Slashdot Mirror

← Back to Stories (view on slashdot.org)

Rackspace, Indymedia, and the FBI

Posted by CowboyNeal on from the egg-on-face dept.

chill writes "Remember when Indymedia hard drives were seized as part of an international 'criminal terrorism investigation'? Rackspace pulled the whole hard drive and shut down a dozen websites, and the Slashdot community cried 'Say it ain't so!' It ain't so. The documents have been unsealed and CNet is reporting that Rackspace made a mistake. The government wanted only copies of logs, not entire hard drives. It seems the week of downtime wasn't really necessary. Oops!"

17 of 344 comments (clear)

  1. Mistake by Knome_fan · · Score: 5, Insightful

    Ah, if it's only a mistake than it's no problem.

    After all, everybody makes mistakes from time to time...

  2. Knee Jerk Reactions... by __aaclcg7560 · · Score: 5, Insightful

    I guess when the government asks someone to jump, no one bothers to ask how high. Some people just assume that jumping out the window is a correct response.

    1. Re:Knee Jerk Reactions... by Ubergrendle · · Score: 5, Insightful

      Ever dealt with Law Enforcement? There's always what they ASK you do to and what the IMPLY you should do... unlike normal people doing normal jobs, Law Enforcement officers are trained never to rationalise, never to second guess, and to always assume that they're right. There's good reasons for this, but sometimes it has bad results.

      ISP:"We won't give you our records without a court order."
      Police officer:"Well, if I get a court order I'm going to ask for your whole ISP to be shut down. Don't make me waste my time."
      ISP:"Oh crap! Here's not just the logs but the harddrives! Please don't shut us down..."
      (10 minutes later) ISP Lawyer:"Call me first next time, this cop was yanking your chain."

      A very likely set of events IMHO.

      --
      John Maynard Keynes: "When the facts change, I change my mind. What do you do?"
    2. Re:Knee Jerk Reactions... by Rasta+Prefect · · Score: 4, Insightful
      A very likely set of events IMHO.

      Unless, you say, RTFA, and found they _had_ a court order. Thats what a subpeona _is_. The Feds appear to have actually acted quite reasonably. Rackspace were the ones who pulled the drives instead of making an image of them. I'm failing to see how this is in anyway the feds fault.

      Seriously, I realize that most Slashdotters don't like the Bush administration (frankly, neither do I. I voted Libertarian where possible, democratic elsewhere). But having read the first couple dozen posts here most of you come across as being just about as objective as the people pushing Intelligent Design - You've got your world view and you're willing to ignore any number of inconvenient facts to advance it.

      unlike normal people doing normal jobs, Law Enforcement officers are trained never to rationalise, never to second guess, and to always assume that they're right. There's good reasons for this, but sometimes it has bad results.

      And totally unlike a bunch of people on Slashdot who haven't bothered to read the article and find that it was in fact, Rackspace and their employees who chose to pull the harddrives and not the feds.

      --
      Why?
  3. Zealotry is bad, no matter who does it by ReformedExCon · · Score: 5, Insightful

    Rackspace, in their desire to stay on the good side of the law went far overboard in their zeal to help the police. This is a common theme in many cases.

    The law specifically protects people from incriminating themselves and also from unreasonable search and seizure. It does not protect them from turning themselves into the authorities, nor does it protect them from others doing it for them.

    You would like to think that companies would consult with their lawyers that could advise them on their legal rights and responsibilities before they took drastic, unnecessary steps like turning a lot of personal/private documentation over to the police.

    --
    Jesus saved me from my past. He can save you as well.
    1. Re:Zealotry is bad, no matter who does it by SlashEdsDoYourJobs · · Score: 4, Insightful

      You would like to think that companies would consult with their lawyers that could advise them on their legal rights and responsibilities before they took drastic, unnecessary steps like turning a lot of personal/private documentation over to the police.

      Indeed. If I were a Rackspace customer, I'd be looking for a new host right about now. Who wants a host that gives you a week of downtime for absolutely no good reason? What business can afford a week of downtime? That's essentially what you are risking when you go with Rackspace, because they have just demonstrated that they don't have a proper process in place for handling subpoenas and that their employees aren't smart enough to handle them without adult supervision.

  4. Just copy the disks before turning them over by jurt1235 · · Score: 4, Interesting

    If they just decided to copy the disks so they would have had limitted downtime. Downtime=How long it takes for dd take to make a bit by bit copy of the drive depends on the size, use multiple machines to do one drive per machine, so it goes as fast as possible.

    That would have made them make the jump of the previous posts and still have limitted impact.

    --

    My wife's sketchblog Blob[p]: Gastrono-me
    1. Re:Just copy the disks before turning them over by arivanov · · Score: 4, Informative

      OK, here went my moderation.

      Complete and utter bollocks. Rackspace can do real-time backup snapshots to their SAN of any of their standard config machines. They do not offer this is you have a custom config, but this does not mean that they cannot do it. So there was no need for ANY DOWNTIME WHATSOEVER.

      They offer this under the name of managed backup service. So, if the order was exactly as unsealed by EFF and they wanted to comply to it literally it would have taken them a few seconds with no downtime. Few minutes at most.

      If Indimedia was not a managed backup service customer Rackspace would have had to install the agent first. They are a fully managed service provider and they have root on the box under normal circumstances and can install the agent in a couple of minutes.

      If Indimedia was a managed backup service customer Rackspace could have handed all old snapshots outright and initiated a new on the spot with a click of a button on the "fanatical support" console.

      In fact, it may be worth it to ask was or was not Indimedia a rackspace managed backup service customer.

      --
      Baker's Law: Misery no longer loves company. Nowadays it insists on it
      http://www.sigsegv.cx/
  5. Hanlon's Razor by GozzoMan · · Score: 5, Interesting


    Never attribute to malice that which is adequately explained by stupidity.

    (From TFA: "A Rackspace employee mistakenly used the word 'hardware' to describe the contents of a federal order,")

  6. Re:direct link by Yeb · · Score: 4, Informative
    Here's a link to the unsealed documents themselves:
    http://www.eff.org/Censorship/Indymedia/
    And the EFF's press release

    -Jeff

  7. Looks like... by Phil+John · · Score: 4, Insightful

    ...Rackspace could be sued (successfully) for violations of the Data Protection Act as there was no lawful warrant for the data on the server (as it resides in the UK and the subpoena was server to rackspace in Texas).

    Personally I hope rackspace get raked over the coals for this one to serve as an example to other ISP's that this kind of flagrant disregard for privacy and the laws of the land cannot go unpunished.

    --
    I am NaN
  8. Re:Large Mistake by SimilarityEngine · · Score: 4, Funny

    Don't you send your posts from an anonymizing location via someone else's rootkitted system?

    Absolutely. Nice box you have too :-)

    --
    Those who can make you believe absurdities can make you commit atrocities. - Voltaire
  9. Re:Yet another reason... by imroy · · Score: 4, Informative

    Er, no. EV1 (aka Rackshack) bought a SCO license, but Google doesn't turn up anything about Rackspace. I think you've just gotten the names (Rackspace vs Rackshack) mixed up.

  10. Re:Guess about what really happened. by vector0319 · · Score: 5, Insightful
    I feel our government is as corrupt as you say and I feel you are right-on about the intimidation, but I think you are wrong about this being a Christian country. It's stopped being a Chrisitan country long before they took prayer out of schools.

    See an Anabaptist (Christian) perspective here: http://www.brfwitness.org/Articles/2003v38n3.htm Here is small part that explains it all:

    "America is not a Christian nation. It never was and it never will be. This is not to say that America was not founded on some biblical principles. It was established on some Bible truths. ... But America is a nation in the world and it behaves like a nation in the world. The United States Constitution does not contain the words "Christian" or "Jesus" or "Bible." Many of the founding fathers were deists. The power of the United States government rests in the 11 consent of the governed," not in the Word of God."

    --
    My well being does not depend on my slashdot score.
  11. A bit of context... by Yeb · · Score: 4, Informative
    Indymedia is an open-posting site that allows anyone to submit articles, photos, audio, and video to their site. In many ways it's similar to slashdot (both in good and bad ways).

    Indymedia has political content, typically from an anarchist/feminist/leftist/libertarian/green/anti- war whatever viewpoint. This tends to piss off many governments (Italy, U.S., France, etc.) and corporations (e.g. Diebold, the manufacturers of the U.S.'s electronic voting machines using the DMCA against Indymedia; in the end Diebold was found guilty...).

    The Italian government seems to particularily hate Indymedia. One parliamentarian, who happens to be the granddaughter of Mussolini (yes, that Mussolini), has called for Indymedia to be shut down.

    In 2001, the Italian government raided an Indymedia center (legally) set up during the G8 meetings/protests there. They sent scores of people to the hospital, including putting people in comas. It was not nice. They beat the hell out of people, smashed cameras and computers. The Italian govt claimed they found molotov cockails and other weapons--the cops later admitted they planted the evidence. Just like fascists of "old".

    Last year, around the time of the server seizure, the Italian government had an ISP shut down a server so they could steal the private key used for https encryption. They could then mount a man-in-the-middle attack reading all "encrypted" content, including webmail. The Italian govt got away with this attack for a year before it was discovered. The server was used by many indymedia and activist folks (the server was run by autistici--"the autistics" in italian).

    So when some Indymedia sites disappear off the 'net and it's tracked back to the Italian government with FBI cooperation it's not too big of a surprise. I'm sure they are thrilled that rackspace is getting nailed for the whole thing.

    -Jeff, ahimsa* admin (which hosts italy.indymedia.org, the targetted site)

  12. It's wrong, but I'm not suprised they did it by defile · · Score: 4, Insightful

    Service providers deal with a lot of shit from authorities. Even when I worked at a small mom & pop ISP with 5000 customers we'd have to respond to a search warrant on a monthly basis, and they just don't won't accept "the log files were deleted 5 months ago" for an answer. The owner had to show up in court many times and swear that yes, the systems do purge them periodically.

    I can only imagine what Rackspace has had to deal with in the past, so when the FBI came by and said "terrorism" they must've shivered at the thought of answering why they can't find something. So they just make it the FBI's problem by handing over the whole disk.

    Does this qualify as a chilling effect? The letter of the order said that Rackspace just had to produce specific files, but Rackspace was so afraid of the FBI (from past encounters, perhaps) that they went that far above and beyond?

  13. Re:So all those /. reactionaries... by Yeb · · Score: 4, Insightful
    Yes, that is the issue at stake: though they ended up with the drives in their possession, the FBI did not seize the drives.

    No, they just happened to wind up with them. Do they still have copies? Where are they? What have they looked at?

    Except they didn't. They asked for the logs; Indymedia violated the reasonable expectation of privacy by handing over much more than was requested. The targeted request for specific logs was not the issue IMO.

    Indymedia violated privacy? Surely you mean rackspace here.

    [content]

    There were a few other things besides publicly available content on there. Some of my email, for one.

    What if the FBI had hacked into Indymedia to secretly monitor their logs, so that Indymedia never had a second of downtime and got to keep all their hardware. Would that undermine our argument about privacy and freedom of speech?

    BZZZT! Absurd slippery slope argument: -5 points. :-)

    So you disqualify that based on "slippery slope"? But it's what the Italian government has done, and something tells me the US govt is probably more tech saavy. So were already at the bottom of the slippery slope you think will never happen. We know that the Italian government took the private key used by https of an activist server to monitor webmail using a man-in-the-middle attack. See:
    Alternative Servers Attacked: "Not a Private Question: A Question of Privacy"

    My point was that the foil-hat crowd soiled themselves when they saw the original story and were positive the FBI was a bunch of jackbooted thugs, etc; now that Indymedia has been identified as the reason for the excessive disclosure we shall hear nary a peep from /. [re: the behavior of the ISP]. That's all, really. Cheers!

    The FBI isn't a bunch of jackbooted thugs? I guess you're right. In Guantanamo they were complaining that the military was being excessive. They're nice folks. Read their history and you'll see the great things they've done.

    Again, you say "now that Indymedia has been identified as the reason for the excessive disclosure"--what the hell are you talking about? Do you mean rackspace again, or do you not know what's going on, or what? Indymedia didn't turn over anything. Indymedia wasn't asked either, FWIW.

    -Jeff