Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Inside Story On the San Francisco Network Hijacking

Posted by Soulskill on from the connection-reset-by-lack-of-peers dept.

snydeq writes "A source with direct knowledge of San Francisco's IT infrastructure has tipped off Paul Venezia to the real story behind Terry Childs' lockout of San Francisco's network, providing a detailed account of the city's FiberWAN, interdepartmental politics, and Terry Childs himself. Childs pleaded not guilty to charges of tampering yesterday and is being held on $5 million bail. According to the source, Childs' purview was limited to the city's FiberWAN — a network he himself built and, believing no one competent enough to touch the network but himself, guarded religiously, sharing details with no one, including routing configuration and log-in information. Childs was so concerned about the network's security that he refused even to write router and switch configurations to flash. But what may prove difficult for the prosecution in its case against Childs is that his restricted access to the network was widely known and accepted among managers and the city's other network engineers. Venezia, who has been suspicious of the official story from the start, suspects that the Childs case may be that 'of an overprotective admin who believed he was protecting the network — and by extension, the city — from other administrators whom he considered inferior, and perhaps even dangerous.' Further evidence is that fact that the network, from what Venezia understands, has been running smoothly since Childs' arrest."

32 of 471 comments (clear)

  1. and in stargate news..... by ufpdom · · Score: 2, Interesting

    The giant flash was just some solar burst.. it wasnt anubis' ship

    --
    There's no Freedom like UFP-dom
  2. Re:Open Source by dr_strang · · Score: 2, Interesting

    You're wrong. Your comparison with Diebold does not even merit cursory contemplation.

    --
    This is a sig. It is like every other sig in the world, except that it is mine, and it is different.
  3. He's still not justified... by numbsafari · · Score: 5, Interesting

    You can try and defend him and glorify him all you want... but as a professional system administrator he should have known that his singular access and pathological behavior was more dangerous than helpful.

    What if, instead of being fired he was the victim of an accident or crime? What if he had a health problem? What if a serious, life threatening issue came up (say, you know, an earthquake) that caused the system to be unstable and, at the same time, prevented him from getting there to fix things?

    He's still a criminal. But, he's not alone in his behaviour. Whoever his managers are sound to be guilty of criminal negligence. This never should have been possible in a city government the size of San Francisco. Especially when it comes to critical infrastructure. If I were a citizen of San Fran I'd be asking why heads aren't rolling at the highest levels. Why was this allowed to happen? In San Francisco, where you think they'd have no problem finding competent replacements.

    Absolutely mind boggling.

    1. Re:He's still not justified... by Zerth · · Score: 4, Interesting

      If this was a case of "He was the only one with the passwords and knowledge, we stupidly fired him without getting that info, and now we realized we're screwed" then he isn't a criminal. His boss maybe, but not him.

      Hell, even if the situation was "tell us the info so we can replace you - no - you're fired", he still isn't a criminal. Other than maybe stretching a denial of service crime to fit, other than he hasn't really denied them a service if it is still running.

    2. Re:He's still not justified... by Zerth · · Score: 4, Interesting

      Yah, I agree it he probably is a huge jerk and should've given up any passwords or other info when he was canned, just out of professionalism(and maybe a little "here's the knife, cut your own wrists"). But I think the management is probably blowing this out of proportion to cover their own asses.

      A company I shared a parking lot with during the dot bomb laid off their entire programming department a few months after they hit release and hired an outside company to "sanitise" the computers in the building. After the contractors wiped the CVS server, management threatened to sue/charge several of the programmers for "mislabeling" the CVS server deliberately so that would happen(it was labeled "Walgreens", bad pun).

      That fell flat eventually, the guy who proposed the 100% layoff got the axe for it, and I heard the story from a couple of the programmers that were contracted back to get things back up to snuff(ie, they "failed" to destroy "illegal" backups and were able to save the company's bacon).

    3. Re:He's still not justified... by SL+Baur · · Score: 4, Interesting

      Why was this allowed to happen? In San Francisco, where you think they'd have no problem finding competent replacements.

      This man was living in Pittsburg. They could not find *anyone* in SF to do the job.

      I knew there was more to the story when we got the first article. The fact that he built the network, management allowed him to be the sole caretaker of the configuration *and* that the system is still running smoothly unattended makes it hard to accuse him of sabotage or "hijacking". The time to beg a system administrator to document his work is certainly not after you have him arrested.

      Heads should be rolling in the city government.

    4. Re:He's still not justified... by Hyppy · · Score: 1, Interesting

      Shielded? No. He falls under a special law, called the Constitution. See, the Constitution doesn't differentiate between state and local governments. When the 4th Amendment was decided to apply to all states, it trickles down to local governments as well. As a government employee, he falls under that, even when "monitoring" others on his network. It's a very VERY sticky situation. Basically, without a warrant or an imminent threat, you cannot even look in someone's "Documents and Settings" folder without their express permission.

    5. Re:He's still not justified... by Anonymous Coward · · Score: 3, Interesting

      I am not gonna use my normal login on this and you will understand in a second.

      I have been working in, on, and around computers (hardware and software) since before most of you were born. Some of you, your parents. And at almost all of the companies that I have worked for, there was something that "everybody knew" that would have gotten the company heavily penalized if not shut down if the word got to the appropriate regulatory agency.

      Example: did you know that the sales tax you paid on your CompUSA purchases was probably not sent on the the state? The accounting software had no provision for recording the sales tax liability portion of invoices and almost everybody in I.S. knew it. Well, except the admin assistants. Seems that the company bosses figured it was easier to wait for the (whichever) state to write a nasty letter demanding payment of back taxes in the estimated amount of $X and then say "Oops, sorry" and cut them a check than to rewrite the software. Was it accurate? Hell, no. Was it legal? Well, nobody went to jail.

      So the discussion of "knowing things" and what's legal can go so many ways that it boils down to an individual's sense of ethics.

      Discussion for the class; is it legal and/or proper to:

      1) write accounting software that places the odd half-cent remainder from calculations into a special unlabeled account that only the Chief Accounting Officer is allowed to know about? Create a special check-printing program for the Chief Accounting Officer (only)?

      2) use your root/admin priviledges to remove all games and personal pictures from the desktop computers of your fellow peasants?

      3) use your root/admin priviledges to monitor corporate email looking for "child pornography"?

      4) refuse to give the root password to that new blonde micro-skirted nineteen year-old business analyst who happens to be the owner's granddaughter? (You are probably wrong: she was successfully installing Slackware at home when she was six.)

      Look, for most of us, Mom and Dad tried really hard to teach us right from wrong. But there are few absolutes in the computer business world so most of the time we just try to keep from getting fired or sent to jail. Sometimes it means saying "I'll need that specification in writing. Over your signature." Sometimes it means telling a boss "No!" and sometimes it means saying "I quit".

      But trying to outguess the other guy's situation with incomplete knowledge only depletes the beer supply.

  4. configs are not written to flash, eh? by swschrad · · Score: 4, Interesting

    so the network is NOT locked up, it's just unrestoreble after "password recovery."

    sounds like what they need to do is get some qualified engineers to redesign it, and when it's on paper, pull the plug on everything, and reconfigure from scratch.

    because if it isn't saved in flash, it's going away as soon as the power light goes out.

    which makes our jailed genius a little less than blazing fast. in fact, about half fast. parts of the system ARE going to go down. it's the nature of the beast. no records, no writes... the first time the janitor plugs in a 18-amp vacuum in a rack, it's gone.

    they'll come along and take his Cisco cert away for not saving the configs, if for nothing else.

    --
    if this is supposed to be a new economy, how come they still want my old fashioned money?
    1. Re:configs are not written to flash, eh? by bagboy · · Score: 2, Interesting

      Any cisco router/switch can be set to netboot their configuration. You can keep the full config on a secure linux/etc. box and netboot (encrypted) it. More secure that way? Possibly. Limited access to the box it's stored on could keep it more secure and tightly controlled.

    2. Re:configs are not written to flash, eh? by inKubus · · Score: 2, Interesting

      Yeah, but there's no evidence! What are they going to do, bring the router to the courtroom?

      --
      Cool! Amazing Toys.
  5. Like This is Shocking by Black-Man · · Score: 4, Interesting

    Every software company I have worked for... if one or two people were hit by a bus... the company would be out-of-business. Management knew this... fellow developers knew it. Its a commonplace thing. Engineers take the work so *personally*. "No one can touch that code but me... " blah... blah. Ånd the stupid management goes along w/ these primadonna's. Of course... if they demanded more money... they'd be gone in a NY minute.

  6. Are you sure he's a criminal? by unassimilatible · · Score: 4, Interesting

    He's certainly guilty of being a bad employee, as well as affirming all of those user-unfriendly IT sterotypes (those are often true, BTW). But criminal?

    In America, they have to prove that first. Looking at the statute, it seems it all comes down to the issue of "without permission." The main point the article makes is that he might have had at least understood or standing permission to do most or all of what he did. Just like when you take your parents' car somewhere as a teenager, it isn't theft if it's understood that you are allowed to use it.

    The article is one-sided, and his alleged refusal to give up the passwords looks bad (perhaps he is remaining silent until he speaks with counsel), but proving he didn't have permission might be hard. Ergo, no criminal.

    --
    Slashdot "libertarians": Small government for me, big government for those I disagree with. -1, I disagree with you
    1. Re:Are you sure he's a criminal? by Anml4ixoye · · Score: 3, Interesting

      What? How is refusing to cooperate a criminal act?

      Look, I've worked in government. In fact, I've met with the SF staff before (many moons ago). It sounds to me like he got caught up in a political battle. His saying no has probably been what has kept the network up, and this time was likely no different, except that the guy he said no to decided to make a martyr out of him.

      Is what he did silly? Perhaps - but perhaps not. We can say that "They can just bring in Cisco", but I also used to work for MSFT - and I know that not everyone who comes in from the field is going to be able to transition vital systems without a hiccup.

      There's a lot more to the story, and given what history I know of the SF departments from back in the day, I'm sure that this guy is guilty of nothing other than wanting to protect a critical network, and being a little misguided.

      --
      Random Musings
    2. Re:Are you sure he's a criminal? by Fex303 · · Score: 2, Interesting
      Sorry, what is the crime?

      I think everyone agrees that the guy is being a jerk. And from what I originally read, I thought he was probably a criminal too. However, this makes it sounds like he might not be.

      Refusing to do what your boss says to do isn't a crime. Getting fired for it and then refusing to do what your former boss said to do isn't a crime. Since the situation before that was considered satisfactory by his former employers (because they were so naÃve to trust one guy with the keys to the whole thing), I honestly can't see what the crime this guy committed was.

      I'm not lauding him for it. In many ways it seems the law is at fault, perhaps there should be a way for an employer to compel their (former) employees to give over passwords to devices that the company controls. But I don't know of any law that requires that (and I'm not actually proposing one), so it seems like he's actually clean.

    3. Re:Are you sure he's a criminal? by Minwee · · Score: 3, Interesting

      You're only hearing one side of the story, and that's not his. Consider this scenario. After Childs was fired by someone higher up in the poop-rolling-downhill order, said manager (Let's just refer to him 'Bonehead' for now) realized that the network policy he had written himself four years ago ("Leave all network devices at their default passwords, put a hard copy of all config files on the bulletin board in the lobby") was no longer valid. Bonehead then tried to break into the systems with a very clumsy brute force attack and got himself locked out. Rather than admit that he really had no clue of what he should be doing and should never have been allowed into the same room as anything more complicated than two cans and some string, Bonehead bravely announced that he was the victim of some kind of sabotage or terrorism and that the inconvenient former administrator should be arrested immediately.

      When contacted about the problem, Childs replied "What? I already told you all the passwords you need. Here they are again. Read your email, you twit.", but of course those accounts had already been locked out thanks to Bonehead's bumbling attempt at cracking his own network. Things have now gone from bad to worse and poor, misunderstood Terry is now torn being asked to cough up passwords to accounts that he has already provided and is torn between just keeping his mouth shut to avoid being drawn further into this whole stupidity and quoting Ray Patterson by saying "You know, I'm not much on speeches, but it's so gratifying to leave you wallowing in the mess you've made. You're screwed, thank you, bye."

      But what about those million-dollar-an-hour Cisco engineers who are desperately trying to fix the network but can't make any headway against Terry Childs' evil hackerish plots? It's hard to fix anything when Bonehead keeps getting in the way. "No no no... For security reasons nobody else can touch the network. Why don't you just tell me what commands you need me to run and then I will do them? No I already tried that! The admin password is 'password'. I already told you that. Stop wasting your time with this."

      I'm not saying that this has to be what happened, but remember that you're only hearing one side of the story here. It's just as possible that Childs is just taking the blame for someone else's screwup and is just pissed off enough about being arrested over it that he's not cheerfully volunteering to help clean it all up again as it is that he really is the James Bond style evil mastermind who is trying to hold an entire city for ransom.

    4. Re:Are you sure he's a criminal? by AK+Marc · · Score: 5, Interesting

      There is only one job I was ever fired from. I was laid off as part of a merger. I knew more about networking than anyone else at the 10,000 employee company. I was the only one there to my knowledge that had ever set up a VPN. I was the only one there that knew what spanning tree was and how it was used. When I left, I took no information with me, they had every log in for the many devices I was the only person to ever log into. Everything was written to flash so if a password recovery was necessary, they could perform it and not lose the config. As part of the merger, they tried to set up a VPN between the two headquarters. My understanding is that they had to pay $20k+ for consultants to come in and set up a single VPN that would have taken me an afternoon with spare gear. My manager would call and share stories of the networking difficulties. I didn't hide anything from them, but no one there was hired for networking capabilities except me. Prior to me, all networking was done by consultants that set up something then went away, much like an electrical infrastructure.

      Now, if the CIO had called me up and asked me to assist with something, by your statements, I'd be a criminal to tell him to fuck himself. I somehow have some duty to a company that was firing me. I disagree, and I had no requirement to assist them in making anything work better, and if there was a password I had neglected to pass along, I have no legal requirement to share that with them. I've worked with the protective guys, and I hate it, but I've never seen any of them as criminal and think that's an unfair characterization. If he's a criminal, then it's a conspiracy and his boss should be in jail beside him. His boss knew what he was doing, allowed it, and even paid him to do it. If you pay someone to commit a criminal act, knowing it is a criminal act, you are complicit.

      So yes, I can see how people can say it is "wrong" to do what he did. I agree. But the issue is the law. Murdering someone is a thing I think we can all agree is illegal. But not telling someone a work password when they demand it after you have already been fired? There is no law I know against that. We aren't circling tthe wagons because we think the guy is a saint. We are circling the wagons because we don't want a court ruling that could result in 10 years of jailtime for forgetting a password (and believe me, a cop demanding an answer from you takes "I don't remember" to be the same as "I know the answer and I won't tell you, fuck you pig").

      --
      Learn to love Alaska
  7. Accidents happen, too. by Dzimas · · Score: 4, Interesting

    Every time I see a situation like this, I have to wonder what would happen if an "indispensable" person got hit by a bus. It strikes me that Childs was using his absolute control of the network as a way to put the fear of god in others within the department while attaining more prestige and autonomy than he deserved. The fact that Childs locked everyone out of the system after apparently receiving a poor job assessment backs that up. Sooner or later, the IT department had to take action to strip his stranglehold of the network, especially if he was on the verge of burnout or increasingly difficult to deal with.

    I suspect that no one had the interpersonal wherewithal to figure out how to approach him in a non-confrontational manner. The best approach would have been to find someone who Childs respected who could share the load and provide backup and support while the organization attempted to deal with an overly possessive employee who is behaving irrationally.

    1. Re:Accidents happen, too. by Darkk · · Score: 1, Interesting

      City of SF screwed up. They didn't take into account this guy got the ONLY keys to the city. They didn't do the research on procedures and ask the right questions before they canned this guy.

      This will be a valuable lesson and an embarrassment to the City of San Francisco.

      Cisco will be making some money off of this mess and rightfully so.

  8. Re:Open Source by s0litaire · · Score: 2, Interesting

    **WAY of Topic** Except when a McCain Ex-Advisor came out to say the Diebold CEO went to 2 Democrat area to "Patch" the Machines in the '02 elections...(those 2 area turned Conservative in that election)... **BACK on topic** But sounds like Childs was a great Admin! The worse thing that can happen to a network is other Admins! You can't have them sticking routers on your network and let them think they know more that you! :D

    --
    Laters Sol "Have you found the secrets of the universe? Asked Zebade "I'm sure I left them here somewhere"
  9. Complete bunk... by Anonymous Coward · · Score: 5, Interesting

    I know someone who worked on the cisco side with this guy. This had been going on for a while. The dude was threatening co-workers doing all kinds of odd stuff. The idea that he was somehow just a little protective is an off the charts miss-representation.

  10. Re:Is this really the case? by falcon5768 · · Score: 4, Interesting

    funny I find it VERY easy to believe. Right now only 3 people in my own district now the running of the network, and only 1 by extension of that the complete configuration of the OS X server running the mac portion of the district. I have a emergency recovery manual I wrote myself, but it is under lock and key by me to keep all but 2 people from knowing it because I KNOW the other techs and administrators are incompetent political appointees who will royally screw things up and cause much more damage than they solve if they try to implement it without know what is going on.

    --

    "Slashdot, where telling the truth is overrated but lying is insightful."

  11. Re:FiberWAN should not have been deployed then by Anonymous Coward · · Score: 3, Interesting

    More details here

    Childs, who works in the city Department of Technology, allegedly created a password that gave him exclusive access to the city's new FiberWAN (wide area network), authorities told the newspaper. He has refused to divulge the password, leaving other system administrators locked out.

    Undoing Childs' alleged tampering could cost millions of dollars, city officials said. In the meantime, the system is operating, even though administrators have limited or no access.

    Childs, who has worked for the city for about five years, had been disciplined in recent months for poor job performance, and supervisors had tried to fire him, the newspaper reported.

    "They weren't able to do it -- this was kind of his insurance policy," an official who spoke on the condition of anonymity told the newspaper. Childs allegedly began tampering with the computer system June 20, building a tracing system to monitor what other administrators were saying or doing about his personnel case.

    More details here

    The Chronicle also reported on Wednesday that Childs has a 25-year-old felony criminal record in Kansas, where he was convicted of aggravated robbery and aggravated burglary stemming from charges filed in 1982. Childs was on probation or parole until 1987, according to records uncovered by the newspaper. Childs had disclosed the felony conviction when he applied for the San Francisco job five years ago.

    Childs had been highly regarded in the technology department until he became a "rogue employee that got a bit maniacal," Newsom said.

    "He was very good at what he did, and sometimes that goes to people's heads," the mayor said. "And we think that's what this is about."

    Childs' problems with the department got serious June 20 when he started taking photographs of the agency's new head of security after she began an audit of who had password access to the system, the newspaper said. Childs' frightening behavior prompted the woman to lock herself in an office

    His supervisors' concerns grew when they discovered he had given himself exclusive access to the system and had developed a way to spy on his bosses' e-mails related to his conduct. Childs was ordered to leave work July 9 for alleged insubordination.

  12. Re:Is this really the case? by sasha328 · · Score: 2, Interesting

    It's hard to believe that management didn't care that a single employee was the only one who knew anything about critical infrastructure, no matter whether the employee arranged things this way because he thought no-one else was good enough or because this was his was of becoming entrenched.

    I find that easy to believe. Even easier to believe that they didn't know this was the case, or knew but did not understand.

    It's not actually the case of people not knowing the passwords or such, from what I've read in the news sources, it looks like he's locked out the other people who should have access. Think of him as a an admin who either changed the passwords of all the other admin users or deleted their accounts.

  13. Venezia's article a plausible exposition... by Pause2Reflect · · Score: 2, Interesting

    If I can be forgiven for porting my response here:

    The InfoWorld article linked to is remarkable and revealing, in particular, to me, because I have seen this exact scenario in multiple work settings. The people with actual networking knowledge and talent control access so that the employees with "just enough knowledge to be dangerous" don't BREAK THE SYSTEM.

    That's not ego or theory. I've seen it happen so many times I couldn't count: technicians who think they know what they're doing but don't adequately research their ideas (or study enough in general) are prone to wreaking all sorts of havoc on the network. This Childs fellow may well be controlling or even arrogant. But what if -- just humor the notion -- in his work environment he was actually right? That had he shared access with the less competent admins with which he may have been surrounded, the San Fran government would have had a far less stable, secure network.

    I don't know, but given what I've seen, it's quite plausible. Not his call to make, I'd agree. But then, it seems that for some time, his direct superior didn't insist otherwise. Bad call, of course -- but not Childs' fault.

    I'm starting to suspect his arrest and being charged were ridiculously hasty and unnecessary. Conceivably the outcome of his immediate superior(s) running an exaggerated "renegade" story up the chain of command, as much out of interpersonal distaste for Childs as actual concern over his reluctance to give up a password on demand.

    Perhaps the new gap-filler for managerial incompetence: employee prosecution.

  14. Re:Is this really the case? by mooneypilot · · Score: 4, Interesting

    haha..probably right on..I came from the outside, now I work in county govt going on 7 years. I have more knowledge in my little finger than 99 net-sys admins / network engineers picked at random who are working inside the county govt. CLUELESS! No excuse for getting yourself arrested thou... maybe not too late for "I forgot the password" as a defense. Any ideas how to clean up these laggards? Its our freekin tax money down the drain!!

  15. Re:Is this really the case? by Anonymous Coward · · Score: 5, Interesting

    I post AC because of my position, which is basically a guy who was hired as the second network tech to help manage the network for a sizeable city (large enough that we host several professional sports teams). I had no real qualifications other than knowing how to google my way out of most basic computer situations. My supervisor managed all City-owned Cisco equipment and it has only been 2 of us for 2 years. We manage over 300 Cisco devices at over 100 sites and I can honestly say that after reading a few more details on this story, I can easily understand how this can happen in a local government. I believe that the problem is in management. We have similar problems in our City regarding the lack of passing of knowledge and lack of staffing, but we have a good security team that knows more about Cisco networks than the 2 of us that regularly work on the Cisco equipment in our City. They are not normally watching our backs (that we know of) but they would certainly do so if they got a bad vibe about us. We have to share passwords with them and they have as much access to our equipment as we do. It is simply a requirement in a publicly owned system that knowledge is shared. Taxpayers have payed for the equipment and expect that there are not single points of failure. There are many reasons that more people than work on one thing on a regular basis have knowledge of and access to the most basic systems. If there was no redundancy, then it is a fundamental failure of management.....I'm not saying the guy should have set one password and not passed it on.....but I understand.

  16. Re:Open Source by Anonymous Coward · · Score: 2, Interesting

    So based on your statement, passwords, ACLs, social security numbers and other extremely sensitive data should be visible to the public. Could you please post all that information about your own system(s)? Otherwise, STFU.

    Posting semi anonymously for obvious reasons.

    The university I went to issued default passwords of the last several digits of the owners social security number.

    The school is a public school in a state that had an open records law.

    The open records of accounts payable and receivable of the school included the vendor/individuals TIN in the left hand column for accurate identification of vendors and individual with similar names.

    The second day of the semester one could stop by the administration building and pick up a handy password list ^h^h public finance statement.

    A random test at the end of the semester, from a borrowed account, indicated about one third of the student body never changed their passwords. (same for first year faculty.)

    One semester I was the only person to pick up a copy even though they had four printed out just in case somebody asked for it.

    The damage was mostly limited to a couple of scripts that tested that yes there was almost no security and at least half a dozen people that could trivially compromise a large percentage of the accounts on campus.

  17. Re:Bail by 91degrees · · Score: 2, Interesting

    Yeah. You'd think there should be some sort of law against excessive bail.

  18. Echos from my own past by Kaashar · · Score: 5, Interesting

    I find the situation startling familiar. It's downright creepy to read this scenario. Back in the late 90s I was the sysadmin of a moderately sized ISP. When we started out I was one of three network engineers hired to build the ISP; eventually I ended up in 'charge' of the system. Like the article I also was very protective of my network, and as paranoid as this individual is made out to be. Granted I was in my 20s and suitably arrogant to boot, more on this in a moment. As time went on first one, then the other guy quit after working 80 hours a week without the possibility of time off...things only got worse as people quit. When it was down to me I made sure the owners knew the passwords to everything, but they lacked any knowledge of how to do anything. This came back to haunt me later as you'll see. Eventually I too got fed up and went to work for another company that wasn't a direct competitor. Before I left I advised management on changing all passwords for both of our sakes. I tried to explain everything but nobody understood the technical aspects. Two months later I got a visit from the FBI. 8 grueling hours of interrogation later from armed men I found out that the entire network had crashed, and I was under suspicion as having remotely logged in and crashing their system. It wasn't until later I found out they never hired a replacement, and my system simply collapsed due to lack of maintenance. It's easy to be painted out as the bad guy when you intimately know the network while being managed by a bunch of clueless twits. I don't know if that's the case in this guy's case, but I can see it working either way.

  19. He gave them his password by Anonymous Coward · · Score: 1, Interesting

    But it didn't work.

    This, someone has suggested, could be because he'd nuked the root account and "root's" name was not root (so you have to crack the password AND the name).

    On being sacked, they nuked his account.

    Which was the one which worked to administrate the network.

    Which doesn't exist because they nuked his account.

  20. Childs supposedly had a crimminal background by walterbyrd · · Score: 2, Interesting

    Childs, who now sits in a jail cell on US$5 million bond, also happens to be a former felon convicted of aggravated robbery and burglary stemming from charges over two decades ago, which the city knew when it hired him as a city computer engineer.

    http://www.csoonline.com.au/index.php/id;1895501252;fp;2;fpid;1

    Yet the city gave hime full admin access to a critical, and sensitive system. The city also didn't bother to insure that the system was safe from being locked out in that manner.

    IMO: if Childs goes to prison, the city's IT managers should go with him.