Slashdot Mirror

← Back to Stories (view on slashdot.org)

Judge Orders Former San Francisco Admin Terry Childs To Pay $1.5M

Posted by timothy on from the rough-justice dept.

0WaitState writes "A judge Tuesday ordered a former city worker who locked San Francisco out of its main computer network for 12 days in 2008 to pay nearly $1.5 million in restitution, prosecutors said.' Keep in mind the network never went down and no user services were denied, and given that Terry Childs was the only one who had admin access (for years prior) it is difficult to understand how they came up in $1.5 million in costs, unless they're billing Terry Childs for the City's own failure to set up division of responsibility and standby emergency access procedures?"

19 of 488 comments (clear)

  1. Take that Terry Childs by seeker_1us · · Score: 4, Insightful

    We will make an example out of you, who cares about justice?

    1. Re:Take that Terry Childs by Moryath · · Score: 5, Interesting

      It's probably billing him for the temerity to actually take his case to trial.

      You know, exercising his constitutional rights. That's something the "justice" system has to punish at all costs.

      Here's some info for you.
      Here's more.

      Or, to put it in a more sinister way: You get a heavier sentence if you insist on asserting your constitutional rights to a trial, to confront your accusers, to privacy from searches without probable cause, to avoid incriminating yourself, etc.

    2. Re:Take that Terry Childs by Richard_at_work · · Score: 5, Insightful

      Some of us do and some of us do consider Childs to be guilty. He acted like a prick and suffered for it, but imho he was guilty of what he was found guilty of.

    3. Re:Take that Terry Childs by Richard_at_work · · Score: 4, Interesting

      How much is a full review of the network, from the bare bones upward, including reflashing all firmware, and checking all servers going to cost in a city wide network?

      $1.5m would be cheap for that.

  2. That explains it... by gman003 · · Score: 4, Insightful

    That explains why American culture is so obsessed with vigilante justice - the actual judicial system is fucking retarded .

    1. Re:That explains it... by sco08y · · Score: 4, Insightful

      Any actual evidence that Americans are "obsessed" with vigilante justice? I'm trying to recall the last time I heard of any notorious vigilante actions, and I'm drawing a blank. Even when the WBC crowd protested military funerals, the worst anyone did was slash their tires.

  3. Restitution more fair than the jail time... by mseeger · · Score: 4, Insightful

    Terry Childs did some mistakes. I think the restitution for damages is more justified than the criminal punishment he got.

    CU, Martin

  4. Queue the dude who was on the jury by L4t3r4lu5 · · Score: 5, Interesting

    I forget a lot of what he said, but one of the points which stuck out for me was that Terry kept the keys / passwords out of the key management system, which was against policy. He kept the Keys to the Kingdom in his head, which is just bad IT policy. He also cleaned the backup configs on switches so that any reboots would essentially wipe them clean.

    Like I said, a /. poster was on the jury. He'll chip in with better information than anyone else. As for the fine... Well, if he doesn't have that money, he'll default like everyone else would and live off welfare. Shows the system works, eh?

    --
    Finally had enough. Come see us over at https://soylentnews.org/
    1. Re:Queue the dude who was on the jury by DrgnDancer · · Score: 4, Interesting

      The problem often comes in determining at what point "marginal and mistreated" ends and "sociopathic desire to hurt anyone who slights me" begins. For every anecdote like yours, there's another about a geek who was simply paranoid or antisocial enough to *feel* victimized by the normal churn of the day. A guy (or girl) who wrote your kill script, or something worse, with the full intention of using it. It's not even hard to imagine such a person (your old boss seems the type). Which is more common? Really hard to say, ask employees and they'll probably say your situation, ask managers, they'll probably say the opposite. Most people can't point to more than a handful of examples of either situation though.

      Businesses and governments clearly need to watch out for and prepare for either situation. Ironically, your anecdote shows that at least in the first of your two cases, your company was doing exactly that. Someone did notice your boss' bad behavior and did something about it. Management isn't *always* incompetent or out to get you. In this case their actions both protected the marginalized and mistreated workers, and hopefully avoided a future Terry Childs situation on the form of your obviously immature and potentially dangerous boss.

      In the case of Child's himself, there's a significant disconnect as to whether he was a marginalized victim, or a childish asshat lashing out at perceived injustice. To hear him talk sometimes, he was the former. Other times, he seems a lot more like the latter (obviously management thought he was the latter). I'm inclined to believe that, while he probably doesn't deserve the level of punishment he's gotten, his actions were blameworthy.

      --
      I don't need a million points of light, just two points of multi-mode fiber and a 10 Gig-E router.
  5. Oh thank god.. by whois · · Score: 5, Funny

    At first I thought the citizens were going to have to pay for the cleanup and fixing of all the problems, along with the trial and all that. Now that I know this criminal with no job prospects will be paying the $1.5M I can sleep better at night.

    My personal ideas about job integrity end at or a little before the threat of getting arrested so I could argue I don't think what he did was wise (I would've made the guy wanting the passwords put it in writing and then quietly laughed when they broke things), but I don't think the punishment fits the crime at all. Why is there never a middle ground in the justice system between ruining someones life and letting them go free?

    And why can't the city just let this one go? They won a long time ago.. back when he was fired, jailed, etc and he surrendered the passwords without the network ever going down.

    1. Re:Oh thank god.. by Anonymous Coward · · Score: 4, Insightful

      Which is why so many people who are innocent of crimes plead guilty. Often the thought of the "maximum" sentence and the fear that your defense will not pay out are enough to make someone choose guilty. This is generally true for those who can't afford a defense. Prosecutors don't care about innocence or guilt, they will work to scare you into a bargain so they get an easy win. Public defenders don't care much either, a bargain is less work and doesn't look as bad as a loss.

  6. Re:Cost by erroneus · · Score: 5, Insightful

    He did not care about security other than his own job security. He was one of 'those' types of IT people. You know the ones I mean -- they think "job security" means keeping all the secrets locked away so that only he can fix things when they are broken. Furthermore, they tend to behave as if they own the networks and servers they maintain and they tend to hide their limitations of knowledge and experience from others as well as being unwilling to share what little knowledge they actually have. There might have been a time when that was common enough to be acceptable, but today's business and government leaders see through this.

    Good riddance to bad rubbish. "Vendor lock-in" is evil regardless of who practices it.

  7. Re:Inflammatory summary, anyone? by SJHillman · · Score: 5, Insightful

    The problem isn't that we're defending him. Most people on Slashdot think he's an idiot and a criminal. The problem is the $1.5 million fine. That's around 20 years of his salary (at a comfortable $75k/yr). It's not a matter of whether or not he's guilty or deserves punishment, it's a matter of letting the punishment fit the crime. That pesky eighth amendment that mentions no excessive fines.

  8. Two entirely separate issues by goldspider · · Score: 5, Insightful

    "...unless they're billing Terry Childs for the City's own failure to set up division of responsibility and standby emergency access procedures?"

    What exactly is being insinuated here? That it's the City's fault that Childs decided to commit a crime?

    Sorry, pal, it doesn't work that way. Yes, the city has a lot of work to do to clean up its IT policies, but that has no bearing whatsoever on Childs' decision to commit a criminal act.

    --
    "Ask not what your country can do for you." --John F. Kennedy
  9. A fine example of American justice by seniorcoder · · Score: 5, Interesting

    Terry Childs was clearly on an excessive one-man power trip. I don't think too many on /. think that deserves jail time though. A firing for unprofessional conduct: sure. A $1.5M fine? This just adds to the farce. I'm sure the head of the IMF will get a fair trial. He has already been convicted (by the media) and is in jail. ... now all we need to do is to get most of Wall Street in jail. They have been tried in the media but not put in jail.

  10. what really happened? by doperative · · Score: 4, Interesting

    Mr. Childs clashed with the new Security Manager on the subject of authentication and control, which led to poor formal review.

    Sorting out fact from fiction in the Terry Childs case

  11. Re:I thought the exact same thing by hesiod · · Score: 4, Interesting

    he's paying it to the department of technology, not justice

    Just because it's not a court-ordered bribe doesn't mean it's definitely not a punishment verdict.

  12. Re:Inflammatory summary, anyone? by dwandy · · Score: 4, Informative

    yes, withhold passwords on a network resulting in no measurable loss, get 20yrs of income as fine. Damage and destroy an ecosystem causing loss of animal life and depressing an entire area economically; get fines that amount to about 7~mos of income. That's called justice.

    --
    If you think imaginary property and real property are the same, when does your house become public domain?
  13. Re:Perhaps.... by Americano · · Score: 4, Insightful

    he was surrounded by incompetence

    Oh bullshit. He was part of the incompetence . At what point do we admit that Mr. Childs was just as irresponsible for neglecting to create an appropriate backup and contingency plan for outages, disaster recovery, etc. that allowed for someone else to get access to the passwords?

    Where I'm sitting, any sysadmin with half a brain knows that a single point of failure is a no-no. Let's not pretend he was some white knight, if there were no adequate plans for password access in place, then he's just as incompetent as his managers were. Only difference is, he was incompetent, and broke the law in the process, by refusing to turn over the password to his management chain when he was reassigned and holding the network he was "protecting" hostage.