Slashdot Mirror
Snowden Spoofed Top Officials' Identity To Mine NSA Secrets
schnell writes "As government investigators continue to try to figure out just how much data whistleblower Edward Snowden had access to, MSNBC is reporting that Snowden used his sysadmin privileges to assume the user profiles of top NSA officials in order to gain access to the most sensitive files. His sysadmin privileges also enabled him to do something other NSA users can't — download classified files from NSAnet onto a thumb drive. 'Every day, they are learning how brilliant [Snowden] was,' said a former U.S. official with knowledge of the case. 'This is why you don't hire brilliant people for jobs like this. You hire smart people. Brilliant people get you in trouble.'"
"Brilliant people get you in trouble.'"
More like "Brilliant people expose the trouble you're currently in".
The security-state here keeps saying "if you don't have anything to hide, then you don't need privacy"
Well, if the NSA weren't doing shit that warranted whistleblowers, they wouldn't have the problems they currently do.
Make sure everyone's vote counts: Verified Voting
So, having a way to change your identity to another users is brilliant? All System Admins must be brilliant!
You either get brilliant or you get mildly capable. Smart people know they don't want to work in that environment. Brilliant people will take the job knowing they can use it to some kind of end. Mildly capable people handle requests and not much more, but are just happy to have a stable job in their field.
In SOVIET RUSSIA... erm...NSA AMERICA, the Internet logs onto YOU!
Surely someone at the NSA knows about multi-level security, SELinux, and the like. No one should have had root access. Having architected the system so poorly, it hardly took a genius to walk off with their secrets.
Umm, ok, now you have to be brilliant to "sudo su ".
This guy was a sysadmin. He had physical level access to the hardware. Anybody who is in that job and is competent can do what Snowden did. (or am I missing some as yet undisclosed salient detail?)
I wish I had a good sig, but all the good ones are copyrighted
That explains why they really, really, really wanted to get their claws into him.
Forget the extreme negligence of morality of what they were doing, forget the fact that he leaked those secrets to international press.
It's just 100% pride. And I bet those top officials are the ones gunning for him.
Until they realize that what they were doing was unacceptable, this will continue.
And I expect it will continue for a very long time..
What makes him -not- a whistleblower? He spotted illegal actions from his client (NSA) and used his privileges to prove him right.
Slashdot, fix the reply notifications... You won't get away with it...
"This is why you don't hire brilliant people for jobs like this. You hire smart people. Brilliant people get you in trouble." -- a former U.S. official with knowledge of the case.
Um... no. What is described in TFA is not "brilliant" at all, but a necessary part of being a sysadmin: you have control over user profiles.
The fact that the "former official" does not seem to realize this does not lead us to conclude that Snowden was brilliant... but rather that the mentioned official was anything but.
The only thing that came to mind with the suggestion that they not hire brilliant people:
"An intelligence organization that fears intelligence? Historically, not awesome."
- Tony Stark
-- "So they told me that using the download page to download something was not something they anticipated." - Bill Gates
Sometimes I feel that these "former U.S. officials" and "anonymous staff members" should STFU. It just seems like they use their anonymity to say random shit that will create headlines and stroke their ego. The "don't hire brilliant people" quotation is just stupid. No one that would have to be responsible for their words would say that.
A sysadmin manipulating access privs hardly seems brilliant. Now if he'd leveraged some software exploits shortly before implementing patches that address said exploits, that would indicate a much greater knowledge of the systems he was looting - a certain grace or panache, if you will. I guess this "brilliant" quote is what you get when people who see these systems as a black box are doing the talking. I'm thinking reality resembles less Snowden brilliance and more NSA caught with their pants down.
People with integrity are not going to be working for the NSA. Kinda runs counter to what they do.
This isn't brilliance, this is just poor security. This is systems that had a vulnerable audit trail, or didn't bother auditing enough, or created records no one ever looked at. Surely user snowden su-ing to some top official throws a red flag somewhere, right? If not, why not?
Inside the NSA is probably an amusing place to bea fly on the wall at the moment. All sorts of new procedures to try to stop someone else doing the same thing. However: it won't work, any defences that a man can put in place can be circumvented by another man, especially one working on the inside. They can make it hard, but not impossible - at least if they want their systems to remain useful. They have, at some level, to trust people to be able to operate.
The only way that the NSA can stop future embarassing revelations is for it to behave in a reasonable and moral way. That means a complete change of culture.
I did not say ''behave in a legal way'' since corrupt laws can easily be written.
Sorry, I am a fan of him and grateful he leaked only certain documents as opposed to Manning just dumping everything out into public, but stealing classified documents to leak is a bit different than the story we've been given as a true whistle-blower.
I think the type of information Snowden took was of a different sort. He stole information detailing the existence of spying programs, how they worked and their extent putting the programs themselves at risk whereas Manning stole and leaked operational information that potentially put lives at risk by exposing agents in the field and/or operational plans in the field.
What Snowden leaked so far embarrasses the government but is not "outing" anyone as an agent. This is more inline with what a whistleblower would usually talk about. He leaked the powerpoint slides as evidence of his claims.
Jesus was a compassionate social conservative who called individuals to sin no more.
It sounds like despite the initial protestations of how he'd exaggerated his abilities, and those of the surveillance program ... it's all proving to be true.
That his sysadmin privileges let him access stuff which was much more classified doesn't change that the system is capable of doing this, and likely is on a large scale.
So we've got a wide-reaching, in cases probably illegal system which can and does tap into everything -- and apparently the amount of oversight and controls they have on this is very limited.
Lost at C:>. Found at C.
The problem is that integrity usually comes with morality.
A moral person does not cover up injustice.
Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
Explain how any whistleblower is supposed to expose something if they are not allowed to make information public that the public does not already have access to?
You mean he abused his privileges. He is a low level tech, not privy to high level discussions. Compare him to Mark Felt, who was in a position of power and knew for certain through his daily dealings that the administration was abusing his power. He didn't have to raid Nixon's private files to show it. Here's a better analysis for you.
Some people die at 25 and aren't buried until 75. -Benjamin Franklin
All these people "with knowledge of the case" better watch-out they don't go off-message or they could find themselves hunted as whistle-blowers too, but they'll be OK as long as they keep talking about Snowden and not crimes he exposed.
tomorrow who's gonna fuss
My point is I was under the impression he had the information readily available to him through his job, like Mark Felt. "Hacking" into areas he has no business in is a different story than what has been presented. It makes his defense, if he were to come back to the U.S., deserving of protection under the whistleblower status less credible.
Some people die at 25 and aren't buried until 75. -Benjamin Franklin
Not when these actions expose illegal behavior by the government... Remember, it was this government that created such law in the first place. The more of their own law they violate, the less legitimacy they have.
Law and ethics are not necessarily congruent.. in fact, a lot of times, they aren't, but are passed off to be by politicians and ideological zealots.
Manning stole and leaked operational information that potentially put lives at risk by exposing agents in the field and/or operational plans in the field.
Except that in the Manning leak, the military or intelligence agencies have yet to point to a single agent or operation in the field that was stopped due to the leak. They've just repeatedly asserted this point without proof, and that means significant numbers of Americans believe them.
I am officially gone from
Technically they are not supposed to go immediately to the public. Military, Government, and DOD people are supposed to use the chain of command first. Unfortunately, this does not work in most cases since the chain of command in a corrupt organization is also corrupt. Numerous court cases and stories are to be found regarding how internal whistle blowers are treated (sometimes killed with their whole family, etc...)
What Snowden did in this case is correct. Not going public mind you, but going to journalists who are supposed to be working for the public's interests.
What I, and many others, find so interesting is that our media has become so corrupt that we have to have alternative news sources which hold the original 'credo of journalism' in mind when working. I'm sure if he turned the data over to the NY Post, he would have been in jail and the public would still have no knowledge.
Lengthy chain to get to the point, but the point is that he did not go "public". He went to journalists, and did so correctly in my never so humble opinion. Part of the journalism credo is to determine what to release to the public in order to present the story while protecting the Government.
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
So much wrong with all of this...
We can see why in this quotation from TFA which you mentioned:
This is irrational and IMHO just plain ignorant.
How could you reach such a non-sensical conclusion? It requires a misunderstanding of both the technical difficulty of the tasks Snowden accomplished *and* an Asperger-level understanding of what motivates humans to perform.
The error: Interpreting Snowden's behavior as something 'difficult'...
What Snowden did was, on a technical level, something most people at or above his paygrade in IT could do. It is something **some** of us here on /. could do with little effort.
Snowden isn't some code-cracking wizard. Most people on /. could spoof users (or just steal login info) with some work.
Hopping a fence to get to a private pool is not 'innovative' or 'brilliant' thinking...that's all Snowden did.
It's not like he's DVD John....
Second, Snowden's info was *not new information*
We all knew since the PATRIOT ACT that the govt could do this...Bush renewed a domestic spying order to the NSA every 45 days after 9/11.
"NSA has massive database of American's phone calls"is the headline
So, Snowden is either *a full on spy for Russia/global Oligarchs* or *being duped into releasing info by the same*
He's not a hero, he's not a whistleblower, he's a misguided dupe that got taken advantage of, at best...
I've written this before, with links just like now...if you want to disagree, if you want to claim Snowden *did* release valuable information and not just technical details for things we already knew existed...you have to show evidence.
Snowden's info was of no use...and we didn't need any of this to have a "national conversation about privacy"
hundreds of thousands of Americans vehemently do activism to guard our privacy...these are every day people...we've been active since 9/11 and the Patriot Act and before...
Thank you Dave Raggett
It sounds like he abused his privileges to confirm his suspicions, and then took a course of action. Which is the right approach, depending on the suspicions.
If you ignore ACs because they are anonymous - you're an idiot.
This isn't about competence or incompetence. It's about putting as negative a spin as possible on Snowden.
Float a lot of trial balloons, make sure negative things get out there via anonymous sources, even if rebutted the next day, then the "traitor" contingent can forever quote the negative and leave the detailed rebuttals to others, which no one will read.
To wit: in this thread, Manning is excoriated as a traitor for releasing all the documents unredacted, but Manning did not - that was accomplished when professional journalists from the Guardian published the passphrase for an encrypted file.
You need to hire some of these "brilliant" people so that you don't get snowed by a Snowden. By all accounts he accomplished what he did by having incompetent management above him. This was a management problem, and one that you knew better about, or should have known better about - if you had some of those brilliant people who knew what they were doing in management!
" 'This is why you don't hire brilliant people for jobs like this. You hire smart people. Brilliant people get you in trouble.'"
No, what happens is when you do shit that shocks the conscience, someone, somewhere, is going to expose you for the douchebag that you are.
Stop being a douchebag.
--
BMO
Snowden's abusing his powers is an act of civil disobedience. The same tatics were used by Ghandi and the civil rights movement. It's a wrong that warrants a "tsk tsk, don't do that" and a stern look. He did it to expose evils so great and widespread that it would be hard to figure out which of the hundreds involved who merit it should be executed for treason first. That's not shoot the messenger here.
http://yahoo.usatoday.com/news/washington/2006-05-10-nsa_x.htm
that's it
sorry again...gah I need to go back to typing school
Thank you Dave Raggett
So the whole "anybody could get access to this data at any time, even without a court order" is really more like "anyone with the appropriate privileges, which is limited to a select number of analysis, can access these records, which are protected by a court order. Except, of course, the sysadmin who breaks all of the rules, steals the credentials of authorized analysis, and then downloads whatever he wants.
Short of giving one key to a judge in a two key system and tying up an entire justice department staff to baby site every single access, there isn't a way around this particular scenario. It's baked into the whole clearance and trust model.
Is it just my observation, or are there way too many stupid people in the world?
Given their track record, anything the NSA says should be considered to be a lie. Therefore, if they say Snowden used his 1337 h4x0r skillz to break the rules, it is a safe bet that he did not do anything of the sort and the NSA is just fabricating a story to pacify lawmakers asking how this could happen. Since they commit perjury in front of Congress with impunity, lying to reporters wouldn't even be a blip on a NSA spin-doctor's moral radar.
Or maybe they didn't know about this sort of stuff at the time they joined it? Seems to me that most whistleblowers end up blowing the whistle because things were not what they expected as they got higher up in an organization or were exposed to more of its inner workings. If everyone with integrity had enough information to steer clear of the jobs that had them doing illegal/immoral/otherwise wrong stuff, we'd never have any whistleblowers, since those people would all be working for upstanding organizations.
What they _really_ want are sociopaths; people (Men) that have no empathy for others and kinda get off on having great power and lending a hand in bringing suffering and grief to 'things' they have no more sympathy for than ants under their magnifying glass.
The greatest enemy of the NSA, et al is conscience.
They've done even more. The Pentagon has concluded that no harm has occurred as a result of the leaks.
https://en.wikipedia.org/wiki/Afghan_War_documents_leak#Informants_named
"On 11 August 2010, a spokesman for the Pentagon told the Washington Post that "We have yet to see any harm come to anyone in Afghanistan that we can directly tie to exposure in the WikiLeaks documents",[55] although the spokesman asserted "there is in all likelihood a lag between exposure of these documents and jeopardy in the field." On 17 August, the Associated Press reported that "so far there is no evidence that any Afghans named in the leaked documents as defectors or informants from the Taliban insurgency have been harmed in retaliation."[56]
In October, the Pentagon concluded that the leak "did not disclose any sensitive intelligence sources or methods", and that furthermore "there has not been a single case of Afghans needing protection or to be moved because of the leak."[57] Both Wikileaks and Greenwald pointed to this report as clear evidence that the danger caused by the leak had been vastly overstated.[58][59]"
Hey i'm mildly capable to downright incompetent, maybe I can get Snowden's bosses job!
who prays for Satan? Who in 18 centuries has had the humanity to pray for the 1 sinner that needed it most? ~Mark Twain
Yeah, hire that incompetent idiot who will design the security precautions wrong in the first place. That'll work a lot better.
Can't do that, he left three years ago and is now working for something like northrop grumman or bechtel .... selling platforms to the NSA...
I'll point you to a huge corruption case currently ongoing in Quebec, It's a textbook case of having internal affair that is not working properly and become so useless that it's not even a stopping block to the corruption system. Stories like the construction contract in the city of laval where internal affair was in the system of Montreal where internal affair was flushed.... Yeah, it's not always that easy.
Don't forget, she leaked "collateral murder." That is whistleblowing if ever a whistle has been blown.
.: Semper Absurda
People with integrity are not going to be working for the NSA. Kinda runs counter to what they do.
The NSA didn't somehow magically find and hire many thousands of evil people, any more than the military managed to find and hire a quarter million murderers. People tend to take jobs like that because they believe in what they're doing, and because they believe they're helping. Now, their beliefs may be wrong by your opinion, or by a large swath of society, but it doesn't invalidate their beliefs or suggest they have no integrity. In fact, I'd argue its the exact opposite. They have so much integrity, they're willing to do things that most people would frown on for what they believe is the common good.
Don't conflate the rank and file at the NSA (or any government agency) with the crooks in Washington who create these projects.
We should all right now remember how the media had tried to slander this guy as having only had a GED and how he had such a high wage. How ridiculous that he would pull such bacon? Why on earth did they trust him to work for the NSA!? Now he is brilliant. This all smells to high heaven right now.
"but money is the God of Algiers & Mahomet their prophet." - Rich. O'Bryen June 8th 1786
Sorry, I am a fan of him and grateful he leaked only certain documents as opposed to Manning just dumping everything out into public, but stealing classified documents to leak is a bit different than the story we've been given as a true whistle-blower.
That is a misconception. CIA claims that the documents were classified, but since the documents describe CIA committing crimes it is clear that whoever classified the documents didn't do his job since he should have reported the crimes rather than classifying the documents.
In the end there is no way for the documents to be legally classified.
Think of it this way: Many readers here are developers and as such it is common to have to sign an NDA. This could for example prevent you from telling anyone what your company is doing.
If you after you have signed the NDA finds out that the product your company is manufacturing requires human spines and that they are harvested from homeless people it doesn't matter what the NDA says, the NDA is no longer worth shit and you have an obligation to report the crime. Anyone from the company who tries to stop you is a criminal since they are aiding the crime.
In essence. If you want to keep your actions secret, make sure that they are legal.
There are thousands of "brilliant" people in many disciplines who work at NSA. Snowden was no more special than any of them, and any other decent sysadmin could do what he did, from a technical perspective.
Of course, NSA could be doing anything that someone, somewhere would still think "deserved" to be leaked; if a single individual decides to leak classified information, does that always make him/her a "whistleblower"?
Before you say, "When it reveals [insert behavior I don't agree with here], absolutely!" consider that what one person believes to be "wrong" (even if, by definition, lawful) is another person's completely justified behavior.
In a free and democratic society based on the rule of law, one who BOTH unilaterally decides to subvert the law, and along with it the processes we have built, AND flees from all consequences of their actions must be counted as an enemy of democracy.
I can hear the cries now that it's "NSA" that is the enemy of democracy; while we can disagree on exactly what the NSA should be doing and precisely how it does it, there is NO WAY that NSA can do foreign SIGINT in a digital world without having access to the exact same systems and networks that Americans and everyone else uses. The needles are all in the same haystack, and you can't have access to only the legitimate foreign intelligence targets without necessarily having theoretical "access" to everything.
Anyone approaching this issue from a remotely rational standpoint understands that to be true, and if you believe the United States should be able to conduct foreign SIGINT, the only question is the "how" â" from technical, legal, and policy perspectives. Nearly everything Snowden leaked beyond the phone call metadata collection (which is explicitly lawful and Constitutional, by definition, because of a Supreme Court ruling 34 years ago) has to do exclusively with foreign intelligence activities.
You really think that's what we need to "blow the whistle" on? That one person can decide, on their own, that they "disagree" with something, and publicly leak it? And if you're an "information wants to be free" type, or one of those who believes the US is what's wrong with the world, or that we shouldn't even be doing the level of foreign intelligence collection that we're doing, I wonder if you have ever considered that there are actual threats in the world, which are neither imaginary nor monsters of our own creation, that don't subscribe to the principles you would claim to hold dear, and which need to be countered.
By all means, keep focusing on technical errors and isolated examples of abuse, that are in fact so isolated that it represents an agency operating at near-perfection in terms of error and abuse rates.
It's a shame that you can't see the forest for the trees.
A properly compartmented system doesn't have root.
A security manager (that doesn't have access to installation tools, network, operations or storage, but has lots of system activity logs)
A systems engineer (that doesn't have access to user files or security manager functions)
An operational staff (that doesn't have access to user files, security manager functions, OR installation tools)
A network engineer (that doesn't have access to any of the previous three).
And frequently, a storage engineer that doesn't have access to any of the previous 4).
Thus, separation of duty. Improper access always raises an alarm. A violation requires collusion between 3 or more people - MUCH easier to detect.
It is usually the security manager that authorizes new users. The operations staff may initiate the installation of those users - but it is still the security manager that enables them.
And yes, a storage engineer doesn't need access to user files - he may have his own files for testing/evaluation. But he can initiate load balancing that may cause user files to be relocated - but that does not give him access to the data.
They have proof.
They just can't say what the proof is, because it's classified. You have to take their word for it.
"Befehl ist befehl" was never a good reason.
If you do these things you are as guilty or more so than those in washington.
This is a fundamental problem in almost every employer I have been connected with in the last 15 years. I have been employed 30+ years.
There is a great fear of intelligent emplyees so marginal managers hire even more-marginal employees for fear of being eclipsed. If should an intelligent employee manages to get in by understating their abilities but are detected later tend to be targeted and pushed out. There is a great fear by managers as being discovered as being incompetent. Add in sociopaths being promoted to managers just re-enforces this behaviour.
The result is I have witnessed companies squander abilities to quadruple their business in 1-2 years by poor management decisions, burying technical disasters that were easily detected & correctable at an early stage but then baloon into major disasters that cost them business. It is always the guy who predicted the disaster that gets targeted instead of the idiots that covered up the disaster in the making.
In engineering and software industries, I have seen a move to hire less educated, less experienced staff who will keep a low profile and not rock the boat. The result is in underperforming technology firms who rely more on marketing & sales than developing break-through technology and making it reliable.
The statement quoted is just a symptom of a deeper problem in today's high technology industries and even government bureaucracies.
Thomas Drake, William Binney and J. Kirk Wiebe
The NSA has created an irresistable treat for the least moral people in government. Oversight and controls will periodically fail for reasons slashdotters and sysadmins understand well.
Recently
*Spied on reporters
*Prosecutors pretend evidence was gathered with a warrant.
*NSA lied to congress about what was collected.
Previously
*Threatened U,S reporters with death,
*Influence the U.S. elections Watergate.
*Electronic surveillance Martin Luther King, John Lennon, Elvis, It is alleged MLK was blackmailed and the letter demanded he commit suicide before christmas.
Funny
(Unless your former spouse/boyfriend is violent)
*Appalachee "Love-Intelligence"
This answers (for me) why Snowden left the country.
http://www.thedailybeast.com/articles/2010/09/15/nixon-white-house-plot-to-kill-journalist-jack-anderson.html
http://crooksandliars.com/susie-madrak/nsa-analyst-under-bush-we-spied-repor
http://www.usatoday.com/story/news/politics/2013/06/16/snowden-whistleblower-nsa-officials-roundtable/2428809/
http://www.usatoday.com/story/news/politics/2013/06/16/snowden-whistleblower-nsa-officials-roundtable/2428809/
15TW = 15,000 Nuclear Reactors. (Approx. one accident a month.)
Note that this information supposedly comes from "a former U.S. official with knowledge of the case". This is an ongoing, classified investigation. It would be illegal for anyone connected to it to divulge such details to the press much less anyone no longer working for the government (at least officially). This "former official" is either talking out his ass or is a shill being used to strategically smear Snowden by trying to appeal to the general populaces inferiority complex.
I am becoming gerund, destroyer of verbs.
I wouldn't say obviously. In my experience, decision makers work in a web of trust, and are completely blind sided by little technical details.
Like all pain, suffering is a signal that something isn't right
I think some are misrepresenting this as easy.
If Snowden did in fact impersonate identities to access the information, and the systems in question are correctly configured, then about the only way to do what he did is on the servers in question themselves.
A properly configured system uses authenticated channels into the server, and that authentication is by means of the accessing system doing a couple things which are difficult to forge, without modifying the attacking system and installing foreign software.
Specifically, the server is a member of an SA - Security Association - and the client machine joins the SA through an attestation process which uses a distributed security certificate. So far, so good. Now a connection is established to the server through a secure point to point link; AFP and SMB use such links, NFS does not (NFS uses remote attestation, which is a point of vulnerability).
A credential is associated on the client side of the link, and it's also associated with the server side of the link through an attestation process to being a particular member of the SA. This attestation goes over the secure link to the server, and the server verifies it with the SA. Because the verification process between the server and the SA is incapable of being intermediated by the client, you have to have all authentication factors in hand. This is why you can't "su uid", as you can in an NFS, environment in order to effectively assume an identity.
Since they are using at least two factor authentication - and these guys do at least that; they use CAC (Common Access Card) attestation using cryptographic smart cards - identity is very difficult to forge.
So you end up with a connection to the server, and a UUID and.or GUID in your credential associated with the connection on the server side, and then ACLs are enforced on server objects you attempt to access over the connection using the UUID/GUID to compare ACL ownership, rights grants, group membership for which ownership or rights grants exist on the object, and so on.
Thus the only way this could have been done is with administrator access *on a server*, not merely administrator access on the network or on a client node on the network ( assuming a lack of sophisticated software).
That said... administrator rights would have been enough. There's no impersonation requirement needed in order to establish access, so he would not have needed to impersonate anyone in order to get the information, and given the authentication and attestation barriers in place, it would have actually been more difficult to obtain the information via impersonation, rather than just being local to the server itself and grabbing it.
This kind of looks like a "pile on the charges" gambit to try and get him for other crimes that could be associated with the attack, had he been silly and done it the way they are claiming he did in the article.
# man su
SU(1) User Commands SU(1)
NAME
su - run a shell with substitute user and group IDs
SYNOPSIS ... [-] [USER [ARG] ]...
su [OPTION[
DESCRIPTION
Change the effective user id and group id to that of USER.
If you run su as root, you can change your effective user id to anything you want it to be. This ability is fundamental to the existence of users other than root, and it is what is used by the login process (owned by root) to start a shell owned by your user id whenever you log in.
Are not the password encrypted such that he cannot see what it is? Are there not security measures in place that if you change a password it cannot get reset back?
No. Once again, if you use the front-end tools available to users then there are limits. If you're an administrator then a password is just a bunch of characters stored in a text file. Security measures may make it more difficult to gain access to that file, but once you have the ability to read and write to anywhere on the disk or in memory, there's no stopping anything.
This problem sounds like one that has been "solved" before.
Judge Rules That Police Can Bar High I.Q. Scores
It seems that NSA has a very big security hole. If there are 1000 sysadmins at NSA who can access files without audit trail like Snowden can, how can you be sure that there isn't a Chinese spy among them? What Snowden did, was patriotic. Another person would have simply sold the secrets to Russians or Chinese and retired at Bahamas and NSA would be no wiser. I am almost certain that it has already happened. Why neither Chinese, nor Russians expressed interest in info that Snowden had? Because they already have it and much more than Snowden had decided to release to public.
Possibly that NSA is operating with presumptions that the info has already leaked. They don't really care. What Snowden did was unforgivable however, because he disclosed their illegal operations to the American public.
The best way to stop whistleblowers is to stop giving people a reason to want to blow the whistle.
"Screw Sun, cross-platform will never work. Let's move on and steal the Java language." - Visual J++ Product Manager
And exactly when do you think this was different? When Walter Cronkite was alive? When Ogg told Grog what happened to Paris the other night?
Is this way, was this way, will always be this way.
I’m sorry, no. Things most definitely were NOT always like this. When Walter Cronkite told you “that’s the way it is,” you could believe that he was reporting as accurately as he could, using material gathered by some of the best investigative journalists in the business, and most importantly, with little or no thought to whether the news he was reporting would negatively affect or offend the corporate bosses at CBS. There was a reason he was called “the most trusted man in America,” because he literally was just that, continually ranked in polls for trustworthiness above presidents, clergymen, fellow pundits, you name it. You don’t get that kind of reputation unearned.
Hard to imagine today, but back then the networks genuinely competed against each other for viewers, and news departments quickly became the most prestigious part of that struggle. There was very little editorializing, and almost none that wasn’t clearly labeled as such. The networks simply didn’t try to spin things a certain way as we see now. I suspect enforcement of the Fairness Doctrine had a lot to do with that, certainly it seems like the long decline of the American media began soon after the FCC decided to do away with the FD, along with many other existing useful regulations, such as the ones preventing industry consolidation into exactly the kind of huge media conglomerates we have today. Those long forgotten regulations were perhaps a big part of why the media in those days was so much more trustworthy than what we have now, although I can‘t prove this.
The end result is that today when I access any of the big American news organizations, I no longer believe I am getting the best information possible. Everything has to be taken with a grain of salt and a dollop of serious consideration regarding the parent company’s corporate stance on a given issue. More and more I find myself having to look at overseas sources (BBC, etc) to get any real feel for how things truly stand. It’s a sad state of affairs, and one that is very hard to convey to those born and raised in post-Reagan America. The news media in those days was far from perfect, but for trustworthiness, believability, accuracy, and absence of pervasive editorial slant, it was in general far superior to anything existing today.
'Every day, they are learning how brilliant [Snowden] was,'
Wow if they consider the ability to use sudo, mount and cp is an indicator of brilliance, then most of us here could easily become top NSA guys.
The U.S. government is extremely corrupt, in many ways. It amazes me how often U.S. citizens joke about that, or change the subject, showing that they don't care.
They care. They change the subject because they feel powerless to change the corruption. Everyone they ever voted for turned out to have a hand in the cookie jar. And now the politicians no longer have a guilty look when caught. Instead, they demand to know why we didn't refill the cookie jar.
Your belief is based on a false dichotomy, actually.
Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun