Slashdot Mirror

← Back to Stories (view on slashdot.org)

Rackspace, Indymedia, and the FBI

Posted by CowboyNeal on from the egg-on-face dept.

chill writes "Remember when Indymedia hard drives were seized as part of an international 'criminal terrorism investigation'? Rackspace pulled the whole hard drive and shut down a dozen websites, and the Slashdot community cried 'Say it ain't so!' It ain't so. The documents have been unsealed and CNet is reporting that Rackspace made a mistake. The government wanted only copies of logs, not entire hard drives. It seems the week of downtime wasn't really necessary. Oops!"

28 of 344 comments (clear)

  1. fanatical support by Anonymous Coward · · Score: 3, Funny

    that's fanatical support alright!

    for a police state!

  2. Mistake by Knome_fan · · Score: 5, Insightful

    Ah, if it's only a mistake than it's no problem.

    After all, everybody makes mistakes from time to time...

    1. Re:Mistake by demachina · · Score: 3, Informative

      There are some substantially more serious problems in the UK as of today's speech by Tony Blair anyway. Among other things he is planning to:

      - Outlaw bookstores the government decides are promoting Islamic extremism
      - Outlaw web sites promoting extremism presumably including any outside of the UK viewed in the UK.
      - Outlaw anyone promoting, condoning or rationalizing extremism, which could for example include people speaking on behalf of Palestine or maybe news outlets showing the latest video of Al Qaeda leaders. Needless to say no one really even knows what qualifies as extremism, the UK government and courts will decide when they see it.

      Anyone in Britain who is not a citizen who frequents or maybe even has frequented said bookstores, web sites or made statements justifying extremism will be swiftly deported often to countries like Egypt and Saudi Arabia where they may be dealt with swiftly and harshly if they are suspected Islamists which they will be when Britain deports them.

      British citizens doing the same may be charged with crimes.

      You better hope you don't Google something and go to one of these web sites inadvertently because Scotland yard will now come knocking.

      If you've listened to the prosecution underway for the London bombings, two women and man have been charged under the new "withholding information" statute. In Britain now if you are falsely accused and can't tell them about a terror plot you go to jail. It creates an interesting situation where people falsely arrested are given incentive to make up a plot and falsely accuse other people to avoid being charged with withholding information, resulting in a pyramid scheme of false accusation.

      If you do have information you are apparently pretty much compelled to divulge it even if it entails self incrimination. Either you confess and are sent up the river or you don't confess and you are sent up the river for withholding information. Nothing resembling a fifth amendment in the UK now. Innocent people are totally screwed if someone has falsely implicated them. Based on terror cell investigations in the U.S. there is a high frequency of false accusations.

      Two Muslim men in Detroit, in a showcase DOJ terror trial, were convicted based on a tourist tape to Disneyland which the government said was a terrorist planning tape, disguised to look like a tourist video, and on the word of a conman charged with fraud who got his charges reduced for implicating the two men. He later admitted in jail he was lying to get his sentence reduced and the convictions were overturned. The government insisted the Disneyland tape was evidence of terrorism and even more so because they had made it "look" like a tourist tape to conceal it was a planning tape. It really looked like a home made movie of a trip to Disneyland. Apparently everyone needs to stop using video cameras on vacation because THAT is terrorism now, especially if you are Muslim.

      --
      @de_machina
  3. Knee Jerk Reactions... by __aaclcg7560 · · Score: 5, Insightful

    I guess when the government asks someone to jump, no one bothers to ask how high. Some people just assume that jumping out the window is a correct response.

    1. Re:Knee Jerk Reactions... by Ubergrendle · · Score: 5, Insightful

      Ever dealt with Law Enforcement? There's always what they ASK you do to and what the IMPLY you should do... unlike normal people doing normal jobs, Law Enforcement officers are trained never to rationalise, never to second guess, and to always assume that they're right. There's good reasons for this, but sometimes it has bad results.

      ISP:"We won't give you our records without a court order."
      Police officer:"Well, if I get a court order I'm going to ask for your whole ISP to be shut down. Don't make me waste my time."
      ISP:"Oh crap! Here's not just the logs but the harddrives! Please don't shut us down..."
      (10 minutes later) ISP Lawyer:"Call me first next time, this cop was yanking your chain."

      A very likely set of events IMHO.

      --
      John Maynard Keynes: "When the facts change, I change my mind. What do you do?"
    2. Re:Knee Jerk Reactions... by Rasta+Prefect · · Score: 4, Insightful
      A very likely set of events IMHO.

      Unless, you say, RTFA, and found they _had_ a court order. Thats what a subpeona _is_. The Feds appear to have actually acted quite reasonably. Rackspace were the ones who pulled the drives instead of making an image of them. I'm failing to see how this is in anyway the feds fault.

      Seriously, I realize that most Slashdotters don't like the Bush administration (frankly, neither do I. I voted Libertarian where possible, democratic elsewhere). But having read the first couple dozen posts here most of you come across as being just about as objective as the people pushing Intelligent Design - You've got your world view and you're willing to ignore any number of inconvenient facts to advance it.

      unlike normal people doing normal jobs, Law Enforcement officers are trained never to rationalise, never to second guess, and to always assume that they're right. There's good reasons for this, but sometimes it has bad results.

      And totally unlike a bunch of people on Slashdot who haven't bothered to read the article and find that it was in fact, Rackspace and their employees who chose to pull the harddrives and not the feds.

      --
      Why?
  4. Zealotry is bad, no matter who does it by ReformedExCon · · Score: 5, Insightful

    Rackspace, in their desire to stay on the good side of the law went far overboard in their zeal to help the police. This is a common theme in many cases.

    The law specifically protects people from incriminating themselves and also from unreasonable search and seizure. It does not protect them from turning themselves into the authorities, nor does it protect them from others doing it for them.

    You would like to think that companies would consult with their lawyers that could advise them on their legal rights and responsibilities before they took drastic, unnecessary steps like turning a lot of personal/private documentation over to the police.

    --
    Jesus saved me from my past. He can save you as well.
    1. Re:Zealotry is bad, no matter who does it by SlashEdsDoYourJobs · · Score: 4, Insightful

      You would like to think that companies would consult with their lawyers that could advise them on their legal rights and responsibilities before they took drastic, unnecessary steps like turning a lot of personal/private documentation over to the police.

      Indeed. If I were a Rackspace customer, I'd be looking for a new host right about now. Who wants a host that gives you a week of downtime for absolutely no good reason? What business can afford a week of downtime? That's essentially what you are risking when you go with Rackspace, because they have just demonstrated that they don't have a proper process in place for handling subpoenas and that their employees aren't smart enough to handle them without adult supervision.

  5. Just copy the disks before turning them over by jurt1235 · · Score: 4, Interesting

    If they just decided to copy the disks so they would have had limitted downtime. Downtime=How long it takes for dd take to make a bit by bit copy of the drive depends on the size, use multiple machines to do one drive per machine, so it goes as fast as possible.

    That would have made them make the jump of the previous posts and still have limitted impact.

    --

    My wife's sketchblog Blob[p]: Gastrono-me
    1. Re:Just copy the disks before turning them over by arivanov · · Score: 4, Informative

      OK, here went my moderation.

      Complete and utter bollocks. Rackspace can do real-time backup snapshots to their SAN of any of their standard config machines. They do not offer this is you have a custom config, but this does not mean that they cannot do it. So there was no need for ANY DOWNTIME WHATSOEVER.

      They offer this under the name of managed backup service. So, if the order was exactly as unsealed by EFF and they wanted to comply to it literally it would have taken them a few seconds with no downtime. Few minutes at most.

      If Indimedia was not a managed backup service customer Rackspace would have had to install the agent first. They are a fully managed service provider and they have root on the box under normal circumstances and can install the agent in a couple of minutes.

      If Indimedia was a managed backup service customer Rackspace could have handed all old snapshots outright and initiated a new on the spot with a click of a button on the "fanatical support" console.

      In fact, it may be worth it to ask was or was not Indimedia a rackspace managed backup service customer.

      --
      Baker's Law: Misery no longer loves company. Nowadays it insists on it
      http://www.sigsegv.cx/
  6. A good mistake IMHO by Adult+film+producer · · Score: 3, Interesting

    Otherwise nobody would have known the FBI was harvesting log files, or am I wrong about that? Hopefully all ISP's when faced with sneaky orders like this will do the same. Regardless, the damage has been done, the FBI has their log files.. it's really too bad about the victims of this witchhunt.

  7. Hanlon's Razor by GozzoMan · · Score: 5, Interesting


    Never attribute to malice that which is adequately explained by stupidity.

    (From TFA: "A Rackspace employee mistakenly used the word 'hardware' to describe the contents of a federal order,")

  8. Re:direct link by Yeb · · Score: 4, Informative
    Here's a link to the unsealed documents themselves:
    http://www.eff.org/Censorship/Indymedia/
    And the EFF's press release

    -Jeff

  9. Looks like... by Phil+John · · Score: 4, Insightful

    ...Rackspace could be sued (successfully) for violations of the Data Protection Act as there was no lawful warrant for the data on the server (as it resides in the UK and the subpoena was server to rackspace in Texas).

    Personally I hope rackspace get raked over the coals for this one to serve as an example to other ISP's that this kind of flagrant disregard for privacy and the laws of the land cannot go unpunished.

    --
    I am NaN
  10. log:THIS PORTION OF THE DOCUMENT HAS BEEN REDACTED by Yeb · · Score: 3, Informative
    In Certification of the log files some US govt Attorney writes:
    "[I] certify that packaged herewith is a true and correct copy of log files in relation to the creation and updating of the web spaces corresponding to the following URLs during the period from THIS PORTION OF THE DOCUMENT HAS BEEN REDACTED"

    As the sysadmin of ahimsa (the seized servers), I'm wondering what he's certifying here. Our httpd.confs substituted "noip" for IP addresses in the logfiles. Like this:

    LogFormat "noip - - %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %T %V" noip
    CustomLog /imc/logs/italy-access_log noip

    Also, finding the location of the logfiles on the servers would have been as simple as a `locate access_log`...

    -Jeff

  11. bending by El_Muerte_TDS · · Score: 3, Insightful

    Nice to see that some ISPs don't bend over at the first sight of a possible legal issue about one of their customers.

    Oh wait, they did.

  12. Re:Large Mistake by SimilarityEngine · · Score: 4, Funny

    Don't you send your posts from an anonymizing location via someone else's rootkitted system?

    Absolutely. Nice box you have too :-)

    --
    Those who can make you believe absurdities can make you commit atrocities. - Voltaire
  13. Re:Yet another reason... by imroy · · Score: 4, Informative

    Er, no. EV1 (aka Rackshack) bought a SCO license, but Google doesn't turn up anything about Rackspace. I think you've just gotten the names (Rackspace vs Rackshack) mixed up.

  14. Guess about what really happened. by Futurepower(R) · · Score: 3, Insightful


    Unless you can see the part of the subpoena that they won't let you see, it is best to assume that you have been given no information at all.

    From Secret Documents About Indymedia Server Disappearance Unsealed: "It cannot be determined from the unsealed documents whether or not the government informally pressured Rackspace to turn over the servers."

    Certainly it seems that is what happened, that there was illegal activity on the part of the government. Otherwise you have to believe something like this:

    U.S. government (Calmly): We just need some log files from you.

    Rackspace: Oh wow!!! We will damage our reputation by giving you far more than you asked!!! Our customer's trust means nothing to us!

    It is a better guess that someone at Rackspace was very, very scared because of being intimidated.

    Most people in the U.S. don't want to know how corrupt their government has become. In this thread from yesterday, someone claims "Christianity has matured - it's a peaceful religion" when the U.S. government, a government of a Christian country, has killed more than 3,000,000 people since the end of the Second World War.

    1. Re:Guess about what really happened. by vector0319 · · Score: 5, Insightful
      I feel our government is as corrupt as you say and I feel you are right-on about the intimidation, but I think you are wrong about this being a Christian country. It's stopped being a Chrisitan country long before they took prayer out of schools.

      See an Anabaptist (Christian) perspective here: http://www.brfwitness.org/Articles/2003v38n3.htm Here is small part that explains it all:

      "America is not a Christian nation. It never was and it never will be. This is not to say that America was not founded on some biblical principles. It was established on some Bible truths. ... But America is a nation in the world and it behaves like a nation in the world. The United States Constitution does not contain the words "Christian" or "Jesus" or "Bible." Many of the founding fathers were deists. The power of the United States government rests in the 11 consent of the governed," not in the Word of God."

      --
      My well being does not depend on my slashdot score.
    2. Re:Guess about what really happened. by Frymaster · · Score: 3, Insightful
      How many mosques did the Government burn down in America this week?

      none. but, to be fair, they do occasinally bomb them 500 lb, laser-guided missles, like this one.

      --

      2 1337 4 u!

    3. Re:Guess about what really happened. by Anonymous Coward · · Score: 3, Insightful

      From the article the Frymater has provided a link to:

      The fight began when a Marine vehicle was hit by a rocket-propelled grenade fired from the mosque, wounding five Marines, and a large U.S. force converged on it, Byrne said.

      Anyone reading the linked article might note the following:

      "It is a holy place, there is no doubt about it," Kimmitt added. "It has a special status under the Geneva Convention that it can't be attacked.

      "However, it can be attacked when there is a military necessity brought on by the fact that the enemy is storing weapons, using weapons, inciting violence and executing violence from its grounds," he said.

      Once you start attacking people whilst hiding in what would normally be considered a neutral or protected structure, any neutrality or protection that structure previously enjoyed goes out the window at the discretion of those you attacked.

      In other words you can't start whining when someone drops a JDAM or Paveway into the mosque you've been firing RPGs at them from.

  15. Re:Not a mistake by Yeb · · Score: 3, Informative
    It's clear you didn't read any of the unsealed documents to see the various timelines. It sure looks like they had more than 12 hours...

    See: Commissioner's Subpoena page 27.

    -Jeff

  16. Conspiracy Here, Conspiracy There by N8F8 · · Score: 3, Insightful

    For you paranoid freaks outthere, sooner or later you need to come to the realizationthat the folks enforcign the law are just like you. They don't like their rights trampled either but they are just as prone to making mistakes.

    --
    "God fights on the side with the best artillery." - Napoleon, Marshal of France - speaking truth to power
  17. A bit of context... by Yeb · · Score: 4, Informative
    Indymedia is an open-posting site that allows anyone to submit articles, photos, audio, and video to their site. In many ways it's similar to slashdot (both in good and bad ways).

    Indymedia has political content, typically from an anarchist/feminist/leftist/libertarian/green/anti- war whatever viewpoint. This tends to piss off many governments (Italy, U.S., France, etc.) and corporations (e.g. Diebold, the manufacturers of the U.S.'s electronic voting machines using the DMCA against Indymedia; in the end Diebold was found guilty...).

    The Italian government seems to particularily hate Indymedia. One parliamentarian, who happens to be the granddaughter of Mussolini (yes, that Mussolini), has called for Indymedia to be shut down.

    In 2001, the Italian government raided an Indymedia center (legally) set up during the G8 meetings/protests there. They sent scores of people to the hospital, including putting people in comas. It was not nice. They beat the hell out of people, smashed cameras and computers. The Italian govt claimed they found molotov cockails and other weapons--the cops later admitted they planted the evidence. Just like fascists of "old".

    Last year, around the time of the server seizure, the Italian government had an ISP shut down a server so they could steal the private key used for https encryption. They could then mount a man-in-the-middle attack reading all "encrypted" content, including webmail. The Italian govt got away with this attack for a year before it was discovered. The server was used by many indymedia and activist folks (the server was run by autistici--"the autistics" in italian).

    So when some Indymedia sites disappear off the 'net and it's tracked back to the Italian government with FBI cooperation it's not too big of a surprise. I'm sure they are thrilled that rackspace is getting nailed for the whole thing.

    -Jeff, ahimsa* admin (which hosts italy.indymedia.org, the targetted site)

  18. Rackspace, Indymedia, and the FBI by Steev · · Score: 3, Funny

    "Rackspace, Indymedia, and the FBI" kind of sounds like a hip-hop group. I can't wait for their next album.

  19. It's wrong, but I'm not suprised they did it by defile · · Score: 4, Insightful

    Service providers deal with a lot of shit from authorities. Even when I worked at a small mom & pop ISP with 5000 customers we'd have to respond to a search warrant on a monthly basis, and they just don't won't accept "the log files were deleted 5 months ago" for an answer. The owner had to show up in court many times and swear that yes, the systems do purge them periodically.

    I can only imagine what Rackspace has had to deal with in the past, so when the FBI came by and said "terrorism" they must've shivered at the thought of answering why they can't find something. So they just make it the FBI's problem by handing over the whole disk.

    Does this qualify as a chilling effect? The letter of the order said that Rackspace just had to produce specific files, but Rackspace was so afraid of the FBI (from past encounters, perhaps) that they went that far above and beyond?

  20. Re:So all those /. reactionaries... by Yeb · · Score: 4, Insightful
    Yes, that is the issue at stake: though they ended up with the drives in their possession, the FBI did not seize the drives.

    No, they just happened to wind up with them. Do they still have copies? Where are they? What have they looked at?

    Except they didn't. They asked for the logs; Indymedia violated the reasonable expectation of privacy by handing over much more than was requested. The targeted request for specific logs was not the issue IMO.

    Indymedia violated privacy? Surely you mean rackspace here.

    [content]

    There were a few other things besides publicly available content on there. Some of my email, for one.

    What if the FBI had hacked into Indymedia to secretly monitor their logs, so that Indymedia never had a second of downtime and got to keep all their hardware. Would that undermine our argument about privacy and freedom of speech?

    BZZZT! Absurd slippery slope argument: -5 points. :-)

    So you disqualify that based on "slippery slope"? But it's what the Italian government has done, and something tells me the US govt is probably more tech saavy. So were already at the bottom of the slippery slope you think will never happen. We know that the Italian government took the private key used by https of an activist server to monitor webmail using a man-in-the-middle attack. See:
    Alternative Servers Attacked: "Not a Private Question: A Question of Privacy"

    My point was that the foil-hat crowd soiled themselves when they saw the original story and were positive the FBI was a bunch of jackbooted thugs, etc; now that Indymedia has been identified as the reason for the excessive disclosure we shall hear nary a peep from /. [re: the behavior of the ISP]. That's all, really. Cheers!

    The FBI isn't a bunch of jackbooted thugs? I guess you're right. In Guantanamo they were complaining that the military was being excessive. They're nice folks. Read their history and you'll see the great things they've done.

    Again, you say "now that Indymedia has been identified as the reason for the excessive disclosure"--what the hell are you talking about? Do you mean rackspace again, or do you not know what's going on, or what? Indymedia didn't turn over anything. Indymedia wasn't asked either, FWIW.

    -Jeff