Slashdot Mirror
Felony Charges For H.S. Hacking
jayrtfm writes "Last year the Kurtztown Area High School approved a program which gave every student an iBook. Now 13 students face felony charges for violating the district's usage policy." From the article: "Shrawder said the secret password '50Trexler,' was widely-known among the student body and distributed early in the school year. It allowed between 80 and 100 students to reconfigure their laptops, he said. The more computer-savvy students began to disable the administrations' ability to spy on the students' computer use. For others, it became a game, trying to outsmart the administration and compete with fellow students who held the secret, Shrawder said."
This news was also reported in the Reading Eagle/Reading Times.
In that article, it was said that the students were accessing porn sites, and HAD infact hacked the administrative network.
However, living in this area, I feel it necessary to point out that the papers around here can't handle technical articles, and and usually get the facts wrong. For all we know, they got the admin pass, and disabled the proxy (which was likely the n2h2 Bess Proxy), and all of this is being blown out of proportion.
Once more facts become clear, maybe we'll learn why the rest of the 80-100 students weren't charged.
I attended and worked IT for Conrad Weiser Area School District which is about 20 minutes away from Kutztown, where we had the BCIU come in to do a lot of work on machines. The BCIU is clueless, and security is their lowest priority. It wouldn't surprise me at all if the BCIU worked with Kutztown High to setup this network, making it all the easier for these kids.
Also, here are the nyud mirrors of the links:
FAQ
Kutztown Area Patriot Article
Laptop Initiative
May this post be indexed by spiders, and archived for all to see as my Internet epitaph.
I guess not only information wants to be free, students do as well. What a bitch for the tyrannical albeit wussie school officials who need cops and judges to enforce school rules that they cant. Unfortunalty things have gone so far in this country that they probably will be charged and therefore destroyed.
"It's so convenient to have a system where everyone is a criminal" - A. Hitler
What is it that causes legal-types to completely lose their marbles whenever anything high-tech happens? This seems roughly the equivalent of doodling in a textbook (in eraseable pencil) and sharing a Maxim magazine around in the halls. Hardly a felony.
"I knew it was against school policy," he said. "But I didn't know it was a felony."
Of course they didn't. You know why? Because, "Students who violate the computer policy will be disciplined" does not imply that criminal charges will be filed. It implies that the students could receive in-school sanction.
This is a bunch of hyped up and unnecessary bullshit. If you're going to give laptops out you better bet that they are going to be used for unintended purposes. By bringing criminal charges you are doing nothing but wasting even MORE of the taxpayers dollars for something dumb.
Discipline them in-house (like they did to us in high-school - made us sit in the hot school all summer doing NOTHING - it's worse than paying a fine and doing community service)
I hope they had the sense to change their password...
It's "Computer Trespass" if a student breaks into the computer that they're being lent, but it's not if they're being monitored without their knowledge? Okay...
But seriously folks, don't get too worried about this. I mean, if they prosecuted people for this sort of stuff, half of us would already be in jail, and the other half on death row. It's all just hot air from the administrators.
My Systems
I just kept thinking "Enders Game" !!!
I ate my sig.
Dear Zonk,
Please, dear... It's "Cracking", not "Hacking"
Also, since when is passing the administrator's password around considered [Hacking|Cracking] anyway?
Skavinsky consulted with the Berks County District Attorney's office and recommended charges of "Computer Trespass," in violation of PA criminal code section 7615, which carries a third degree felony charge.
The best way to get poor laws changed is to enforce them strictly.
We recently had heard in the office over one of the Yellow Machine that's made by Anthology Solutions.
Thank you for posting my password. I guess I will have to change it now.
Some friend of mine installed Firefox on his network drive at school and caught a great deal of flack for it. Because we know what a great risk a proven, secure web browser poses...
Do Not Eat iPod Shuffle
From the FAQ... Will students be able to email, chat, and play games on their laptops? Chat, IM, games, and email software will be removed from all computers. Student use of email, chatting, IM, and game playing is a direct violation of the KASD computer policy. Students who violate the computer policy will be disciplined. These were school-owned laptops for approved uses only, and with a pretty tight leash on what could be installed.
Why are they giving these children felony charges for being intelligent enough to see through such pathetically weak security? At the very least, the school should have assigned each machine a separate password based on serial number.
In all seriousness, if they really wanted to ensure security on these systems, they shouldn't have allowed the students to take them out of the school.
8==8 Bones 8==8
I don't agree that it's a felony level offense, but...
I'm a student computer tech at my high school, since the school is too cheap to hire a full time technical staff. You wouldn't believe the amount of times I was asked for the local administrator passwords to the campus computers, just from people who wanted to 'mess around'.
The main problem is twofold: first, that the school doesn't want to be held liable for any 'bad' content (the obvious part), and that IT MAKES MORE WORK FOR ME. The admin password was leaked many times, and you wouldn't believe how many times I've had to either reformat computers or wipe Kazaa/Steam/random emulators from computers where students wanted to mess around. The worst part, when some of them tried to remove SynchronEyes (our 'spy' program), they were so incompetent with what they were doing that they ended up fuxxing the domain privileges and rendering the computer inoperable on the network. We rarely, if ever, monitor student activity, since we don't have enough staff.
If you want to mess around or do anything 'cool' with a computer, DO IT AT HOME. If you're at school, use the computers for school work. It's not a game as to how much work you can cause for the local techs and admin, the computers are always for WORK. If you go ahead and make it a game, we get VERY pissed at having to clean yet another computer.
Or better yet, do what I did and join the tech support staff.
"To provide an interactive educational environment which encourages students to acquire the skills, knowledge, and attitudes, necessary to become responsible members of society"
What kind of assholes are these school administrators?!
Their JOB, hopefully their PASSION is to help students learn and be prepared for life as adults. How does giving them felony records for typical high school curiosity do that? How can these administrators go home at night and think they are doing the right thing here?
I think a protest is in order.
The entire student body should boycott the school. Stop going. Perhaps they should ALL have accidents with their laptops too. Ooops, dropped it from the second floor.
Damn... I know these are stupid retaliations, but I'm so pissed.
Am I the only person here that thinks that it is the most flimsy form of chintz that educators use the legal system and literally ruin students futures over something so minor as this...
Wait a minute - the administrators have to show them who's in charge... and having the cops do their enforcement... that'll show them.
-- $G
In my high school in the late 80's we got a new network and the default password for all students and teachers was "IBM". 5 bonus points to whoever guesses which company set up the network. At the time it wasn't a big deal to mess up the network, it was considered buggy. Now you get lynched.
I rather thought if you had the key to someone home you couldn't call it "Breaking and entering" even if you were a dumb ass and put it under your mat. Would not the same rule of common sense apply if they were dumb enough to let the students at the password? Ok, TFA isn't clear how they got the password, but 100 people had I'd hardly call it felonies hacking or computer trespass.
There is no sanctuary. There is no sanctuary. SHUT UP! There is no shut up. There is no shut up.
A couple things seem out of whack with this, the first being that only 13 people were charged, when 100 (ish) had access to the password. Also, there is nothing at all in the rules about the securutiy system, or lack there of, so what can the be charged with, if they didnt break a contract. Finally how is this a felony, at worst, they broke thier written contract with the school, its not like they installed pirated software on it (i hope) Bottom line, this is a case of the students knowing more about computers than the school wants them to, and the school lashing out because it was one-uped. Funniest thing about the faq 'Viruses written for windows cannot affect macs'... what about viruses written for macs?
Like the saying goes, never underestimate the bandwidth of a station wagon full of tapes. -Pyrotic
What did the 13 who got charged do differently that made them stand out from the "80 to 100" students who used the compromized password?
"Shrawder said the secret password '50Trexler,' was widely-known among the student body..."
;-)
If it's widely-known, how can it be secret?
Should read ... - "For the administrators to monitor the students computer usage and for students that held the secret password to monitor one another. In order to keep the student's privacy safe while using the badly configured laptops the students had to get in and change the password. Upset by the fact they where made to look like noobs the school district are now bringing charges on all students that changed the password. When ask for comment the network admin had to say "I have an MCP, I think I can configure some laptops securely, the students are just messing with stuff using illegal haxor tools that they downloaded off P2P, I have contacted Microsoft, Apple and the MPAA about them!""
maybe the students coud end up making something better
yeah, with felony charges they may have the chance to learn how to make license plates...Serenity now, insanity later.
What if you bring in your own laptop?
One line blog. I hear that they're called Twitters now.
Anyone else get Enders game flash backs?
For those that don't know Enders game, it is a great science fiction book by Orson Scott Card.
The Internet is full. Go Away!!!
Im my school system all the admin passwords are catholic10005 and the usernames are install (The Calgary Catholic School District)
FELONY charges for reconfiguring the laptops the schools give the students to use?!?!?!? Any parent should be outraged that their student could be subject to a felony for something like this. Parents should have do sign off on ANYTHING that might subject their children to such bogus charges. And they should be riled their own district would act such a way if some porno and ebarrassment to the school administration is all that happened.
Watch your butt, Bernard is watching.
-God
PS: I know there is no mod for "I Don't Get It." Please don't substitute "Off Topic".
Thanks,
Peter
Cool kids in my opinion. They'd be my best friends. I wish my school gave out iBooks, or any laptop for that matter.
Q: What about computer viruses?
A: A virus that is written for the Windows Operating System (Win98, 2000, XP) cannot infect the Macintosh Operating system.
Hey! Neat! But um, what about computer viruses?
As a high school senior in pennsylvania who has done things similar to those being described in the article, I'm worried. Before, my school district basically just slapped a student on the wrist for things like this, but I have the feelings that students in EVERY school district in the state are in trouble if schools start prosecuting because they are too stupid to handle anything technologically with reason. Hell, a kid in my district got 12 days out of school suspension for getting around the BESS Proxy wheres a kid who ripped a hunk of flesh off of another one's chest got 2 days in school suspension. People are fucktards...
Those who study history are doomed to watch others repeat it.
A server breach does seem pretty impossible. Considering the complexity of the password and how few people knew it, it's doubtful they wouldn't know if the server was breached anyway.
I got out of high school two years ago and I have good and bad news about what's changed: The Bad News: School administrators are still morons The Good News: At least they've learned to pick better passwords. In my day all the passwords were things like "staff" or "teacher" or (my favorite) "inspire"
This happened at our school too. We all got laptops and we did the same stuff. They spied on us, we got the passwords. They had student volunteers running the helpdesk. They were challenged to break the passwords. One did it and told the rest how the next day. The helpdesk was given fully unlocked computers to do whatever they wanted with, while the rest of the school was given the locked-down, awful, spyed computers.
503 Sig Unavailable
The Signature could not be accessed. Please try again later or contact the administrator
.. the same thing that caused many Americans to lost their marbles after Sept. 11: FEAR caused by a LACK OF UNDERSTANDING. These politicians do not understand technology, hence they fear it with all their might. And the legal response by politicians to fear is to pass fucking moronic laws.
Cyric Zndovzny at your service.
Is that you, trolling every single front page story tonig--
Okay, after searching through a bunch of threads so that I may infest this post with links to evidence of this person's transgressions, I see instead that this is simply the new slashdot meme.
<angry_old_man>
And I would have gotten away with it
if it hadn't been for you damn kids
and your fucking memes!
</angry_old_man>
*gets drunk*
Quantum materiae materietur marmota monax si marmota monax materiam possit materiari?
Only vaguely related, but this reminds me of my high school, which spent somewhere in the vicinity of $50,000 on a school wide security system with individualy armable zones in every classroom, complete with door, window, and motion sensors. Then set the system-wide disarming code to 2468 so the teachers could remember it.
Back in HS we had Win3.11 boxes locked down with the stupidest security software ever. The only thing you could use was Notepad and the crappy applications you were supposed to be using (which was really just a typing tutor thing that couldn't even keep up with you if you could type over 70wpm). I hacked that stupid security program using Notepad every single day and then put it back together before class ended. I did forget a few time but the admin was too stupid to figure out how I did it and couldn't prove anything ("I dunno, it broke?"). Of course this was pre-Columbine and the militarization of schools...
These are the most ridiculus set of rules for computer use I have ever seen. Not allowed to install software on the laptop? Are they afraid some student might install Java, Perl, or Python and actually learn how to program? Are they afraid the students would install photoshop/gimp and be artistic? What is the point of these computers if they are restricted to a predefined set of a circulum some idiot came up with. I guess this is just another case of schools not wanting kids to think for themselves
I guess this is fair enough, but not really. Can't have students colaborating with eachother on homework assignments, or e-mailing their teachers for questions.
Well, It's reassuring to know that at least they allow the students to be good consumers and purchase iPod's and digital cameras. We wouldn't actually want them to learn anything.
"The laptop cost would be ~$1385.00 with a 4 year parts and labor warranty.
The cost of the software installed on the laptop computer exceeds $1800.00 per unit.
The cost of the padded sleeve is ~$20.00
The cost of a 4 year software upgrade protection plan is $135.00
The cost of tech support is $45.00 and up per hour."
They say there is $1800 worth of software on the laptops... what a waste of money, I'd just have them put openoffice on a just a cheaper laptop running linux.
I have a feeling that the reason that only 13 kids are charged is because the 13 might have been the "geeks" who figured it out, and the rest of the kids just followed.
Death to them. They've done it exactly the wrong way, and it's only natural for students to protest and disobey the dictatorship. Under this conditions, it's alright to set up a resistance armed with AK-47s.
Why not just use a live-on-CD linux bootdisk? I haven't seen that many for Macs, but I'm pretty sure that Yellow Dog has one. That would give the students the ability to run their own OS, although it would be slow because of read speeds. At my school, we run crappy little 900mhz pIII Win98 SEs. Originally, they had almost no security, but now it's building up. I sometimes use Knoppix, without any modification to the system itself.
It sounds to me like this is just a story about a bunch of script kiddies who got caught *gasp* without covering their tracks.
Due to financial difficulties, the light at the end of the tunnel has been turned off.
That's absurd. I don't see how this can be charged as a felony...
:/
The thing the adminsitration should be asking is how the password was leaked.
What version of the article are you reading? It doesn't say that.
I'm so proud.
Want to know where that quote comes from? I'll make you work for it... Search for my other post in this thread.
The Internet is full. Go Away!!!
When I was in high school I convinced my Mom to get free internet access through the local college. It was part of the usage terms that no one else was supposed to use the access, so I guess I was a felon just for doing that. Then I figured out that the public_html directory was accessible through the anonymous FTP server, and that's where I got caught. I guess that'd be a second felony computer trespass charge there.
As it turns out I didn't get in any trouble, and though the account was disabled my Mom even was able to get it reinstated after sitting down with the head of the computer services department and promising that any time she logged on and used the service she would be the one physically typing on the keyboard. So I got my internet access back, but had to be more careful from then on.
About a year later someone in my local calling area came out with this nifty pay service called PPP.
But hey, I could have been a felon. Or, maybe I am a felon? What's the statute of limitations for computer trespass, anyway?
I was a tech for an Edison project school. They use the same password for every computer in every school the operate. This includes the servers that hold all the individual passwords.
I would have blanked the HD and installed Ubuntu the first night... and after the lovely administration found out I would 'inform' them in the most unkindly way how their PC-use policy is contradictory with their mission statement. (Must have had the expensive macs sponsored by the **AAs).
at my school, I can see how the administration would be pissed. However, being a student at my school, cut these kids some slack! Granted, it's more work for the admins, but if these kids are bright enough to do this kinda stuff, make a class about it, and funnel this intuitiveness into forming future sysadmins. Just a thought
I think computer viruses should count as life. I think it says something about human nature that the only form of life
we get VERY pissed at having to clean yet another computer.
Why are you bitching? You've got job security because of them don't you? If you want to be like the Maytag repair man, be my guest. But you don't have a leg to stand on if you can't lock down the machines well enough so that this does not happen.
Don't the kid's have a perfect defense here under the legal concept of "attractive nuisance"?
I'm an American. I love this country and the freedoms that we used to have.
The administrative password for the machines was 50Trexler.... Ummm, where did this come from? Why it's the address of the high school!
What, me worry?
It would be nice to know exactly what law was broken here. Remember, "breaking school policy" is not the same as "breaking the law". Only the legislature(s) can make law.
And so to claim a felony, they're claiming that some law was broken. Why can't anyone describe that law?
I heard the kids were reading Slashdot. Waste of time, those poor souls already lost....
Student use of email, chatting, IM, and game playing is a direct violation of the KASD computer policy.
It seems to me that this is a violation of the Constitutional rights to freedom of speech, freedom of assembly, and freedom of association.
Let's see, the postal address of the district office is.....50 Trexler Ave!
50 Trexler Ave.
Kutztown, PA 19530
Excellent, nobody would ever think of "50trexler"
What ever happened to detention? Suspension? Expulsion?
teh police state, teh great Satan, full of evul, 12 year old hackers out to destroy teh werld. A country generally has the government it deserves...
Oh well, what the hell...
...or recycle computer components for Dell (anyone have the link from theregister.co.uk handy?)
Network Security: It always comes down to a big guy with a gun.
Someone here minimaly needs to loose his/her job.
I wouldn't blink at a stiff fine. I certainly wouldn't protest a prison sentence.
And for those of you that are too dense to figure it out, I am NOT talking about the students.
I don't care what porn sites the students accessed or what damage they did. There is NOTHING they could have done that warrants a jail sentence.
Something stuck out to me. WHY WASN'T THE PASSWORD CHANGED? I mean, most places change important passwords a minnimum of every 6 weeks. That by itself should have put something of a lid on things. I mean, who cares if the kids knew an old password?
No, I am with the kids on this. They are being wronged in a very serious fashion.
I was a student tech staff at my highschool. We weren't all given iBooks, but we were an all mac school. The student tech staff was given the admin password and we fixed almost all of the computer problems in our school, granted our school was tiny (200 students k-12) but we and the 1 Network Administrator/English Teacher did all the network stuff.
We used remote desktop on all our computers, but once the admin password (the same one that was used for 8 years) was leaked to the student body, anybody could get on remote desktop and control their friends computer.
That is probably one of the problems that the school was having with the iBooks. Another way they could change the password was if one of the students had an install CD. Pop in the CD, go to the file menue at the top of the installer and click on change password. Easy
If one of the accused was my kid, I'd have a lawyer at the courthouse Monday morning with all of his knives sharpened. School boards and principals love power and tought talk. The point where the rubber meets the road is when an equal or higher power responds with bigger guns. A well connected and/or wealthy parent on a mission is their worst nightmare. I'm guessing that the accused children have been well chosen based on having parents who will either capitulate or don't have the resources to fight. Still, it won't be long until lawyers start getting involved on behalf of the accused children. The school officials are on thin ice when they start intimating that these students are somehow fellons by running sideways of a "usage policy." School records of children are strongly protected by federal law and by nearly every state law too. By accusing these minors the school is possibly breaching certain areas of student privacy, plus setting themselves up for a slander or libel suit. Minor children can not enter in to a legal contract. Conversely, they can't be in breach of a contract. You just can't be a felon for breaking a school rule of not using a computer in the way you were asked. By the way, committing assault, battery, and other violent acts are not the breaking of school rules. They are breaking established state and sometimes federal criminal laws. The school district needs to remember that they are a public entity that is likely subject to open records and sunshine laws of their state. Wait until the right parent seeks a court order to have a looksee at some of the administrations' machines and records. I have to think that the local prosecutor and police want no part of this game and will turn on the school at the earliest chance.
I guess I will have to change it now
Dont worry! I've gone and changed it for you!
So let the school give your kid a laptop, tell him *not* to play with it...
Charge him with a felony for when he finally does...
You know what's next? The kid thinks, "If I'm going to get time and a fine for this, I'm going to do something WORTH being charged!"
And bam, there you have it, your school administrators have just created the next violent school attackers who shoot up the school.
Wake up school administrators! You are pushing your kids into being criminals, and likely endangering yourselves and your other students in the process! I can hear the story on CNN now, and this time you won't be able to blame their music or their video games.
*TheDarb
This sig intentionally left blank.
More like a ball and chain. The school my son goes to has laptops all over for student use and there is a pretty strict policy on their use. You can even check them out from the library. The kids are all saavy enough to know those are for certain specific tasks and most have their own computers at home for other things like IM, chat (downloading inappropriate pictures...) etc.
The point being, when they loan you a computer, it is only for projects they tell you to do. My son's school isn't nearly as strict as TFA's school but that is how many schools see it. The way to deal with this is to only use the school's computers for what is absolutely necessary and everything else must be done on non-school machines. Lack of use may kill the program, but that is the result of their policy, no more, no less.
It's been a while, but when I was in HS we had one teletype with acoustic modem to a county timesharing computer (HP 3000). I was the school geek and shared passwords with head geeks at other schools and of course we figured out the alternate password trick on accounts and also how to get the admin password so we pretty much owned the system. We never messed anything up but one day were discovered and told in no uncertain terms to CUT IT OUT or we would lose access permanently. No police, no heavy handed shit, just cut it out or we would lose our toy.
The people in this country need to adopt a "zero tolerance" attitude toward stupid knee-jerk laws like these. Fire the school administrators, elect a new DA. Our kids are our future!
As there is no way to construe any of what they did as appropriate.
BUT . . . felony? c'mon. Even _IF_ they had "hacked" (and I use that lightly here since it sounds like they simply elevated local privileges and did nothing to the network, servers, or corporate data) a suspension, detention, etc would more than suffice.
This is at best an issue between the school and the children's parents. The police don't need to be involved.
This is just the latest escalation of the erosion of the traditional barriers between teachers and students. In the past, the teacher was the person facing the class, who knew more about the given subject than the students. Sure, there was always the girl in the front of the class who always got 90's and knew all the answers (Christine, I still have a crush on you), but the teacher could still stump them, albeit less often than the average student.
Nowadays, there are students, especially in computer/technical courses, whose knowledge and abilities far exceed the teachers. This change in the balance of power/knowledge must feel threatening to the teachers, since they have less use if the students already know more than they can teach them. People in positions of authority who feel those positions are threatened sometimes go over the top. That's exactly what this is.
BTW, if these students are convicted of a felony over this, will it affect their ability to vote?
Finally, last September, were the parents of the students who were the beneficiaries of these laptops informed that improper use could result in such harsh penalties as their beloved children being unable to go to a decent college, or the loss of their freedom? If so, did they explicitly and informed-ly agree?
Stasis is death. Embrace change.
Put Damn Small Linux on a CD or USB stick and then you don't have to hack the shitty software on the laptop - just run your own.
Ooooh, those eeeevul hackers...
Oh well, what the hell...
Times have changed,
Our kids are getting worse!
They wont obey the authorities
They just want to hack and surf!
Should we blame the government?
Or blame society?
Or should be blame the images on TV? Heck no!
Blame Vice City! Blame Vice City!
All the guns and blood and gore
Shootin' cops and killing whores
Blame Vice City! Blame Vice City!
We need to form an assault, it's all Vice City's fault!
This slashdot-related signature is a stub. You can help kihjin by expanding it.
When someone in my class tried to steal the instructors password to a networking class that used online materials. (Sent a message to the company that provided them forging the e-mail header to look like it was from the teacher, saying "I forgot my password, please send it to address@aol.com")
The next class instead of going to the computer lab we were sent to a classroom instead. Once we were all there, the district network administrator came in, and started giving a lecture on how to track down where an attempted intrusion is coming from, Using a real life case study. It was quite an interesting presentation actually, exept for one student who was watching in HORROR (with a complete look of shock on his face) as they described in great detail exactly how they tracked him down and learned exactly who did it. He was visibly shaking at the end of the lecture. (Before the lecture he had absalutely no idea that anyone else knew about the password theft attempt)
Besides that he got a few days of in school suspension, but that was it.
All misspellings and grammatical errors in the above post are intentional and part of my artistic expression.
What horrible crime had I committed? I installed Space Quest 5 on a computer to play at lunch.
Well, that is pretty offensive. You got off lucky though. I used my trig workbook to keep a table at the lunch room from wobbling.
I'll be out in only 20 more years.
KFG
I remember being in high school and encountering this sort of thinking. It hasn't changed in several years, apparently.
I think the school staff know exactly how inconsequential the security breaches were. But nobody likes being made to look stupid - especially by kids many years your junior. These students took advantage of security problems that never should have been there in the first place. Certainly the students were wrong in what they did - no question about that. But making this into a felony issue is a defensive move on the part of the school to divert attention away from how badly they did their job.
On another note - apparently the school had $900,000 to spend on this. Why couldn't they afford a competent IT person to run it?
i've been charged with a felony as a minor and now i'm working for nasa :P
And when did this happen? At one tyme it wouldn't of mattered much but with governments and businesses tightening the reigns an arrest can be harmful to a person's future. It used to be that one of the things that mattered most was if you could do the work, but now even employers like Home Depot give potential employees a battery of tests including personality tests and your credit history. What used to be childish pranks are now crimes.
FalconShould there be a Law?
Wonder what the teenage Steves would have thought about this? Wonder what comments they might make now, when pissing off school systems might mean cutting into sales of Apples?
Contact the district and let them know what you think. Of course, being polite and giving sources to any facts would be great for karma.
<sarcasm>
These aren't exactly cherub faced youth! They're felons. Throw them in the slammer!
</sarcasm>
I posted the following awhile back on slashdot, but I think in some ways it bears repeating here. Not because it is amazingly unique or insightful, but more because I learned a ton by screwing around with computer--sometimes school-owned ones. And I think I'm the better for it. If I did this kind of stuff now, I'd probably have been in jail at the age of 16 or something. This trend needs to change.
:)
----
There was a lab that I used to hang out in. Being one of the few geeks in the school, I pretty much had run of the place. The teacher who oversaw the lab encouraged creativity and ingenuity. Sometimes he'd get pissed with something I did, but in those cases I just fixed it and moved on. This kind of activity, over a year or so, ended up earning his trust as I would also fix the odd problems with windows/autocad and such that would crop up.
Eventually I became the de-facto admin for that entire lab. During my required study period he would give me a pass to hang out in his lab--sometimes even when other classes were in there. Talk about heaven. I had the run of a computer lab that was networked. It was like being a king.
Around my junior year or so, they replaced the computers in the lab (aging 386/486 era machines with DOS, mostly) with shiny new Pentiums running Windows. For a few months they were basically just open and normal Windows machines. I think they even had Internet access. This was, of course, a total disaster. The net was new, then. People didn't have it at home. They downloaded anything and everything. Porn, viruses, music, etc.
The result was an *cough* admin *cough* who ended up being in the room almost everyday for awhile. He would spend his time poking around in control panels and "fixing" the computers. Eventually he must have gotten sick of that because they hired a local consulting company to come in to secure them all. Pretty soon the whole place was all passworded up with all these layers of cheap third party locks, etc.
I broke all of them--with full (unofficial) support of the teacher who taught in the room. They had tried to lock the systems down so much that half his programs wouldn't work right anymore. He had endless problems with students just trying to save their completed CAD drawings. I made a lot of those problems go away by circumventing the security, showing him how, and then giving him pointers to try to minimize the visibility of the hole so that other kids and the admin dude wouldn't find it. Not perfect, but it helped.
After some time of this the teacher pulled me aside one day and tells me in a reasonably loud-so-that-others-near-by-can-hear voice that I need to be careful because Mr. Admin is getting pissed that someone keeps getting into his expensively secured systems and he's going to try for suspension of that person when he is caught. Of course nearly every one of his students knew it was me--but they weren't going to talk. I had helped them all out of computer jams at some point or other. So after doing the semi-public speech, he later pulls me aside in private and says, "Hey, keep doing what you're doing. I'll make sure they don't do anything to you. Those bastards are making my life such a living hell and they won't listen to my needs that I've given up trying to deal with them. You at least make it possible for me to teach my classes."
So of course after the next round of "security upgrades" I was once again on the job. Eventually I figured the way into the system and changed all the screen savers to be the marquee one and had it read, "Ha ha! I got in Mr. Security Guy!" Hoo boy did the shit hit the fan. I was shielded from it, but the teacher just loved it. The admin dude was pissed. The consulting guy was there almost everyday for like 2 weeks. My teacher would just smile and nod. Eventually they locked it down pretty heavily, but by this point I was a senior and I was graduating early and was out of there.
Those were some good times. Seriously, though, I swear that in this
Hexy - a strategy game for iPhone/iPod Touch
Heck, the school should hire these kids (the ones who actually figured out the password, not the ones who just followed the directions)
So it was freshman year in Cornell, 1990, and I had doubly no hope of getting laid, being a freshman and also a geek guy, the one girl on my floor that I had a crush on ended up dating some jock, so I fell in with a group of cool malcontent geeks who liked to play early Mac network games looong before they existed on PC's (all hail Spectre, Bolo, and NetTrek 3!) and got to breaking some rules.
At the time, Cornell was Mac-dominated (oh, happy memories) and the Upson lab had a network of IIci's just waiting to have their security hacked. I forget the tool that was used, but we figured out that it stored the password in a certain file that we could reach by bypassing the file security with Norton Utilities for Macintosh (haha Mac OS 6 security, bah). We procured a copy of the software, installed it and created a password on my own IIci, then took a copy of that file (with the obfuscated password) and replaced the file on the lab IIci. Instant admin access.
But we didn't stop there. We had such organization that we managed, as a team, to use this trick to install a fun little background process called NetBunny... on ALL the macs in ALL the labs. NetBunny does nothing on its own, but paired with a little utility called StartWabbit that we pointed at any campus AppleTalk network we wished, would begin the chain reaction. What then happened is that the Energizer Bunny would walk across the screen thumping the drum, going literally from screen to screen across the whole lab. It was pretty much a riot, if you were in on the joke, but the admins couldn't figure it out (we had hidden the executable well through obfuscation by renaming it and pasting another icon on it) and after they heard the recognizable "thump, thump, thump" sound would jump up and run around helplessly yelling "It's the bunny!!" We did it a few times with "agents" at each location to witness the mayhem. Good geek times.
I think it's the nature of very talented people, that when The System is not challenging them sufficiently (or when they refuse to take on the offered challenge due to lack of interest or motivation), that they seek out their own challenges, and fun.
I don't think these kids should get punished this harshly. Felony charges? Simply for trying to break the rules? Please. Face it, it takes some effort and talent to break in, it's just misplaced effort and talent. Find a way to redirect it. I mean come on, it probably started with some high-school geek starving for attention who wanted to seem cool.
I just dealt with some students who abused positions of trust (as tech aides) to install keylogging software on multiple computers. We came down hard on the student who initiated this because he used the information he gathered to access email and grades of the teachers whose passwords he caught. I never considered recommending this to the police, though, because I knew that we could suggest expulsion (which we ended up on a compromise with the student and his parents on) and scare the student into not doing this again. Or, at least, we now know who he is and we can ensure that he won't do the same thing.
The primary downside is that high school computer experiences shouldn't have to be as controlled and locked down as they are in most places. While we absolutely need security surrounding our student information system, grades, attendance and teacher files, I don't like locking down computers and trying to force certain behaviors. Let these kids work normally on the computers and be clear about what is appropriate. Locking them up will only, in the end, produce exactly what these district's saw -- students who do everything possible to break the security.
Oh, and the parent who said, "and I don't know that it has cost the taxpayers any money" is delusional. Everything I do in my job costs the taxpayers money, so if I have to spent dozens or hundreds of hours tracking down the source of a security breach instead of working with students on a multimedia project or with teachers on instructional applications, then it costs money.
Are you implying that you wouldn't reimage a laptop before giving it to another student? You would leave whatever they left behind on the computer for the other students to see?
Any compentent tech would always reimage a laptop before giving it to another person. This shouldnt take more than 1 minute of work and about 5 minutes of waiting.
Never got the admin password though. Aparently, it was changed every week or something like that. At first, I put firefox and some emulators on a network drive, and latter made the folder hidden. All student account were limited users though, and we couldn't type c:\ into the IE bar and browse files. However, you can get around that by typing the path you want to browse in Word's web toolbar. Later, I just started putting the files on my USB stick. Put it in, autoplay comes up, select open in explorer, execute program. To any students: I don't recommend doing this. It can seriously hurt your grade.
I noticed this was listed under "Apple" because the students were using iBooks. Could this open some eyes and increase interest in alternative (Linux, Windows) offerings?
My school also had this. I was a computer technician for my school... About 20 students did that. We had about 1500 students with laptops... Yeah. That was fun.
Everything that happened in the article happened in my school, pretty much. AFAIK, no one was charged with anything for changing anything, the only thing was students that damaged the computer and refused to pay or tried to keep it over summer (Theft charges.)
We had to go through about 4 passwords because they kept getting out. Eventually, the computers had to be locked down so that just about nothing could be done on them.
One difference, though, was that there was no way to get around blocked websites on the laptops, as all the connections in the school were filtered through the county servers. Students still managed to get porn onto the computers, through connecting at home. That was a 10 day suspension and the laptop priveledge being removed for their time at the school, I believe.
Officially, we weren't allowed to connect to the internet at home, but there was nothing preventing it. I believe that next year my school is going to be putting a program onto the laptops to allow for (screened) home access, though.
Again, this all only applies to my school, but the situation is similar.
When Mitnick was arrested the cops wouldn't let him have a phone. They thought he could launch nuclear missles by whistling into a phone at specific frequencies.
I'm not sure if his probation is over now but one of the terms was that he couldn't even use a computer.
FalconShould there be a Law?
That question doesn't really *have* an answer on the mac. What about viruses?
It's not just "there aren't any now, but there may be eventually so you should install a scanner." A virus scanner on the mac is such a nearly useless thing that the scanners available are very bad.
One of the best ways to break a Mac has traditionally been to install Norton Antivirus.
You can't *really* protect against a threat that isn't there yet. It's easy to build a virus identifying engine on Windows because you know what sorts of things you'll be looking for. You know what the various Windows virii look like so you can test the software.
On the mac you're writing into a void. Are mac viruses going to be executables, widgets, PDFs? What vulnerability is going to be popular for creating them?
In addition, Macs having only 5% marketshare means that even if there were a virus, there wouldn't be many carriers spreading it. Low-density populations don't spread infection easily.
All this is to say that, even though only a cock-eyed optimist would believe there will never be a virus on the mac, the prevention is currently more effort and more risk than the non-existent disease. The answer they give regarding viruses is a pretty reasonable one for the time being. Another good answer woud be "always have your data backed up," but that's generally true.
The rest of your post is equally inapplicable. Apple did *not* administer this network. Your assumption about having only a single password to protect the users from themselves is bizarre...
The idea that a school can hand out laptops to all its students with software on those laptops to restrict their use is inane. The students will always crack the system because the client is in their hands. If they didn't want the students accessing porn on those computers, they shouldn't have provided them.
No actual server was breached. All that happened here is that a bunch of horny students got around the school's filtering, downloaded some music and some porn, and are now facing felony charges. Very american, but not a case of failed security. A case of foolish expectations.
The 'Secret Password' that was 'Widely Known'.
Don't think that a small group of dedicated individuals can't change the world. It's the only thing that ever has.
Just for everyone's information, here's the statute they might be prosecuted under. According to the sentencing provision, a third degree felony carries a maximum penalty of up to 7 years imprisonment (18 Pa.C.S.A. 1103) and a max $15,000 fine (18 Pa.C.S.A. 1101).
(a) Offense defined. A person commits the offense of computer trespass if he knowingly and without authority or in excess of given authority uses a computer or computer network with the intent to:
(1) temporarily or permanently remove computer data, computer programs or computer software from a computer or computer network;
(2) cause a computer to malfunction, regardless of the amount of time the malfunction persists;
(3) alter or erase any computer data, computer programs or computer software;
(4) effect the creation or alteration of a financial instrument or of an electronic transfer of funds; or
(5) cause physical injury to the property of another.
(b) Grading.--An offense under this section shall constitute a felony of the third degree.
Funny thing is the same thing is said for violating a school's drug policy or violence policy. And I'd fully expect criminal charges in either of those cases.
;-)
What the heck is "violence policy" and how it is different in the US schools from "the laws of the land"? Is it something like a Catholic school punishing a student for not turning his other cheek when hit in the first one?
Seriously, the more stories like this I read, the more sorry I feel for the kids in the US public school system. No, never been in one, got my schooling "in Soviet Russia" and even there (and then, late 70s-early 80s) they would let parents give the punishment for something as harmless as this, not the federal penal system!
Paul B.
if these had been DELL computers, would it have got DELL in the title? No! what has the brand got to do with it??
There was an unknown error in the submission.
The hardware costs are correct, but the software cost stated is an outright lie. The academic cost of the software is probably around $600 to $800. IMHO it is a good mix of software.
How can ANYONE that posts on Slashdot be saying that the kids should receive punishment for what they did? I've seen several ridiculous postings and I'll respond to a couple of the more asinine ones.
The password was widely known and easy, it's not the kids fault
Riiiighht. And If you leave your window open or door unlocked then everyone has the right to walk into your house and do whatever they feel like? Or maybe it's YOUR fault that you didn't put a strong enough lock on the door.
It's not that big of a deal, they shouldn't face charges.
Yes it is a big deal, in more ways than one. The kids were all old enough to know the difference between right and wrong. They all knew that "hacking" their computers and downloading music and porn was wrong. One of the kids even was quoted as saying, "I knew it was against school policy but I didn't know it was against the law." Well, now he knows and will always remember after being charged with a crime.
What crime did they commit? Not sure as the article really doesn't say but based on some of the things they did, I can assume that they didn't download free music that didn't require a payment. Anyone trying to make an excuse for what they did should be sent back to school as obviously you need to learn a few things.
My sig of choice is Marlboro
If I were a parent in the school district in point, I'd not allow my child to use a school owned computer, or so much as touch a school owned computer. I can easily afford Powerbook, or an iBook for my child. If the school refuses to allow my child to use *my* laptop, then my child will do with out.
End of story.
"Oh drat these computers, they're so naughty and so complex, I could pinch them." --Marvin the Martian
What is the point ? District/school officials make some money on this (or throw money around) ?
Just provide the kids monitored PCs on the LAN as usual.
"Skavinsky consulted with the Berks County District Attorney's office and recommended charges of "Computer Trespass," in violation of PA criminal code section 7615, which carries a third degree felony charge."
At my (now former) high school, the IT admins were absolutly inept, to the point that the Head honcho DOWNGRADED every last ibook from OSX.1 to 9.(whatever) because "OS Ten is too complicated" referring to the TCP/IP config and printing setup (entering IP's manually in a box for printer setup is apparently too complicated for him.)
this is the same guy who thougt you could deploy 30 non-multicasted disk images @ 4GB a piece over a 10Mb unswitched LAN within a day...
I know more about LAN security and the school's setup then he did, as the bloody student aide who's supposed to know shit...
I got a school issued ibook, immediatly RESTORED OSX proper, changed the admin codes to something SECURE, threw Firefox on there (as opposed to INTERNET EXPLORER!), and got IP printing working, and carried around a netgear WAP to every class to "allow me to print" when really i was surfing from class , i did do the work, though.
I patched security holes the IT staff knew nothing about though I could not get them to keep the Primary Domain Controller / File Server box locked down (the console was logged in as admin, unlocked in a student-accessable room, every time i walked by i locked it down and even tyed with the idea of making the password something real.
I COULD have smashed the entire school LAN to cyberdust from my ibook and have the techs crying uncle, but I didn't, because every time there was a glitch, they came running to me!
Logistical Chaos Officer http://www.slagg.org - LAN Gaming in Sarasota FL,USA
I love this sort of attitude - "Just do X, it'll only take you 10 minutes, right? Sheesh, wtf you bitching about - chill out."
It'll take a lot more than 10 minutes when you have to do it to EVERY workstation EVERY day, just because people can't learn the difference between their property and other people's property.
Most laptops and commercially made desktops have a serial number, so if you make an simple algerithm out of that code (example if the serial number is "6835x" you can make the admin password be "yietx" because "[Y][I][E][T]" are the keys under "[6][8][3][5]" on a QWERTY keyboard. so that way hopefully maybe someone would find the password for one computer, but hopefully they wouldn't figure out the simple algerithm you made. or you could just make a simple database with the laptop serial number that is linked to a truely unique password.
now here comes some A.C. post about how "This is slashdot and we use dvorak keyboards"
wow, that was beautifully handled. It's nice to hear stories of teachers/principals with a real clue on how to deal with things like this.
Ahh memories.
:/
When I was a senior in highschool, we got a spiffy new computer lab filled Mac LC II's. Pretty damn nice.
well they put one of the advanced math teachers in charge of them. He even taught some simple programming classes.
Well the computer lab was open to anyone at anytime. If you were in studyhall, all you had to do was ask to go use the lab. No monitors, nothing. You could play whatever games you brought in off a floppy.
A friend and i discovered this lovely program in the math/programming folder called HexEdit. And it had this cool BLUE jack-in-the-box icon that was just screaming, "CLICK ME!!" It was literally 2 clicks in off the desktop. Well it did exactly what the title described. let you edit the hex code of any file you wanted.
first thing we checked; disable the lockdown software on the macs. Yup. works fine. Change one little hex char and the computer was wide open.
After (ahem) borrowing a couple of nice programs (sweet physics prog and couple math progs, and the hexedit prog); we reenabled the lockdown software.
We then went down the hallway that afternoon and TOLD THE TEACHER ABOUT IT.
He DID NOTHING.
Less than a week later, Macs were failing left and right. Not booting, crashing, etc. It didn't take a lot of brains to figure out that other people had found the program.
However, people with less brains immediately cornered me and my friend. Cuz when the computers break, you blame the geeks, of course.
They completely suspended our computer use, and sent letters to our parents. We were threated with detention and suspension. This didn't happen. Particularly after we explained to the administration how we had informed the teacher of his stupidity and he did nothing. And it helped that my mother was on the school board at the time, and she knew more about computers than most of the administration.
Still ended up with restricted use. No other students got even talked to. Even though my friend and I could name at least 6 obvious culprits. Most of the rest of our class thought it was the stupidest thing ever. Since they, and many of the teachers, relied on us for computer help.
The lab was no longer wide open, and they had a teacher/staff person in there all the time after this. too little, too late.
To quote another poster; People fear what they don't understand.
I would add; And if you understand it, then they fear you, too.
No unauthorized use. Trespassers will be shot. Survivors will be shot again.
Am I wrong in assuming that the age of consent for a contract in the US is 18? Why should high school kids, of whom the majority are under this age, be held liable for a contract formed between the user agreement and themselves?
Certainly, I think it's within the rights of the school to enact discipline upon these kids by revoking privileges and sentencing suspensions, but I don't think there are any legal grounds that may be enforced in this case as the contract, in the eyes of the state or federal government, is in almost all cases, not valid.
just stating the obvious. I was quite grey hat in high school; one time i was being set up with porn in my network drive - right click, go to properties (Novell, btw), hey, look, i'm not the file owner! You might want to talk to this guy!
I may have tested some security myself, but just for curiosity. I certainly never gave any n00bs the password (actually, a password unlocking application) - that's how to get caught. Same goes with bragging.
Actually did a little consulting work later in life when a teacher showed me the new iBooks they were getting. Two minutes later: here's the root password hash. Lock down OpenFirmware, thanks.
It's almost always pride/confidence that ends up in big hacks, whether 'I set Novell to allow execute, but not copy' or 'I used two numbers in the password - it's _unbreakable_', or the worst: '[vendor] told me it's [bulletproof/_foolproof_/hax0rproof]'
This is a childish ignorant and scared administration handling children.
Perhaps the administrators would have grown up more if they had been teachers for 20 years beforehand.
Democracy Now! - uncensored, anti-establishment news
Comment removed based on user account deletion
well, I didn't read the usage policy either. I spent 20 minutes or so trying to find it online, without success. That's why I linked to the FAQ, since it was better than nothing, and did describe parts of the policy. Their policy MAY discuss "charges may be filed".
Comment removed based on user account deletion
At my school, we have 1 network technician. He doesn't have enough time to monitor what we do. The computer class teachers are cluess when it comes to using a PC. They know the basics, which is word processing and internet, but they don't have a clue about security or the network. We still have Novell on our PCs, and everyone used the Novell Send Message function to send messages to each other. The school figured that it was a horrible offense, and started suspending kids for using it.
My computer teacher let me use her classroom PC to do some web designing, and when I was checking the proxy settings, I "browsed" to the last entered form information. Needless to say, she had a bunch of credit cards in there, and a few site passwords (including the admin login for the network).
It's a Mac, most kids I know have an iPod. Install OS X and boot from that, or go buy a cheap firewire HD, or better yet, I'm pretty sure these ibooks had airport and not airport extreme, which is supported under linux. Boot from a Linux live cd and have at it...
Most people who read this site have been in these kids seats at least once in there life. That is why this is a great place to gain support for your side. Except that none of us have a slight influence in your situation. It just goes to be said, life is about politics not about technology. These kids are obviously stuck in a power struggle that they stumbled upon. Luckly they will graduate in a few years and life will move on. The administration has made it their life, so they will be less likely to give to reality on the topic. Unless your losing something that you have a right to, (such as your achievements or ability to publicly voice your oppinion) the administration normally wins.
Having read slashdot for some time, it seems that, in almost all circumstances where group of elected, or non-elected officials in power do something that the /. community decides is, well, stupid, said officials get thousands of emails from slashdotters.
Within a few days, administrators have a change of heart simply to stop the flow of email.
Well, i fer wun gona houm skool me kidds. The whol worl gon crazie.
Anyone who thinks it is a good idea to have a password based on the mailing address of the school district demonstrates that at least half of the problem is in the inability to approach security problems intelligently (like, say, actually balancing security and useability).
LedgerSMB: Open source Accounting/ERP
I remember the good 'ol days when we would get into simpler trouble by dipping the girl in front's pony tail into the desk ink well. You young wippersnappers get into trouble all the wrong ways. -Fogey
Table-ized A.I.
I thought I'd share my thoughts, since this is a subject near and dear to my heart.
I was convicted of a felony three years ago, and my life was pretty much destroyed. I lost my job, my apartment, my college loans, and got slapped with thousands of dollars in fines to boot. I'm unemployable: I've shown up to different jobs to start my first day, only to be let go after because they got the results of the background check. The real kicker was that I checked "yes" to having a felony conviction on my application, but the managers claimed that "the computer says we can't hire you".
Since I am now unable to finish school and am stuck making six bucks an hour at McDonald's, I've been giving serious consideration to joining the Army. The recruiters say a waiver is no problem and they can wipe the felony from my record. I'd say gambling my life in Iraq beats the hell out of being doomed here in the Land of the Free.
where the comment ends and sig begins
After all, the Unix core of the Mac OS operating system was developed in 1969. People have gotten smarter since then.
Best Buy can have you arrested
BOO F*CKING HOO! Nobody got hurt, its not a felony. If they want to suspend the students thats their problem, but they shouldnt bring the police in to it. High school administration are all a bunch of whiners, no damage done to a school network is irreversable, as long as they got proper backups. They should use this opportunity to better secure their network. I know what its like because I've gotten in trouble for "breaking the TOS" on my school network a few times.
In soviet Russia, Linux compiles YOU!
As someone who has never had to manage a large group of computers, I'm curious:
How difficult would it be to assign a different, random password to each system, and keep track of the passwords via serial number?
Back in the day, my high school computer lab used Mac LCII's, and the password -- "dylanmac", heh, I still remember it! -- was widely known. The students had LAN access to all other Macs, and used it to install extensions on each other's systems that caused random annoyances. Well, one day, I got tired of the games and showed the teacher what my system was doing. She watched as the Energizer Bunny walked across my screen, said something to the effect of "how cute!" and left...
After class, I explained to her that everyone knew her password, ratted out the kids who provided me the password, and recommended she change the compromised password to something a bit more complicated than her son's name. (Apparently they had simply watched the keyboard one day as she typed it in. Those clever h4x0rs.) She said that was "silly" and that "no one knows what my password is." After that, I just gave up, and took advantage of the situation.
It was the school's street address. It wasn't leaked, it was guessed. If it had been leaked, it would have had to have come from someone in the school administration. Leaks come from the inside. (unless there's something in the terms of use that say if you happen to guess our pathetic password you aren't allowed to tell anyone)
Although it might be tempting for the attorney for the defense to claim that none of the students could have guessed the password so one of the school staff must have leaked it in an entrapment attempt. :-)
I see even classic Slashdot is now pretty much unusable on dial up anymore.
...or the MAC equivalent, as long as you don't modify data on the hdd it should be very close to completely undetectable, just hold C during boot and you're set.
F7 doesn't work, ignore spelling and grammar
I'd hand it right back. "No thanks".
The students had a wonderful opportunity to show what a complete failure such draconian policies can be. But, just like with illegal file sharing, they'd rather push the other way, and end up further behind than when they started.
Being a student who has "tampered" with school computers many times myself there are three golden rules you MUST obey to stay clear of trouble.
1. If you hack it make it so they have to goto you to get it fixed(if you are caught) or pay massive amounts of money.
2. Make it so there is not enough evidence to charge you. Even if you are "caught" any punishment they try you just ask to bring it to a judge and if they dont have the evidence you're not guilty.
3. Just get around there rules, find loop holes.
Recently my school gave everyone sony craptops, eh I mean laptops. Being a huge supporter of open source I used knoppix. This goes ageinst there hole no installing non-approved software, hacking(had to crack WEP and I had a few novell cracking tools), and of course I had a few games on it. The admin of the school found out I did this and ignored it because he was to busy fighting kids who play games non-stop, fucked up other peoples computers, and who were looking at porn(I swear after we got these laptops ive never seen so much porn in my life). Basicly I didnt make his job harder or gloat about it at all.
This is a matter of perspective undoubtedly.
If you're the person who set this up, it's an atrocity.
If you're the student who knowingly broke the rules, then it's unfair.
Lesson #1: Life is not fair
Maybe felony charges are harsh, but they're minors so the record would be expunged when they reach legal age. It's a painful, but poignant lesson.
This is not am ambiguous issue. Regardless of whether or not the security was proper, at some point you have to respect that these young adults have a decent grasp on the concept of right and wrong, and violating rules and laws carries with it a punishment that they must face.
If they were just knew the password so they could change the settings on their iBooks, there's no way in fucking hell anyone can charge them with anything criminal. Don't waste my time with these stupid fucking jokes.
have nothing to do with the schools software... at all. they gave you hardware, so use it. point a wifi antenna or 2 at the school, and boot from a linux liveCD and bypass their software entirely. I don't think they can sue you for using hardware they gave you, can they? this is coming from a guy who had to blackmail his principal after computer troubles at his old highschool oh so long ago. ( btw, if you do break their security, take copy's of everything, you might need them later!)
-and occasionaly a giant moose.
When you issure a computer to a student and let him carry it around everywhere with him/her and take it home, you're basically putting it in their position for an extended period of time. They have charge of it, and they are the only user. Also, they are liable if the computer physically breaks.
Given these conditions, I'd say that this affectively gives the student practical administrative rights. The school is way overstepping its bounds here with some of the restrictions they have tried to put on the machines. No e-mail, no chat? No personal software? It's none of the school's business.
Examples: Not EVERYTHING has to be used for academic purposes. The schools that I went to issued books, and we could do any damn thing we wanted with them as long as we didn't physically damage them. I can use the book as a door stop, a pillow, play a game of catch with it, etc. None of these uses are approved by the school, but I can do it anyway.
Just because with computers the school CAN block students from using the computer for things other than school, does that mean they should? Also, don't you think that students LEARN by being given control of their own computer system? Lots of kids don't on their own computers, and they don't have the freedom to customize or mess around with a system as they want. Laptops from school give them that opportunity (when I was a kid I had complete control over my own computer at home, and I learned so much about computer systems this way).
The school doesn't have the right to spy on the kids either.
That's my radical, left-wing opinion. :-)
Of course when i was in school this meant erasing the chalkboard when he was in lunch.
I just graduated from highschool a year ago, and my school also had the same laptop policies as this one. Now, I am very linux savvy, and we were given powerebooks. Me and some firends installed a linux distro on em and we were up and running. The password protection kicks in when OS X starts up, so this wasn't an issue with linux, but we had to get the network password, which we knew. When we got connected, all we needed to do was use a user agent switcher to fool the server into thinking Konqueror was safari.
Then we just used rotating proxy servers to access whatever we wanted to, and every chat program we used was JAVA based, so they couldnt detect them.
What they're doing to these kids is way outta control. They should just give em detention and it'll be sorted out. I mean, if the kids were a little smarter, they wouldnt have gotten caught (easily done), but hey, you learn from your mistakes and move on.
I know everything, I just don't remember it all..
The school district should have given the laptop to students as a one-time grant and let it be their own responsibility. If they lose it, they have to worry about getting another one. If they mess up the software installation and can't get schoolwork done, they have to reinstall the software.
For the district to own the laptops and then use the criminal justice system to try to tell students what to do with the laptops just sets all the wrong incentives. Under those conditions, I would have just locked up the school-provided laptop in a safe place and brought my own.
Just because security isn't good, doesn't give you permission to break it. THat's one of the things I find the most disturbing about Slashdot, this attitude that if you can break someone's security, it ought to be ok to do so.
No, people's vitrual property (their data) is just as much theirs as their physical property. You have no rights to break in to it just because you can. Even if you do no damage it's a crime. I certianly think you'd flip if you found me poking around in your bedroom, even if I hadn't taken anything.
The other thing is you fail to consider the physical analogue. Your home security sucks. I can say this with almost complete confidence because it's generally true. Let's cover some of the basics:
1) Do you use high security locks, like Medeco? If not I can pick them with little trouble. All the major brands at Home Depot or the like are weak as hell. Even the high security ones are venurable, but they are hard at least.
2) How's you door? Is it solid hard wood, with a steel frame? Do you have a reinforced strike plate for the deadbolt? If not I can kick you door in with no additonal tools.
3) How about your windows? Do they even have locks? I don't mean the little pussy handles that click in place, I mean an actual physical stop in the window. If not, I'll open it from the outside. If they are locked, are they security coated? Can they take a hit form a rock and not implode?
4) Any sort of security system? Does it have a battery backup? Does it phone for help? Does it use motion sensors? If not, it's easy to get around and you'd never know I'm there.
I could go on. Point is, unless you are one of the very rare peopel that are extremely security concious, your home security sucks. Even if it's better than average, it's still probably trivial to defeat. Even if you have excellent security, it's still not a problem for a group of professionals. You really have to spend a shitload to get real security that can't be circumvented.
However, I imagine you would not think it's ok for osmeone to break in to show you your "pathetically weak security". It's your house and peopel are welcome to stay the fuck out of it without your permission. Likewise it's my computer and you are welcome to stay the fuck off it without permission.
Heck, if i had been prosecuted for my cracking in HS, I would've been just another hard case in juvie instead of the valedictorian. I graduated from MIT, and now I understand that the HS and Uni years are periods of ACTIVE learning. If a pupil with exceptional aptitude is suspected of some illicit activity, "I just wanted to see whether it would work," should be grounds for exoneration. Or for sentencing to MIT.
Take off, every Hoser
In the FAQs you can find the rules that were "broken". But you can also find this incredibly helpful Q and A.
What about computer viruses?
A virus that is written for the Windows Operating System (Win98, 2000, XP) cannot infect the Macintosh Operating system.
I just wish the next one was:
What about hackers?
People don't try to hack Macs. Ever.
Lets face it. If you know a REALLY good secret that you SHOULDN'T know, its going to leak out. And when information leaks, theres no telling who learns about it. For every one of those 'good half-dozen people' you told the password to, there was probably 10 other jerks who went around screwing up the school computers.
I'm not saying 'hackers' (if you can call them that in such cases) should charged as a felony, but you've got admit there is a line. We all know students will install and download whatever crap they want onto computers and theres nothing teachers can do about it, so accept it. But when students start changing grades, breaking computers, or wasting bandwidth on something they'll probably never get to use or move off the computer (anything large than a .mp3 file and the kid shouldn't even be on the computer that long); you draw a line and punish those who cross it. The ultimate question, however is, where do you draw the line? Too close and you get pointless cases such as the parent news report. Too far and you get kids hacking into school computers to change grades and get let off with a 'slap on the wrist' type punishment (in-school suspension? Some schools outright flunk you for the year or expel you for that. Hell, most colleges fail you for the course just for plagiarism, imagine how they would react to a hacking attempt to change grades.)
Has anyone questioned the absurdity of them being charged with 'computer trespass' against machines IN THEIR POSSESSION?
Isn't there a more applicable crime somewhere in the DMCA that they can just have the kids executed by firing squad for? Like uhh... 'circumvention of blah blah blah' ? I mean, my god! They didn't want to get spied on and have everything they do monitored, they must be terrorists!
Friend: "The NIC is misconfigured..." Me: "No prob, I'll just telnet in and fix it." *Silence*
This sounds so much like the "student laptops" (more like tablets) that the cadets(?) used in Ender's Game. Guess we're finally headed for that promised "21st century future", eh?
"Good news, everyone!"
Technically you could argue that breaking this security involves learning, which is assumedly what these laptops were provided for in the first place, so it's not even really a misuse of resources.
FFS never mind this, why the fuck are kids being given laptops in the first place? High school students have NO use for all this equipment, they are going to use it for music, porn and games and very very occasionally write a report on it. Seriously is it that important to waste that much money so some students can do word processing?? what the fuck happened to using the computer room or their home computer or even just writing with a bloody pen? This is just an insane waste of resources for no purpose other than to hype the fact that everyone has laptops. Yeah sure it would be _nice_ to give kids laptops but at the moment it just costs too much, when the price eventually drops to a reasonable level then this will be a viable option. For the price of this project they could probably have afforded smaller class sizes, useful equipment or more one-to-one tutoring. These computers will be useless in a few years - many of them will be broken (they're not designed to last forever), some lost or stolen, and the rest will be nearing the end of their useful life as glorified word-processors with computing power that would have only been found in a Cray a few decades ago. I would sack who-ever is responsible for this and who ever DARED to pass the buck for their mother fucking failure on to kids that are doing what kids do (at least they aren't jacking cars).
This comment does not represent the views or opinions of the user.
My guess is, they didn't track him down completely. They may have gotten the IP of the computer where the forgery was sent from (by analyzing the headers of the e-mail, which the networking company could have helpfully forwarded them to...). That would still not give them the name of the student, though. Just the computer that was used...
For the missing info, a bit of psychology was probably used (as described by grand-parent...). Just call the entire class into a room, and describe in an excruciatingly slow and detailed way those clues that you do have (without making it apparent that you are still missing lots of important info), and look for the "one student who was watching in HORROR (with a complete look of shock on his face) as they described in great detail ...".
In a word: a lot of bluff, really...
Or maybe, they did indeed find the student using technical means (student stupid enough to use his own login...), but with many HS students, the psychological approach works wonders... Lesson: if you want to be a pro hacker, work on your poker-face.
The thing that is needed is that the teachers has a ability to trust the pupils. Without this fundamental trust, everything goes titsup! There should be no reason at all to spy on the pupils, and I myself would quite clearly either demand that spyware removed, or I'd refuse to use the laptop.
The last year, I've been in school into electronics. I've been trusted with handling systems, out of the idea that I have not done harm so far, and if I do, it will be logged. Sure, normal workstations on school has been locked down. But on the electronics course, we need full access to our boxes, so we get to install whatever we want. Our it-guy had no problems with me running linux on it, nor with me doing snmpwalk on his switches. Because he was confident in that the setup on the switches did not crash due to a snmpwalk, nor that I would in any way try to abuse it.
School also has a 802.11b network. This is for teachers only, so encrypted. I and a few friends put up a laptop to crack it. We was fully open about it, and did it to demonstrate for the it-admin that encryption was close to useless. No, he didn't even change the encryption, because he was confident in us not sharing it with the rest of school.
It all falls back to basic trust! If IT can't trust the pupils, they should be more self confident. A porn filter on the schools line is OK, but if pupils want to surf porn at home?
Assembling etherkillers for fun an profit
I joke! I joke!!
Huh? Thanks to illegal file sharing, we now have iTunes and a dozen other shops selling songs online at reasonable prices without having to buy a whole album.
And thanks to these kids' shenanigans, some fussbudget technophobe school administrators are ending up with red faces, the kids are getting an education in the law, parents are going to get together and organize and start paying attention to what goes on in the schools, and if you think a single kid from this story will serve a minute in jail or pay so much as a penny of fines, you're crazy.
"Patriotism is your conviction that this country is superior to all other countries because you were born in it." -- GBS
I've worked for companies that would shut down your website if they found out your password was too weak.
A number and then a real(ish) name is one of the worst passwords one can come up with.... and is boring at that.
Here's a nice tool for coming up with random passwords. It doesn't seem to recognize including spaces (which are usable in passwords with Linux, BSD, htaccess passwords, Windows XP, gmail, and who knows where else) within the generator. I guess we're left to our imagination at that point.
So that's a law under which anything that they "might" have done is illegal. Marvellous. However, taking them down the station to have them fingerprinted and saying "they might be charged with a felony" is surely just a way of trying to scare the kids (and their parents) into not doing it again.
If it were to come to court "in excess of given authority" would be an interesting thing to prove given that one the admin pw was given out on some occasions and was the postal address of the school district (as mentioned elsewhere here).
The school and the admins already look stupid in the local paper. I doubt that they want to look stupid in court too.
It seems to me that if the school was making the kids financially responsible for the laptops (which is implied by the "recommendation" that they take out insurance on them), then don't the students get corresponding rights? I know that if I was going to be made personally responsible for two grand of computer hardware I wouldn't consider accepting those kinds of restrictions on how I could use it.
I think this is a dead on comparison on attitudes to day, and in years gone by.
50 years or so ago, the analogue (trespass charges from the article) would have been a bunch of schoolkids wandering off and stealing apples from some local orchard/garden. Just a handful, and just as it's 'the rebellious thing to do'.. That stage that many kids go through. And hey, adults do too.
Technically, it may be illegal, but common sense tells you it's a light hearted prank. Someone blowing off steam
You didn't just lump them in with somone who broke in your house and stole all your prized possessions.
If it were reported to the headmaster/headmistress of your school, you'd get a stern talking to, a series of detentions, lines to write, and probably a week kicking your heels in your bedroom.
All of which would say very strongly "It's really not worth the waste of your time to do it!".
An eminently sensible, and time tried solution. Everybody forgets about it in a few weeks, apart from maybe a slightly elevated reluctance on the part of the kids to 'scrump' for apples like that again.
Exactly as it should be.
Now: We get people like the teachers who went screaming to the police department at the first sign that somebody may have done something they didn't like.
Now, a suitable punishment would have been a series of detentions, letters home to the parents who would most likely have grounded the kids. And everyone would have gone on as usual.
Now, instead, you have a set of scared (and intensly angry) kids who if they do it again, are going to be much more careful, and if it looks like they're going to get caught, will likely cause collateral damage to hide their activities in.
And a series of shocked and angry parents who have suddenly lost faith in the ability of teachers to even try and keep some semblance of common sense in and out of the classroom.
Then, of course, the media, who love this, sending word far and wide to a generally disbelieving population, most of who are going to be shaking their heads at how far stupidity and knee jerk reaction has pervaded socicety and become the norm.
One thing's for sure: The image of that school is very badly damaged. I'd hazard a guess that several students will be moving (voluntarily) to another educational establishement.
The intake will likely be down (hey, would you prefer a school that'll give your kids a felony charge for a prank, or one that'll give them a detention and teach them pragmatism?).
The cost in PR and face for this action is incredible.
If the school holds it's current position, it'll likely cut off any possible stream for kids with a prankish side (who often tend to be highly creative; note this isn't just kids who misbehave just to be disruptive. Difference between Ferris Bueler and Bart Simpson) coming into the school.
And most other kids whose parents just don't want to risk it.
If they turn it around, and quash the teacher's wishes so completely, the administration will just never be treated as a joke, and it's authority will be seriously undermined (can you imagine, every small action a kid gets pulled up for, they'll be saying 'what are you going to do? Report it to the police?').
Maybe I'm just getting old, but all this leaves me with is the wish that things would go back to before the politically correct and lawsuit hungry era back to times when common sense was actually held in esteem. When you could actually learn to respect someone for being harsh but fair, rather than having them try to force respect by waving the threat of a lawsuit in your face at every corner.
Just curious....does anybody know what they used (or tried to use) to keep users (standard users) in OS X from installing software within their /user directory?
Rule number 1 of security, if the attacker gains unsupervised physical access to the box, game over. What in the world did they think was going to happen?
You can raise the bar quite high if you use various crypto signature techniques, but ultimately a soldering iron and a flash burner will defeat that. A CPU that can check the BIOS signature in micricode on powerup would raise it much higher still(probably beyond a student's reach, in fact), but could be defeated by a determined attacker with the right laser and microscope.
Despite all of that, the real crime here is school administraters who have forgotten why they are there and who they serve. They are supposed to provide the students with a safe learning environment where they not only learn what's in the books, but how to get along in society. Part of that includes the school modeling society in microcosm. Part of that includes demonstrating that poor choices have unpleasant consequences while protecting them from the worst of those consequences while they are learning. Whenever outside law enforcement is called in, the school has failed in it's primary purpose. When outside law enforcement is unnecessarily brought in, the school has WILLFULLY derelected it's duty to the students, parents, and society.
Schools often claim to be acting in loco parentis and so need not recognize a student's 4th ammendment rights amongst others. Courts tend to agree with that. What they have forgotten here is that there are duties and responsabilities that go along with acting in loco parentis. Would any decent parent file felony charges in retribution if their high school aged child hacked their computer to bypass the parental netfilter?
The administraters are embarrassed that the students got the best of them. In their embarrassment, they have rather childishly decided to do as much harm to the students as the law will let them get away with. It sounds like the administraters responsable for this shouldn't be allowed anywhere near responsability for children until they spend some quality time with a qualified psychologist. In addition, given that the administraters have demonstrated an emotional age equal to or lower than that of the students, perhaps they should serve a few weeks of detention as well.
Were I one of the parents, I would probably petition for the administraters' immediate dismissal for incompetance.
Er, that should be "Kutztown" in the article title. Located in beautiful east-central Pennsylvania.
We have to prepare kids for the future. And once the DMCA was enacted, we no longer own our stuff. Thus, kids should get used to the idea that we can't use products they way we want. Thus if we use them in a way that society deems harmful, no matter how mundane that use is, there are going to be consequences.
If someone says he and his monkey have nothing to hide, they almost certainly do.
I think they should go for the death penalty. It is important to send a message to teens across the US that surfing the Internet is not to be tolerated and will be quickly and decisively punished. Not allowances for the, we didn't know defense. They need to learn early and now, that their actions contitute a grave threat against this country and that grave actions will be meet with grave concequenses.
So, please, everyone rise up with me and insist that the death penalty be employed to send the right message, to help protect our children.
From http://www.readingeagle.com/re/news/1401578.asp
"The way the school district handled this whole situation was unbelievably atrocious," said Hillary A. Thomas, the mother of Sheldon Thomas, 17, who completed his junior year and is one of the students charged.
Hillary Thomas was among five parents who agreed to talk about the case.
They said the students' actions would have resulted in nothing more than grounding or loss of computer privileges if they did with a home computer what has happened on school laptops.
No permanent damage was done to the district's computer system and nobody was hurt by the students' misdeeds, they said.
"I'd have pulled the modem plug and it would have been hidden," said LeAnn M. Shoemaker, mother of John L. Shrawder, 15, a charged student who was a freshman.
The parents said they didn't learn of the charges until they received a recent letter from police.
Dr. Brenda A. Winkler, superintendent, said Friday that district officials contacted several parents.
"The high school did a lot of contacting," she said.
Parents also are upset they still have not received a copy of the complaint that lists the charges.
They said the district should have tighter security on its computers.
Kutztown Police Chief Theodore R. Cole has said it would be up to the Berks County Juvenile Probation Office to send the parents copies of the charges.
The students are not in custody. The letter from police asked them to go to the Kutztown police station for fingerprinting and identification. The parents said their children have not done that.
Thomas said her son downloaded iChat, a messaging program, and Acquisitions, a program for downloading music.
"We have not even seen the charges, so the whole thing's in limbo," Thomas said.
I conducted a security assessment for a large school district about two years ago. Yup cracked %80 of their passwords in 20 mins. I was called in after some student changed his grades and attendance records in the district's database. They had no brute force detection on anything. No password aging. No real security policy at all. Did not find one strong password. Some if not most of the teachers login passwords to the main database (an Access db at that) was the same as their email name. They would not have caught this guy except he talked about it to a "friend" that then ratted him out.
After seeing how security was run at this LARGE district I don't have a whole lot of sympathy for IT Directors when their systems get cracked.
Sometime around 1977 my father stood in front of my state's legislature and gave testimony regarding a computer crime bill that was up for consideration. He pointed out that this bill would not only have little or no effect upon it's intended targets (white collar criminals), but would instantly felonize the bulk of the state's computer science and engineering students. It was a really stupid law, created with the usual "we have to appear to be doing something so let's do something in a hurry without out thinking it through" mentality.
... the teachers and administrators in this case probably feel the need to "send a message" to the student body. They think that message is "respect the law!", when the actual message is "the law doesn't respect you, so why should you respect the law?" All this kind of treatment will do is create more Kevin Mitnicks.
They hadn't thought of that.
That bill didn't pass (only because an intelligent, well-spoken engineer gave the politicians some facts they chose not to ignore), but there always those that feel the need to increase the crime/punishment ratio to insane levels. Oh I know
The higher the technology, the sharper that two-edged sword.
That was very, very well said but (of course) I'm totally out of mod points so you'll have to settle for an "atta'boy!"
I agree - this shit is a total scam.
To answer your rhetorical question about why computers instead of additional tutoring or other materials? It's all about metrics. It's easy to measure whether a student has a computer... it's difficult to measure whether an instructor is efficient or whether tutoring sessions are effective.
BTW: My daughter is attending a state college and IIRC their MINIMUM requirements for a PC is (are you sitting down) a 3Ghz P4 or a 1.6Ghz Mac or faster(!) with a half-gig of RAM and 40GB HDD, an absurd amount of processing power for IM, email, web browsing and writing a few reports. Three thousand four hundred clock cycles (x # of cores, x #preinstuction fetching/multiple pipelines, etc.) adds up to a LOT of power. I mean, damn, you could compute a moon orbit insertion in less than a second on that machine but 99% of the time it'll be used as a glorified typewriter. How did anyone ever survive college with only pencil, paper and a typewriter?
Of course, when asked why top-end systems were necessary for freshman students, the staff couldn't tell me *why* they required a hot-rod computer, simply "that's our requirement." When asked what tasks the system must be able to perform, the staff said "general computing." Yeah, right. And the school **REQUIRES** MS Office, student edition ($150). According to staff, OpenOffice (free) is not an acceptable substitute. Again, no reason why could be given, simply "that's our standard."
Makes me wonder how Microsoft, Gateway and Apple are listed as "recommended" brands. I have no reason to suspect a kickback or paid product placement, do you?
n/t
*Stop commenting on sig*
Okey dokey.
-
- - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
Thanks, I didn't know for sure if Kevin's probation was over.
He's now a security consultant.
Now this I did know. Kevin has also testified before congress.
FalconShould there be a Law?
When i was in 6th day, oh i dunno 12+ years ago, I somehow managed to get into the network of my school, this was when I was 1st learning about computers. Well like any childhood ass I deleted lots of stuff from lots of computers. Well because all this stuff is logged it wasnt hard to track me down. I got banned from the computers in school for 6 months. I guess the good news is the pc lab teacher saw my potential and after the ban was up she converted me to a white hat and i spent the next 3 middle school years helping her out and she taught me alot of stuff. When I went to high school I was smarter then the PC lab teacher their and she ended up letting me teach the class alot of stuff that she just didnt know.
Makes me wonder how Microsoft, Gateway and Apple are listed as "recommended" brands. I have no reason to suspect a kickback or paid product placement, do you?
Well I guess that might be why these students were given these computers.
Anyway back to the topic, school is all about making mistakes and learning for real life and thats what these kids have done. im sure in the future they will remember to do it more discretely and avoid getting caught. They should have been more careful though, you don't just go through your school-issued computer willy-nilly, they should have first thought to themselves "why have we been given these machines?". They should have gathered some dirt on the principle - any kick-backs etc. If they didn't find anything they could either have written a report on his managerial incompetence or just made some dirt up - keeping it secure incase it was needed as 'coercion'. After that it would be prudent not to get caught, ok so its not right they should get felony charges, I would have made them write a report on 'covering your ass' and left it at that. They need to learn how to deal with this crap before they leave school.
This comment does not represent the views or opinions of the user.
No, not as long as you're not touching content provided by *AA members. If all you're doing is listening to or distributing content that's in the public domain, then there's nothing they can do to you.
Its got nothing to do with Apple.
MSBPodcast.com The opinions expressed here are my own. If you don't like 'em... Think up your own stuff.
I did just that to our internet use policy back in high school. My father is a lawyer, so I had him look over the paper before I signed it. He took one look at it and informed me that I would be stupid to sign.
The policy did not have a list of offenses or punishments. It just stated, basically, that "if we don't agree with what you are doing, we can do whatever we want to you."
You can imagine the look of the secretary's face when I returned it unsigned "on advice from my lawyer." I had internet access at home, so I didn't really care.
that this is some kind of new McDonalds recruiting tactic, seeing as that this is the only place that these kids will be able to get a job if these trumped up felony charges hold up. Why would anybody honestly think this is a good thing? You damn people just won't be happy unless you can lock up at least 25% of your population, will you? Is this just an attempt to revive your manufacturing base? By using prison labor? You won't have to out source anymore. This is sickness!
What?
Makes me wonder what would happen if a student said "No, I don't agree to your terms and refuse to accept your computer."
"I knew it was against school policy," he said. "But I didn't know it was a felony."
The students had no respect or fear of anything short of a felony conviction. The lack of repect for authority is epidemic and comes from more sources than could be identified, but I suspect that if the administrators thought that a stern talking to would have prevented students from continuing to do the same thing in the future that they would have considered it an option. The question here shouldn't be "why did the school overreact?' It should be "why can't the students be trusted to do what they admit to knowing was the proper course of action?"
I would be a little more concerned about the long-term consequences of a felony conviction, but the students in question are minors. The charges are likely to be reduced during the legal process, and their records will be expunged at age 18.
That being said, I think it was an ill-advised program to start with, and that the school district has shown their incompetence to manage technology projects of this size. If I were a taxpayer whose hard earned money was being used for this I would be livid. The people in charge obviously did not have sufficient mental resources and/or hired expertise to reach their stated goals for this initiative, but went ahead and spent other peoples money on it anyway.
I would imagine they could have funded courses on ethics for every student in the district with the money they wasted on unnecessary hardware and software, and that those classes would have done a lot more for the future of the community than redundant computer access for a generation of students who are obviously already sufficiently computer savvy. The fact that they were able to outsmart the administration and IT staff regarding computer issues proves that they already have more understanding of these areas than is needed to get a job.
Unfortunately, people who don't bother to take the time to understand computers assume it's a lot harder than it is, so they think kids need to be educated in it. Kids have plenty of places where they can learn about computers, and it's one of the few subjects that illicits so much self-motivation. How many coffee shops offer access on demand to history or biology instructors? How many libraries have chemistry labs or a place to disect frogs, or instruction in how play an instrument with a group of like-minded people? These are offerings that are possible through schools but often are being crowded out of the budget by techology funding.
Basically, there is no such thing as an unbreakable lock. Personally, I don't believe there is such a thing as an unbreakable machine. A determined hacker (especially kids who have all the time in the world and think outside the box), WILL get in somewhere you don't want them to eventually. I've come to accept that reasonable security is all you can hope for.
Whenever stories like this come out there's always a horde of Slashdotter's to decry how the security (and those who implemented it) sucked. And that's fine, I understand the mentality, but you folks should understand the types who work in schools.
Many Tech Coords were or ARE teachers themselves with little or no experience in the security/networking field. For instance, before me this school didn't even HAVE a TC - it was just a cadre of willing teachers (the HORROR!)
"...Well, there's egg and bacon; egg sausage and bacon; egg and spam; egg bacon and spam; egg bacon sausage and spam..."
I'm surprised that no one has noticed this. The school district REQUIRED students to use the school laptops, even if they had a laptop at home that they could have brought in and used. The school district also REQUIRES teachers to implement the laptops into the curriculum so they are used. The school district has monitoring software so that they can spy on the students. Basically they are providing themselves with tools that they can spy on students, requiring students to carry those tools, and if students disable the spy software, they get charged with felonies. Am I the only one that sees a problem with this? If my kid was in that school district, I'd be visiting with a lawyer and/or other organizations to get some changes made around there. This is a total invasion of privacy, but it's been glossed over as a "free" laptop, so people have looked at it as a good thing instead of the invasion of privacy that it also is.
...to meet the underdeveloped idiot who thinks that it is a good idea to charge these kids with computer felony. When will these imbeciles understand that the school is a place where kids LEARN (and this is *exactly* what these kids did) and not jails?
These stupids should understand that if they do not like kids or school they should simply change job. It is clear that an idiot who wants to charge a kid with computer felony can't even be considered a human being... and for sure not someone that should work in a school.
Just remember, most of those recruiters will say ANYTHING to get you to sign their papers... so if you're thinking about joining up just for that, make sure you get it in writing that they can "wipe the felony" away.
I don't think the armed forces can actually do that, anyway. On the other hand, if it was small enough and long enough ago, perhaps you could have a lawyer petition the court to have your felony expunged from your record... google 'expunge felony' for a zillion hits.
Just my $0.55 (US inflation, 1774-2008, for $0.02)
My school uses deepfreeze on all its machines. Ironically, it doesn't work on the Windows 98 machines in the computer labs (haha, go figure). It doesn't even seem to work on the machines with XP (you install something and it stays even if you reboot). I'm sure it could be easily turned off, i've never tried becuase i'd rather not loose my network access rights before I graduate.
From what i've gathered off that schools FAQ, I would be charged by simply installing firefox on the network hardrive. I've done this at my school to A) avoid storing my history for everyone to see, B) Be able to have my own bookmarks, and C) to avoid IE's annoying pop ups. I'm not worried about my Network drive being checked, we have a tech staff of about 5 for 7 schools for 5500 students. If I really wanted to be sneaky, I'd just install it on a thumbdrive.
Hell, I've know "student aides" (who assist teachers during a period) to copy exams from the teachers HDD to a thumbdrive without the teacher knowing.
Kyle
That is technically an "ex post facto" (adding punishment after the fact) law, which is illegal, but they weasel out of it by saying it isn't punishment, it is just aiding "public safety" by restricting "privileges" of persons with a "felony status", not punishment for a crime.
"Ex Post Facto" as a legal doctorine doesn't have anything to do with adding punishment after the crime. Since we don't live in a Minority Report (starring Tom Cruise!) world yet, all punishment comes after the crime... so this is somewhat normal. "Ex Post Facto" actually refers to adding a new law after the crime has been committed and then charging the person with that law. Even though the law did not exist prior to the commission of the criminal act.
Just as if the DMV takes your license away in an administrative hearing for DUI even if you are acquitted in criminal court! What about double jeapordy? Well the admin. hearing is not "punishment".
"Double Jeopardy" doesn't have much to do with punishment, it has to do with the prohibition of bringing a person to trial for the same crime after it has already been adjudicated.
However, in reality most offences have multiple punishments attached to them (i.e. your conduct can trigger responses from multiple sections of law). You pointed this out with your DUI-DMV example.
As another example, Armed robbery usually includes charges of aggrivated robbery, unlawful use of a deadly weapon, etc... depending on how you did what you did. After this you would probably be taken to civil court for violating the civil rights of your victims as well.
-- No matter how great your triumphs or how tragic your defeats, approximately one billion Chinese couldn't care less.
We also have the DMCA, DRM, and a continuous push for even more protective legislation by Big Media.
I am convinced that something along the lines of iTunes would have happened anyway- all it took was acting on one of the biggest complaints that people have- they're tired of paying $15 for a CD full of crap, when there's only one or two songs that really merit any value.
Now I know why I enjoyed your post so much. Tazwell, eh? I grew up in Washington County (John S. Battle class of '93). So I kind of have an idea where you're coming from. And you're on your way into med school? Good on ya!!!! I hope you graduate at the top of a class filled with yankees and NOVA's =D
On a side note, I had the following experience my freshman year of college (out of state, BTW). A guy living on my floor was from Faquier County, VA. He asked me how I did on some of the standardized tests (ACT, AP exams). At the time I graduated, I was only the 3rd person (and only male) in my high school's 30+ year history to score a 5 on the AP English Exam. Anyway, after I finished sharing my accomplishments with him, I could tell by the look on his face what he was thinking.
"What's the matter?" I asked him. "Do you find it hard to believe someone from Southwest Virginia could do so well?"
"Actually," he replied, "Yeah. I do."
Fortunately for him, my desire to yank his head out of his butt and slam it repeatedly against the wall was outweighed by my desire not to get expelled and go to jail.
To his credit, at least he was honest about being "elitist NOVA scum" ;)
This isn't the sig you're looking for...
Learn to read, then learn to flame properly.
They also spied on other students, messed with other people files (deleting, altering, etc.) and tried to frame other people for breaking the rules (open a porn site, inapropriate backgrounds, etc.) through illegally downloaded remote desktop programs.
Actually they matched the record of who had logged into the online class materials during the same class time from that machine. (the computers didnt require a login, but the online class materials did)
All misspellings and grammatical errors in the above post are intentional and part of my artistic expression.
My charge was a Class D Felony for possession of a controlled substance, which makes it one of the lowest felonies you can get. Unfortuanately, a felony is a felony in many people's (and most employers') eyes.
And believe me, I've looked into having it expunged. The information I've received has ranged from impossible (a page I found on Google reguarding my state's laws), possibly (a lawyer I can't afford on my salary, but offered free consultations), to "in five to seven years, maybe" (my probation officer). Five to seven years? I just turned twenty-three; this is the time in people's lives when they start their career paths, go to school, and generally build the foundations of their adult lives! I can't spend five to seven years "treading water" in the hope that maybe, someday I can have my record expunged.
where the comment ends and sig begins
Okay see, now THAT'S wrong. I'm perfectly content with the kids getting reamed for doing something like THAT. But if, like the article said, they were simply downloading stuff, even if it WAS porn or illegal music, and keeping the admins from spying on them...then this would be ridiculous.
Friend: "The NIC is misconfigured..." Me: "No prob, I'll just telnet in and fix it." *Silence*
google: citrix osx or google citrix linux and the first results are the clients for those OS
I'm sorry to say this, but as a person both having worked with maintaining computers in the class-room and having been on the other side because of annoying/impractical/senseless rules imposed by other administrators you make the wrong points. Sure, computers need to have some security built into your school computers, but this is no different from not giving the administrator priviliges to every random user on your network, or even to their own workstation computers in the company. There is a certain needed level of obstacles you can - and should set - to make sure only people who know what they are doing get past it. Let's face it here, if kids want to get into a computer and has sufficient time for it (and skills as well as determination to do research on the web), we can't stop them. It's a question of time, pure and simple - they have more time to try than we do to stop them. Your main issue seems to be a question of motivation for the kids. Don't try beating them at a game you simply cannot win - Child psychology 101 ;-). In stead try motivating them to use their energy in a more contructive way. Set them challenges, in the classroom or outside, similar to what they can do. For example a workshop for network security, where they can try getting past your countermeasures on the network and report them back to you. This way everyone has the game, but the result will be a more secure network than you could ever do on your own. These kids have near-unlimited resources, timewise, and if you treat them like the enemy, they will _be_ the enemy. The security-by-obscurity scheme never does anyone any favours.
The time when you could simply tell students to do this and that is over. The informed (and probably spoiled) kids of today demand explanations and reasons for doing what was earlier taken for granted. If you can harness this you have a great ressource, if not you can keep fighting your losing battle forever.
Of course they're going to try to hack it. And of course they eventually are going to succeed. And what's the business of relying on a SINGLE password 50Trexler? Stupid. Spend more resources teaching the students the fundamentals. Computers are tools, not the fundamentals which are the raison d'etre for tools. Much of what is called progress is just so much technological roccoco anyway.
It's a difficult thing.
The essential "problem" is that kids are smarter then parents and teachers with respect to technology. Kids know this. Which is one of the reasons they engage in such acts. They think they won't be caught- because most of the time, they won't (unless they are foolish in the way they hack, which could happen). This is adults' greatest fear, really- kids who are smarter then them. Which is why everyone freaks out when some case like this comes into the spotlight. It's like parents blind themselves for the sole purpose so that they can act all protective/judgemental when suddenly their kids do something "they don't know about".
Or if the kid is caught, typically he/she knows that the consequences won't be all that bad. They might get grounded I suppose. But a lot of times, the parents are the ones who are blamed and have to take responsiblity for the kid's crime. (Example: RIAA suing downloaders)
Now some people say that kids don't understand the law yet (they are too young), so they shouldn't be responsible. My opinion: that's a complete load of crap. Heck, most PARENTS don't understand the law- that's why they have to employ lawyers. Declaring to some kid that he's ignorant and so letting him off the hook is akin to teaching a criminal that someone else will take the blame for their crimes, so they don't have to worry about it. Kids learn that, then later when they grow up and become REAL threats to society, and people wonder why.
If I had any "recommendations", it would be these:
1) Adults, you MUST make a serious effort to learn technology so that you have at least a reasonable understanding of what young people are doing on computers. Age is not an excuse. It's bullshit that you are "so old I can't learn like I did when I was 18". That's just a ridiculus society-driven belief, which is not in the least bit true. Maybe you have a few less brain cells, yes. But more times then not, you're just BS-ing yourself because you're too lazy to learn. Stop fooling yourself and do some friggin work, instead of assuming your kids at fault for what you yourself don't understand.
2) Kids need to be treated more like people, rather then "kids"- i.e. people who somehow don't know anything just because "they haven't been alive long enough". For god sake, if kids know things about computers that you don't, what does that say about your belief that kids are ignorant? Time is not a good indicator of ablity. Only results are an indicator of ability. Just because a kid hasn't been around "long enough" doesn't mean they don't have the ability- ESPECIALLY when they demonstrate that ability by doing something.
3) So basically, if a kid does a crime, then take appropriate action. Parents should not be allowed to "protect" their kids from ligitimently committed crimes. Just make the crime fit the action, as well as the person who did it. It would be appropriate to hold a session with the 80-100 to explain to them why what they did was unacceptable, and have them do something like work on a project to improve school security. Or, it may be appropriate to take no action against the kid if the school cannot prove that they had a program in place to teach the kids what actions on their computer are/are not acceptable. It is fair that a person be given every opportunity to know and understand the law before any judgement for breaking that law is given.
If you are honest on your application, I'll at least listen to your story and make a business decision. If you lie on your application, that's a deal-breaker.
"Avoid employing unlucky people - throw half of the pile of CVs in the bin without reading them." -- David Brent
Keep taking the laxitives.
GCHQ Quantum Insert installed. If only our tongues were made of glass, how much more careful we would be when we speak
http://dictionary.reference.com/search?q=bartery
Probably not what you had in mind..
That that is is that that that that is not is not.
Limping back into my cave, cane in hand... where DID I put my teeth... now.
... grumble, grumble, grumble, mutter, mutter, Millenium... Hand... Shrimp, I tol' 'em, I tol' 'em.