UPS Denies Helping the NSA 'Interdict' Packages

An anonymous reader writes "When Glenn Greenwald's book came out recently, one of the most startling revelations was that the NSA has been intercepting shipments of networking gear to add spyware. Cisco was one of the vendors whose gear was altered, and now their shipping provider has spoken up about it: 'UPS, which Cisco has used since 1997 to ship hardware to customers around the world, said on Thursday that it did not voluntarily allow government officials to inspect its packages unless it is required to do so by law. "UPS' long-standing policy is to require a legal court-ordered process, such as a subpoena, before responding to any third-party requests," UPS spokeswoman Kara Ross wrote in an e-mail to TheBlot Magazine. "UPS is not aware of any court orders from the NSA seeking to inspect technology-related shipments." In a follow-up e-mail, Ross said UPS had no knowledge of similar orders from the FBI, CIA or any other federal agency.' That sounds like carefully parsed language to me. 'Did not voluntarily,' 'unless it is required to do so by law.' Perhaps they're bound by a National Security Letter?"

Guilty

[Noah+Haders]

Not voluntarily unless required by law? Why do companies release statements like this? It just makes them seem more guilty. Better not to say anything.

Re:Guilty

[jythie]

Because 'we will never allow XYZ', while it makes for a good speech, would not be truthful or accurate, in fact it would be downright deceitful. I would consider such a statement to be a far greater indicator of guilt then even staying quiet since it is legally not an option.

There is a huge difference between 'yeah, we will voluntarily do XYZ when asked' and 'we will comply with the law when required'.

Re:Guilty

Yup. "required by law" is called an NSL.

And you aren't allowed to talk about it either.

Re:Guilty

[aNonnyMouseCowered]

"Not voluntarily unless required by law"

The phrase isn't a direct statement from the company PR but from an indirect quote ("said that"):

"UPS, which Cisco has used since 1997 to ship hardware to customers around the world, said on Thursday that it did not voluntarily allow government officials to inspect its packages unless it is required to do so by law."

Sloppy writing not doublespeak

Re:Guilty

[budgenator]

Makes you wonder if the new UPS employment applications will ask if you are an agent of a foreign or domestic government. Also it's interesting that with the brouhaha over the NSA's tapping Merkle's cell phone that the Deutsche Post that they couldn't just flat out say "No."

Re:Guilty

[Noah+Haders]

who is "they" that would want to say "no"?

Re:Guilty

[mpe]

Not voluntarily unless required by law? Why do companies release statements like this? It just makes them seem more guilty. Better not to say anything.

What if the required by law, either in general or on a case by case basis, includes "claim it never happened"?

Re:Guilty

[gnasher719]

Not voluntarily unless required by law? Why do companies release statements like this? It just makes them seem more guilty. Better not to say anything.

Only to someone whose mind is full with conspiracy theories. What they said is exactly what I would have expected them to do if they are a decent and law abiding company that values their customers, and therefore exactly what I expected them to say.

If you add that UPS as a company is not aware of receiving any court orders or subpoenas from the NSA, this means that either the NSA didn't get access to any packages, or they did so by bribing people or talking naive employees giving them illegal access to such packages.

Re:Guilty

[geekmux]

Not voluntarily unless required by law? Why do companies release statements like this? It just makes them seem more guilty. Better not to say anything.

Uh, no. I'd rather know about it so then we can at least attempt to do something about it. Not knowing would do nothing to resolve the issue.

And it's quite the serious issue. Where we used to have only the government legally allowed to sit behind the bullshit excuse of "cannot confirm or deny", they have now expanded that standard legal waiver (via NSLs) to every American corporation they touch.

And the secret monitoring will be legally allowed to continue without your knowledge. Sorry, but until they dismantle secret courts, Snowdens revelations haven't done a damn thing to change policy or weaken the NSAs capability at all.

Re:Guilty

[NotDrWho]

Here is the quote from the article:

“UPS’ long-standing policy is to require a legal court-ordered process, such as a subpoena, before responding to any third-party requests,” UPS spokeswoman Kara Ross wrote in an e-mail to TheBlot Magazine. “UPS is not aware of any court orders from the NSA seeking to inspect technology-related shipments.”

When you parse the language and translate it from PR-speak/legalese, you realize that this is basically a meaningless statement. The first sentence is boilerplate BS, and has nothing to do with the allegation at hand at all. "We have a long-standing policy not to do X" *IS NOT* the same as saying "We didn't do X" (though that's what they want you to believe they're saying, of course). The second part of the statement only tells us that the NSA didn't get a court order to do this, *NOT* that UPS didn't let them do it anyway without a court order.

And what the whole statement is absolutely NOT is an actual denial. In short, if UPS *REALLY* didn't let the NSA intercept their packages, they could have released a very simple statement saying "UPS did not and does not let the NSA intercept our packages." What they released was some vague boilerplate BS that basically says fuck all.

Re:Guilty

Holy shit, we have UPS fanboys now too?

Re:Guilty

[TechyImmigrant]

Because lawyers were involved. That's how big corps work.

Re:Guilty

[Charliemopps]

Not voluntarily unless required by law? Why do companies release statements like this? It just makes them seem more guilty. Better not to say anything.

Maybe that's the entire point. They're not allowed to complain out loud because of an NSL but they can make it clear what's going on and that it's hurting them with a statement like this.

It's long past time for us to decide our government should not be keeping secrets. They clearly cause far more harm than they help. At worst, some criminals get away. How does that saying go? It's better to free 100 guilty men than imprison 1 innocent?

Re:Guilty

[TWX]

Some people like a man in uniform...

Re:Guilty

There is a huge difference between 'yeah, we will voluntarily do XYZ when asked' and 'we will comply with the law when required'.

As it has become more and more clear that the Executive Branch believes that we are not under a rule of law but a rule of men, then it becomes more and more clear that "comply with the law" and the Executive Branch's "I am the law" basically makes all those "we will comply with the law' equivalent to "voluntarily do XYZ". I mean, sure, I have no doubt that the telecoms are run by a bunch of sell-outs who would gladly sell their user's information to the government and effectively circumvent search and seizure laws*, but much like the Red Scare, most CEOs are also equally scared of being labelled a terrorist sympathizer or being charged for violating a NSL or being guilty of espionage for revealing the things that Snowden showed us. That doesn't make them guiltless as the foundation of how things have gone so bad so quickly is that good men** have sat by and let bad things happen.

So, honestly, as much as we might not have seen a Snowden type leak from a CEO before the NSA's doings were revealed, now that they're know the people who did stand up to the FBI and the NSA in private should be actively speaking out about exactly what they did or did not do and make it very clear that their actions weren't to comply with the rule of men that has becomes the pretense for the rule of law for over a decade.

*For as much as the courts have ruled that third party holders of information don't need to be served a warrant, that's a patently false idea given the notion of companies having similar rights to people being made of people. That is, if a law says the government can't take a person's property without due process, it does not follow that once they give it to someone else for whatever reason that the government can*** force that someone to hand it up under a lower burden since it's still taking property from the someone and the basis for search and seizure still has every reason to be effective. Hence the qualifier of "subpoena" which have a significantly lower threshold than a warrant is really heavily a handwave given the NSA's actions that may have had a "warrant"**** for all export bound UPS packages.

**It's hard to argue still they're good men, but now that the pressure is off more, perhaps they could try to redeem themselves.

***Obviously in this context meaning what the law actually says, not what has been followed. The courts, after all, don't like having their hands tied any more than anyone else and have conveniently created subpoenas and lower threshold warrants**** that clearly violate the intent of the Constitution.

****Secret courts with close hearings where even if a warrant is denied there's basically no way to verify it, so the NSA kept on going even though at a technical level it was in contempt of court. The idea that the legislature needs to step in or really could do anything if the FISA court decided to jail most of the NSA's top staff through the US Marshals for contempt of court for an indefinite period*****...well, you get the idea. Fuck, people who are a lot less contemptuous of the courts have rotted in a jail sell much longer for less.

*****Which is actually illegal also as that's a Fifth Amendment violation, but it's conveniently forgotten just as the Executive at the Federal and State level regularly ignores it to jail protesters or all those people in Guantanamo Bay. Regardless, it'd be rather hard to argue against the practice they themselves engage in regularly, but then it'd require the sort of self-reflection from a Judiciary who took the step also to relinquish the long-held unconstitutional power.

Re:Guilty

[melchoir55]

Maybe they are trying to make it obvious that they have been coerced into cooperating with the NSA using the only language they can legally apply?

Re:Guilty

[JWW]

How does that saying go? It's better to free 100 guilty men than imprison 1 innocent?

That's no longer really true. According to the NOT.ONE.MORE movement, we should impinge the rights of 100 in order to forbid the 1 potential criminal to take action. Even if impinging on their rights in the end may have absolutely no impact.

In the end ALL our freedoms will be destroyed by FEAR because we're demanding security and, well, fuck liberty.

And in the end the governments just giving us what we want. So what if it happened to be executed by secret laws, using secret courts that issue secret orders.

Re:Guilty

[fulldecent]

Interpretation of carefully worded equivocations is important specifically in this context of American corporations which are being compelled to do certain things and then not speak of them.

Is there anything close RFC 2119 for the language that these companies are using. Or can we make one?

We could help companies create stronger press releases and we could give journalists a primary source for parsing bullshit statements like "we are not collecting".

Would anyone like to help start this project with me?

Re:Guilty

However, if they got a NSL ordering them to help then they would also be forbidden to say anything that would show people that they were in fact helping. Leaving such obvious loop holes in their statements would break such an agreement.

On the other hand, there's no reason to suspect that whomever recieved the NSL notified his/her superiors about it, so UPS as a company would have no awareness of it happening anyway.

Re:Guilty

[pnutjam]

I blame Nixon.

Re:Guilty

[Frobnicator]

Reading the rest of the article (yeah, who does that) has more of the little gems.

The quotes fro the headlines were from a PR drone. They write PR, but they don't know the actual secrets. They are not the ones who are called in to a private executive meeting with the legal team.

When they question Mark Chandler, the executive general counsel who does hear the legal secrets:

“We ought to be able to count on the government tonot interfere with the lawful delivery of our products in the form in which we have manufactured them,” Chandler wrote. “To do otherwise, and to violate legitimate privacy rights of individuals and institutions around the world, undermines confidence in our industry.”

We ought to trust... people need to trust... because that is good for business.

Chandler didn’t say if the company knew of the NSA interdiction program, nor did the executive acknowledge if Cisco participated in the interception of packages delivered to certain customers.

Re:Guilty

[LordLimecat]

Kind of helps if you keep it in context and include this part:

"UPS is not aware of any court orders from the NSA seeking to inspect technology-related shipments."

Re:Guilty

[LordLimecat]

Except that they went on to state that they are not aware of any such court orders for their tech shipments.

As I read it they are outright claiming that they have not allowed the NSA to inspect any of their Cisco shipments.

Re:Guilty

[LordLimecat]

If they were going to lie about it they would have no need to use such tricky wording; they would simply come out and lie. I dont know of any reason there would be consequences for lying in a PR statement; lying isnt illegal.

Re:Guilty

[Noah+Haders]

the problem with this whole post-snowden NSA techno world we live in - it's impossible for any government agency or company to deny anything. because there exists a secret court that signs secret warrants for information and it's illegal for anybody to talk about the secret warrants, there's no way to deny that government intrusion has happened.

Re:Guilty

[budgenator]

who is "they" that would want to say "no"?

"they" would be,

The Deutsche Bundespost was the federal German government postal service created in 1947 as a successor to the Reichspost. On 1 July 1989 as part of a post office reform, Deutsche Bundespost was split into three divisions (also called public enterprises), one being Deutsche Bundespost Postdienst. ...
November 2000, Deutsche Post AG went public. It was the largest initial public offering of the year in Germany and the third-largest worldwide. ....
  Currently,[when?] 24.8% of its shares are held by the state-owned KfW bank(German government-owned development bank, based in Frankfurt. Its name originally comes from Kreditanstalt für Wiederaufbau, meaning Reconstruction Credit Institute.) , 74.5% are freely floating; 67.0% of which are held by institutional[who?] and 7.5% by private investors. ...
In July 2002, Deutsche Post acquired a 25-percent share in DHL from Lufthansa Cargo and increases its majority stake to 75 percent. On 1 April 2003, the Group began re-branding some 20,000 parcel delivery vans throughout Germany in the new DHL design. Deutsche Post increased its share in the international courier and express business to 100 percent in December 2002. ... Deutsche Post

So basically a company isn't saying they didn't assist in espionage against the country it was once part of it's government and still owns almost 25% of the company. That would be like the USPS not saying they didn't helping the Mossad spy on Obama.

Re:Guilty

Except that they went on to state that they are not aware of any such court orders for their tech shipments.

And given that you are not allowed to indicate that you have received an NSL, this is exactly what you would need to say if directly asked.

Re:Guilty

Are NSLs issued by a court?

Re:Guilty

[bill_mcgonigle]

Not voluntarily unless required by law? Why do companies release statements like this? It just makes them seem more guilty. Better not to say anything.

No, we should be applauding this. Look at the recent 'IBM' denial. They are very specific about what they're not doing, making it plainly obvious what they are doing without violating their NSL.

Re:Guilty

[strikethree]

Huh? That is not what I interpreted it to mean. What I saw was this:

We deeply respect your privacy and we want to deliver your goods unmolested by everyone except the lazy loader who throws your box around but does not open it... and of course for subpoenas, but you already knew that. What you did not not know is that we are in actuality being forced, via National Security letters, to allow the Federal Government to molest your packages.

Definitely not meaningless. The meaning is clear as day. They are being forced to divert your packages but they can not directly tell you that.

Re:Guilty

[Darinbob]

Because it's true? I they get a subpoena and allow inspections, then clearly they are allowing inspections. If they allow inspections without a subpoena then they are doing so voluntarily. This seems highly reasonable. Saying nothing makes them look guilty.

Re:Guilty

[Darinbob]

So you believe that the UPS is allowing federal agents to open up boxes *without* a court order, that they're doing so just because someone asked and said "please"? Where is your evidence for this? Or is the denial evidence of guilt?

Re:Guilty

NSL's are not court orders. Therein lies the problem.

Re:Guilty

[Noah+Haders]

so the context is an accusation that UPS allows NSA to interdict servers being shipped overseas, so UPS issues, what a denial? except it's more of a confirmation, I guess.

Re: Guilty

This is Slashdot. Evidence is not required.

Re:Guilty

Ah, but an NSL is not issued by a court.

Re: Guilty

[HiThere]

In this kind of case, evidence is not expected to be available. Also, this is not a court of law...we have no ability to enact arbitrary punishment. So the same rules cannot reasonably be expected to apply.

That said, it looks as if the CEO said "no comment" in a fancy way. Read that as you see fit. it's not evidence in any direction, but emotionally it makes me more willing to believe that he is complicit.

Re:Guilty

[HiThere]

But the point he was making is that if they were "volunarily" complying with a "request" it wouldn't be a lie, merely a violation of their policy.

Re:Guilty

Re: "It's better to free 100 guilty men than imprison 1 innocent."

This used to be a popular philosophy. Unfortunately 9/11 introduced the elements of xenophobia and fear. Since then the above phrase has been replaced by: "TERROR! TERRORISTS! TERRORISM!"

Every security and spying initiative since then has been approved by a rubber stamp. It really has reversed the original philosophy. I'd submit that many supposedly smart leaders now believe, "It's better to trample the rights of millions than to allow a terrorist one additional day of freedom." And in so doing, the word terrorist will soon be replaced with criminal, and possibly criminal will eventually be replaced by any civil offender (by-law infractions, support dead-beats, and miscellaneous nuisances).

Re:Guilty

[HiThere]

Sorry, but it doesn't certainly mean that. That's merely one plausible interpretation.

The hideous thing is, it may just be habitual bureaucratic double-speak, and not mean anything in this particular case. In a way that's even worse than NSLs.

Re:Guilty

[chfriley]

It has been going on a lot longer than Nixon. Look at FDR and the court-packing scandal for example. Look at the Commerce Clause cases which eliminated the concept of "enumerated powers."

Re:Guilty

[deniable]

Yes, but which brand? APC, Emerson....

Re:Guilty

[strikethree]

Sadly, that is true; otherwise, they would not be able to say it. Unfortunately, it is the most plausible reading of their statement considering the situation and the clearly careful wording.

Re:Guilty

And the secret monitoring will be legally allowed to continue without your knowledge.

It isn't legal. It's never been legal. It violated fundamental rights protected under the 9th and 10th Amendments. No act of Congress can change that. No executive order can change that. No Supreme Court decision can change that. Rights retained by the people, such as the right to privacy and the right to not be spied on by one's own government, are by definition retained by the people, and no entity of government can take away such rights. Attempting to do so is a violation of the oaths sworn to uphold the Bill of Rights, and such oaths being preconditions for holding high office, immediately and permanently removes the individuals involved from government services without chance of pardon. Actions taken according to illegal laws and precedents are illegal actions.

Re:Guilty

[Sciath]

I'm skeptical it's merely sloppy writing given the fact that it has become highly valued in government and private industry to have great skill at manipulating the language, thought processes and distorting the what is disseminated to the general public. I know (from working in and with both) that "doublespeak" is common practice. They truly believe the general public is gullible enough to initially believe anything they say. It is only when a whistleblower exposes the lies and misinformation that questions are asked.

No need for UPS to help

[headhot]

If the device is made (or packaged in the US) and is being shipped overseas, the NSA can grab it at customs, there is nothing the shipper can do about it.

Re:No need for UPS to help

[Cassini2]

Many (all?) custom's warehouses are operated by third-party companies. This will be a little bit more complicated than inspecting luggage. However, the companies (subsidiaries) that operate those warehouses get their entire revenue from allowing people to transport goods across borders. I suspect the NSA can get away with almost anything in that environment.

Re:No need for UPS to help

Of course they can, but without some help, they would have a very difficult time identifying what gear is suitable for " intercepting " out of the many, MANY packages that are outbound for overseas customers on a daily basis.

They aren't just randomly picking these out. Someone is helping to identify them.

Re:No need for UPS to help

When you say Custom's warehouse, I think you actually mean the two types of regulated facilities which are bonded and foreign-trade zone warehouses.

Bonded warehouses are only allowed to store imported goods. The importer files customs entry forms for the goods prior to storing them within the warehouse and must paid the owed duties prior to removing the goods from the warehouse. This is the most common type. Basically it is where you put things while you pay your entry fees.

Foriegn-trade zone (FTZ) warehouses allow both domestic and foreign cargo to be stored. Small manufacturing can be performed within the FTZ too. You would use this if you plan to re-export the goods or the product you manufacture have a mixture of domestic and foreign parts and it would be cheaper to import the finished product than each individual part. The goods are not considered imported until they leave the warehouse for a domestic address. A lot of global manufacturers have FTZ facilities and despite what the parent comment implied, this facility is operated by the manufacturer or a contracted agent for the manufacturer. It is not a place where customs or the NSA can freely enter and have access to any of the goods.

Yes I used to make a living in this field.

Re:No need for UPS to help

It is a simple matter of looking at the bill of lading or export declaration and intercepting the packages within the container yard or airline staging area.

Re:No need for UPS to help

[krashnburn200]

It's called an address label, they go on the boxes.
The boxes going international go through customs on site at the UPS hubs.

The NSA could achieve this by accessing the packages at customs without alerting UPS directly.
The would only have to break out an NSL because we can. to make it less of a hassle, or just to flex muscle.
Really an NSL would be detrimental to secrecy, the NSA is clearly aware that secrets keep better when you
*don't tell anyone*
Rather than when you ask them to keep it on the down low.

Re:No need for UPS to help

[headhot]

Or they could have compromised UPS or Cisco's databases.

Re:No need for UPS to help

[Cassini2]

They also have custom's warehouses for out-going goods. On the U.S.-Canada border, there are warehouses for goods going in both directions. US bound goods get Canadian warehouses, and Canadian bound goods get Canadian warehouses. Both are easily accessed by persons with the right American security credentials. Treaties, special agreements, and informal arrangements are all up-and-working.

Times have changed. Canada is closely aligned with U.S. security policy. During the Vietnam war, draft-dodgers claimed refugee status in Canada. Starting with the new conflicts, fleeing soldiers are sent back as deserters.

Re:No need for UPS to help

They are one of the two types of facilities mentioned by the parent. I've never had a government official enter any of the facilities that I used without me or one of my colleague being there. I have the keys and the alarm codes... they don't.

Trust!

I was once a fool to think I could believe anything the Government, or Corporations told the public. No more.

This is how resentment is nourished, and enemies are made! How can they not know this is bad in the long run?

Re:Trust!

[Opportunist]

You know that the US resembles more and more the USSR of old? The way to get to the result is a different one, the end result is the same: You have a population that is mostly apathetic towards its government. And whoever isn't apathetic outright hates it. You have a secret service that seems to be more concerned with domestic spying than foreign intelligence, simply because the state and the powers that are fear their "internal" enemies more than they fears anyone coming from abroad. You have a small "elite" that mostly stays within its own circle who share the power in the country while everyone else is mostly powerless. And you have a mainstream press that toes the party line.

It's actually pretty amazing. You needn't have a totalitarian dictatorship to create a situation where you can bullshit and oppress most of the population. But what you DO need is an absence of a better system. That's what fell the communist systems and what keeps the current one we have alive: We lack the "west" they had.

Re:Trust!

[DNS-and-BIND]

I guess we should overthrow the government - but oh, wait, opposing Obama is racist. Plus, the entire university system of the USA is vehemently opposed to Americans owning weapons that might be used to achieve this aim. Ah well, it was a good run while it lasted.

Re:Trust!

You know that the US resembles more and more the USSR of old? The way to get to the result is a different one, the end result is the same: You have a population that is mostly apathetic towards its government. And whoever isn't apathetic outright hates it. You have a secret service that seems to be more concerned with domestic spying than foreign intelligence, simply because the state and the powers that are fear their "internal" enemies more than they fears anyone coming from abroad. You have a small "elite" that mostly stays within its own circle who share the power in the country while everyone else is mostly powerless. And you have a mainstream press that toes the party line.

It's actually pretty amazing. You needn't have a totalitarian dictatorship to create a situation where you can bullshit and oppress most of the population. But what you DO need is an absence of a better system. That's what fell the communist systems and what keeps the current one we have alive: We lack the "west" they had.

Actually it resembles the old East German Peoples Republic a bit more and now that the 51st state has built a security wall that puts the one in Berlin to shame the comarison is even more poignant.

Re:Trust!

[Opportunist]

As I said, we lack the "west". Sadly, there is nowhere to run.

Why do you think you can still travel? Having a right is pointless if there's no way to make use of it.

Re:Trust!

I would argue this is because the average American has been sold a lie - that a society's economic system is equivalent to its system of government. So long as America remains a free market, there is no way that we could ever slip into bureaucratic decline.

The problem is, that the "free market" essentially amounts to a privatization of bureaucracy, not its elimination. We've granted trust to a small class of individuals on the promise they will free us, and unsuprisingly, they are betraying that trust. This is where we now resemble the USSR - the blind allegiance of the multitude to the promises of the few elite in the political class.

Re:Trust!

Oh, so because there's some "fucked up countries" out there, I guess it totally makes it acceptable for the government to disobey the law and treat every citizen, domestic or foreign, like a criminal. That totally makes sense! How could I not see it that way before?

Shill.

Re:Trust!

You know that the US resembles more and more the USSR of old?

Are you questioning the Boss, tovarisch? OFF TO ALASKBERIA WITH YOU.

Also, I'm going to need to see your papers. And take off your shoes. And I'm gonna grope your dangly bits for good measure.

Re:Trust!

[larry+bagina]

Heh, reminds me of the Thomas Jefferson quote (paraphrased) "When people fear the government, you have tyranny. When the government fears the people, you have tyranny."

Re:Trust!

Ok because there are some worse than us we shouldn't take action we are falling far from the ideals we claim to champion?
We are supposed to be the shinning city - not the slightly less shit stained sewer.

Re:Trust!

Really? Name 15 countries worse than the US. Most of the ones you might think of have actually improved quite a bit since the US moved its gaze off them and onto the ME.

Re:Trust!

[TWX]

You know, I can read Wikipedia too, and it looks like you simply counted their fourteen examples and have asked for one more, to attempt to make it harder to cite that list.

And be honest with yourself, the united states doesn't have its gaze on you. It simply vacuums up everything that it can and stores it, so that if it feels that it needs to put its gaze on you, it could. Mind you, I still think that it's wrong, but there's no Orwellian pyramid structure that's actively committing personnel to looking at what you're doing or staging clandestine interventions or acting as an agent provocateur. It's not right that they collect so much "metadata", but they're not sitting there waiting for you to do something wrong so they can drop the hammer on you either. There's no sword of Damocles hanging over your head in your daily life, at least not from them.

The only time, other than filing my taxes, that I really interact with agents of the federal government is when I fly. Yes, it's annoying, and it used to be very invasive. Last couple of times I've flown though, they've actually made it easier to go through security. No shoes off. No belt off unless the buckle is huge. No jacket off unless the metal clasps are too big. No pulling the laptop out of the carry-on. No pulling the liquids in the quart bag out of the carry-on. It's like someone finally decided that the open-everything-up security that they'd been doing wasn't really accomplishing anything other than making a lot of people pissed off, so they rolled it back to close to pre-9/11 levels.

Re:Trust!

[gstoddart]

You needn't have a totalitarian dictatorship to create a situation where you can bullshit and oppress most of the population.

And it astounds me that within my lifetime America has gone from "give me liberty or give me death" to tacitly accepting the equivalent of "papers please, comrade".

And they seem to accept is as a good idea, and completely miss why all of this secret security with absolute power is a really bad idea.

Re:Trust!

You could be living in China and breathing that wonderful smog, not to mention the total lack of any rights.
How about a war torn country with a nice cup of suicide bombings? Afghanistan, Libya, Syria, Somalia, Bosnia, Serbia, Croatia,
Hell maybe decapitation by drug lords is more your thing? How's Mexico for ya?
Lets head down to the carribbean! Haiti!
Or maybe you'd like to get gang raped in India? Maybe stoned to death by your own fucking family?
Mass killings, pillage and rape, disease, healthcare HA!, South Africa, Sierra Leone, Mozambique, Etheopia , hell just about every fkn country in Africa
And lets not forget North Korea.

So yeah, maybe your dumbass should think a bit more while you're having that beer and watching Monday night football while the wife is driving around in her nice big old SUV getting her nails done...oh noes, how fkn horrible we have it here in the US. People like you are so fucking pathetic and ignorant.

Re:Trust!

[LordLimecat]

Except for the part where the "secret police" you're talking about doesnt lock people up without charges, or for what htey say: we still have habeas corpus, the 4th amendment, the first amendment, and the ability to vote.

Slashdot is really obnoxious because it generally gets me to take awkward positions: Im pretty pissed about the NSA surveillance, but here someone has made such an absurd allegation that I have to fall back to defending the US.

Seriously you have to be phenomenally ignorant to compare the USSR and the US.

Re:Trust!

[LordLimecat]

We also have a democracy with multiparty voting, where 3rd party candidates dont tend to mysteriously disappear.

Seriously who is writing these posts? Are you all fresh out of high school or something?

Re:Trust!

[LordLimecat]

UK, Germany, Italy, Greece: Free speech in the gutter, you can literally be jailed for your political speech on Twitter.
China, Russia, North Korea, Vietnam: You can literally be jailed for asking for a mult-party election.
Austrailia: Thinks government controlled internet censor lists are a fantastic idea
Pretty much anywhere in South America, for myriad reasons.
Pretty much anywhere in Southeast asia (for myriad reasons)
Pretty much anywhere in Africa (for myriad reasons)

Re:Trust!

[jelIomizer]

And be honest with yourself, the united states doesn't have its gaze on you.

Probably not. But rather, they will have their gaze on anyone who does something (no matter what it is) that they don't like, and they'll use the NSA's massive amount of information to try to harass or help convict that person.

This situation is hugely dangerous for any country that claims to be free, let alone 'the land of the free and the home of the brave.'

The only time, other than filing my taxes, that I really interact with agents of the federal government is when I fly. Yes, it's annoying, and it used to be very invasive. Last couple of times I've flown though, they've actually made it easier to go through security. No shoes off. No belt off unless the buckle is huge. No jacket off unless the metal clasps are too big. No pulling the laptop out of the carry-on. No pulling the liquids in the quart bag out of the carry-on. It's like someone finally decided that the open-everything-up security that they'd been doing wasn't really accomplishing anything other than making a lot of people pissed off, so they rolled it back to close to pre-9/11 levels.

The government cannot be searching everyone at airports; that's absolutely unconstitutional. The TSA can be one of two things: An egregious violation of the constitution, or nonexistent. It's not merely "annoying."

Re:Trust!

[rhodium_mir]

You can't spell oneiromancy without Roman.

Re:Trust!

[Opportunist]

I don't oppose Obama (not that I cared about him or whether or not it's racist, he just doesn't matter). I oppose the whole friggin' system that is in place.

The whole shit is FUBAR. Sadly I have no solution to the problem that doesn't end up with a lot of people dead and the rest wondering what good it did because the shit doesn't change, only the figureheads.

Re:Trust!

[Opportunist]

And people ask me why I avoid the US now like I avoided the USSR in the last century...

Re:Trust!

'the ME' = the Middle East. Doh!

Re:Trust!

[Opportunist]

Patience, towarish, patience. Just as you can't boil the frog by turning up the heat to the max, you can't build a socialist paradise over night. You have to take small steps.

So far you're only locking up foreign people without charges. Give it time, you can't eliminate 2 centuries of American values in just a decade. Especially now that the whole "fear the terrorist" hype doesn't really work anymore to cow people into handing over constitutional rights for alleged safety.

Maybe a bomb or two will do that. Give it time. It's still a work in progress, but you have to admit, what they accomplished in just over a decade is impressive. Even comrade Stalin needed more time, and he sure as hell was not the subtle kind of guy.

Re:Trust!

[geminidomino]

When people fear the government, you have tyranny. When the government fears the people, you have tyranny."

Was that a typo? The second "tyranny" should be "liberty."

When government fears the people, there is liberty. When the people fear the government, there is tyranny - Thomas Jefferson

Re:Trust!

[geminidomino]

Except for the part where the "secret police" you're talking about doesnt lock people up without charges, or for what htey say: we still have habeas corpus, the 4th amendment, the first amendment, and the ability to vote.

Well, yeah. Unless you're a suspected "terrorist", at least. For that, we have Gitmo and extrajudical execution via drone strike.

Re:Trust!

[LordLimecat]

Gitmo is only used when you take up arms against the US. Ive got some news for you: last time folks did that (the civil war) we shot them.

Re:Trust!

[LordLimecat]

So far you're only locking up foreign people without charges

SURPRISE! When you violate the Geneva convention by taking up arms against a nation without donning a uniform or fighting under an identifiable flag, you sacrifice most of its protections.

And when you take up arms against the US, you go from "US citizen with the right to trial in civilian court" to "foreign combatant subject to, at best, military tribunal".

Thats sort of how war works. Imagine the chaos if we had to try all WW2 POWs in federal court.

Re:Trust!

What would mysteriously disappearing 3rd party candidates do for the US government? The third parties are already deemphasized and mocked enough to make them completely meaningless. Is mysterious disappearances the magical line a government can't overstep before you stop "rah-rah" it?

It sounds like you're saying, "We're nothing at all like the USSR because our flag has less red on it!" Are you really so dense?

Re:Trust!

[HiThere]

No. The real problem is the government needs to be EXTREMELY bad before overthrowing it will benefit the populace. The USSR wasn't that bad. Note that it was overthrown from within. The US isn't even close to that bad. Hell, most decades the Roman government wasn't that bad, though it was enough worse than any major current government that it was occasionally reasonable to try a rebellion, despite the chance of being nailed to a post or burnt alive (while tied to a post) for the entertainment of the crowds.

You don't even need to study history to see why overthowing even a pretty bad government can be a bad idea. Consider the results of allowing a Pot Pol into power. Look into the recent conditions in Somalia. (N.B.: Pot Pol is an example of a government that was bad enough that it made sense to overthrow it, but it's also the result of overthrowing the previous government.)

Re:Trust!

[HiThere]

It's not that the government demphasizes and mocks them, it's that the voting system is designed in a way that automatically marginalizes them. But as you say, there's no reason to make the candidates disappear. They are guaranteed to be irrelevant. A plurality wins voting system is the worst voting system except for the single party voting systems. For this reason I support either Instant Runoff Voting or Condorcet Voting. Condorcet is theoretically slightly superior, but it's harder to explain to people, and for that reason probably slightly inferior.

Re:Trust!

That must be why there are so many third party representatives in Congress and at presidential debates.

Re:Trust!

[HiThere]

There is not, and never has existed, a Free Market. To the extent that people believe that it exists they have definitely been sold a lie. You are right, however, that the privatization of bureaucracy is no benefit, and *is* an increased expense.

P.S.: The closest that I am aware of to a Free Market existed in classical Greece, of which Darius the Persian (I believe it was) said "Who are these people who have special places where they go to cheat each other?".

Re:Trust!

[HiThere]

A big part of the reason is the centralization of control of the media. ALL media. Blogs are still reasonably exhempt, but they also don't tend to lead to effective action. Local newspapers have been bought up by chains, and now most of their stories are the same, and that same is whatever the publisher wants. (There are still some extremely local papers, some of which are effective. But there's no independent news at that national level, or even at the large state level. Possibly New Hampshire or Rhode Island has some independent coverage of state-wide news.)

Note that this is a large contrast to the case during the VietNam war, when there were many large independent news agencies. Those have all been bought up by other groups, however, and have been kept going so that no new replacements have appeared.

Re:Trust!

[HiThere]

Have they reinstated habeus corpus?
http://en.wikipedia.org/wiki/H...

In particular:

Following the 1 December 2011 vote by the United States Senate to reject an NDAA amendment proscribing the indefinite detention of U.S. citizens, the ACLU has argued that the legitimacy of Habeas Corpus is threatened: "The Senate voted 38-60 to reject an important amendment [that] would have removed harmful provisions authorizing the U.S. military to pick up and imprison without charge or trial civilians, including American citizens, anywhere in the world... We're disappointed that, despite robust opposition to the harmful detention legislation from virtually the entire national security leadership of the government, the Senate said 'no' to the Udall amendment and 'yes' to indefinite detention without charge or trial."[48] The New York Times has stated that the vote leaves the constitutional rights of U.S. citizens "ambiguous," with some senators including Carl Levin and Lindsey Graham arguing that the Supreme Court had already approved holding Americans as enemy combatants, and other senators, including Dianne Feinstein and Richard Durbin, asserting the opposite.

Re:Trust!

[Opportunist]

Then why don't you take them to De Hague, where there is a court for such issues?

Just because the US lock someone up doesn't turn that person magically in an "illegal combatant", as the history of people locked up there has shown.

Re:Trust!

When the government fears the people, you have tyranny."

I actually like the typo better. You have to keep tyrants at bay.

It could be interpreted to mean nothing changes either way too. Government is just people, after all.

You are either doing the fucking or being fucked, when it comes to government.

Re:Trust!

We also have a democracy with multiparty voting, where 3rd party candidates dont tend to mysteriously disappear.

Why yes, you can vote for pre-selected millionaire A or already-chosen millionaire B, or even, if you are daring,
priorly-vetted millionaire C. What freedom!

Seriously who is writing these posts? Are you all fresh out of high school or something?

Seriously yourself. You didn't answer any issue that was raised. You did not deny or refute anything that was said.

What you did do was attack the person, and not their argument.

the average American has been sold a lie - that a society's economic system is equivalent to its system of government

It sounds like you are just the average American, and proud of it.

Re:Trust!

Except for the part where the "secret police" you're talking about doesnt lock people up without charges, or for what htey say: we still have habeas corpus, the 4th amendment, the first amendment, and the ability to vote.

What nonsense. You don't have to be locked up, just locked out. There is no difference.

Stone walls do not a prison make.

You should be more worried that you accept "secret police" as normal and acceptable, instead of foaming at the mouth delusionally.

When your neighbor burns down your house, I expect you to scream to everyone that the driveway is still going strong, just a minor setback, he's still a good guy, your best buddy.

Sure, he just bought a flamethrower. Sure, he was just testing it.

Why hassle him, if he thinks your house is a good test location? What a swell neighbor you are!

Sure, you live out in nowhere and he is the only neighbor within 20 miles, but it was just an accident, it was just God's will.

What more do you need?

I am not troubled whether what you say is true or not. I am more troubled you trust your "leaders" are looking out for you.

They aren't necessarily out to get you, but you really think they are doing anything for your benefit?

You really think you made the cut, that you are anywhere on their radar of "things that actually matter"?

Re:Trust!

UK, Germany, Italy, Greece: Free speech in the gutter, you can literally be jailed for your political speech on Twitter.
China, Russia, North Korea, Vietnam: You can literally be jailed for asking for a mult-party election.
Austrailia: Thinks government controlled internet censor lists are a fantastic idea
Pretty much anywhere in South America, for myriad reasons.
Pretty much anywhere in Southeast asia (for myriad reasons)
Pretty much anywhere in Africa (for myriad reasons)

A wonderful list you have compiled, of how all governments (d)evolve.

And yet, you think "yours" is somehow different, because a piece of paper?

Because the genes of your folks are stronger?

Because gosh darnit, us 'mericans are just that much better people than everyone else?

You have made a list of human nature. And you still think your humans are different?

Re:Trust!

[geminidomino]

Then it's not a paraphrase. :)

Re:Trust!

[LordLimecat]

The Hague is not for POWs, its for war criminals (ie, someone has committed crimes against humanity). You dont take soldiers, terrorists, or other combatants there-- you capture them in a POW camp or you kill them.

Re:Trust!

[Opportunist]

It can't be a POW camp. I mean, even the Germans in WW2 allowed Red Cross visits to POW camps...

Re:Trust!

[LordLimecat]

The Nazis performed experiments on their POWs, as I recall. Unless Im mistaken thats one of the things we put them on trial at Nuremburg for.

Re:Trust!

[LordLimecat]

Because we have a fairly strong system of government that tends to resist power grabs, and a culture that is heavily suspicious of government by default.

Re:Trust!

[Opportunist]

They performed experiments on concentration camp inmates. Don't confuse them with POW camps, they were a VERY different matter.

Weasel words

The UPS statement is full of disclaimers like 'unless required by law' and 'not aware of' type statements. Its pretty clear that they're spinning it hard to avoid scrutiny.

Re:Weasel words

[NoNonAlphaCharsHere]

"UPS is not aware of any court orders from the NSA seeking to inspect technology-related shipments."

Because we know the NSA never does anything without a valid court order.

Re:Weasel words

[NotDrWho]

Don't forget "It's our standard policy not to" which is NOT the same as "We didn't" of course.

Re:Weasel words

[mspohr]

Or, they could have received a National Security Letter which requires them to deny the existence of the letter and its contents.

Re:Weasel words

[nabsltd]

Or, they could have received a National Security Letter which requires them to deny the existence of the letter and its contents.

I really want one of these companies to stand up and say "we got an NSL, so we can't tell you anything". Seriously, what would happen if Google did this? Does anybody really think that Larry Page would be sent to Gitmo?

Re:Weasel words

[mspohr]

They do threaten to send you to jail if you disclose anything about an NSL (even its existence).
I don't think anyone wants to take a chance with their life and liberty to test them and find out.
Best to just go along and cooperate with the man.
Just look at Snowden. On the run. Trapped in Russia. He disclosed the existence of warrant-less wiretapping and other dirty tricks.

Re:Weasel words

[maliqua]

what else could they say. the only scenarios that exist are
A) they did do it as required by law, and are under gag order to not disclose that it happened
B) they didn't do it, but would if required by law.

That's it, they basically just said "we adhere to the law" nothing more nothing less.

Re:Weasel words

[Darinbob]

But who do they send to jail? The NSA does not show the security letter to every person at the company. It may not even show it to the CEO. The more people it's shown to the less secure it becomes. But if there's some significant activity that's going to happen then a lot of people have to know about it. You can not just have the foreman say "ignore the strange people who are opening the boxes against company policy" because questions will be asked. If anything unusual is happening from business-as-usual then someone will notice.

So if the NSA were doing things like this (it is still just an allegation) then it seems to me to be unlikely to be done through a shipping company.

Re:Weasel words

[Darinbob]

Have you stopped beating your wife? That's similar to a lot of these types of questions; you get back a legal answer and someone is going to say "they didn't answer the specific question that was asked with a simple yes or no, so they must be hiding something." But that sort of answer is exactly the answer you will get if they were not cooperating with the NSA in any way. The problem comes with assuming the party must be guilty and the questions are just fishing for confirmation of guilt.

Re:Weasel words

[mspohr]

Much less exposure to just re-route the shipping to the NSA than to have NSA people at the manufacturers warehouse opening boxes.
NSLetters are addressed to the man in charge (CEO), he can't disclose to anyone without permission (i.e. I need to have Fred patch in your backdoor).

Re:Weasel words

[NotDrWho]

UPS isn't stupid. If they really wanted to deny something, they would have used strong and clear language to do so.

What kind of spyware

So, what kind of spyware could be installed on an IOS router? Does the NSA write their own bootloader?

Re:What kind of spyware

:: sigh ::

God almighty this place has gone down hill.

Re:What kind of spyware

[sjames]

All sorts of things. A simple example that comes to mind is a patch to add an invisible extra user account with enable privileges.

Re:What kind of spyware

no they are too dumb, plenty of dumb people there. They couldn't write "hello world". *rolls eyes*

Can NSA serve National Security Letters?

[Gibgezr]

Excuse my ignorance, I am not from the U.S., but I thought only the F.B.I. could serve National Security Letters. Can the NSA also serve them?

Re:Can NSA serve National Security Letters?

There are a plethora of weird "letters" that can be issued without court oversight, and others where the court is kept confidential. Look up the weirdness of the USa "Patriot Act", which was one of the least patriotic Congressional violations of the constitution in my lifetime.

Re:Can NSA serve National Security Letters?

[Opportunist]

That information is classified.

Re:Can NSA serve National Security Letters?

[Cassini2]

The NSA rarely admits to doing anything. The other agencies are directed to cover up their involvement and how they got their information. For example: Exclusive: U.S. directs agents to cover up program used to investigate Americans.

Re:Can NSA serve National Security Letters?

It is all one big happy "Department of Homeland Security".

so one section can easily ask the other.

And nothing prevents them from misrepresenting themselves... After all, they are with the government, and "are there to help you".

Re:Can NSA serve National Security Letters?

That information is classified.

The fact that this data is classifed is also classifed and now that you have become a traitor to the nation for revealing that fact to the /. reading public expect drone strike in 10, 9, 8 ... Oh wait ... Dang! I did it too didn't I? ... *sigh* expecting drone strike on self in 10, 9, 8 ...

Re:Can NSA serve National Security Letters?

[NotDrWho]

I thought only the F.B.I. could serve National Security Letters. Can the NSA also serve them?

Even if they couldn't (and they won't say whether this is the case or nor), they could easily get the FBI to do it for them.

We the public are never going to know either say (without another heroic whistleblower), since even the process is a secret. Maybe we can find out the truth in about 75 years when they declassify it.

Re:Can NSA serve National Security Letters?

[pslytely+psycho]

Damn you, spoofing my IP address like that.
Fortunately I was at the grocery store when the drone struck, so no loss of life. But damn, did it leave a smoking hole in the ground where my house was.
I'm really going to miss my cat.....

Re:Can NSA serve National Security Letters?

[meta-monkey]

It would be really interesting if, in the yet unrevealed Snowden documents, there are lists of specific Americans targeted for spying, much in the way it was revealed they were listening in on Merkel's cell phone.

Re:Can NSA serve National Security Letters?

No they can't. But you are missing the point of this NSA circlejerk.

Re:Can NSA serve National Security Letters?

[Darinbob]

That information requires ultraviolet security clearance. You now have one less clone. (and so do I)

Re:Can NSA serve National Security Letters?

[Opportunist]

I stopped playing Paranoia.

It started to feel too close to home.

Secret court, secret law, NSL, ...

> unless it is required to do so by law

And there is your problem.

UPS had no knowledge

Of course - only the mailroom dude got the letter.

Re: UPS had no knowledge

[Motard]

Isn't UPS pretty much made up entirely of mailroom dudes?

Re:wow

[larry+bagina]

Too many secrets.

I watched sneakers a couple days ago (it's on netflix) and nearly shit my pants at the end when Robert Redford reveals the magic decryptor box isn't for spying on the russians, it's "for spying on us". (Of course, they meant the NSA was spying on the FBI/CIA but still... future predicted).

Weaponized products don't sell

When you weaponize U.S. technology products to the extent that the NSA has, don't be surprised when no one wants to buy those products in the future.

What foreign CEO or government official wants U.S. technology in control of their banking industry? Their communications infrastructure? Their manufacuring base? Their electrical power and distribution network?

Can you imagine the U.S. response if the critical infrastructure items such as those listed above were found out to be backdoor and controllable at will by the Russians? Chinese? Indians?

The U.S. has a serious reputation problem right now. We need to stop this nonsense immediately if we expect our tech industry to survive.

It takes a second to destroy a reputation - it takes years, sometimes decades to build it back.

Re:Weaponized products don't sell

[jythie]

And of course they are blaming the economic damage on getting caught as opposed to, well, what they were doing.

Re:Weaponized products don't sell

Can you imagine the U.S. response if the critical infrastructure items such as those listed above were found out to be backdoor and controllable at will by the Russians? Chinese? Indians?

You mean the announcement the US made in the 90's about telecomm stuff made in china?

Possibly...

[the_skywise]

"Perhaps they're bound by a National Security Letter?"

Maybe. It could also be exactly what they say - When presented by an actual warrant to intercept items (EG for goods purchased with stolen credit cards or contraband) they follow it. That WOULD include national security incidents too but, as they say "UPS is not aware of any court orders from the NSA seeking to inspect technology-related shipments" and I'd think a gag order would prevent them from affirming or denying the issue.

Re:Possibly...

That's a good point. Gag orders forbid someone from talking about it -- at all. Not even confirming or denying the existence of any part of it.

Re:Possibly...

[Therefore+I+am]

But the clumsy method of shipping it to Virginia and then on to final destination seems to indicate this was only an occasional occurrence. If there were lots of them they would have been altered/enhanced on Cisco premises before final packaging.

Re:Possibly...

Could there be a distinguishable difference between being aware of a court order and of being aware of receipt of a NSL at least in the sense of providing a response that leads one to believe they are denying the claim.

Re:Possibly...

there is a motive for Cisco to not alter them on Cisco premises as it incriminates them a lot more than if they were complying with the gag order part of a NSL.

Re:Possibly...

[grahamm]

In which case talking about it should never be allowed as refusing to either confirm or deny when previously having denied would strongly indicate that a gagging order had been issued.

Re:Possibly...

[Hotawa+Hawk-eye]

That wouldn't matter. If Cisco had modified the devices on premises, Congress would just give them a "get out of jail free" (or really a "STAY out of jail free") card like they did the telecoms.

Re:Possibly...

[NotSanguine]

""UPS is not aware of any court orders from the NSA seeking to inspect technology-related shipments" [Emphasis Mine]

The National Security Agency (NSA) is a U.S. intelligence agency responsible for providing the United States government with encrypted communications (information assurance) and the reading of encrypted communications (signals intelligence) of other nations.

The NSA is not and AFAIK, does not contain within it, any Federal Tribunals.

As such, the NSA cannot issue a court order. One might assume that other mechanisms can be used to coerce both individuals and/or corporations to submit to the will of the NSA (including court orders from actual courts, such as the FISA court.

So, UPS' statement says exactly nothing WRT whether the NSA has coerced (or just asked) to intercept their packages. Just sayin'.

Re:Possibly...

[Darinbob]

And "the UPS" would in actuality not be aware of NSA court orders. That sort of court order would only go to a tiny selection of employees who are most directly related to the shipments, and likely it wouldn't even be known about amongst most of the executives. I suspect even the CEO wouldn't know (a list of all warrants isn't the sort of thing that shows up on executive summaries, especially if company policy is to comply with legal warrants and the legal warrant says to not tell anyone about the warrant).

yeah, whatever

[phillk6751]

Just like Google, Microsoft, Apple, etc, etc. Nobody wants to fess up, but some appear to be "trying" to step up to the NSA now.

I wonder if they (private companies) secretly allowed it(NSA infiltration) to happen under fear of the NSA using whatever power they have to get the companies shut down if they didn't follow suit. Now that the public has been informed, the companies are using all the plausible deniability they can to prevent lawsuits. In the case of the UPS, I don't think there's any plausible deniability to use...It's not a software system that the NSA could exploit per-se.

Or is it the case these companies really are just as corrupt as the NSA?

I really don't see any other alternative, unless you want to argue that Snowdens docs were fake (Highly unlikely).

Re:yeah, whatever

[nabsltd]

I wonder if they (private companies) secretly allowed it(NSA infiltration) to happen under fear of the NSA using whatever power they have to get the companies shut down if they didn't follow suit.

Companies like Microsoft have as much power over the US government as the government has over them.

Microsoft could firewall off access to Windows Update and Windows Activation servers for all US government IP addresses. I'm sure there is something in the Microsoft EULA that would allow them to do this legally. Sure, the government could work around the issue, but the reality is that it would be a lot less work just to drop whatever pressure they were putting on Microsoft.

Re:yeah, whatever

The person receiving the NSL wouldn't be the same person as the one capable of disabling access to those services. The NSL would prevent them from talking to each other about the subject.

Re:yeah, whatever

[Dereck1701]

"the NSA using whatever power they have to get the companies shut down if they didn't follow suit."

Kind of reminds me of Qwest, the one major communications provider to tell the NSA to take a hike when they started their domestic spying program. Not long after they were loosing contracts left and right and under investigation by the SEC.

Re:yeah, whatever

That sword cuts both ways. It would be easier for the NSA not to bother, but it would also be easier for Microsoft not to resist. The difference is that Microsoft doesn't pay much of a cost for playing ball, while the intelligence community has a reputation for being vengeful (remember the Lavabit debacle).

Cisco as a Victim

Don't buy the PR. The ONLY thing identifiable in those pictures was the Cisco logo on a shipping box. What does GG get for product placement as victim?

Are you kidding me?

If an IT something-or-other tell me they are shipping me a configured router or switch or whatever, do I check to see how many layers of tape are sealing the box? No. No one does. We accept because anything else is inconvenient. A UPS driver isn't going to notice if sone of his or her packages has more sealing tape than normal. And, since most of these packages go through some sort of distributionn centers that are cavernously huge, who knows what happens inside that structure. Am I paranoid? Maybe. Is it still true? Maybe...

2 intrepretations

[jago25_98]

The only thing in the statement of possible value is that UPS don't break security for just anyone. Well, isn't that expected... law and part of conditions of posting? If not, then there is possibility of interpreting this statement at face value.

However, if secure postage in terms of the law is guarenteed anyway then this statement says _nothing_. And if a statement says nothing then the purpose is clear - they are desperately trying to sub communicate under a gag order. Trying hard to highlight the problem to those who can read between the lines to bring attention to the economic damage gag orders are having to the economy.

I don't know if UPS ensure any security of packages so I don't know which it is - maybe you do.

Physical interdiction of trucks?

[swb]

Would the NSA be bold enough to physically interdict trucks? Guys with badges and guns tell you they need something in your truck, tell you you never saw them and by the way, driver Fred, you did a nice job on that new downstairs bathroom, tile job looks real professional, I'll bet your wife and daughter really like how nice it is there.

Or is it even remotely practical to identify specific package/truck combinations?

Re:Physical interdiction of trucks?

[oodaloop]

Or is it even remotely practical to identify specific package/truck combinations?

Maybe. But also know who is driving ahead of time and know their address, relatives, etc? Less likely.

Re:Physical interdiction of trucks?

They probably COULD identify a specific package/truck combination - UPS and Fedex both have tracking numbers on all the packages and know which trucks are carrying which packages, as they're scanned any time they enter or leave a facility. Intercepting them would be a different beast entirely, though. The NSA would need to know where the package is going, which would require a FISA court rubberstamp and an issued NSL to keep people quiet. By the time they get both of those things, it would be too late.

There'd be no reason to do it anyway - they could simply send people to the UPS node closest to the end destination of the package, intercept it there, and ship it off to their facilities for "modification".

Re:Physical interdiction of trucks?

[Lemmeoutada+Collecti]

UPS drivers have assigned routes that they drive, so barring vacation and sick time any given address is serviced by the same driver every day. Knowing which truck is similarly easy, since all that would be needed is to track the first few stops to get the truck number - and if required, the driver of the day's name. Knowing the day is a function of UPS' own tracking systems, it will tell you when a package is out for delivery.

So here is a theoretical setup:

1) Identify the route of the target - the company who ordered the part
2) Order a delivery scheduled for the same day to a company earlier in the route
3) Watch the second company, identify the truck number and driver
4) Run a background on the driver to find out family, friends, brand of toilet paper
5) Meet driver en route and perform the stop as above

Re:Physical interdiction of trucks?

[Hotawa+Hawk-eye]

Why interdict the trucks? The requirements to be a UPS driver are likely much lower than the requirements to be an NSA agent. Have an agent get hired by UPS as a driver, then have that driver "specially handle" packages headed to certain locations. Unless the package is a rush delivery, is a recipient really going to notice that it took an extra couple hours or even an extra day to travel between Cisco's manufacturing or shipping location and their home or office?

Then just because one UPS employee knows that the NSA intercepted packages (because they did it themselves) wouldn't mean the UPS organization as a whole knows that the NSA intercepted packages. UPS could truthfully state that the organization had no knowledge of such an activity.

Re:Physical interdiction of trucks?

[pslytely+psycho]

Actually, that wouldn't be that hard. Trucks are routinely inspected at weigh stations, and in 8 years, I had my seals broken and my loads inspected against my paperwork and re-sealed.
It is only a small step to confiscate the load from there.

"Or is it even remotely practical to identify specific package/truck combinations?"

Absolutely. Most load information is in computers on both sides, shipping and receiving, as well as the drayage when it goes local from long haul. The trucking firm, truck number, trailer number and sometimes driver information is all there. The trucks are electronically tracked by dispatch, who in most cases (at least for company owned or leased trucks) will know the location at any given time.
So, actually it is very easy to track.

Re:Physical interdiction of trucks?

[nabsltd]

Unless the package is a rush delivery, is a recipient really going to notice that it took an extra couple hours or even an extra day to travel between Cisco's manufacturing or shipping location and their home or office?

An extra hour, no. An extra day, most definitely.

I get an e-mail the day before any UPS package is going to be delivered to my house. If it doesn't show up the next day, I want to know why. I'm just an individual, not a business. If you are a business, UPS offers a lot more features like that.

Re:Physical interdiction of trucks?

[Darinbob]

How can you identify specific package/truck combinations when we don't even have any of the actual routers that were alleged to have been modified? I'd say prove a crime was committed first before deciding the guilt of the accomplices.

Interdicts, the lot of them.

I'll still not be trusting anything or anyone. Not because I have something to hide, but because of principle of all this sneakiness being bullshit.
Being sneaky is not good security. The fact that your possible "methods" of finding da terrorists being hidden hasn't worked already, outside of maybe finding some retard from 4chan that is going to try mess with football again, says much.

But as a bigger problem, so many people are going to be turned off by this.
I'm sure one group already outright said they are never buying Cisco hardware again because of this. Thanks NSA, you damaged Cisco and your own economy. (forgot who that was again though)
And it is likely only going to get worse.

Funny how there was all this crap going around about spyware in Chinese hardware. I wonder if they were trying to make everyone hate them so they'd eventually get "permission" for global spying (aka the project that already existed long before)
Was there ever even any proof of that? I know it is much harder to both hide and find hardware spying devices than software counterparts.

Looks like some new packaging is needed.

[jcochran]

Seems to me that unless the law prohibits it, tech companies will need to start using tamper evident packaging. Then it won't matter if the NSA, CIA, FBI or other 3 letter agencies intercept the product during shipping. Perhaps glitter embedded in varnish painted over critical screws/fasteners, then photographed from various angles and posted to a web page, or emailed to the customer prior to shipping. Then if the item is intercepted the 3 letter agency will have a rather ... difficult ... time bypassing those seals such that careful examination upon receipt against the photographs received earlier won't reveal any tampering.

Re:Looks like some new packaging is needed.

In (nearly?) every country, customs authorities reserve the right to open any package they deem suspicious.

Is that broken tamperproof tape the result of a 3 letter agency or just the work of a customs agent because the drug sniffing dog sneezed at it?

Re:Looks like some new packaging is needed.

[jcochran]

Ah, but the tamper evident seals are on the actual item. Not the package. And if customs wants to look at the item, they can easily retrieve the photographs hosted on the manufacture's site. And if they match the tamper evident, randomized seal, then drug hiding is ... not very likely ... unless of course, you wish to believe that the drugs were stashed at the time of manufacture. The reason for sending the photograph to the customer prior to shipping is to prevent a TLA from breaking the seal, tampering, replacing the seal, then forcing the manufacturer to change their web site with a new set of photographs of the new seals.

Re:Looks like some new packaging is needed.

Physical modification of the device may not be necessary. Perhaps all one has to do is power up and connect to its console. Assume multiple backdoors are "built in" to all large routers and the NSA interception process is used to associate the specific device with the customer. During the process, perhaps optional spy "features" could be activated by setting "unused" bits in flash intended to keep information about the local device, such as its serial number, on-time, fan speed, etc. The backdoors and associations could remain intact even if the device is factory reset, reloaded with signed firmware and inspected for physical modification.

Like UPS managment knows what their employees do?

NSA hires on people to work at UPS, NSA gets access. Two easy steps. That's exactly what Snowden did in his jobs.

"Does not voluntarily"

[nurb432]

Odd, and careful choice of words there guys.

National Security Letter

[plazman30]

Of course they're gagged by a National Security Letter. This whole process is disgusting.

Re:National Security Letter

This whole process is disgusting.

Yes, it is. Let's see if it has any effect on the elections. Since it won't, let's just move on to something else...

Hey! How 'bout them Cubs, eh?

Re:National Security Letter

[uncqual]

No, it won't have any effect on elections. Libertarian candidates have no chance in a world where people care mostly that their unemployment checks are being extended or that they are getting a rebate on their purchase of an electric car or that they get the EIC or that their kid is being treated like a special snowflake by (incompetent) public schools.

Government in the U.S. has been taking freedom away for a long time, sometimes even in the name of "preserving freedom". People who have accepted, and even supported, the government taking money from one to give to another "who needs it more" long ago gave up their freedom and likely don't even understand the concept of freedom anymore. Sure, when the government does something they don't like, they will scream "freedom" and "rights" (the latter often incorrectly), but they will continue to encourage taking of rights of others when it's to their benefit. Most of at least the last two generations don't recognize freedom when they see it as the heat is slowly turned up on the "central control" pot in which voters are coddled (soon to be boiled).

Go Cubs.

Next time try this:

[mvw]

"Stories on rearranged routing yielded great overstatement today. For UPS customers keep invaluable. No government necessitated said law!"

Ship Cisco gear from trustworthy overseas locns

[decaffeinated]

Cisco could make life miserable for the NSA by warehousing its gear in countries that won't cooperate with the US. Non-US orders could be filled from the closest such warehouse.

Non-cooperating countries that spring to mind include Russia (for European orders), China (for Asia), Venezuela (for S. America) and maybe Palestine (for the Middle East and Africa). I don't believe there are any N. American countries that the US can't coerce, so maybe the affected countries should use other network vendors.

The downside is that delivery times for overseas orders might become quite long :-) and/or spendy.

Re:Ship Cisco gear from trustworthy overseas locns

[dj245]

Cisco could make life miserable for the NSA by warehousing its gear in countries that won't cooperate with the US. Non-US orders could be filled from the closest such warehouse.

Non-cooperating countries that spring to mind include Russia (for European orders), China (for Asia), Venezuela (for S. America) and maybe Palestine (for the Middle East and Africa). I don't believe there are any N. American countries that the US can't coerce, so maybe the affected countries should use other network vendors.

The downside is that delivery times for overseas orders might become quite long :-) and/or spendy.

Most stable countries which don't cooperate with the US are also countries in which relatively small bribes will get you into any warehouse. This would actually be worse. In the US strange people in warehouses would eventually get noticed by somebody- maybe a dockworker, inventory manager, or a forklift operator would start asking questions. In Russia, China, Venezuela, you just pay off everybody who needs paying off.

Geezus, UPS is flat out lying

In a follow-up e-mail, Ross said UPS had no knowledge of similar orders from the FBI, CIA or any other federal agency.

This just beggars belief. It's well known that all US couriers have security divisions that work with federal and state government agencies. They routinely help with investigations of suspicious packages containing drugs, counterfeit products, explosive materials, firearms, etc.

Here's what one UPS executive, customs and brokerage manager Norman T. Schenk, had to say in a Congressional hearing in 2000 on how to stop illegal drugs from being delivered by mail:

Our partnership with the Customs Service has dramatically
curtailed the flow of contraband. Today, Mr. Chairman, we urge
you to ensure that the Customs Service has the 21st century
tools it needs to maintain the extraordinary growth of commerce
in this new millennium. Last year, the United States received
21 million commercial shipments. By 2004, that number is
projected to climb to 50 million. Customs simply cannot inspect
each shipment by hand.
        Mr. Chairman, full funding of the new automation system
known as ACE, the Automated Commercial Environment, is
essential for Customs to keep pace with the growth of commerce.
        No technology can enable the Customs Service to inspect 50
million shipments, but ACE can help Customs leverage the power
of information to target its inspections efficiently and
precisely.
        Our own experience at UPS shows the difference such a
system will make. Our advanced electronic manifesting procedure
provides Customs with extensive information from the
destination of a parcel to a description of its contents on
every package we transport to the United States before it
arrives at a UPS facility. ...
In addition to our work with Customs, UPS conducts an
aggressive and thorough drug interdiction program of our own.
We train delivery drivers to spot packages that may contain
illegal drugs. We screen for suspicious parcels. We routinely
work with the other law enforcement agencies like the FBI, DEA,
and State and local authorities, including providing them
information about any offender we identify.

So they not work with 3 letter federal agencies routinely, but they do it without the prompting of a subpoena, or NLS.

Re:Geezus, UPS is flat out lying

[pslytely+psycho]

"So they not work with 3 letter federal agencies routinely, but they do it without the prompting of a subpoena, or NLS."

If they discover an illegal shipment and DON'T report it, then they become complicit in it's transport.

Who says they were third parties?

[Guppy06]

This all presupposes that Cisco wasn't sending these routers to Fort Meade to begin with, with the NSA re-shipping the routers to their final destination after modification.

We're our own better system.

But people can't be inconvenienced. Treat political parties like sports teams. Fuck yes, Elephant Asses! GO TEAM GO.

Can't be arsed to actually pay attention to what's going on. Can't be arsed to take time out of busy schedules of masturbating to the American Dream to actually track down your politicians and confront them, in person, where they can't ignore you. (Words, people, I'm talking about words, just to be clear.)

Can't be arsed to learn anything about a subject before attaching to a pop-soundbyte about it and defending it to the death.

Fuck us. We have better government than we deserve. Because we yet have the power to mold it as we see fit.

But we won't. Because fuck it all, Game of Thrones is on, man. LOL TITTIES.

What ever happened to not tampering with the mail?

What ever happened to not tampering with the mail and that includes packages as well? I find the lack of respect for privacy disturbing and this sort of thing will come back to bite the government in the ass someday. The government can't expect privacy and secrets to be kept secrets when they themselves have created tools that can be used by anyone to violate government privacy and secrecy. Karma is a bitch.

Vetting National Security Letters

[phorm]

OK, so the NSL is basically a secret letter, that nobody wants to talk about. How do they (recipients) even know if/when they're legit. It's not like there's a 1-800-DIAL-NSA number to check it out.

What's to stop "shady group X" from getting some serious looking guys with suits, sunglasses, and some fake ID's+forms to drop by the local datacentre and say "OK, we're NSA and we need records/access from this group of servers here. Oh, and you can't talk about this to anyone. Delay us and very bad things will happen to your and/or your business"

Re:Vetting National Security Letters

[KingOfBLASH]

Fear of authority is often used by confidence men. The vast majority of people who see a shiny badge or ID that says "FBI" don't take the time to actually verify that it's legit.

Re:Vetting National Security Letters

[phorm]

Yup, known issue. But even more than that, *HOW* do you verify something that's by its very nature a nearly unverifiable secret?

Re:Vetting National Security Letters

On a more local level. Lets say the cops come knocking at your door. (Or even pull you over for a traffic stop.) This has happened to nearly everyone for one reason or another, but how many times have you not trusted their badge and demanded additional proof that they are who they say they are?

Re:Vetting National Security Letters

[ToddInSF]

It's a perfect, "legal" way for government agencies to take advantage of a way to subvert the entire process in the same manner any criminal would.

So... What legal recourse *is* there to this ?

Any lawyers here want to weigh-in ?

And by that I mean real lawyers, not your atypical slashdot pretenders.

Please fix headline

If you're going to use a fancy word like 'interdict', scare quotes and all, you might want to check that it means what you think it means first...

Also Snowden's Fault

[Etherwalk]

And of course they are blaming the economic damage on getting caught as opposed to, well, what they were doing.

Of *course* they are. They're responsible for the consequences--but they also are right, Snowden's whistleblowing was also a cause. He has (with them) done probably billions of dollars of harm to the US tech industry.

Without him, it wouldn't have happened. Without them, it wouldn't have happened. They both did it for motives that they believed justified the cost.

Re:Also Snowden's Fault

[rogoshen1]

No. A person exposing a crime is not responsible for the consequences.

A guy starts driving home from a bar while being completely hammered. Someone sees him swerving on the road and calls the cops. The drunk driver can't go back and sue to the person who reported him for damages stemming from the DUI fine and loss of driving privileges.

Eventually what the NSA would have been found out, and the piper would have to paid. Snowden did us ALL a huge favor by getting this out in the open and hopefully stopped.

Stop covering for these asshats. The damage to the tech industry is on the NSA, and maybe on us for allowing such secretive government agencies to exist in the first place. The founding fathers would have been absolutely aghast at the IDEA of a NSL.

The NSA is an Anti-American Organization

[BrendaEM]

In almost every way The National Security Organization is a lawless, limitless, overreaching mistake, with no applied checks and balanves. The NSA exemplifies the start of what can go wrong.

Re:Guilty... NSL

[mspohr]

Or... they could have received a National Security Letter.
By law, they have to deny the existence of the letter and its contents.
By law, if they have received a NSL, they have to say that they are "not aware of receiving any court orders or subpoenas from the NSA".
See, perfectly clear denial.

UPS != USPS

[mmell]

On the upside, UPS doesn't routinely x-ray packages or have dogs sniffing packages. On the downside, they can't stand against the US Government if they insist on doing so.

My takeaway is that UPS doesn't care what I ship, as long as it doesn't damage their business model. Unfortunately despite their size, they're not big enough to tell the gubberment to go get stuffed. Well, they could - once.

Of course they're aren't going to admit it.....

[i_want_you_to_throw_]

since the NSA also happens to slap gag orders on everyone too. Pointless.

Also Snowden's Fault

[mrchaotica]

That's as stupid as blaming the police for the crime rate because if the police didn't write up the reports the crimes wouldn't be counted.

Intercept, not interdict

[Deadstick]

If they interdicted your router you'd never get it.

Sorry

[PPH]

We have no authority to accept or implement NSLs at this company site. Please deliver them as an e-mail attachment to our government compliance department's (publicly readable) server.

Warrant canary for packages

[lagomorpha2]

A solution to this was invented centuries ago. Seal the packages of network hardware with tamper-proof seals (something involving smart cards that the NSA can't duplicate) from the manufacture. Make it impossible for the NSA to open the package without making the customer aware the package was opened in transit. If a package was opened in transit, return to sender and Cisco engineers can figure out how the NSA is implanting bugs.

OT WARNING

[JazzLad]

You, sir, made my day :)

BINGO!

[marcgvky]

You nailed it. UPS is scott-free. All UPS have secured federal facilities into which all cross-boarder shipment pass and "you don't need to know whats going on in there." Bahhhhh, don't piss on us and call it rain, we know better.

I am Spartacus and I received an NSL!

What everyone were to claim that they had received one. Would they have to arrest and jail everyone?

UPS is to be avoided

UPS really sucks internationally, they have all sorts of customs/direct shipping agreements with other countries and yet sill charges 'their own brokerage fee' depending where you are.

A package came to my door, someone else signed for it, was then told they must pay the customs/brokerage fee(they did).

I didn't want package, asked about refusing it(never opened) and they said you cannot and there is no refund. They were also good enough to say it was not a government/regulatory fee just one they choose to screw people with to make cash(Was $12.50 in my base, which was about the cost to ship from sender).

Re:Guilty... NSL

By law they can't mention it. NSL's cannot compel you to lie.

Re:Guilty... NSL

[Sciath]

For real? I suppose denying knowledge of a government investigation via a NSL isn't lying even though you have knowledge of such an investigation (or request for information). NSLs require lying if a third part inquires about it.