Slashdot Mirror
Glenn Greenwald: How the NSA Tampers With US Made Internet Routers
Bob9113 (14996) writes "According to Glenn Greenwald, reporting in The Guardian: 'A June 2010 report from the head of the NSA's Access and Target Development department is shockingly explicit. The NSA routinely receives – or intercepts – routers, servers, and other computer network devices being exported from the US before they are delivered to the international customers. The agency then implants backdoor surveillance tools, repackages the devices with a factory seal, and sends them on. The NSA thus gains access to entire networks and all their users. The document gleefully observes that some "SIGINT tradecraft is very hands-on (literally!)".'"
Surely the NSA can touch anything that Customs does.
we were innocent and naive. Now you can only trust open source.
nosig today
Working for a defense contractor, I can say that someone is going to have fun talking with the FBI and/or the CIA and/or the NSA soon.
Happy butt raping!
and, of course, China would never, ever consider doing that....
Had Snowden only leaked the unconstitutional domestic spying, he would be a hero. It should be very clear now that those leaks were just a cover for treason. His goal seems to be nothing less than the dismantling of our entire intelligence apparatus.
Just wait till the markets open tomorrow. NASDAQ down 600-800 points (at least). Nobody sane is going to purchase US-made networking gear for a very long time.
yeah baby
FNORD! why weren't we told of this? the NSA actually eavesdrops on communications outside the U.S.? with aplomb, acting all like it's in the NSA's charter or something?
I say, arrest this asshat without the BS of a trial and send this traitoress informant of NSA secrets to Gitmo! I say!
You just single-handedly killed the entire US tech industry. You murdered trust. No one will ever trust US hardware again.
What a travesty.
Shit. It's almost as if they're out to sabotage the US tech industry all together.
How can we sell gear abroad knowing it can and will be tampered with by a dark budget US agency that has an unknown agenda and doesn't feel the need to report to the Congress or the President?
Modern IT products depend on security. Security is about trust chains. NSA has broken all of the trust chains. US IT products are now useless abroad.
Probably not the largest in terms of sheer numbers.
This is to be expected.... what is the real scope of this?
I believe that a router on the way to a German auto maker is not targeted. OK I want to believe.
I believe that a well managed site will audit and reload software. I believe that additional system admin audits behind and in front of the
hardware are justified.
For the NSA (Never Say Anything) to snoop does not bother me but they are not the only TLA in the game today.
The internet has not been friendly for a gosh long time nothing has changed.
Truth is stranger than fiction, but it is because Fiction is obliged to stick to possibilities; Truth isn't. Mark Twain.
Security researcher and Tor developer, Andrea Shepherd, found something fishy:
http://www.techdirt.com/articl...
These are my friends, See how they glisten. See this one shine, how he smiles in the light.
If the NSA had restricted its spying efforts to foreign countries, would Snowden have felt morally obligated to disclose this?
The NSA spied on Americans in violation of the law. So Snowden blew the whistle. If the NSA had not spied on Americans in violation of the law....maybe Snowden would have kept his mouth shut, and this amazing foreign intelligence network would have continued to function unabated.
I am not saying that it is OK for the NSA to spy on foreign governments to this degree...I am just saying that it would not have broken the (American) law and may not have pushed Snowden to blow the whistle.
The NSA got greedy. It's as simple as that.
Ah yes because the NSA says me so. You know what i think ? I think NSA told us to distrust other vendor because they have no back door in them.
C. Sagan : A demon haunted world:
http://www.amazon.com/gp/product/0345409469/
visit randi.org
This just goes to show what happens when you let a bunch of fucking niggers run your security departments.
We hold these truths to be self-evident, that all men are created equal, that they are endowed by their Creator with certain unalienable Rights, that among these are Life, Liberty and the pursuit of Happiness.
Looks to me like those spying on anyone, anywhere, are the real traitors.
Il n'y a pas de Planet B.
This is far beyond espionage and about the common man. Espionage is some fake shit hollywood wants you to believe is real, the glamorization of getting ass fucked by surveillance and other perceived "cool" stuff the federal government makes to justify the fake terror organizations they set up in each in every country. Currently it's Ukraine.
Ever hear about this? http://swampland.time.com/2013/09/27/whos-watching-the-watchmen-nsa-employees-caught-spying-on-partners/
I suggest you slowly and calmly turn off CNN, Fox news, and wherever else you have justified your attitude and realize the complete betrayal of trust the NSA has been engaged in for over 50 years now.
People are waking up to the fact that the entire system is rigged. Every war, conflict, thing that happens on a global perception scale has been carefully scripted to gain more control over money and resources, and the media is there to keep people like you still believing that we should be good little slaves because we need "Espionage".
When 13 families run the world "Espionage" doesn't mean shit.
NSA's message:
Beware: we're doing it to them so they could be doing it to us.
Of course they could not go public with part one to they only publicized part two.
That doesn't matter. We now know that the NSA has backdoors in them. We highly suspect that the Chinese also have backdoors in them.
The question is how long it will take the other nations to start their own chip fabrication plants and build their own routers / switches / etc.
Since nothing from us can be trusted (even by us) then they should be building their own stuff which they can trust more than our stuff.
The NSA's own internal watchdog group found that NSA snooping power was used to spy on 'love interests' of several NSA employees.
If their own internal watchdog group is telling the world that there's something going on here, it's a bold move to claim "all the disclosures released so far have shown government ACTIVELY protecting civil liberties of Americans"
Imagine if an organization such as the ACLU had access to all internal NSA snooping records. Are you telling me that you believe that no civil liberties have been violated by the NSA? Alternatively, are you telling me that we have zero rights because the NSA is allowed to spy on everyone doing anything at any time for no reason at all?
Now they've been found out it's going to hurt USA's export market.
they are fiddling with the firmware/bios (absolute.com). almost impossible to detect.
Bollocks
You need to be one to understand one. US, especially the international cyber security related ranks of government, were worried about the security of networks, operating on Chinese made Huawei brand routing equipment. Has anyone give it a thought "why" ? Because, they were doing the same thing to the US manufactured equipment and up until Huawei undercut Cisco prices and made inroads to the US networks, they didn't say anything. I am just laughing why people are getting so upset at this point in game. Your privacy and mine as well, is no more than a joke.
__________
The more I know people, the more I love animals
Sorry, I've given up on all this Spy vs. Spy nonsense. Frankly I'm surprised that there hasn't been a story where the NSA employes pixies who spread magic fairy dust on the Internet Tubes and the secret encryption keys float magically in the air. Sure, a lot of what Snowden took possession of and released was most likely based in fact but a lot of it is starting to sound a bit more ridiculous. If this article has even 1% of credibility I would have thought that any security firm outside the US would have been able to confirm it. Once it's confirmed then I'll worry. If it's not confirmed then it's another red herring.
Harrison's Postulate - "For every action there is an equal and opposite criticism"
Just curious, does that include Alan Turing spying on Germans? Or the UK intelligence intercepting Zimmerman's telegram?
In Soviet Washington the swamp drains you.
I have no problem with the NSA spying on the rest of the planet.
That's what they are paid to do.
I'm even fine with them intercepting my inbound stuff with a warrant or FISA order if I was connected via phone or other means to known enemies overseas.
Outright spying on me in my day to day life tho, that is right out.
I got a -1 for flamebait, with people telling me I was full of crap...just a few days ago when I explained how the NSA is standing in the way of critical needed upgrades in infrastructure because there software and hardware do not work with 10GigE or IPv6 among other things.
Got Geometrodynamics? Awe, too hard to figure out? Too bad.
Because war and peace makes no difference...
So, as a business I ness US made routers so the chinese slave labor me out of the market, but in my home I need chineese made routers so the NSA isn't hacking my local computer.
Or I just get both, and put them back to back, and hope the US NSA never cooperates with the chineese NSA [equivalent]
Some of those "foreigners" are probably better allies of your country than some of your own citizens.
Your distrust of all things "foreign" shows just how shallow you really are.
Of course, China does the same thing with routers, regardless of internal or exported...
Yes Alan Turing was a terrorist to the German NAZI party.
1) Anti-Establishment candidates are often marginalized by the establishment, by civil methods and later by authoritarian ones depending on the threat and how authoritarian. Example: Ghandi. MLK. The extreme repression was their strength; the wise establishment doesn't empower their enemies.
2) If you can elect somebody, they are a minority and unless it is a dictatorship they can't do anything on their own. Continued marginalization and undermining them with their base as they are forced to compromise to get anything done at all. Example: Paul Wellstone, Bernie Sanders, Ron Paul (a rare case of no compromise and doing nothing.)
3) Use the system against the elected officials. As the 2006 NSA leaker stated, Obama was observed before he was a senator. Officials have things to hide; even honest ones must make tough decisions that can look horrible if made public. Catch-22, such as the intelligence committee members who can't even tell other's in office what they know. Remember, Wyden said when Snowden leaks came out that it was just the tip of the iceberg and he couldn't talk about any of it. Remember, the 1st Snowden leak was they were spying on everybody. that was the tip of the iceberg?!
Example: possibly everybody who did a 360 after getting in office.
4) Politicians can only address a few issues at a time; much of their time is spent eating shit from their predecessors and trying to convince people it will taste good after they add their seasoning and most their time is spent raising money.
5) Press has been captured. You have to go foreign to get anything and they are being terrorized. (Funny how much "treason" is applied to foreigners.) When it's a big issue the press backs the government position; without even the need to be asked. Self censorship is the norm and patriotism is supporting the gov PR. Remember, the press didn't back the pentagon papers until it was already published and that was back during better days.
Franken is my senator. he is just OK. He is also at risk of being replaced by a complete sellout.
Democracy Now! - uncensored, anti-establishment news
Nothwithstanding the fact that I don't think a single person involved in any of this is guilty of treason, you are blatantly wrong about a few things, like this:
In fact, all the disclosures released so far have shown government ACTIVELY protecting civil liberties of Americans.
This is just wrong, the NSA's net is so large that they can and do collect a lot of information about Americans not suspected of a crime. The three hops rule means that they collect data from millions of people who are so loosely connected with a particular suspect as to make it so that there is no real connection there. The recent proposals of changing how the NSA works also removed the privacy advocate. If the federal government's priority was protecting Americans' civil liberties, why did they remove the person whose job that would be?
Remember, the goal is to expand the powers of government.
The goal of what? The goal of the constitution is to limit, not expand, the powers of government. That is spelled out very clearly. The entire purpose of the constitution is to protect the citizens from the government.
Your role as a citizen is to make sure government continues to function and do its job, because that's what we as citizens have decided.
What happens when the government stops doing its job, or starts abusing its power? If that is happening, wouldn't you want to know about it?
"Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
I work for a company that ships laptops, desktops, and routers to customers overseas and I'm going to say that there are some really weird things going on in transit that I can't explain. Particularly with international shipments, but not necessarily exclusively. I've personally heard from numerous customers who've had there systems seemingly opened in transit. Not just the packages, but the actual cases. They don't even always do a good job of re-connecting and re-sealing everything. Its obviously the cases that have been opened too as snap-style pieces are left disconnected (hard drives). No amount of vibration or force will cause a disconnect.
While I've suspected something like this I've never attempted to have a customer take a hash of the disk image and compare it to a before-shipment hash. Given this is a problem I think I might just go ahead and start doing this. The problem now is actually finding a customer who is going to be able to repeat the process on the other end.
You can bet the Chinese government are spying. Ditto for some European countries.(etc).. That said, any foreign government or corporation that buys US tech -- and thinks at this juncture that they aren't being spied on by the US government - would be dumber than a rock. (tinfoiler hatters were right after all)
America is digging a hole for itself in the technology sector. Foreign governments (and corporations) everywhere are scrambling to ween themselves off US technology. Because of use dominance it's a slow process but once that transformation happens, they won't ever be going back. The tech industry in the US will become much like the once dominant US auto industry, A has been that destroyed itself. (in this case by not standing up to government spy agencies clearly going too far).
The *only* way to change this inevitable decline is to change not only US laws but to create international agreements. It should be illegal to put back-doors into software/hardware that allow for wholesale spying on the citizens of any nation. And even in cases where spying of individuals is necessary, it is done with due process (i.e. ala the right to privacy in enshrined in the US constitution -- which the government officials that supported the NSA decided to ignore). Don't expect this to happen though. Politicians say one thing publicly to get voters but often do another once in power. They'll continue to put in their back doors as well as not disclosing vulnerabilities (ironically weakening security not only for other countries but America as well)
The way towards security in the future will thus come from the private sector. There is going to be big growth in companies that produce security hardware/software that explicitly have a mandate to distance themselves from any particular government and use open source designs, firmware, and software (which doesn't necessarily mean free). In an odd twist, total disclosure is the only way to build real security and privacy.
http://en.wikipedia.org/wiki/Narus_%28company%29
That was the network gear in the splitter room in San Fransisco ATT.
That's the NSA router supplier.
Not too long ago, I had two identical servers shipped from the US. Upon unboxing them and running them up -- I didn't pay too much attention to their physical appearance -- one of them had different CPUs, different HDDs and a different amount of RAM. I went back and double checked the shipping notice, packing slip and packaging. The packaging was correct and listed all of the components in the quantities that I expected, it's just that the server in the box had a different configuration and serial number. This happened pretty much the day after I read about about NSA allegedly intercepting and fiddling with shipments.
Now, I don't think we do anything interesting enough to warrant spying on our operations, but I can't help but think there is now some despot somewhere who got a clean server (ours) when the shipments were mixed up.
The vendor concerned was very interested in how this mix up might have happened.
"just people applying 20th century ideas to 21st century conflicts."
All too true. Although the results may be far worse than becoming a "quaint has-been". To expand on your point: ... There is a fundamental mismatch between 21st century reality and 20th century security thinking. Those "security" agencies are using those tools of abundance, cooperation, and sharing mainly from a mindset of scarcity, competition, and secrecy. Given the power of 21st century technology as an amplifier (including as weapons of mass destruction), a scarcity-based approach to using such technology ultimately is just making us all insecure. Such powerful technologies of abundance, designed, organized, and used from a mindset of scarcity could well ironically doom us all whether through military robots, nukes, plagues, propaganda, or whatever else... Or alternatively, as Bucky Fuller and others have suggested, we could use such technologies to build a world that is abundant and secure for all."
http://www.pdfernhout.net/reco...
"Likewise, even United States three-letter agencies like the NSA and the CIA, as well as their foreign counterparts, are becoming ironic institutions in many ways. Despite probably having more computing power per square foot than any other place in the world, they seem not to have thought much about the implications of all that computer power and organized information to transform the world into a place of abundance for all. Cheap computing makes possible just about cheap everything else, as does the ability to make better designs through shared computing.
And also on intelligence specifically:
http://www.phibetaiota.net/201...
"A failure to realize this irony will produce ever greater problems down the road as we develop ever greater technologies that can become ever greater amplifiers of destructive impulses (including self-replicating nanotech and biotech) or ever greater inhibitors of constructive impulses (like pervasive surveillance to enforce arbitrary unhealthy norms as a "war on the unexpected"" [see Schneier]). So, how can we have an intelligence community in the 21st century that is truly worthy of the name? How can we have an intelligence community that truly helps prevent misadventures that waste trillions of US dollars while millions of US children grow up in poverty and tens of millions of US citizens lack access to health care or even adequate nutritious food?"
And:
http://pcast.ideascale.com/a/d...
"As with that notion of "mutual security", the US intelligence community needs to look beyond seeing an intelligence tool as just something proprietary that gives a "friendly" analyst some advantage over an "unfriendly" analyst. Instead, the intelligence community could begin to see the potential for a free and open source intelligence tool as a way to promote "friendship" across the planet by dispelling some of the gloom of "want and ignorance" (see the scene in "A Christmas Carol" with Scrooge and a Christmas Spirit) that we still have all too much of around the planet. So, beyond supporting legitimate US intelligence needs (useful with their own closed sources of data), supporting a free and open source intelligence tool (and related open datasets) could become a strategic part of US (or other nation's) "diplomacy" and constructive outreach."
"Good will" is an important resource. Slowly the USA has been squandering what goodwill it including from WWII. Fortunately, good will can be a renewable resource depending on the political choices the USA makes going forward.
For example, imagine how much goodwill the USA would have right now if we had given the people of Iraq US$6 trillion dollars (US$300
A 21st century issue: the irony of technologies of abundance in the hands of those still thinking in terms of scarcity.
... I just can't imagine how anyone would be offended or in the least bit concerned over this.
No idea why you're being downmoderated. It's *absolutely* the NSA's job to eavesdrop on foreigners. That's what they're being paid to do.
While it is the NSA's job to spy on people, that's traditionally been something you do against your adversaries, not your allies. I mean, it's one thing if we're talking about tapping the USSR's undersea cables. They had nuclear-tipped ICBMs pointed at us. It's quite another thing when we're talking about tapping the phone of Angela Merkel. She's the democratically elected president of an allied NATO state. I mean, up until that point she and Obama had a pretty good working relationship, so if he really wanted to know what she was thinking, he probably could have you, know, asked her.
Just curious, does that include Alan Turing spying on Germans?
Nazi Germans were not "anyone, anywhere" — they were targeted participants in on-going, escalating armed state aggression in the European theater, Atlantic and North Africa, whose military planning generated actionable intelligence. None of this applies to the NSA's current operations or their worldwide foreign and domestic victims.
I have no issue with three letter agencies doing the job they were tasked to do - provide the USG with foreign intelligence gathered offshore. The problem is when they turn those same techniques inward.
And lest the foreigners cry - your governments are spying on the US too, often on behalf of your nationally domiciled corporations.
NSA apologist trope #57: [insert foreign country that has no 4th amendment] routinely does the same thing we do.
This is one of the dumbest arguments in the NSA apologist playbook. Gee, we are as bad as China when it comes to spying on our populace. Great job!
They would need millions of people to do all this...
Oh wait, all this stuff is made in China, since when does the US *export* any of this equipment?
Some of our allies don't mind that we spy on them, especially if they are not allowed to spy on themselves. Then we can spy on them and share the intel with them. They still get mad if we spy on their high level politicians and business secrets, and of course they have to denounce our spying if their people find out about it.
Don't waste your vote! Vote for whoever you want, unless you live in a swing state it won't matter anyways
By what 'tradition'? Nation states and their predecessors have always spied on friend and foe alike.
Jesus was all right but his disciples were thick and ordinary. -John Lennon
"It seems to me the only rational approach is to assume that nothing can be trusted and and act accordingly. Assume that whatever you are doing online is being observed by someone or anyone ..."
I've been saying to make the best of this since at least 2008 (chain of citations): :-) :-) :-)"
http://www.pdfernhout.net/on-d...
https://groups.google.com/foru...
https://groups.google.com/foru...
https://groups.google.com/foru...
"Our biggest advantage is that no one takes us seriously.
And our second biggest advantage is that our communications are monitored, which provides a channel by which we can turn enemies into friends.
And our third biggest advantage is we have no assets, and so are not a profitable target and have nothing serious to fight over amongst ourselves.
Or more recently:
"A way forward through openness? (Score:5, Informative)"
http://slashdot.org/comments.p...
Of course, growing up in a Christian ideological environment, the idea is nothing new that all my actions are under constant surveillance 100% 24X7 by an omniscient entity who can even read my thoughts and decides my ultimate fate day by day... Just got to make the best of it... :-)
Not saying that means it will end well if humans are entrusted with that kind of surveillance power... Although "The Light of Other Days" and "The Transparent Society" are both books to think about...
http://en.wikipedia.org/wiki/T...
http://en.wikipedia.org/wiki/T...
It's probably only a matter of time anyway until the halls of all governments are saturated with nanotech "smart dust" by all sorts of actors (see Vinge's "A Deepness in the Sky" or some other stories for examples). Governments might want to get their houses in order before then... In that sense, Manning and Snowden might both just be the tip of the iceberg -- even if smart dust like that is still probably ten or twenty years off...
Or also from me in 2008:
http://www.pdfernhout.net/post...
"Wikipedia. GNU/Linux. WordNet. Google. These things were not on the visible horizon to most of us even as little as twenty years ago. Now they have remade huge aspects of how we live. Are these free-to-the-user informational products and services all there is to be on the internet or are they the tip of a metaphorical iceberg of free stuff and free services that is heading our way? Or even, via projects like the RepRap 3D printer under development, are free physical objects someday heading into our homes? If a "post-scarcity" iceberg is coming, are our older scarcity-oriented social institutions prepared to survive it? Or like the Titanic, will these social institutions sink once the full force of the iceberg contacts them? And will they start taking on water even if just dinged by little chunks of sea ice like the cheap $100 laptops that are ahead of the main iceberg?"
Or in this case, will 20th-century-mindset security institutions start sinking when their procedures are dinged by revelations moved via small cheap USB sticks apparently carried around by Manning and Snowden? Really, how "secure" or wise is a plan in the 21st century when it depends on 100% secrecy forever? Shouldn't so-called security experts employed at great expense by governments know better by now? Security by obscurity is problematical, especially over the
A 21st century issue: the irony of technologies of abundance in the hands of those still thinking in terms of scarcity.
Isn't it still possible to have a trustworthy firewall as separate hardware, that can inform you if there are any inappropriate data transfers? It would seem like an important tool to have if only for virus/malware analysis.
Don't waste your vote! Vote for whoever you want, unless you live in a swing state it won't matter anyways
Disk image might be the same. The Snowden docs include things like hardware replacement of Ethernet jacks and firmware backdoors. Nasty stuff, and completely undetectable without destructive teardown or an X-ray machine and a ridiculous amount of time.
So lets pretend that we've just completed writing this code, as opposed to having just completed sabotaging it -Altera
You are assuming the source you are looking at is the same one loaded on the device. If you change out the software on the device you may as well assume its no different than a binary blob.
And if the change is to the hardware that the open source software runs on? same idea as a hyper-visor rootkit, the software could be as fancy and open source as you want its still compromised since the hardware could easily send a copy of everything and react to a signal without the software ever knowing about it.
It's their job to spy on enemies of the state. Foreigners is a broad brush that is a slippery slope to domestic monitoring. Actually we are already there.
That the internal watchdog is looking and did catch violations is a good sign of ACTIVE protection.
You have zero rights because your internet packet addresses might be sniffed? Zero? Really? You're good at math.
And that is a very good thing.
Spying prevents war, it's credited with preventing the Cuba missile crisis from being a very real nuclear war because each sides spying revealed not only how serious the issue was but what was required to end the threat (the Soviets requirement was removing nuclear missiles from Turkey). And that's just a single incident, spying has probably prevented more wars than anyone can imagine.
I guess World Wars dont' get a pass, do they?
Addressing both your comment and the grandparent comment: this distinction of allowing non-free software is part of what distinguishes the older free software movement from the younger open source movement. RMS has been talking and writing about this critical distinction for years.
Consider the following from "Why Open Source misses the point of Free Software":
In other words, open source won't endorse software freedom for its own sake. That movement was designed to never raise the issue of software freedom in order to promote a developmental methodology thought to lead to more reliable, more powerful programs. That methodology is fine as far as it goes (everyone likes powerful robust programs) but as we're seeing with the Snowden revelations, that methodology doesn't go far enough. RMS realized this very early on and has been providing ethical counterarguments since the open source movement began (older essay, newer essay).
This difference explains what we're seeing in the very different approaches taken in Linus Torvalds' fork of the Linux kernel versus the GNU Linux-libre fork of the Linux kernel. Linux-libre's distinction is that this fork removes the blobs that come with the Torvalds fork of the Linux kernel. Torvalds includes nonfree code meant to make the kernel run on more hardware which places a high value on convenience at the cost of software freedom. Linux-libre values software freedom instead. As a result, Linux-libre doesn't run on as much hardware and might not take advantage of everything modern hardware can do, but one gains a system they are allowed to fully inspect, share, and modify—software freedom. Linux-libre lets users make sure the software does only what that user wants that program to do. RMS, as recently as his recent responses to /. questions, encouraged readers to reverse engineer hardware in order to fully document hardware ("The parts of Linux we need to replace are the nonfree parts, the "binary blobs". [...] The main work necessary to replace the blobs is reverse engineering to determine the specs of the peripherals those blobs are used in. That's a tremendously important job -- please join in if you can."). This work leads to increased support for fully free operating systems, including fully free support in Linux-libre.
Increased security is one of the things you get with the pursuit of software freedom for its own sake. I think RMS very much recognizes the security enhancements that come along with Linux-libre and why his org
Digital Citizen
I'll bet you're the first to whine and cry when there's a story about a Chinese company with a backdoor in a product Americans are buying.
But hey, keep on cheer-leading this heinous behaviour. When exports of all US computer gear dry right up because nobody wants to deal with your corrupt shit, you can then go on to bitch and troll about rampant unemployment.
All those protests about HUAWEI - the real reason we scared everyone about them is for precisely the opposite reason than was claimed. HUAWEI is not in the pocket of the NSA, which makes them useless from an espionage standpoint. The problem isn't that their equipment has spyware, it's that it doesn't (as far as the NSA is concerned.)
--- Generation X: The first generation to have SIG lines inferior to their parents... ---
Really? You have proof of that? I think you're full of shit and just spreading some rumour you read on the Internet.
At this point, I think only Stalinist basketball-playing robotic lesbian koalas and Lipstick-wearing skinless alligators from Alberquerque are about the only two things NOT credited with stopping the Cuban missile crisis. Oh, and bunny-rabbits and chickens. OK, so that's 4 things.
The servers, routers, etc are NOT coming from America. They are being shipped via China. For example, Cisco does not import the routers and then re-export them to say china, or Venezuela, etc. They are shipped direct.
What I find funny is that so many miss the fact that many backdoors have been found on equipment that was shipped directly from China and not touched by ANY AMERICANS. And yet, we have greenwald and snowden ignoring what is going on with Russia, AQ, China, etc.
I prefer the "u" in honour as it seems to be missing these days.
BS. Why do you think that India banned them? Because they found it on their routers that were sent directly from China to India.
Ppl like you are beyond foolish, or are simply Chinese trolls.
I prefer the "u" in honour as it seems to be missing these days.
News at eleven :/
We're effectively killing off our chances at a global market. Seriously. Would you buy ANY network gear from ANY US based company at this point ? Hell, for that matter would any US based company even trust it ?
The bigger question is how does the NSA know about the shipment unless the companies are giving them a heads up about it before it leaves the country ? It's unlikely the NSA just gets " lucky " and just so happens to find them.
Spying on a war time foe is way different than spying on everyone. (without due process I would add). Not only is it spititng in the faces of allies its also violating the US constitution.
Lie. Spying enables war, it creates the illusion of having sufficient control and being able to go in and kill whom ever you want and win. Spying the disrespecting of other countries laws and their citizens rights and is the peremptory action to war. The death penalty for espionage still exists in many countries and with good reason. Espionage routinely enables and uses organised crime in targeted countries, ignoring laws also covers ignoring laws like murder and extortion the assumption by those countries actively engaged in hostile espionage are that the targeted countries citizens have no rights and are to be considered sub-human to be abused at will as long as they hostile country can get away with it. It is pretty clear the US has become the enemy of world peace, quite simply because there is not enough profit in it, for the select few.
Chaos - everything, everywhere, everywhen
If I'm a foreign buyer for this stuff... say a bank in Germany that wants to build a data center... I can't buy American stuff anymore. That's a huge blow to US tech.
Look... I'm okay with pulling this crap against brutal dictatorships. But I suspect they're just doing it to anyone they're even vaguely interested in... I have to assume that because there's so much double talk and evasion on the issue along with apparently no oversight or auditing.
If this sort of crap continues then the companies are at they very least going to have to use protected shipping methods that guarantee no tampering. A guard going with the shipment 24 hours a day from the factory to the delivery location would be an example.
And of course, any organization or customer that is responsible to data security is going to have increasing trouble trusting US businesses with anything.
This is incredibly damaging. The NSA needs to do their job without destroying the US tech industry in the process.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
Really? How is spying on an Australian being a traitor to America? Are they being a "traitor" to some organization I'm unaware of where we swore an oath to keep Australians free from snooping? Is there a constitutional amendment I missed where foreigners living in foreign territory are protected from unreasonable search and seizure?
Yes, if they meet the definition of "traitor". Because "those spying on anyone, anywhere" does not meet any definition I know of.
Or, another way, your statement is just as true as the gp.
I prefer to think of it as redefinition, where the meaning of treason is whatever supports gp post.
On one hand, we have the idea that all spying is wrong. On the other, some spying is okay, if it supports the greater good.
If I misdial an international number and get a terrorist burn phone, does it make sense to flag me as metadata to be recorded in the future? If I repeatedly call burn phones, am i a greater risk? If I have friends I met in college who are fighting for their freedom and lives in an unpleasant country - fighting the same fight that my country is fighting but from the inside - how does my country know which side I'm on?
If some spying is good, we have to define where to draw the line. My parents were killed 20 years ago, when CCTV was not prevalent. Would you support CCTV cameras for the purposes of finding their killer(s)? That seems like unnecessary spying given the hours of tape that would get captured, but it also seems to be for the greater good.
So, can we define clear lines that don't require interpretation, which clearly defines the good guys from the bad guys and the targets from the protected? And we have to keep in mind that the state preserving itself is not the same as the state preserving its citizens, so the state is not necessarily the best decision maker. When a revolution happens, the state finds itself on the wrong site of history, and is the bad guy. They will abuse any power granted them at that point.
So how do you grant UK permission to make the call, while giving the Americans the ability to revolt?
The purpose of spying is to gain political, military, or economic gain. Things change. If you don't spy on everyone you won't see those changes happen before they hit you. One of the reasons Obama had such a good relationship with Germany is because he knew what they wanted, not just what they told him.
The seller simply sent her the wrong tracking number. NSA had nothing to do with it. Yay paranoia.
https://privacysos.org/node/1311
https://twitter.com/puellavulnerata/status/427849719633571840
True. If you don't know what another country is doing you will assume the worst. If they are buying uranium centrifuges and you don't know they are building a nuclear reactor you will assume they are making bombs. If they are buying guns and you don't know they are having a civil war you will assume they mean to invade.
Here is a little logic lesson, take heed of the flow because I realize that logic is difficult for people.
Spying in and of itself can be considered a gray area. We can justify spying on enemies, and not spying on friends.
Deceit on the other hand is always bad. There is really no gray area in that one, try as you like there is no way to convert deceit to honesty.
The issue with the NSA, and say Australia, is that the US Government as a whole has lied to the people that the politicians and office holders are supposed to be representing. Repeatedly lied I'll add, and those lies are all in the open and well documented.
This takes us to an issue of trust, and people simply have no more trust for the US Government. People in offices have lied not just about the NSA, but everything possible. WMDs in Iraq, the TPP, and Fast and Furious are good recent examples, but The Gulf of Tonkin and COINTELPRO were just as real and lies as well. So we have a history of liars holding offices to overcome somehow.
Spying by itself may not be treasonous (unless you are breaking the laws defined in the US Constitution), but providing arms to gangs that kill US citizens surely counts. I would say that declaring war on fabricated and falsified information also counts because it cost thousands of US lives and endangers our country as a whole. A politician failing to protect the US Constitution and trying to subvert our Government also counts as treason, which is why the last 3 Presidents have all been brought up on impeachment charges.
It's the lying in addition to performing acts the US Constitution prohibits that make these acts treasonous.
What is Greenwald's problem that makes him such a compulsive Judas? Isn't his Brazilian rentboy putting out, or something?
No idea why you're being downmoderated.
*Gasp!* Really, you can't see the reason for him being down moderated? I'm shocked and amazed!
Your first statement should be logically countered by everything else you stated, I seriously wonder how people got to bet his handicapped mentally. The first and primary function of _ALL_ elected US Officials (and most appointed posts as well) is to defend the US Constitution. As soon as officers were found to be lying about things, they should have all been put to death or exiled for failing to perform their primary duty.
I agree with some of what you say after, but the first statement diminishes the severity of the crimes.
Oh, and by the way..
What happens when the government stops doing its job, or starts abusing its power? If that is happening, wouldn't you want to know about it?
You may want to read a Newspaper or something, because this has already been happening. See "Free Speech Zones" and "Corporations are People" if you need lack reference materials. Berkley demonstrations are good ones too, as is TPP negotiations and US involvement in the recent Ukraine coup where 4 billion of your tax dollars went to a group more pro EU than those voted into office.
Outstanding write up!!
Yet another thing when it's an Indonesian cigarette company being spied on for commercial reasons. Burning through the goodwill of allies just to help out a campaign donor with some trade secrets picked up by spies is IMHO a ridiculous abuse of power.
Alternatively, are you telling me that we have zero rights because the NSA is allowed to spy on everyone doing anything at any time for no reason at all?
Well since you ask... what "rights" do you really have in a Government that ignores it's own Constitution, drafts laws to allow it's lawbreaking after it gets caught, and who's local Law Enforcement routinely twists and misapplies laws against citizenry?
Seems your "rights" are entirely subjective and likely to change at a moments notice.
Tell a few of their customers to ship back items which appear to have been tampered with, and compare them at your end. That's appropriate tech support. You have no idea who's doing the tampering or why, and it's worth finding out.
I hope customers can replace those crypto bits themselves?
I was promised a flying car. Where is my flying car?
To an authoritarian, all other crimes pale in comparison to that of exposing wrongdoing by authorities.
Show us a post where I put up material on hosts where it doesn't apply.
I'm replying to one. Now go away and quit bothering the adults.
I think he meant people who engage in mass, untargeted surveillance of entire populations. Not spying on anyone at all for any reason.
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
I heard rumours that the Chinese firms who clone routers were just replacing the secret keys in the backdoors with their own and shipping them as-is. That kind of thing got Phil Zimmerman in hot water.. why isn't Cisco in hot water?
It's really simple. An individual looking at specific targets with real oversight is fine. Mass collection of data, especially metadata, is wrong and treasonous. It's super convenient and doubtless would prevent/solve some crimes, but freedom is more valuable.
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
I believe the proper term is now shocked and awed.
Write boring code, not shiny code!
We hold these truths to be self-evident, that all men are created equal, that they are endowed by their Creator with certain unalienable Rights, that among these are Life, Liberty and the pursuit of Happiness.
Which Creator are we talking about here? I ask out of interest; and of course also because I have never seen any evidence of such a being. My point here is NOT that humans don't have rights or that these aren't reasonable and fundamental, but I think it is time to abandon the pious lingo and try to find the valid reasons that undoubtedly are there, somewhere. After all, if the only reason why these rights are unalienable is that they are God-given and somehow enforced by Him, then they can be thrown out when your religious affiliations change, as they so easily do. The fact is that the god most, if not all, people claim to follow, is a concept created to suit their own preferences and petty prejudices, and personally wouldn't want my freedom and rights to depend on the whims of the prevailing, religious wind.
Sure, but on a limited scale. GCHQ and the NSA have basically said it's fine for other nations to hack all our systems and completely pwn our countries if they can. No limits, collect everything and use it all for the most trivial industrial espionage or political gain. Destroy all good will, make sure British and US products have no credibility and wreck out data storage industries. Make sure citizens are at greater risk by installing backdoors and weakening security systems.
What do you think is the biggest threat to you? Terrorist attack or becoming the victim of hacking, identity theft, losing your job because the company's secrets were stolen etc.
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Your example of spying on allies being a good thing is to refer to the Cuban missile crisis? Sorry I didn't realise USA and USSR were great buds at the time.
I do not want your cheap brainburning drugs. They are useless for work. And I am a working man today.
Obama and his successor will realize the world is a cold and lonely place once everyone assumes you're a lying two faced fuck out to deceive and manipulate at every turn.
Which Creator are we talking about here?
Does it matter? FWIW, I'm a Buddhist, and most of the Founders were Deists.
Il n'y a pas de Planet B.
Still another 1 line fart of a reply from gmhowell.
Sadly, we can't take the luxury of distributing communications devices that we don't have the ability to tap.
Certainly says something about the state of the civilizations on this planet.
- Zav - Imagine a Beowulf cluster of insensitive clods...
I think it's somewhat of "we have all your data. If you are suspected of anything wrong, we will look at it. Don't do anything wrong."
- Zav - Imagine a Beowulf cluster of insensitive clods...
> ignores it's own Constitution,
ignores its* own constitution
it's = it is
Learn this.
- Zav - Imagine a Beowulf cluster of insensitive clods...
no one would really care if it was really used to catch big bad terrorists but we all know its all far from that.
Oblig XKCD: http://xkcd.com/1357/
I agree, saying that other people (who do not claim the same moral high ground as the US does) do it is one of the weakest arguments.
Hope that soon firmware dumps of desoldered BIOS of will be compared inside and outside the USA to fund the gap ...
is much more common than people supposed.
The dystopic future in the series Continuum doesn't look so very far-fetched to me.
We're already a third of the way there !
you should definitely do this
Actually, the funny part is, that spying on Mrs. Merkel phone is the NSAs job. And she's got a number of people whose job it is to prevent such spying. Technically, btw, as far as it's known, only Merkel's private (or technically party) mobile has been intercepted. In effect most relevant stuff was certainly interceptable => because her communication partners have to rely on "normal" communication systems designed to be easily intercepted.
Spying on the whole German population is the big issue. Mass-surveillance is a problem, it violates basically the 4th ammendment (and their local counterparts, e.g. in Germany, as you've mentioned the example, it's the "Fernmeldegeheimnis", communication privacy that is a constituional basic right). One of the things that was disliked about the Britons back than that they used to do basically warrentless searches, for whatever reason.
Now consider that the NSA wants all electronic communication world wide, and that naturally includes communication by US citizens at home. So think, if the population (because the political caste in D.C. is way less interested) manages to forbid domestic mass surveillance, And they manage to make it stick (against a bureacracy shredded into multiple layers of secrecy for the "common good", invoking "national security" every second sentence). Now what do you think will keep the NSA from asking their British friends to do some spying, under supervision for them? A good pretence would be e.g. "Safety of NATO personal deployed in the US", that's what the German BND (which is mostly forbidden to work inside the borders) did, just ask the allied agency that have the right to spy (via the NATO treaty and related "formerly secret" treaties) in Germany. Not probable, but the British inteligence community is very intimate with the US, even more than the other members of the "Five Eyes" club.
So basically, what we've got are highly unregulated secret organizations (where even the official oversight, usually from the legeslative branch has not enough insight, and still has to rely on the perps themselves not to lie), which have shown in the past a tendency to work around any legal issues very creatively, by doing the illegal thing (and cover it under the "national security" tag, to avoid scrutiny), by interpreting law in fascinating ways (e.g. creative interpretations of the Patriot Act, rubber stamp it at the FISA Court, and again we wouldn't want independent analysis if the legal creative interpretation is okay, so it's a question of "national security"), ...
And if everything else breaks, split the bad stuff up internationally, there are enough allied spooks that are not explicitly forbidden to do the bad deed in question, ...
"And no, Senator, we cannot tell you that, because that information "belongs" to an allied foreign agency, and sharing it would endanger international cooperation, and you know, that cannot be allowed, because the bad bad terrorists would win."
What good relationship? The reason Obama has been popular for some time is related more to the fact that the Bush administration had any number of very unpopular policies here around, and Obama claimed that he'll change them when elected. The sad part is, that he did not change them, he continued them or even enlarged them. The only big promise that he kept at least partially, was stopping all these "illegal stuff". Alas, he stopped it be legalizing the practices in most cases, so lawyerish he's correct, he stopped all these "illegal practices", although many people (voters or not) probably took him to mean that he'll stop the practices and not just legalize them ;)
I may be a little off-base but there used to be a time in the U.S. that our legal system was premised upon actual "misdeeds" not "thought crime". We now appear to live in an age in which crimes are "manufactured" out of obscure, fragmented and ambiguous data elements that could "potentially" lead to a criminal act. Then the purported perpetrator[s] are accused of "plotting" destruction even before the act is committed. I think people should be able to think anything they want. Even engage in ambiguously and potentially criminal acts for freedom's sake. What makes the difference is whether or not the act is actually carried out. Actual destructive actions should be the punishable offense, not thinking about it. Sure, this may place a heavy burden on law enforcement but I'm willing to accept that in exchange for personal freedom[s]. Besides, we are ALL ultimately responsible for our own self-protection. That requires that we be aware of our surroundings. To live with a certain degree of "precaution". To hone our personal skills in detecting potentially dangerous situations and utilizing a considerable degree of "street smarts". There are way too many people who have abandoned their personal responsibility for their own safety. They live as innocent children, expecting the world to be a "peaceful and enjoyable" trip to an amusement park where life is happy all the time and just kick back and wait for the guys in the white coats [or blue, or grey or whatever] to come and save them. We all like to think of ourselves as "adults" but we don't what the personal responsibility of acting seriously as adults. Rather, children wanting all the privileges of rank but little responsibility. One of the things we are ALL personally responsible for is our own safety. But most people think that responsibility falls upon someone else. Those who complain about safety but are unwilling to accept personal responsibility for it are creating a burden upon society. It's time everyone stopped whining about "safety" and started acting like adults.
"Those who can make you believe absurdities can make you commit atrocities." - Voltaire
gp is a db, but the point still stands that it's the NSA's job to provide signals intelligence outside of the US.
NSA apologist trope #57: [insert foreign country that has no 4th amendment] routinely does the same thing we do.
Does the Fourth Amendment apply to the NSA's spying on foreigners?
What happens when the definition of "doing something wrong" changes?
file:
I think it's somewhat of "we have all your data. If you are suspected of anything wrong, we will look at it. Don't do anything wrong."
Sorry but you are living totally in the past. The security services don't just take your information they sell it on for money or trade it for access or other secrets. And guess what some of the people they sell it on to are criminals, spying and crime have been brother and sister ever since they were invented. (Good) Criminals often even make the best spies, they are resourceful, independent, good at deceit and lying and hiding - and they always have a good excuse for 'nefarious' activities if caught. Even worse today, the services are made up of many small private companies - this allows for greater believable deniability and compartmentalisation - but some of those companies are deliberately crooked or bent or even linked to organized crime. Crime is also a great way to launder money so it cant be traced back to the government. Today the NSA aren't Uncle Sam they are corporations like Halliburton or Facebook or dozens of nameless holding companies around the world, or they are your pimp or your drug dealer or that guy on the corner selling child porn. In spying being a criminal is part of the job.
Still don't mind them riffling through your bank details?
Below the speed of light Special Relativity is one of the most accurate theories in physics - above the speed of light..
And everyone was paranoid about Chinese stuff.
What a crock of #@it! We hold these lies to be self-evident, that all men are not created equal, that they are endowed by their greed with unlimited unalienable Rights, that among these are Life, Liberty, the pursuit of Happiness, and kill the rest. Looks to me like those they are spying on everyone, anywhere, are the real traitors according to good old uncle Sam. They should pay or die. Simple as that!
Interesting thought, that we would have these rights if there was no Absolute Law or something similar. What would lead us to conclude that everyone has the right to Liberty, for example? Is it a matter of taking a vote about it? And if the majority vote against, could they then imprison the minority? I live in Europe and one thing I envy the US Constitution is the way rights are defined - that they are given by an Absolute and therefore cannot be voted away :)
Some 2-bit host of many, many banner ads and not much else "likes" your shitty app. Whoop-de-doo.
"Your hosts file app is SPYWARE, dude." - by Zontar The Mindless (9002) on Wednesday April 09, 2014 @02:43AM (#46702387) FROM -> http://slashdot.org/comments.p...
You said MY program's a spyware?
Ok: CONTRARY PROOF from a REPUTABLE security community source http://slashdot.org/comments.p... who hosts my app (malwarebytes hpHosts) which you are FREE TO VERIFY by email if you like as MY proof!
Now: Is YOUR SOURCE Computer Associates REPUTABLE? See here http://www.bing.com/search?q=c...
---
"for a crapware host files app that nobody in his right mind wants to allow anywhere close to his system" - by Zontar The Mindless (9002) on Wednesday April 16, 2014 @12:24PM (#46769393) FROM -> http://slashdot.org/comments.p...
You say my program's crapware?
Disprove 17 points here showing hosts give uses more speed, security, reliability, & anonymity then since YOU say my program's "crapware" http://start64.com/index.php?o...
---
"You barge into discussions with your off-topic hosts file nonsense" - by Zontar The Mindless (9002) on Friday April 11, 2014 @09:51PM (#46731153) FROM -> http://slashdot.org/comments.p...
Show us a post where I put up material on hosts where it doesn't apply.
You can't, can you? Nope - That makes YOU a liar.
APK
P.S.=> You FAIL, sockpuppeteer troll...
... apkDisprove 17 points here showing hosts give uses more speed, security, reliability,
"Your hosts file app is SPYWARE, dude." - by Zontar The Mindless (9002) on Wednesday April 09, 2014 @02:43AM (#46702387) FROM -> http://slashdot.org/comments.p...
You said MY program's a spyware?
Ok: CONTRARY PROOF from a REPUTABLE security community source http://slashdot.org/comments.p... who hosts my app (malwarebytes hpHosts) which you are FREE TO VERIFY by email if you like as MY proof!
Now: Is YOUR SOURCE Computer Associates REPUTABLE? See here http://www.bing.com/search?q=c...
---
"for a crapware host files app that nobody in his right mind wants to allow anywhere close to his system" - by Zontar The Mindless (9002) on Wednesday April 16, 2014 @12:24PM (#46769393) FROM -> http://slashdot.org/comments.p...
You say my program's crapware?
Disprove 17 points here showing hosts give uses more speed, security, reliability, & anonymity then since YOU say my program's "crapware" http://start64.com/index.php?o...
---
"You barge into discussions with your off-topic hosts file nonsense" - by Zontar The Mindless (9002) on Friday April 11, 2014 @09:51PM (#46731153) FROM -> http://slashdot.org/comments.p...
Show us a post where I put up material on hosts where it doesn't apply.
You can't, can you? Nope - That makes YOU a liar.
APK
P.S.=> You FAIL, sockpuppeteer troll...
... apkb
Zontar the Mindless, you didn't disprove apk's 17 points in favor of hosts adding security, speed, reliability or anonymity for users. Since you put it down, where's yours that does better? It isn't Zontar the Mindless (we know it's you posting by anonymous too instead of your regular registered account Zontar the Mindless).
I want to know what the feasibility of just "prying out the offending component and soldiering a new one in" is.
I'm sorry, I the the danger is more "what happens when those with the data decide to use it for nefarious purposes?". The existance of such an enormous body of data will mean some people will misuse it. And they ALREADY have!
Creator can be a metaphore here. It doesn't need an agent for the passage to serve its purpose. There is speculation that some of the founding fathers were atheists despite much of the language that was used. The salient point is that we have rights from the moment we exist.
That's what we want to change. The biggest problem is that the enemy of the NSA is anyone that would oppose it, or tear it down. It will move to defend itself by using it's considerable power. It needs to be torn down and replaced with an entity with a more targeted mission and more oversight.
Silly
I like that BUSINESSES are being touched by this. No one gives a s**t that your and my privacy rights are null and void. Congress won't do zip to fix that. But when foreign CUSTOMERS, who SPEND MONEY, decide they DON'T WANT compromised Amerikan hardware, and take their business elsewhere, congress might start to listen. (Stupid me) or maybe not.
Thank you Edward Snowdon! Thank you Glenn Greenwald. Obama, you are a disappointment (in SO many ways).
'Privacy' is not a right in your quoted list.
Do you really think the power hungry politicians are going to stop
spying on each other and the people to get dirt on them for there elections.
So I'm sure they will definitely continue spying on us.
Remember transparency by this US Government, so it will never stop
They will tell us that you sheep, we ill stop watching you, but the fact is as long as tax
dollars are collected it will continue I have been using http://Lookseek.com for about a
year the non tracking private search engine to protect my privacy.
We have to start somewhere
Famous quote by the head of us intelligence regarding spying on Kaiser et all
gentlemen do not read other gentlemen mail