want to you."
You can imagine the look of the secretary's face when I returned it unsigned "on advice from my lawyer." I had internet access at home, so I didn't really care.
that this is some kind of new McDonalds recruiting tactic, seeing as that this is the only place that these kids will be able to get a job if these trumped up felony charges hold up. Why would anybody honestly think this is a good thing? You damn people just won't be happy unless you can lock up at least 25% of your population, will you? Is this just an attempt to revive your manufacturing base? By using prison labor? You won't have to out source anymore. This is sickness!
What?
"But, just like with illegal file sharing, they'd rather push the other way, and end up further behind than when they started."
I have 1.2 terabyte of attached storage that say you're wrong.
Makes me wonder what would happen if a student said "No, I don't agree to your terms and refuse to accept your computer."
Geoffrey, you sound like a smart kid and surpass most of your peers but you need to experience freedom. Bum around Canada for the summer, take pictures and write about what you see.
If you stay in the straight jacket society has given you will regret it later in life.
"I knew it was against school policy," he said. "But I didn't know it was a felony."
The students had no respect or fear of anything short of a felony conviction. The lack of repect for authority is epidemic and comes from more sources than could be identified, but I suspect that if the administrators thought that a stern talking to would have prevented students from continuing to do the same thing in the future that they would have considered it an option. The question here shouldn't be "why did the school overreact?' It should be "why can't the students be trusted to do what they admit to knowing was the proper course of action?"
I would be a little more concerned about the long-term consequences of a felony conviction, but the students in question are minors. The charges are likely to be reduced during the legal process, and their records will be expunged at age 18.
That being said, I think it was an ill-advised program to start with, and that the school district has shown their incompetence to manage technology projects of this size. If I were a taxpayer whose hard earned money was being used for this I would be livid. The people in charge obviously did not have sufficient mental resources and/or hired expertise to reach their stated goals for this initiative, but went ahead and spent other peoples money on it anyway.
I would imagine they could have funded courses on ethics for every student in the district with the money they wasted on unnecessary hardware and software, and that those classes would have done a lot more for the future of the community than redundant computer access for a generation of students who are obviously already sufficiently computer savvy. The fact that they were able to outsmart the administration and IT staff regarding computer issues proves that they already have more understanding of these areas than is needed to get a job.
Unfortunately, people who don't bother to take the time to understand computers assume it's a lot harder than it is, so they think kids need to be educated in it. Kids have plenty of places where they can learn about computers, and it's one of the few subjects that illicits so much self-motivation. How many coffee shops offer access on demand to history or biology instructors? How many libraries have chemistry labs or a place to disect frogs, or instruction in how play an instrument with a group of like-minded people? These are offerings that are possible through schools but often are being crowded out of the budget by techology funding.
Basically, there is no such thing as an unbreakable lock. Personally, I don't believe there is such a thing as an unbreakable machine. A determined hacker (especially kids who have all the time in the world and think outside the box), WILL get in somewhere you don't want them to eventually. I've come to accept that reasonable security is all you can hope for.
Whenever stories like this come out there's always a horde of Slashdotter's to decry how the security (and those who implemented it) sucked. And that's fine, I understand the mentality, but you folks should understand the types who work in schools.
Many Tech Coords were or ARE teachers themselves with little or no experience in the security/networking field. For instance, before me this school didn't even HAVE a TC - it was just a cadre of willing teachers (the HORROR!)
"...Well, there's egg and bacon; egg sausage and bacon; egg and spam; egg bacon and spam; egg bacon sausage and spam..."
I'm surprised that no one has noticed this. The school district REQUIRED students to use the school laptops, even if they had a laptop at home that they could have brought in and used. The school district also REQUIRES teachers to implement the laptops into the curriculum so they are used. The school district has monitoring software so that they can spy on the students. Basically they are providing themselves with tools that they can spy on students, requiring students to carry those tools, and if students disable the spy software, they get charged with felonies. Am I the only one that sees a problem with this? If my kid was in that school district, I'd be visiting with a lawyer and/or other organizations to get some changes made around there. This is a total invasion of privacy, but it's been glossed over as a "free" laptop, so people have looked at it as a good thing instead of the invasion of privacy that it also is.
Really its the school that should be in trouble here. They gave the students laptops to use so that they could spy on their viewing habits. Last time I checked we weren't living in communist China.
If they only wanted to monitor the packets to determine that no one was spamming emails or DDoSing servers, I think that's fine. Because, that is just taking necessary network security precaution.
However, spying on kids as they write instant messages and emails to each other about their personal life, teachers, or school work should be considered a crime itself.
If you disagree with me, consider this for a moment. What if the student brought his own laptop to the school instead of using the one they provided? Would they still insist on installing pcanywhere/vnc/altris or whatever it is they use there? Or would they simply deny them the right to bring in their own laptop?
I think it is a attack on innate human freedoms here.
...to meet the underdeveloped idiot who thinks that it is a good idea to charge these kids with computer felony. When will these imbeciles understand that the school is a place where kids LEARN (and this is *exactly* what these kids did) and not jails?
These stupids should understand that if they do not like kids or school they should simply change job. It is clear that an idiot who wants to charge a kid with computer felony can't even be considered a human being... and for sure not someone that should work in a school.
Just remember, most of those recruiters will say ANYTHING to get you to sign their papers... so if you're thinking about joining up just for that, make sure you get it in writing that they can "wipe the felony" away.
I don't think the armed forces can actually do that, anyway. On the other hand, if it was small enough and long enough ago, perhaps you could have a lawyer petition the court to have your felony expunged from your record... google 'expunge felony' for a zillion hits.
Just my $0.55 (US inflation, 1774-2008, for $0.02)
Get a law degree, then practice law.
My school uses deepfreeze on all its machines. Ironically, it doesn't work on the Windows 98 machines in the computer labs (haha, go figure). It doesn't even seem to work on the machines with XP (you install something and it stays even if you reboot). I'm sure it could be easily turned off, i've never tried becuase i'd rather not loose my network access rights before I graduate.
From what i've gathered off that schools FAQ, I would be charged by simply installing firefox on the network hardrive. I've done this at my school to A) avoid storing my history for everyone to see, B) Be able to have my own bookmarks, and C) to avoid IE's annoying pop ups. I'm not worried about my Network drive being checked, we have a tech staff of about 5 for 7 schools for 5500 students. If I really wanted to be sneaky, I'd just install it on a thumbdrive.
Hell, I've know "student aides" (who assist teachers during a period) to copy exams from the teachers HDD to a thumbdrive without the teacher knowing.
Kyle
That is technically an "ex post facto" (adding punishment after the fact) law, which is illegal, but they weasel out of it by saying it isn't punishment, it is just aiding "public safety" by restricting "privileges" of persons with a "felony status", not punishment for a crime.
"Ex Post Facto" as a legal doctorine doesn't have anything to do with adding punishment after the crime. Since we don't live in a Minority Report (starring Tom Cruise!) world yet, all punishment comes after the crime... so this is somewhat normal. "Ex Post Facto" actually refers to adding a new law after the crime has been committed and then charging the person with that law. Even though the law did not exist prior to the commission of the criminal act.
Just as if the DMV takes your license away in an administrative hearing for DUI even if you are acquitted in criminal court! What about double jeapordy? Well the admin. hearing is not "punishment".
"Double Jeopardy" doesn't have much to do with punishment, it has to do with the prohibition of bringing a person to trial for the same crime after it has already been adjudicated.
However, in reality most offences have multiple punishments attached to them (i.e. your conduct can trigger responses from multiple sections of law). You pointed this out with your DUI-DMV example.
As another example, Armed robbery usually includes charges of aggrivated robbery, unlawful use of a deadly weapon, etc... depending on how you did what you did. After this you would probably be taken to civil court for violating the civil rights of your victims as well.
-- No matter how great your triumphs or how tragic your defeats, approximately one billion Chinese couldn't care less.
We also have the DMCA, DRM, and a continuous push for even more protective legislation by Big Media.
I am convinced that something along the lines of iTunes would have happened anyway- all it took was acting on one of the biggest complaints that people have- they're tired of paying $15 for a CD full of crap, when there's only one or two songs that really merit any value.
In any case the student has admitted guilt. Weather his statement can be used in court against him is another matter. It's an almost slam dunk case if his statement is allowed, as ignorance of the law is no excuse for breaking the law. However, the rules for allowing statements of guilt are very strict, and it's very likely (unless this kid is a moron and said this after he was explicitly remind of his constitutional rights) that the statements will not be allowed in court.
In any case, I don't expect either side wants to take this to trail. Even without the statements, I wouldn't risk my kids fate at the hands of a jury. All you need is clueless strong willed one person who lost money/time to a hacker on the jury. So there will be a plea, and these kids will end up cleaning up some park for 8 weekends.
I'm posting this so that you (the moderator) have some context to consider twitter and not mod him up whenever he posts his filler preformatted rants about installing Knoppix or Mepis or whatever that unfortunately get him karma every single time and allow him to continue posting his trademark toxic crap (read on) day in and day out. You may consider this a troll - I consider it community service. And I ain't kidding.
If you're a /. subscriber, I invite you to look through some of his posting history. I guarantee that you'll be hard pressed to find someone that is more "out there" than twitter. You'll also probably notice he's got quite an AC following. Don't just read his posts, make sure you go through the replies.
To get an idea of what I'm talking about, check this post out. This is an article about email disclaimers. The parent of the post is complaining about the ads in the linked page and so on, and twitter actually goes off on a rant to blame it on Microsoft and recommend Lynx, because "is teh free".
Here's another. In this post twitter not only calls the OP a troll but attempts to "tell it like it is" while making some vague argument about "GNU". Yes, if you're confused, you're not alone. The reply (modded +4) proceeds to simply destroy his bogus argument. You will notice he did not reply. This is what some people call "drive-by advocacy". A sort of I'll just leave you with my thoughts here and move on to the next flamebait kind of deal. In fact, he almost never replies because he knows that his fanatical arguments simply do not hold up to any sort of discussion. It's not that he's chosen the wrong cause - he's just going at it in a completely wrong way.
Here's that drive-by advocacy and FUD in motion: twitter goes on about some topic and then drops the usual "oh and M$ is teh evil" because "WMP phones home" or some such. Called on his FUD, he then claims that WMP stores every song and movie you've ever played in a file, somewhere. Pressed further, he just sort of slithers out of sight, his FUD-spreading complete. This is not about some Microsoft technology that nobody likes anyway; it's about lying for the sake of lying. Way too many of his posts are exactly like this one.
More? Just read though this post and the subsequent replies. I guess this stands on its own. Or these two. Or this one. Or this one.
Still not convinced? This is what twitter considers "humour" while going about his daily "M$" routine.
Now I know why I enjoyed your post so much. Tazwell, eh? I grew up in Washington County (John S. Battle class of '93). So I kind of have an idea where you're coming from. And you're on your way into med school? Good on ya!!!! I hope you graduate at the top of a class filled with yankees and NOVA's =D
On a side note, I had the following experience my freshman year of college (out of state, BTW). A guy living on my floor was from Faquier County, VA. He asked me how I did on some of the standardized tests (ACT, AP exams). At the time I graduated, I was only the 3rd person (and only male) in my high school's 30+ year history to score a 5 on the AP English Exam. Anyway, after I finished sharing my accomplishments with him, I could tell by the look on his face what he was thinking.
"What's the matter?" I asked him. "Do you find it hard to believe someone from Southwest Virginia could do so well?"
"Actually," he replied, "Yeah. I do."
Fortunately for him, my desire to yank his head out of his butt and slam it repeatedly against the wall was outweighed by my desire not to get expelled and go to jail.
To his credit, at least he was honest about being "elitist NOVA scum" ;)
This isn't the sig you're looking for...
Young people have a genetic imperative to act outside the bounds of parental and societal rules to one degree or another. That's how things get better over generations- someone didn't listen to what they were told and went off exploring things for themselves. We like this impulse when it leads to scientific breakthroughs but somehow expect it to drop cold dead at the door of computer networks. It's not like they were experimenting with drunk driving and date rape and drugs. Very young people who have the impulse to explore and test (this excludes very young people destined by their genes to be obedient sheeple) can't distinguish these ephemeral boundaries, all the more so if the prohibited act doesn't look or feel or obviously result in anything dramatic (typing in this here instead of that there)
If getting curious and testing the boundaries of things, which is what adolescents are programmed to do by nature, is going to result in FELONY CHARGES then what parents need to do is tell the school administrators to take their "free" laptop and shove it up their collective a**.. it's up the the admin to safeguard their shit against what they can reasonably believe to be curious probling sneaky children. That's why we call them CHILDREN- because they act liek children.
My charge was a Class D Felony for possession of a controlled substance, which makes it one of the lowest felonies you can get. Unfortuanately, a felony is a felony in many people's (and most employers') eyes.
And believe me, I've looked into having it expunged. The information I've received has ranged from impossible (a page I found on Google reguarding my state's laws), possibly (a lawyer I can't afford on my salary, but offered free consultations), to "in five to seven years, maybe" (my probation officer). Five to seven years? I just turned twenty-three; this is the time in people's lives when they start their career paths, go to school, and generally build the foundations of their adult lives! I can't spend five to seven years "treading water" in the hope that maybe, someday I can have my record expunged.
where the comment ends and sig begins
Oh my god!!! High school students looking at porn. Big surprise there.
I would have caught you redhanded(don't doubt this),and nailed you to your ego. Then everywhere you go afterwards I would add an addendum specifying your stupidities when requested and make your life as sh!tty as you tried to make it for me. Grow up! Just because some kid annoys the crap out of you doesn't give you the right or the athority to ruin someone's life. If I was your employer reading this, I would have fired you. With power comes responsibility, and you are not using it wisely. let the punishment fit the crime. People are involved and sometimes they don't forgive. And when the times comes, those who do not forgive will not be forgiven. I hope you like it hot... HAND.
google: citrix osx or google citrix linux and the first results are the clients for those OS
I'm sorry to say this, but as a person both having worked with maintaining computers in the class-room and having been on the other side because of annoying/impractical/senseless rules imposed by other administrators you make the wrong points. Sure, computers need to have some security built into your school computers, but this is no different from not giving the administrator priviliges to every random user on your network, or even to their own workstation computers in the company. There is a certain needed level of obstacles you can - and should set - to make sure only people who know what they are doing get past it. Let's face it here, if kids want to get into a computer and has sufficient time for it (and skills as well as determination to do research on the web), we can't stop them. It's a question of time, pure and simple - they have more time to try than we do to stop them. Your main issue seems to be a question of motivation for the kids. Don't try beating them at a game you simply cannot win - Child psychology 101 ;-). In stead try motivating them to use their energy in a more contructive way. Set them challenges, in the classroom or outside, similar to what they can do. For example a workshop for network security, where they can try getting past your countermeasures on the network and report them back to you. This way everyone has the game, but the result will be a more secure network than you could ever do on your own. These kids have near-unlimited resources, timewise, and if you treat them like the enemy, they will _be_ the enemy. The security-by-obscurity scheme never does anyone any favours.
The time when you could simply tell students to do this and that is over. The informed (and probably spoiled) kids of today demand explanations and reasons for doing what was earlier taken for granted. If you can harness this you have a great ressource, if not you can keep fighting your losing battle forever.
Of course they're going to try to hack it. And of course they eventually are going to succeed. And what's the business of relying on a SINGLE password 50Trexler? Stupid. Spend more resources teaching the students the fundamentals. Computers are tools, not the fundamentals which are the raison d'etre for tools. Much of what is called progress is just so much technological roccoco anyway.
It's a difficult thing.
The essential "problem" is that kids are smarter then parents and teachers with respect to technology. Kids know this. Which is one of the reasons they engage in such acts. They think they won't be caught- because most of the time, they won't (unless they are foolish in the way they hack, which could happen). This is adults' greatest fear, really- kids who are smarter then them. Which is why everyone freaks out when some case like this comes into the spotlight. It's like parents blind themselves for the sole purpose so that they can act all protective/judgemental when suddenly their kids do something "they don't know about".
Or if the kid is caught, typically he/she knows that the consequences won't be all that bad. They might get grounded I suppose. But a lot of times, the parents are the ones who are blamed and have to take responsiblity for the kid's crime. (Example: RIAA suing downloaders)
Now some people say that kids don't understand the law yet (they are too young), so they shouldn't be responsible. My opinion: that's a complete load of crap. Heck, most PARENTS don't understand the law- that's why they have to employ lawyers. Declaring to some kid that he's ignorant and so letting him off the hook is akin to teaching a criminal that someone else will take the blame for their crimes, so they don't have to worry about it. Kids learn that, then later when they grow up and become REAL threats to society, and people wonder why.
If I had any "recommendations", it would be these:
1) Adults, you MUST make a serious effort to learn technology so that you have at least a reasonable understanding of what young people are doing on computers. Age is not an excuse. It's bullshit that you are "so old I can't learn like I did when I was 18". That's just a ridiculus society-driven belief, which is not in the least bit true. Maybe you have a few less brain cells, yes. But more times then not, you're just BS-ing yourself because you're too lazy to learn. Stop fooling yourself and do some friggin work, instead of assuming your kids at fault for what you yourself don't understand.
2) Kids need to be treated more like people, rather then "kids"- i.e. people who somehow don't know anything just because "they haven't been alive long enough". For god sake, if kids know things about computers that you don't, what does that say about your belief that kids are ignorant? Time is not a good indicator of ablity. Only results are an indicator of ability. Just because a kid hasn't been around "long enough" doesn't mean they don't have the ability- ESPECIALLY when they demonstrate that ability by doing something.
3) So basically, if a kid does a crime, then take appropriate action. Parents should not be allowed to "protect" their kids from ligitimently committed crimes. Just make the crime fit the action, as well as the person who did it. It would be appropriate to hold a session with the 80-100 to explain to them why what they did was unacceptable, and have them do something like work on a project to improve school security. Or, it may be appropriate to take no action against the kid if the school cannot prove that they had a program in place to teach the kids what actions on their computer are/are not acceptable. It is fair that a person be given every opportunity to know and understand the law before any judgement for breaking that law is given.
If you are honest on your application, I'll at least listen to your story and make a business decision. If you lie on your application, that's a deal-breaker.
"Avoid employing unlucky people - throw half of the pile of CVs in the bin without reading them." -- David Brent
The real solution here is not to do the typical "we need to teach these kids a lesson and throw the full weight of the law on top of them." The real solution would be for the school's IT people to use this as an object lesson and correct their own mistakes. Assigning the same idiotic password to all the computers and being so irresponsible as to let it leak out is nobody's fault but their own. If I were in charge I would have at the very least generated a very strong password and not allowed any student whatsoever to find out what it is, or, even more secure, created a script to generate a unique password for each computer (tracked by serial number) and kept this list on my machine only (and whatever non-student staff members I might have).
But in typical CYA fashion, instead of admitting to their mistakes, they want these kids to cop to felony "computer trespass" charges. I'd feel like a total idiot if I were part of the Kurztown Police Department. Do they have nothing better to do than pick up kids for using a password to reconfigure their computers? This is a particularly inappropriate abuse of the justice system, in my view. FWIW, I am a member of law enforcement and this makes me glad I work in a town that has enough real problems we have to deal with. Kids mucking around with computer networks yet causing no damage to anyone are certainly not on our list of priorities. It's ridiculous, they should give these kids a break; at least they're not out stabbing people and robbing convenience stores at gunpoint. Downloading music and "inappropriate" images, my goodness, what a major league offense...
Knowing someone's criminal record precisely and evaluating that their crimes should not have been crimes and do not indicate any likelihood of violent crime, that isn't negligence, it's laxness.
..the correct word is "laxitivity".
http://dictionary.reference.com/search?q=bartery
Probably not what you had in mind..
That that is is that that that that is not is not.
Twitter, you're a petulant cock-gobbling sycophant to Linux Torvaldyos! Quit taking DP from ESR and RMS's feculent cocks and why don't you try to stop sucking quite so much? Get out of your parents' basement and see the real world - maybe then you'll see how pathetic you sound, with your neverending stream of bullshit about how Microsoft is stalking you. Wasn't it you who said that Microsoft believes your insane ranting is actually a threat to them, so they PAY PEOPLE to reply to you on Slashdot? No sir, I don't get any money. I do it for the love. Someone has to go up against your paranoid whining. So get back in your cage and shut the fuck up already.
Limping back into my cave, cane in hand... where DID I put my teeth... now.
... grumble, grumble, grumble, mutter, mutter, Millenium... Hand... Shrimp, I tol' 'em, I tol' 'em.