Slashdot Mirror
US Military Leaks its Secrets Online
athloi writes "Detailed schematics of a military detainee holding facility in southern Iraq, geographical surveys and aerial photographs of two military airfields outside Baghdad and plans for a new fuel farm at Bagram Air Base in Afghanistan are among the items accidentally left online by government agencies and contractors."
see this is what I like, I'm fine with the government invading privacy just as long as they don't get to have any either.
Look, this is simple. The military should just block all incoming access from any country that it deems an enemy. That way, no matter how lax they are with security, it'll be that much harder to get to even unprotected documents by our "enemies". Of course, this should be done at the core router level... Just in case they weren't aware...
-- Jordan
-- You have moved your mouse. Windows will now reboot.
From TFA: The DOD has a special category of Unclassified documents called "For Official Use Only" (FOUO) which prevents the information from being released to the public under the FOIA. This information was not classified, but was not supposed to be released.
This is just another example of how Michael Bay's Transformers movie is completely ridiculous. Megatron wouldn't have had to send his Decepticons to break into the government's computers to steal the location of the all-spark.
As we can see, the DOD would likely just left that information open, available over the web.
The theory of relativity doesn't work right in Arkansas.
And don't forget to troll with, "There is nothing to see here, move along."
The sad thing is, I actually think I'm funny.
Please! So those were the "real" plans, huh? Nod Nod Wink Wink..
What?
And somehow, these people manage to keep secrets about aliens, JFK, weapon programs, etc.? ;)
The level of incompetence required to make such stupid mistakes is just mind blowing. Direct result of the problems the US faces over education?
"we've got trenchcoats and bad attitudes" - John Constantine, HellBlazer
US Military Leaks its Secrets Online
In other news, water is wet!
Please correct me if I got my facts wrong.
I have no problem believing that there are countless incompetent people within both our government and military, but they are both run in maners that should prevent mistakes like this from happening. Its my guess that these documents were intended to be 'leaked' and that its no real threat to us to have anyone aware of them. I dont see something like this being an accident at all. Its probably more a strategic move than a mistake.
http://interserver.net/
I find it a bit sad that such things keep on happening all the time (not only to the DOD).
I do realize that, while everyone agrees that "security" is a good thing, it often gets treated lazily for the sake of usability. Even though I think that giving "normal" (i.e. non-system administrator) users the right to just "put things on the server" (likely via FTP or Windows Shares) is just utterly stupid in any context where some sort of security is required. Things will go wrong because people just don't realize (and mostly aren't even interested in) the implications of what they do. I imagine something like this (I have seen that happening too many times):
Alice: Hey, Bob, where's that super secret document we're both working on?
Bob: It's on the SourceSafe (or whatever) server, you can check it out
Alice: Awww, my SourceSafe isn't set up properly and it takes too long. Can you E-Mail it to me?
Bob: Sure! (wants to email the document)
Bob: Darn, the attachments have to be less than 500kbytes, otherwise it won't send it. I'll put it on the W: drive!
Alice: Ok, thanks!
The ideal solution to this kind of problems would be an USABLE operating system with some kind of sensible data flow tracking (e.g. you can't copy a 'classified' file into a 'not classified' folder or upload it to a 'public' server) and which doesn't get in the way all the time.
Example: I worked at a company where we had Lotus Notes internally. Additionally to the other fabulous features (such as speed, stability and an intuitive interface) of that wonderful software it supported sending 'confidential' and 'highly confidential' mail. The result of sending a 'highly confidential' mail was that you couldn't copy/paste from a mail, which was just great when someone sent you a 60 characters long windows share path and you had to type it all into windows explorer. That is what I mean by 'get in the way'.
Is there any (operating) system out there with some sensible, security-aware data flow tracking? Such as 'when you copy something from a classified document into a non-classified document the non-classified one becomes classified'? Or attaching this kind of security information to files or other objects? I know that this is a major topic of research in computer science, but have never seen it in real use.
"The posting of private material on publicly available FTP servers"
$ ftp ftp.usmilitary.com
220 FTP server (SunOS 4.1) ready.
Name (ftp.usmilitary.com): guest
331 Guest login ok, send ident as password.
Password: guest@guest.com
ftp>
Thankfully, they caught on and learned their lesson : "the SRA anonymous ftp server has been shutdown indefinitely. In the coming months, a new secure ftp site will be introduced that will replace the functionality of this site."
$sftp guest@sftp.usmilitary.com
Connecting to sftp.usmilitary.com...
Password: guest@guest.com
sftp>
Gopher... No one looks there!
such stuff dont get just "forgotten" - military is not a place that permits human errors to happen frequently like the stuff was coming up about the prison tortures and so on, and a year or so later more, and now this.
i bet the army left them to leak in order to put more pressure on bush adm, with whom they are constantly in bickering and dislike.
Read radical news here
> the SRA anonymous ftp server has been shutdown indefinitely
Anonymous?... FTP? They may have as well put them on bitorrent and named them britneys_boobies.zip
boycott slashdot February 10th - 17th check out: altSlashdot.org
Other than that, the "site plan" is not that exciting of a leak. It is something that you can work out yourself with Google Earth, or for sophisticated attackers, a flyover with a high resolution camera. Military bases and the movement of troops and equipment isn't really a secret, because it is impossible to hide. The other "leaks" mentioned in this article are hardly that important either.
Combating GPS jammers isn't much of a secret either. And a powerpoint slideshow on the topic is CERTAINLY not going to contain anything other than some pretty widgets and doodads to win some funding. Maybe I should point out "academic papers" and "academic journals" on topics such as mobile phone interference and satellite communication. This sort of material is far more important to "foreign intelligence" wanting to update their military technology - and it is freely available to all. And guess what? It has more important uses within civilian industries than in the military.
You never can tell where the lie ends and the truth starts.
Friends don't help friends install M$ junk.
That just sounds like nonsense. In all seriousness, what is the intended utility of this, uh, classification called FOUO? Is there something like a built-in expiry date for FOUO's, or some other sort of access difference that would make one genuinely understand how this classification is not a classification?
--
Solar power in the wild: http://mdsolar.blogspot.com/2007/01/slashdot-user
FBI: "These are not the documents you were looking at".
Primary objective: Destroy SAM radar at Bagram Air Base
Secondary objective: Photograph terrorist camp at Bandar Abbas
Ah, memories!
Tsunami -- You can't bring a good wave down!
So much for our plans of getting our troops out any time soon. Unless this 'leak' was intended to foil such attempts of creating a new base, and actually result in getting our troops home quicker.
H-1B Visas. Just hire some competent foreigners to handle national security. Oh, wait....
The actual buildings won't look anything like the plans, due to 'cutting of corners' that is endemic in Middle Eastern construction. So instead of a rectangular jail with 1000 rectangular cells, there will be a roughly circular construction, much smaller than planned, with a few large and somewhat rounded out rooms. This is why mosques always have rounded domes. That is the ultimate example of corner cutting...
Excuse me, but please get off my Pennisetum Clandestinum, eh!
The implementation is not only inexpensive, but relatively easy. I have built and demonstrated just such an automated RED->BLACK system to the DSS (Defense Security Service - the folks who have to sign off on all DOD related classified networks). That prototype cost less than $2000 and took less than 30 days from conception to implementation.
The problem comes in when you have to rely on the carbon-based life forms involved to certify that the data is unclassified. Many times, I have seen people with TS/S/Confidential clearances say "I didn't know".
When we performed the demonstration, the main issue stressed was that the machine could securely interface RED and BLACK networks, but the system would fail if the parties involved did not pay attention to the classification of information transferred.
This is the same reason that MS-Office products (which do not always show hidden data) are always a problem (witness the recent disclosure of the intelligence budget - including Black programs - due to the presenter not sanitizing the background information in a Power Point presentation).
And ye shall know the truth, and the truth shall make you free.
John 8:32(King James Version)
Poppycock. What have you been smoking? That was during the 1980's when the US government (then president / 'actor' Ronald "Ray Gun" Reagan) was supplying Iraq with the WMD to use against Iran. US supplies weapons, Iraq uses them as directed by the US, then 10+ years the US complains... Not to mention --> After the Gulf War they were destroyed which is why none were found during or after the 'latest' invasion.
You been under a rock for a few years or something, or have I mis-understood your comment?
Right now the US is paying over 12 Billion US$ a month just for the Iraq and Afghanistan wars, and for what?
The military accidentally leaks valuable information, and the military intentionally "leaks" disinformation. It is not an either/or thing.
"Leaking" disinformation would be useless if the military didn't actually leak real information. And if you do accidentally leak real information, it only makes sense to also release disinformation to create uncertainty.
But there is probably no way that layman like most of us here can determine if this is fake or real simply from the information in the article.
m0d p4ren7 up
www.purevolume.com/martyd
I know the government and the lapdog controlled media are good at brainwashing the mouth breathing herds, but would you please just stop this on slashdot, and man up a little in the brain department and just *stop* using that damn word "detainee". It's intellectually insulting and you should be embarrassed to repeat it.
They are prisoners. Grabbed and snatched at gunpoint, threatened with immediate death if they don't comply, same as in any other war. Being detained implies a short duration in a casual event then you are free to go about your business, something the current usage contradicts immensely, they just psychologically wargamed it and found it sounded less severe for PR purposes to help to "sell" the current fiasco. It also helped them to ignore the Geneva convention rules.
Thanks, nothing personal, but being part of the brave new world order crowd's newspeak push from the current crop of blood profiteers betrays our overall commitment I think most people here at slashdot have to overall freedom/honesty issues. And it matters not if you are pro Iraq war or not, just be aware that words have meaning and repeated enough they become part of the collective consciousness, and the use of that word is *pure freaking evil*. It legitimizes and minimizes some pretty heinous things. Don't let the blood profiteers win in other words, resist it, and starting with something as simple as word usage can be of immense help.
you will let me right in..
If they were left online, it was by intention for some sinister reason.
They're using their grammar skills there.
Fuck off.
Seriously... who's modding?
In fact Official Use Only was a category required by the Navy for the Nuclear Regulatory Commission's dealings with Nuclear Fuel Services Erwin Plant in Tennessee. This OUO classification meant that after a major incident, a public licensing hearing was held, but nobody attended because the NRC could not even reveal the accident at the NRC licensed plant. The FOUO is being used as a work around to areas where there is required public disclosure (NRC rules) but a national security interest (how Navy reactor fuel is handled). This may turn out to be an abuse, but it is certainly the way it is being used http://www.nytimes.com/2007/07/05/us/06cnd-nuke.ht ml. In the past, DOE handled military use of nuclear materials and NRC handled civilian use. Here we have weapons material being converted to fuel under NRC licensing, but with OUO restrictions. This is obviously not working very well at all.s -selling-solar.html
--
Do energy right: http://mdsolar.blogspot.com/2007/01/slashdot-user
> The ideal solution to this kind of problems would be an USABLE operating system with some kind of sensible data flow tracking (e.g. you can't copy a 'classified' file into a 'not classified' folder or upload it to a 'public' server) and which doesn't get in the way all the time.
;)
So basically, you'd want an OS that limits what files and folders you can copy? I hear Vista does that fine, the technology is called DRM
Dude, go read up and listen to any interview with Ron Paul.
He at least believes in the truth and god traditional honesty.
Hes a fully qualified doctor too, i think he delivered 3000 babies plus so hes not a person that takes
life with a grain of salt like 5 time death defiying lord Chaney.
Liberty freedom are no1, not dicks in suits.
Our software company management decided to become very rigorous about software security standards, and so are many of our customers which are Fortune 100 companies. It feels like you are in communist country where nearly anything can be a "state secret". Our software has lots of dependencies on third party libraries, open source, and GPLs which is a landmine here. For example theres a fear terrorists might steal the encryption code in the license manager to send unbreakable messages, etc. Or that competitors will discover a legal flaw in code and sue to block it.
It is very amusing the governement cant even come close to what it imposes on private industry in terms of protection.
And do agree its valuable to be fully aware whats in your code.
don't go there ITS A TRAP!!!!
Ted Striker: My orders came through. My squadron ships out tomorrow. We're bombing the storage depots at Daiquiri at 1800 hours. We're coming in from the north, below their radar.
Elaine Dickinson: When will you be back?
Ted Striker: I can't tell you that. It's classified.
There are 0x40000000 types of people: those who understand 32-bit IEEE 754 floating point, and those who don't.
Historic "facts" are usually a tissue of lies, with a few definite facts holding them together.
E.g., Julius Caesar was killed in the Senate after assuming dictatorial power. This appears to be a fact.
Why? Does anyone know? Why do they believe that their knowledge is fact? You can certainly accept that the written records then are no more honest than they are now, merely much sparser.
For all we know Brutus had been Caesar's lover, and was angry at him for being jilted. (Caesar is reliably reported to have been bi. "The wife of every husband and the husband of every wife." is one description applied to him, probably not by an admirer.
Who did kill Kennedy? Why do you believe it? How certain are you of the honesty of your sources? Why are you so certain (or dubious)?
Uncertainty is not only a principle of physics, it's everywhere. Physics is unique in being able to mathematically express the degree of uncertainty. According to some theories of physics every possible history of the current instant is a real history, which a particular (possibly incalculable) probability. The sum of all the probabilities of pasts is one, but there are an infinite number of them. At any particular nanosecond (about a light-foot) everything outside the light-cone has to be considered unknown. Your brain is about a foot in diameter.
N.B.: The theory of physics that I mentioned is called "sum over histories" and is considered orthodox since Feynman. It's just not usually considered for macroscopic objects...but Hawking has applied it to the entire universe...back when it was around a foot in size.
This means that EVERY theory which is consistent with all locally available evidence is true with a probability. So the next question is "How much do you trust your memories?" Just recently my red coffee cup disappeared for a week, and reappeared as a blue one. Same shape, texture, design, etc. Memory glitch? Merging multiverses? But if memory of sensory experiences is faulty, why not memories of other evidence?
Physics is making naive theories of reality look more and more absurd. Perhaps truth and false shouldn't be considered booleans, but reals (range [1.0, 0]). Then there are the "physics as computation" people who assert that these truth values (probabilities) don't have infinite precision. Only around 10^26 digits of precision. That's a kick. I would have expected 10^33. But maybe I'm misremembering, and they really said 10^126? Since that was an upper limit to the precision, I'd be comfortable with that, and continue to believe that it was around 10^33 (or, possibly given slightly different assumption, 10^66) digits of precision. (Check "quantum foam" for why those numbers.)
But our minds can't deal with that kind of precision. And another result of physics says that if a measurement can't be taken, then the result is intrinsically undecided. It's not at all clear to me what this implies. One thing, however, is (relatively) certain: Certainty is an oversimplification.
Then there's the question: How do you know you're not living in a simulation? That would explain the limited degree of precision, the lazy evaluation of truth, etc. And the loss of information about what history really was as it fades into the past. Storage conservation and cpu cycle conservation.
But other physicists are now asserting that the universe *IS* a computer. I think I may be experiencing a bit of stress trying to understand what that means. I tend to consider the computer and the program to be separable, but I'm not sure whether they do or not. I *suspect* that this is just an extravagant phrasing for "we can establish an isomorphic mapping between portions of how the universe works and portions of how a computer works, but that's just a guess.
I think we've pushed this "anyone can grow up to be president" thing too far.
The unfortunate truth of the matter is that the military's best personnel leaves shortly after their first or second enlistment, while officers tend to grow like fruit, and not "ripen" until they've hit the 10-15 year mark. The military is rife with incompetence, to the point that it's amazing that anything ever gets done. Speaking of classified documents, I seen plenty of accidental disclosures turn into proceedings because some idiot felt justified to work with the material on their own laptop. And while I think the military has a great level of incompetence, you should see the contractors we hire! The problem I think you fail to see is that this isn't something anywhere near related to a "counter-insurgency" scheme. This issue is related to contractors working in the Engineering field. There's a fundamental problem in the hiring of contractors in the military, one that stems from some crazy belief that it is better to hook up a retiring service member with an extremely technical job (despite lack of qualifications) than a school trained engineer. Case in point, I work with a supposed "Microsoft Certified Security Expert" (a retiree "double-dipping" as they call it) who doesn't know what the .NET Architecture is...This guy is responsible for the integrity of some DOD Web Servers, most of which are running SharePoint Services! Unfortunately, this is only one example of the many blatantly obvious conflicts of interest that serve to degrade our capabilities.
My response to the read is to join up and go work in an intel shop. I did about a years stint in one overseas and was dramatically underwhelmed.
By all means, join the US armed services or the mercenaries, get on over and help out. Or are you a 'chicken hawk'????
As an "I told you so" person (who doesn't post as an 'anonymous coward') I get excuses all the time from people who spend years trying to justify idiot things like the Viet Nam war. My mother still, at 90 and a staunch republican, still believes the Viet Nam war was a 'good' thing and universal health care is a communist plot.
When Bush II took office in 2001 I bought gold coins. Every business he was involved in failed so it was a shoe it. With Bush as pResident, I've done very well. Bush II did to the US what he did to the few companies his father's influence got him into. They all failed under Bush II's CEO 'leadership'. All were rescued by Saudi interests. Unfortunately, the US has, and will continue to suffer, the same --> Financial and reputation failure. So - I DO thank Bush II for improving my financial situation significantly. He couldn't run a successful business and he can't run the US government (well, then again, there's Cheney, Bush II's boss). About 7 years ago I bet, by buying gold, that Bush II was an idiot. I've won and continue to win. Thank You, pResident Bush!
Did ya think that one up all by yourself, or did you copy and paste it from somewhere too?
Question- do you really think that it is clever or demeaning to only capitalize the R in President Bush? Because I have to say, it just makes you look like a challenged 3rd grader. You know- the kind of third grader that has to wear a bicycle helmet all day in his "special" classes.
Ah. So you are uninformed and lazy. Not a good combination, but also not surprising considering your political leanings.