Clinton's Private Email System Gets a Security "F" Rating

Penguinisto writes According to a scan by Qualys, Hillary Clinton's personal e-mail server, which has lately generated more than a little controversy in US political circles, has earned an "F" rating for security from the security vendor. Problems include SSL2 support, a weak signature, and only having support for older TLS protocols, among numerous other problems. Note that there are allegations that the email server was possibly already hacked in 2013. (Note: Mrs. Clinton plans on Giving a press conference to the public today on the issue.)

Give Her the "D" Rating!

Thank you for your interest in joining the Gay Wigger Association of DICE* (GayWAD)! GayWADs worldwide are happy that you'd like to become part of our

constantly enlarging member ship (come sail away 8=====D~)

Unlike other geek fraternities that you might have heard about, GayWAD accepts members of all races, creeds, and colors. We don't even have a technical inclination requirement. As our founders stated in the Annals of GayWAD, Chapter 1: "You don't have to be a geek, as long as you like it Greek." They were, of course, referring to the penis in anus style of sexual relations. Don't despair, as attaining full fabulous lifetime status in GayWAD is easy. The only prerequisites for membership in Gay Wigger Association of DICE* are that you meet all of the following conditions:

1. 1. Ownership of penis, anus, or both

To submit your Gay Wigger Association of DICE* Membership Application, simply do nothing. Congratulations, you're now a GayWAD!

If you require a specific membership number for purposes such as framing, docking, or prestigious inclusion upon your business cards and resume, please take down this number: 69.

Optionally, you may complete the following survey by replying to this post, indicating affirmative responses with an X in each appropriate box:

GayWAD Membership Survey (OPTIONAL)

[ ] I am gay
[ ] I am a wigger
[ ] I have used SLASHDOT VIDEO to find a sex partner

After completion of this optional survey, your Slashdot post ID shall serve as your unique Gay Wigger Association of DICE* membership ID.

Your GayWAD membership kit** is on its way.

* GayWAD is neither affiliated with nor endorsed by DICE.COM.

** GayWAD membership kit no longer includes HIV self-test catheter.

Re:Give Her the "D" Rating!

[penguinoid]

It was actually an "F.U." rating. Did you want those public records... well, [see rating].

Woohoo

1st post!

Re:Woohoo

2nd, the wigger gay guy beat you.

Re:Woohoo

:(

Re:Woohoo

You know, some people have to pay for that.

The Clintons

[koan]

Left office broke and in debt, show arrogance and disregard for established law and regulation, and Bill had a very, very large hand in the housing crisis.

Does anyone really think Hillary is a good choice?

Re:The Clintons

[rockout]

Hey thanks for your off-topic attempt to convince people to not vote for Hilary in 2016. You're really doing your part to keep Slashdot all about news for nerds.

Re:The Clintons

Jeb Bush is against net neutrality.
http://www.theverge.com/2015/3/9/8174733/jeb-bush-net-neutrality-comments-iowa
So here ya go...

Re:The Clintons

[Thanshin]

Do you really think a substantial fraction of the voters care about program, politics or the past?

Hillary is a good choice if want to vote for someone whose name starts with an H because the "H" brings you good luck.

Remember that your vote counts just as much as the vote of the average youtube/facebook/twitter comment writer.

Re:The Clintons

[irrational_design]

Before Obama I thought anyone who didn't have the name of Bush or Clinton would be a good choice (dynasty issues). Apparently it is not enough to elect someone with a different last name than Bush or Clinton. The only sensible choice is to elect someone without a last name. Which one of these would you vote for? President Gaga. President Madonna. President the Artist formerly known as Prince. President Xzibit. President [Your Choice].

Re:The Clintons

[oh_my_080980980]

Did not violate any rules regarding email retention - rules were created after. Did what every other Secretary of State did in regards to email. Bush was president - so no, Hillary is not a bad choice.

Re:The Clintons

[operagost]

Obama wasn't a good choice either. I do not expect the President to be an IT professional, but being the "leader of the free world" he should be at least looking at the "From:" line of emails he receives. We know he uses email, as much was made of integrating his Blackberry with the executive branch email systems when he came into office. Secretary Clinton must have sent emails to the President at some time. How can he claim he didn't realize she wasn't using the executive branch email systems? Security is everyone's responsibility. He should have told her she was out of compliance and refused to correspond with her in that manner.

Re:The Clintons

[g0bshiTe]

Yet cited email as a tertiary reason for firing the African ambassador.

If email truly wasn't that big a deal why was that listed as a reason for his dismissal. I realize you tack on as much as you can to make it stick, but still reflects bad on her now.

Also it's not what every other Secretary of State did, there's a massive difference in setting up a server you own and are the only one to have 24/7 unfettered access vs using a free email provider.

I'm sure that doesn't fit your narrative.

So you are aware there was a memo put out by Pres O. 24 August 2012 concerning use of private email for state business. While I'll agree not illegal and a no-no it does show a disregard for following procedures set out by your superior.

Next up those emails in your inbox purporting member growth work.

Re:The Clintons

[mi]

Did not violate any rules regarding email retention

Yes, she did. It may not have been against the law just yet, but it was certainly against the State Department's own rules already.

The stupid arrangement left communications of the top American diplomat vulnerable — something Russia and other enemies would be happy to exploit on any day, but fine, a President is not supposed to be proficient in communication security.

But we should discard public servants at the first sign of hypocrisy — and that's exactly, what's on display here. And here...

Did what every other Secretary of State did in regards to email.

Citations needed.

Hillary is not a bad choice.

Lovers gonna love.

Re:The Clintons

Wait, did you seriously just suggest that Hillary is not a bad choice when compared to one of the worst presidents in US history?

Re:The Clintons

[Archangel+Michael]

To be fair ... Obama just found out about it via the news media (really!!!)

“The same time everybody else learned it through news reports,” Obama told CBS News.

Next up? "I will get to the bottom of this"

Followed by .. "Not a smidgen of evidence"

And lastly ... "Phony Scandal"

Re:The Clintons

Left office broke and in debt

You're not supposed to leave the office with a lot of tangible assets. Anyone who did that would be immediately nailed for blatant corruption. You're supposed to network and accrue impossible-to-prove favors that turn into money later. I'd say leaving office apparently broke and then making shitloads-times-fuckloads of money later, is a sign of a successful president.

Re:The Clintons

[slugstone]

This is on topic. If she was not considering running then who would care? I do not think it would have made it here if she was not running.

Re:The Clintons

Bush was president - so no, Hillary is not a bad choice.

Wow. Just wow. I didn't think it was possible to have a negative number for an IQ, but you proved me wrong.

The Clintons are capos in the Bush Crime Family. There is literally no difference between any Bush or any Clinton.

Re: The Clintons

This x 100.

Re:The Clintons

[ScentCone]

Did not violate any rules regarding email retention

I'm curious. What is your agenda that you think lying about the situation will improve it? I mean, we know that's the historically Clintonian way of handling things when they get busted, but do you really think it helps when other people do it too, when the lies are so obviously debunked?

The 2009 National Archives regulation requires federal officials to use each agency's established communication archiving systems to retain secured copies of all communication. This federal requirement was very much in effect when she was Secretary of State. She never made arrangements to have her official communications mirrored onto State's servers, and when she left, SHE DID NOT PROVIDE COPIES. She only provided a pile of hardcopies of cherry-picked email printouts once congress discovered that she'd been holding out in violation of the Archives requirement. She got busted, and so she put employees of her family business to the task of pawing through records kept on an unsecure server in her house to decide, with her review, what to pass along. And what a shocker, there are gaps of weeks and months in the records they turned over. This is plain violation of the letter and spirit of the 2009 regulation.

She went out of her way to avoid keeping public records available while being the second person in line to the presidency, and while roaming the world accomplishing almost nothing as SoS, except for soliciting hundreds of millions of dollars for her family's enterprise from people who are the antithesis of what she weakly proclaims are her main ideological grounds for wanting now to be the president. So even if you still think that makes her a good choice, that doesn't change her deliberate violating of federal regulations - and that doesn't even get into whether or not even ONE email on that system included the receipt or transmission of even one classified item - what do you think are the odds that the Secretary of State, in exchanging email with her counterparts overseas, and with senior officials in the White House (including the president) never addressed even one classified issue?

Re:The Clintons

[geekmux]

Did not violate any rules regarding email retention - rules were created after. Did what every other Secretary of State did in regards to email. Bush was president - so no, Hillary is not a bad choice.

Clearly this logic explains how Obama got elected. Twice.

Obviously we only measure our leaders on their ability to circumvent laws, not enforce them. She got an A rating.

Re:The Clintons

[halivar]

I'd say leaving office apparently broke and then making shitloads-times-fuckloads of money later, is a sign of a successful president.

Well, then President Clinton neatly skirts any accusation of being successful by that metric: http://www.washingtonpost.com/...

They left office not just with millions, but also with the White House dinnerware: http://abcnews.go.com/Politics...

Re:The Clintons

[danbert8]

What about those with a last name and no first? Teller? First president who won't utter a lie?

Re: The Clintons

hilary isnt the second in line. the vice president is. :/

Re:The Clintons

[cogeek]

President Elvis, at least he can't screw things up any worse than they are now.

Re:The Clintons

[celtic_hackr]

Yet cited email as a tertiary reason for firing the African ambassador.

Installing a private Internet connection in your Dept. Of State office bathroom, in order to bypass the government link is a far cry from running a mail server out of your home.

There's a massive difference in setting up a server you own and are the only one to have 24/7 unfettered access vs using a free email provider.

That's for sure! We've all seen how secure Yahoo, AOL and Google email accounts are. That is not to say running a private email server is a walk in the park. Just because someone uses a free email provider doesn't mean they'll have a more secure server.

So you are aware there was a memo put out by Pres O. 24 August 2012 concerning use of private email for state business.

You do realize she'd set this server up in 2009 and left in Feb 2013? So she continued to use her own server her last five months, rather than do a disruptive move to the State server, when she already knew she was leaving in a few months. Your point?

Re:The Clintons

[Shakrai]

Remember that your vote counts just as much as the vote of the average youtube/facebook/twitter comment writer.

Depends on which State you live in......

Re:The Clintons

[random+coward]

He's too smart to take the job though.

Re:The Clintons

There is literally no difference between any Bush or any Clinton.

Wait... so they're all male? Or are they all female?

Perhaps intersex?

I seem to recall that some of them have given birth. So, probably female. It's harder to fake that. Sperm is everywhere.

Re:The Clintons

[WebCrapper]

Looks like news came out today that the White House knew of the private domain issue.

"Press Secretary Josh Earnest corrected the statement, saying that the president must have known about Clinton’s private account because he [POTUS] had emailed that account for four years while Clinton served as his Secretary of State."

So, now we have another agency that knows that did nothing as well.

Re:The Clintons

[WebCrapper]

For the love of God, WHY do I NOT have Mod points today?!

But you're dead on. The Clintons, and MOST other politicians, have always tried to skirt around all kinds of things and it's getting old.

Re:The Clintons

[WindBourne]

wow.
You neo-cons are just as bad as ever. Lies from both sides continue over and over and over.
She was NEVER in-line for being president.
Here is a factual explanation of the situation, without your own set of lies mixed in.

Re:The Clintons

[WindBourne]

not really. One agency will assume that the other is doing their job.

Re: The Clintons

What about the previous holders of the office that did the same thing?
Should they be arrested or impeached or water boarded or what ever kick Fox is on?
Or they are ok because it is your party and they will not be running against your candidate.

Re: The Clintons

Since when was email a secure form of communication?

Re:The Clintons

[Wootery]

Ah, the old vote-against appeal: dependable go-to for the American political pundit.

Re: The Clintons

[acoustix]

hilary isnt the second in line. the vice president is. :/

The VP is first in line. :/

But then it goes to the speaker of the house, president pro tempore and then secretary of state.

Re:The Clintons

[ScentCone]

She was NEVER in-line for being president.

Ah, I typo-ed. She was fourth in line, not second. You know, because of that pesky US Constitution, which says so in plain language as it establishes the presidential line of succession. Your idea of "never" is pretty strange, but it sure does make you sound righteous enraged and all! You're probably so furious that your hands were shaking too badly to use Google. Here, I'll help you:

http://en.wikipedia.org/wiki/U...

As for "factual explanation," you're really going to cite a quote that refers to a blogger at Media Matters, the proudly partisan organization that exists specifically to boost the Clintons' political endeavors? Every one of Clinton's usual proxies are of course out spinning like crazy to say the situation is "muddy." Of course that's what they want to say. The NARA is clear: you don't get to be Secretary of State and hide your emails from your agency's archiving system. That's a federal regulation that she deliberately went out of her way to avoid. And her response when busted on it? Printed-out emails, deliberately avoiding all of the forensic details that come with email headers and date/time stamps, and forcing State to spend untold man hours scanning and transcribing, when she could simply be transparent about it and provide them electronically. Typical Clinton stonewalling at its finest.

Re:The Clintons

The original poster had a negative value for an IQ. Yours is the square root of his.

Re:The Clintons

[geekmux]

Left office broke and in debt

You're not supposed to leave the office with a lot of tangible assets. Anyone who did that would be immediately nailed for blatant corruption. You're supposed to network and accrue impossible-to-prove favors that turn into money later. I'd say leaving office apparently broke and then making shitloads-times-fuckloads of money later, is a sign of a successful president.

Bullshit.

That's a sign of a successful marketing campaign, nothing more.

It's not like the Clintons are snagging paychecks based on their morals or ethics. Due to this, I still struggle to understand what value either of them have today in public speaking.

Re:The Clintons

Not to defend Obama - but the "From" line in Outlook only shows names - not email addresses. Something I've always *hated* about Outlook for that matter since it makes it very easy to become confused - especially when dealing with multiple email addresses for the same person.

Re:The Clintons

[CaptainLard]

But we should discard public servants at the first sign of hypocrisy

So all of them?

Re:The Clintons

[nobuddy]

But he has a last name.

Re:The Clintons

[bongey]

Except Obama sent emails to her private email address.
The snail mail analogy would be

"Really I didn't know my letters were being sent to another country."

Re: The Clintons

[mi]

What about the previous holders of the office that did the same thing?

oh_my_080980980 made this assertion earlier today, was asked for citations, and disappeared. I notice, that your assertion is just as unsubstantiated as his was...

Should they be arrested or impeached

They — whether the set of them is empty or not — should be prosecuted to the fullest extent of the law.

Or they are ok because it is your party and they will not be running against your candidate.

As far as I know, none of the previous Secretaries of State are running for any office. If they were, examining their record for signs of hypocrisy (and other bad things) would've certainly been valid.

Re: The Clintons

[mi]

Since when was email a secure form of communication?

It is — if all of your correspondents use secure servers connected by properly-encrypted links and maintained by professionals.

Re:The Clintons

[WebCrapper]

I'm assuming you haven't worked for .gov.....

"Normal" practice is:
- Inside: Complete chaos, no one follows the rules and everyone but contractors can just about get away with murder.
- Outside: "We follow all rules. A contractor reconfigured something and the issue has been resolved. We've put additional controls in place to ensure this doesn't happen again." (While the "contractor" could have been an admin logging into a server to do Windows Updates instead of the idiot that configured the firewall incorrectly to get their stupid app working. Pure example here.)

Signed: A guy that was both a Full Time Employee as well as a contractor for several entities.

Re:The Clintons

[Phreakiture]

They were broke, but when Bill left office, there was a budget surplus, for the third year in a row. Aside from that, the budget hadn't had three consecutive years of surplus (or even three years under one administration) since Harry Truman was president.

Re:The Clintons

[DocSavage64109]

You forgot to include some hard drive corruption and accidental deletions.

Re:The Clintons

[spacepimp]

They are in the same agency/branch. Which assumption would be made here, when every person emailing her notices it is in an entirely different domain? The fact that no one acted implies, there is no openness and they are all hosting their own emails to break the law, or that they are afraid to bring to light the fact that she alone was breaking her oath to office and the law.

 

Re:The Clintons

[Penguinisto]

They were broke, but when Bill left office, there was a budget surplus, for the third year in a row.

Given that the budget was (and has always been) controlled by Congress (where the opposition party held sway), I'm not so sure he should get much credit for that.

Re: The Clintons

[neoritter]

Of the four Sec. of States that were around for email usage in the White House (Clinton and earlier). Two did not use email, Albright and Rice. The only other Secretary of State that used email was Colin Powell. He's admitted that he used a personal account for at least some of his official business. His emails are lost he says. Remember though, he was Sec. of State between 2001 and 2005. The means all of his emails are at least 10 years old by now.

More importantly, what previous holders of the office did does not matter here. Why? For at least a couple reasons. First, the push in recent years is for transparency. If previous holders did actions that are considered bad under the need for transparency and record keeping then continuing what they're doing is not right. Arguing that the previous guy did it and saying that absolves you of responsibility is wrong. Second, And pay attention here, Clinton in '07 in a speech railed against "secret emails" of the Bush administration, calling it cronyism and corruption; and then saying more transparency is needed. It's incredibly hypocritical to talk about that and then do what Clinton did.

Re: The Clintons

[neoritter]

Which theoretically would be the official State Department email servers. Anyway around it, the official email servers were more secure than Hillary's.

Re:The Clintons

[neoritter]

Just for context here. Clinton called himself the Black Sheep of the Bush family. And W. Bush called Hillary his step-sister when asked to talk about the possibility of Jeb facing Hillary.

Re:The Clintons

Looks like news came out today that the White House knew of the private domain issue.

"Press Secretary Josh Earnest corrected the statement, saying that the president must have known about Clinton’s private account because he [POTUS] had emailed that account for four years while Clinton served as his Secretary of State."

So, now we have another agency that knows that did nothing as well.

Nope. There's a difference between the President knowing her "e-mail" address and knowing the details of the e-mail server.

Let's quote what he really said:

"“The president, as I think many people expected, did over the course of his first several years in office trade emails with his secretary of state,” Earnest said. “I would not describe the number of emails as large, but they did have the occasion to email each other.”

“The point that the president was making is not that he didn’t know Secretary Clinton’s email address, he did,” Earnest said. “But he was not aware of the details of how that email address and that server had been set up or how Secretary Clinton and her team were planning to comply with the Federal Records Act.”

I assure you, if I made you at You@WebCrapper.com, I wouldn't for the life of me think of what else you were doing with that server, and I'm not the President of the United States with 10000 other things to think about.

I'd leave it up to the IT staff at state unless somebody started screaming for my attention.

Re: The Clintons

[neoritter]

Just so we're all clear:
http://en.wikipedia.org/wiki/U...

1 Vice President of the United States
2 Speaker of the House
3 President pro tempore of the Senate
4 Secretary of State
5 Secretary of the Treasury
6 Secretary of Defense
7 Attorney General
— Secretary of the Interior
8 Secretary of Agriculture
9 Secretary of Commerce
10 Secretary of Labor
11 Secretary of Health and Human Services
12 Secretary of Housing and Urban Development
13 Secretary of Transportation
14 Secretary of Energy
15 Secretary of Education
16 Secretary of Veterans Affairs
17 Secretary of Homeland Security

Re:The Clintons

[neoritter]

We also have a President who lied (again depending on who you believe) and said he found out about it from the news.

Re:The Clintons

And since you are obviously mistaken about your pronouncements vs GP, what does that make you?

What, are you 12?

Re:The Clintons

[budgenator]

If you need something to be specifically illegal to prevent you from doing things that are stupid, a danger to the National Security and contray to the President's publicaly stated policy of "Being the most transperant administation", you certainly don't deserve to be President.

Re:The Clintons

[Just+Some+Guy]

I am not an Obama supporter. I did not vote for him, donate to him, or otherwise assist his campaign. And yet, I'd give him a pass if this is the only reason he'd have for knowing that she had a private server. When I email someone, I typically don't have the foggiest idea whether that address is served by Google, Yahoo, the CIA, or a Pentium in their basement. While her email address wasn't @state.gov, I wouldn't put it past a government official to think, "oh, wonder how she got State to set that up for her?" and then never thinking about it again.

Re:The Clintons

[blue9steel]

Obama wasn't a good choice either.

Well, the first time I voted for him it seemed like the choice was between nieve new guy vs. untrustworthy guy. The second time I voted for him it was hamstrung guy vs. out of touch rich guy. While unsatisfied with the results I don't see that voting the other way would have been an improvement and I'm not even a Democrat. Sadly, it's looking like the choices this time are going to be even worse.

Re:The Clintons

[budgenator]

You do realize she'd set this server up in 2009 and left in Feb 2013? So she continued to use her own server her last five months, rather than do a disruptive move to the State server, when she already knew she was leaving in a few months.

So how disruptive would it have been to just set up the MX record to point to a professionally managed government owned mail server?

Re:The Clintons

[budgenator]

I consider Bill Clinton a successful president by virtue of spending more time getting his pool cue chalked by Lewinsky, than he did screwing up shit that actually mattered.

Re:The Clintons

[ganjadude]

dont blame me, i voted Kodos

Re: The Clintons

[ganjadude]

and lets not forget powel is in trouble over some of of those emails.....

Re:The Clintons

[ganjadude]

So, now we have another agency that knows that did nothing as well.

But that cant be obama JUST said he found out about it in the news like the rest of us!!!

Re:The Clintons

[ganjadude]

plain and simple, he knew he wasnt sending it to a .gov email address. thats ALL he needed to know

Re:The Clintons

A better analogy would be somebody writes MI on the mail, and doesn't think whether it goes to Michigan, Minnesota, Mississippi or Missouri. Somebody might even think of it going to Maine.

With E-mail, you don't even have the concept of Airmail to go by, an E-mail server could be operated by anybody anywhere, and most people won't ever have a prayer of noticing how it's operated, let alone where.

Even the PostMaster General won't know, let alone the President.

Now if you want to bother anybody, the auditor at State is another matter. Or the person who didn't hire the auditor. Whatever.

Re:The Clintons

[LynnwoodRooster]

Title 36 Chapter XII Subchapter B Part 1236 Subpart C 1236.22 - rules governing electronic records keeping. In effect on January 1st, 2009. Ms. Clinton set her private server up AFTER this date, clearly in violation of this regulation.

Re:The Clintons

[LynnwoodRooster]

She was NEVER in-line for being president.

Ah, I typo-ed. She was fourth in line, not second. You know, because of that pesky US Constitution, which says so in plain language as it establishes the presidential line of succession. Your idea of "never" is pretty strange, but it sure does make you sound righteous enraged and all!

He's a liberal. The Constitution is irrelevant, and can be ignored - or misquoted - at will.

Re:The Clintons

[LynnwoodRooster]

Please see Debt to the Penny - a Government (Treasury Department) site. Please find the last year that we had a year-over-year reduction in debt (meaning - a real, not paper, surplus). HINT: you'll have to go back about 60 years... After that, we added debt - meaning ran an actual deficit - every single year.

Re: The Clintons

[neoritter]

Not really.

Re:The Clintons

[ThoreauHD]

On this topic, do you have a screenshot of the vulnerability rating(that you posted). It's since been upgraded or swapped. I'm trying to figure out when it was updated.

Re:The Clintons

Do you get dust on your tongue when you're sucking Hill-dog's asshole?

Re:The Clintons

Not in the least! All the dust gets stuck in the cobwebs...

Re:The Clintons

President Clinton neatly skirts any accusation

What President Clinton does to skirts could hardly be called "neat".....

Re:The Clintons

Fourth in line ... http://en.wikipedia.org/wiki/United_States_presidential_line_of_succession ... VP, Speaker of the House, President pro tempore of the Senate, then the Secretary of State.

Re:The Clintons

[HornWumpus]

Bill had one projected budget surplus* that went 'pop' when .com did.

* at the time the SS trust fund was running a surplus that was being transferred into the general fund. So even the projected surplus was an accounting trick.

Re:The Clintons

[cogeek]

Yeah, so do Cher, Madonna, Prince and everyone else on the list. But no one says "Elivs who?" or "Madonna who?"

Re:The Clintons

[ebvwfbw]

You do realize she'd set this server up in 2009 and left in Feb 2013? So she continued to use her own server her last five months, rather than do a disruptive move to the State server, when she already knew she was leaving in a few months. Your point?

I think you're fooling yourself. I remember e-mails being in the news way back when Ronny was President. Remember Iran Contra? Remember Billy Boy's dealing and e-mails, which Hilary was a part of by the way? GW and e-mail?

She knew what she was doing. She just didn't have someone competent set it up, clearly.

Of course all of this is really beside the point. It was a carefully timed leak (IMHO by the White House, a certain woman there) to the NY Times to take her out of the running early. Make way for the people they really want to finish destroying the country. Not that it matters, nobody in Washington seems to care about the country anymore with very few exceptions.

Re:The Clintons

[celtic_hackr]

So your solution is to make the government servers open relays!? Brilliant! That'll keep the bad guys out!

Makes sense

[Trailer+Trash]

I mean, the only security they seemed to be interested in was keeping the emails out of the hands of people with subpoenas, FOIA requests and such.

Re:Makes sense

[Marxist+Hacker+42]

It must never have occurred to them that Fox News and the FBI use hackers too.

Re:Makes sense

[bill_mcgonigle]

I mean, the only security they seemed to be interested in was keeping the emails out of the hands of people with subpoenas, FOIA requests and such.

Plus, it's in her house, so she gets 4th Amendment protections as well, which is pretty smart.

But Qualsys's SSL scan grade is relevant to a server open to the public. Looking at the generated report, the main problem, in a situation where the client software is highly controllable and very likely hand-configured, is the lack of perfect-forward-secrecy ciphersuites. And that only helps prevent future attacks, not past ones (she's "retired" at the moment).

If somebody wanted to attack this system, attacking TLS would not be the way to do it - the configuration is good enough to make so many other vectors much cheaper attacks. I see the engineer used GoDaddy as the SSL vendor. This doesn't speak well for the budget of the project which has implications for the degree of configuration hardening that was done, which is especially crucial for a Windows machine.

Re:Makes sense

[oh_my_080980980]

You mean like Cheney.

Re:Makes sense

[arth1]

The Qualsys SSL scan only scans the web server front-end. (Which shouldn't even exist, in my opinion. Use a mail program, not a browser.)

But this is a mail server too, with its own security implications, and those have not been scrutinized, as far as I can tell.

Re:Makes sense

Does obscurity no longer count? She used a fake name at least.

Re:Makes sense

[wiredlogic]

They've gotta be kicking themselves after seeing how easily the IRS handled sending dirty laundry down the memory hole without (overtly) breaking the law.

Re:Makes sense

[sumdumass]

http://www.politico.com/story/...

Actually, that IRS the dog ate my email somewhat failed.

It turns out that asking IT to look for backups of the email is more productive than looking for it personally. Its just a matter of time needed to sort through it if anyone in government is still interested.

Re:Makes sense

[LordLimecat]

They should hire you to do their spin.

Re:Makes sense

[Marxist+Hacker+42]

No, they really shouldn't. I'm a fiscal liberal but a social conservative. There is no political party in the United States I am comfortable with.

Re:Makes sense

*sigh*

I get tired of explaining this to civilians who think they have a clue, but clearly don't: FOIA requests rely on the record holder filling out a form that details the location and retention period of the record in question; yes, that includes emails. All of us in government have to endure regular records audits to comply with FOIA, so this is a Major Fucking Thing (TM) on the minds of anyone who might have anything that might ever, ever, be considered a record, ever.

To the point, that means that even if she had used a .gov email address, your FOIA requests would mean jack shit if she didn't declare her records, as she is lawfully bound to do. That's scary, huh? Well, that's the way the process works... if they want to lie, they can, and there's really nothing you can do about it, except to hope that the auditors catch them, because that carries some nasty penalties. On the flip side -- and this is the important part, so fucking pay attention -- if you think FOIA works at all, then it logically works just as well on Mrs. Clinton's "private server." I.e.: this "FOIA outrage" is entirely manufactured, and you're being led around like a cheap whore.

Re:Makes sense

You do sound like a very unique variety of crazy.

Re:Makes sense

You could join ISIS. They sound right up your alley.

Re:Makes sense

They did a pretty good job of avoiding scrutiny. If she wasn't (presumably) mounting a presidential campaign, this probably would have never received the scrutiny it's receiving now.

Re:Makes sense

[LordLimecat]

I wasnt remarking on your party, but on the deflection. Theres a serious issue here with a presidential hopeful violating all manner of data protection and FOIA laws, and you want to turn this into commentary on the FBI and conservative media.

I personally dont like when people pull all sorts of red herring manuevers, but I hear its quite valuable in the PR sector which is why I recommended you make a profession out of it.

Re:Makes sense

[nobuddy]

So, a Spend and Subjugate party?

Re:Makes sense

[nobuddy]

Of course not. Since they found the backups, the scandal is gone. they already know there is nothing in the emails of interest- the whole IRS issue was them doing their jobs against an onslaught of illegal political applicants for financial protections prohibited to political groups.

Re:Makes sense

[nobuddy]

Logic and facts cannot be applied to the Fox crowd. They have never seen them before, so it evokes a fight or flight reflex.

Re:Makes sense

[Marxist+Hacker+42]

Nope. People before pennies and people before dogma and people before sex.

Re:Makes sense

[Marxist+Hacker+42]

Well, that and the little fact that the e-mails *might* reveal something about the murder of an ambassador in Libya.

BTW, has nobody informed her that smartpho

Re:Makes sense

[Marxist+Hacker+42]

Actually, my comment was on the stupidity of her security setup- which provided not only no protection against the enemies of the United States, but also no protection against her perceived domestic enemies.

Re:Makes sense

[Marxist+Hacker+42]

In a way. More like a Big Father With A Shotgun party.

Re:Makes sense

You're a fucking idiot.

Re:Makes sense

[neoritter]

From FOIA.gov:

FOIA request can be made for any agency record.

Since the private email server is not part of the agency record, a FOIA request can not be made on it. I don't give a shit if you're an AC pretending to be some non-civilian. You apparently don't have a clue. FOIA requests are for public records, not private records. Her email server is a private record, so to get at it, you must have subpoena. The only hope you have with a FOIA record in this instance is that she didn't leave out any important emails. But good luck at getting anyone to willingly give up for record keeping incriminating emails.

Re:Makes sense

[neoritter]

Citation: http://www.foia.gov/how-to.htm...

Re:Makes sense

[blue9steel]

Interesting, on the bright side we'll never share a party affiliation because I'm the exact opposite. Socially liberal and fiscally conservative, for which there is also no US party available.

Re:Makes sense

[sumdumass]

If you really believe that, you are more gullable than those drones who parrot talk radio. This stuff takes time and it takes more time when people do not cooperate.

If it is how you think and nothing wrong happened, why all the stonewalling? Why lose the emails in the first place and fail to find them when the tig basically asked IT to see if they could be recovered and poof they were there. I mean it was a contention in the elections and it likely contributed to losing seats. Why put the country through that and take the fifth when nothing was wrong?

Re:Makes sense

[budgenator]

Actually Rush Limbaugh was saying the other day that the Email thing was being blown way out of proportion, by both the Republicans and Democrats.

Re:Makes sense

[nine-times]

This is essentially what bothers me about the story. Not knowing all the details, I'm concerned about whether the server was properly secured, and if not, what data may have been vulnerable, given her position. But ultimately, that's not what really bothers me about this. What bothers me is the question, "Why did she want to do this at all?"

It doesn't really make any sense for a private individual to run their own email server out of their own home, unless they're trying to hide something. Even if the reason was vanity, if she didn't want to go with a government email service because she liked the idea of having her own personalize domain, it's easier, cheaper, more reliable, and more secure to go with an existing provider than to run your own server out of your own home. But even that would be a bit irresponsible, since it would be completely possible to have the State Department configure something so she can have her email from her vanity domain forwarded to a secure server.

So why? Who is she hiding her email from? The only reasonable answer is, "other people within the government," but which other people? Is she trying to prevent unlawful access by the NSA? Given the reported security problems, I'd wonder if the NSA couldn't hack their server if they wanted to.

The only reasonable answer that I can think of is, she's hiding her emails from legitimate inquiries from law enforcement or other governmental investigations.

Re:Makes sense

[Marxist+Hacker+42]

Except, of course, for the minor third party of the extreme libertarians, whose faith in liberty above all else calls for a government too weak to police social issues, and taxes so small that they could rightly be called user fees for access to the courts.

Re:Makes sense

Pretty disingenuous of you and your small grasp of reality. Nothing is safer than a stand alone server.
And you know thousands of republitards were after it.
The fact is she kept your hordes out.

Re:Makes sense

[blue9steel]

I'm registered Libertarian now, but what you're describing would be on the extreme end of even their spectrum. Draw a triangle between Democrats, Republicans and Libertarians and the middle is probably about where I belong. Sort of an Eisenhower Republican.

Re:Makes sense

[Marxist+Hacker+42]

I've seen enough anti-war-on-drugs and pro-abortion from libertarians and their fellow travelers in the Republican Party to know that the center of that triangle is far left of where I'm comfortable, for sure!

Re:Makes sense

[blue9steel]

Which is exactly why I'm there instead of with the Republicans who have essentially given up their small government roots for social activism.

Re:Makes sense

[Talderas]

She's hiding it from Obama.

Re:Makes sense

[david_thornley]

Actually, keeping a server in her home makes a certain amount of sense. It reduces the attack surface if done right. I don't know what the State Department had available, but large US departments tend to have bad IT.

Re:Makes sense

[Marxist+Hacker+42]

The weird thing is, I'm also for small government- governments limited to 100,000 citizens or less, run on an absolute right to life and private property for anything that it takes to maintain life.

The trouble is, that goes against your average libertarian, whose only difference between them and a crony capitalist is enough money to bribe politicians.

Re:Makes sense

[nine-times]

That might possibly be true, if we make certain assumptions. One of the big assumptions that I would not be willing to make is that the security policies are otherwise equal. Some of the IT at government agencies may not be "very good" by some measures, but I would assume that the State Department has pretty good security.

If not, WTF?

An 'F' from Qualys!

THE Qualys! OMG that definitely disqualifies Hillary from even thinking about running in 2016.

And if that wasn't enough, what about Benghazi, Monica-gate and Vincent Foster?

Or is it Qualsys? Whatever.

Re:An 'F' from Qualys!

[armanox]

Well, if you are on Slashdot I assume you can google something.

Or that you can infer that they do Network Security from the summary or the title.

B is the new F?

[GAATTC]

Funny - I clicked on the link and the rating is a B. No ambiguity about it and not the result of a hasty recent security update (the site was assessed on Sat Mar 07 22:39:37 PST 2015). Where does this headline and summary come from?

Re:B is the new F?

[arth1]

Funny, I looked at the link too, and saw an F.

But most worrisome was the bottom of the page, showing:

Microsoft-IIS/7.5

It's bad enough to use web based mail, but to run it on IIS?

Re:B is the new F?

[GAATTC]

Really? Is this like the blue dress/yellow dress thing? Different people see different things?

Re:B is the new F?

[halivar]

IIS with a good config will beat *nix with a terrible config. It's not the tool that the the problem here; it's that the people using it had no clue how.

Re:B is the new F?

[lazlo]

Hrm, I click on the link and see "SSL Report: mail.clintonemail.com (64.94.172.146) Assessed on: Fri Mar 06 12:35:49 PST 2015", and an F.

Are we both looking at the same thing? (clearly not, but *which* things are different, other than the grade?)

Re:B is the new F?

[Jhon]

I just checked and it says "F" in a bright red box.

SSL Report: mail.clintonemail.com (64.94.172.146)

What IP address did YOU see? Maybe there's more than one server being polled?

Re:B is the new F?

[StikyPad]

IIS has been as secure a web server as any for quite a few years now.

Re:B is the new F?

[pahles]

I clicked and see a B for the IP address you mention!

Re:B is the new F?

[Jhon]

Interesting. I've got two tabs open -- both to the same URL. I see the following:

SSL Report: mail.clintonemail.com (64.94.172.146)
Assessed on: Sat Mar 07 15:10:39 PST 2015 | Clear cache
RATING: "F"

SSL Report: mail.clintonemail.com (64.94.172.146)
Assessed on: Tue Mar 10 09:18:02 PDT 2015 | Clear cache
RATING "B"

The difference is Protocol support is zero on the F and notes SSL 2.0 support (automatic "F").

Looks like somebody fixed something between Saturday and today.

Re:B is the new F?

[93+Escort+Wagon]

Really? Is this like the blue dress/yellow dress thing? Different people see different things?

No, this is the typical political BS where it's getting attention - so let's fix all the problems, get it rescanned, and then pretend it wasn't horribly insecure for all the time prior to today.

Re:B is the new F?

[d34thm0nk3y]

What the hell, that link clearly says "B."

Re:B is the new F?

[sycodon]

I think Hillary has banned all Blue Dresses from her sight.

Re:B is the new F?

[Slamtilt]

Here's the copy'n'paste:

1 64.94.172.146
Ready

mail.clintonemail.com
        Tue Mar 10 09:23:03 PDT 2015
Duration: 55.370 sec
B

The date appears to be the difference.

Re:B is the new F?

[celtic_hackr]

The rating is an F because it supports SSL2. Yet, they didn't show a single example where it permitted an SSL2 handshake or connection. Every email server supports SSL2. The real question is does it actually permit SSL2 connections. Hell my server "supports" SSL2, but I have it connections disabled in the configuration. This security rating is just a load of political crap. Everyone picking on poor ol' Hillary for using a private server. It must be weak because it's not based at the State Department. Because we all know the best and brightest computer nerds work for the Fed?

Now given what I see there from this scan, she's using SHA-1 for signatures. Definitely not best practice. I'd rate that server as a C or a D. The server appears to be an IIS server. A hardened Linux server would have been the way to go. Just because it's not a guvmint server doesn't mean it is automatically weak. My server gets attacked all day long and hasn't been hacked. Sure, I'm not a big target either. I once conducted an experiment to see how long it would take for someone to hack my Linux system. So I put one out there, and didn't patch it, did a minimal security setup, like you might get from a Linux Servers for Dummies tutorial (there are plenty out there). It took 4 months for my relatvely unknown server. But that was years ago. I haven't been hacked since, and no that is not an invitation to try. I get DDOSed on a semi-regular basis. Not much I can do about that, other than what I am doing. I haven't got a 1000 servers to offload attacks to.

In the end, a well configured and maintained server stands as much of a chance of being secure as any server out there, save perhaps the DOD. Bigger is not necessarily better.

Re:B is the new F?

[Jhon]

Check my other post in this thread. Sat morning it's "F". The parent of this thread sees a "B" sat evening. Looks like they fixed something.

Re:B is the new F?

[Penguinisto]

I suspect it was crash-updated recently.

It was listed as "F" when the story was submitted earlier this morning, but now it's suddenly bumped to a "B" (Assessed on: Tue Mar 10 09:31:29 PDT 2015).

All it would take is a patch or two to bump it up, I suspect.

I wonder if one can get the mods to update the submission.

Re:B is the new F?

[wendyo]

Funny, I looked at the link too, and saw an F.

But most worrisome was the bottom of the page, showing:

Microsoft-IIS/7.5

It's bad enough to use web based mail, but to run it on IIS?

I followed your link, it says B.

Re:B is the new F?

Bill did the same thing a few times. Of course the women were wearing the dresses when he demanded they be removed from his sight.

Re:B is the new F?

I'm getting a "B" as well - very odd. When I follow the link, I see this. Notice any other differences in the report?

Re:B is the new F?

Assess a typical sendmail server and you will not even get a grade. All of those protocols mean almost nothing. You should not be trusting your Email server to secure Email exchanged with foreign entities. If you need it to be secure, explicitly use encryption. Most of the DoD uses a smartcard.

Re:B is the new F?

[arth1]

IIS has been as secure a web server as any for quite a few years now.

IIS 7.5 is a few years old. It came out with Windows Server 2008, if I remember correctly - that's seven years ago. It has been replaced with IIS 8 and 8.5 for years now.

But still, the biggest problem is to have web mail open to the world in the first place. Certificate based imap would be far preferable from a security point of view.

Re:B is the new F?

[Just+Some+Guy]

The biggest difference is that no one gives a shit about your toy server, but they might have a fuckload of interest in the personal server of a US Senator and Secretary of State. Yes, I believe that State Department is likely to have better security than the random dipshit she seems to have hired who snagged a cheap GoDaddy cert. It's almost certainly going to have better availability, backup, and disaster recovery.

It is absolutely, 100% not acceptable to run state secrets through a personally maintained server that seems to exist only for the legal reason of giving the owner 4th amendment privacy rights. An officeholder acting in official capacity should have zero expectation of privacy from the organizations they work for. I'm "picking on poor ol' Hillary" for having every appearance of attempting to circumvent disclosure laws.

Re:B is the new F?

[StikyPad]

Yes, but 7.5 is still within it's support lifespan, which means it's getting patches and security fixes. I was only addressing the IIS aspect of your post.

But since you're persisting, the protocol, transport layer, and authentication mechanisms are all separate concerns. HTTPS is not inherently less secure than any other protocol, and could be configured to require certificate-based authentication just as easily as IMAP. The oldest and weakest versions of TLS are slightly concerning in theory, although the biggest vulnerability with TLS 1.0 in practice is the potential for it to be downgraded to SSL 3.0, which does not appear to be true in this case.

Re:B is the new F?

So, anecdotal evidence (you know how to do it right so Hillary's IT must know how to do it right too) and an assumption that SSL2 was configured but not enabled gets her server up to a C or D. Ok, nothing to see here folks, move along.

Re:B is the new F?

[linuxrocks123]

It took four months for my relatively unknown server.

This smells funny. How specifically did your server get hacked? If I put out a server running nothing but Apache serving static HTML and SSH with a good password, I would expect it to be hacked approximately never or until the next sshnuke exploit. Which, again, would be approximately never. What were you running where you got hacked in four months?

Re:B is the new F?

[spacepimp]

The tool here is email. The problem is that Hillary knowingly circumvented the law. Her intentions can be as honorable as she claims, but the simple fact is she knowingly broke the law, and it isn't OK, whichever politician did this.

Re:B is the new F?

[squiggleslash]

That could be it more than you realize. You see, for me, the B is white on gold... I'm guessing those who see an F see it black on blue?

Re:B is the new F?

[halivar]

I chose not to opine on the legality of the thing; only the competence of its execution.

Re:B is the new F?

The stateless nature of HTTP requires authentication information to be transmitted and processed with each request, which eases spoofing and session hijacking. HTTP's statelessness leaks through the security abstractions which have been layered upon it.

Statefull protocols have a different set of problems but inherently lack this one.

Re:B is the new F?

[neoritter]

I'm not trying to defend Hillary here, but for honesty's sake, I clicked the link you gave and saw a B. I hit clear cache and it retested as B. :/

Re:B is the new F?

[neoritter]

Well that can't be true, I clearly see the dress as black/blue but saw B....OMG...I'm some sort of freak of nature!!!

Re:B is the new F?

[budgenator]

Your Link shown me a B rating, me thinks there's some subterfuge going on at/with Qualys. I think it more likely that Clinton or her cronies called in some favors to make the rating look less damaging, than random people on the internet lying about the rating.

Re:B is the new F?

[PapayaSF]

Check my other post in this thread. Sat morning it's "F". The parent of this thread sees a "B" sat evening. Looks like they fixed something.

Next, the server admin will be discovered in Fort Marcy Park with a "self-inflicted gunshot wound."

Re:B is the new F?

[PapayaSF]

It is absolutely, 100% not acceptable to run state secrets through a personally maintained server

Oh, she's got that covered: she just claimed that she never used email for anything secret or confidential. If you can believe that. I don't.

Re:B is the new F?

[david_thornley]

US statutes didn't forbid what she did until the year after she left office.

Re:B is the new F?

So using profanity is supposed lend credibility to your position?

Re:B is the new F?

[celtic_hackr]

It was over a decade ago. It was a busy box, running a DNS sever, SSH daemon, mail and web with Postgres and MySql. Python and a host of other stuff was installed. It wasn't static html. Like I said I never patched it, and there were security patches that had come out. I believe at least one was a buffer overflow issue. It was vulnerable by the time it got hacked. It happens. Linux isn't immune to attack, just harder. If you don't patch, it makes it less hard. I also didn't do any hardening. Don't recall which distro it was, possibly a RH distro before I switched over to debian for servers.

Re:B is the new F?

[celtic_hackr]

Anyone STUPID enough to email state secrets deserves whatever they get.

No Clinton No Bush

[random+coward]

Jeb Bush wants to model himself after Lyndon Johnson. I think we can all agree that he is a disaster equal to or greater than Hillary.

Re:No Clinton No Bush

[fustakrakich]

Gotta love the voting public. They pick nothing but disastrous candidates for 'both' sides.

Re:No Clinton No Bush

[Archangel+Michael]

It isn't the voting public, it is the very wealthy and well connected power brokers that have anointed these two. The voting public are sheeple, easily manipulated with FUD.

Re:No Clinton No Bush

[khallow]

Nonsense. LBJ, despite getting mired in the Vietnam War, had many effective strengths as a politician. I believe here, Jeb Bush is referring to LBJ's ability to get bipartisan support for his legislation. While I don't have a problem with politicians who can "work across the aisle", I find this suspiciously like George W. Bush, who said much the same thing and then abandoned bipartisanship for a significant part of his tenure.

In comparison, I find Hillary Clinton's casual and persistent corruption and selective rule breaking to be a worse thing than Jeb Bush's choice of role models. Still I wouldn't be broken up, if neither ever was ever elected president.

Re:No Clinton No Bush

[fustakrakich]

The voting public are sheeple...

That would make it their own fault then. A power broker has no power if nobody listens.

Re:No Clinton No Bush

[random+coward]

Its not that; its also that bi-party system aggrandizes so much power to the two parties and leaves no competition available. If the parties always pick those who can run, then what difference, at this point, does it make who the people vote for?

Re:No Clinton No Bush

[WindBourne]

Still I wouldn't be broken up, if neither ever was ever elected president.

Could not agree more. Both leave so much to be desired.
The problem is, that 3rd parties are pretty much banned due to the actions of rover/neo-cons/dems back in 1993.

Re:No Clinton No Bush

[fustakrakich]

Still I wouldn't be broken up, if neither ever was ever elected president.

It only takes a majority of votes to make it happen. Simple math. Just get the non voters to unite on somebody, and voila! All I am hearing here is just more blame passing for ones' own failures.

Re:No Clinton No Bush

[microbox]

That would make it their own fault then. A power broker has no power if nobody listens.

Yeah, I believe in personal responsibility devoid of social realities as well.

Re:No Clinton No Bush

[khallow]

All I am hearing here is just more blame passing for ones' own failures.

And there will be a lot more failure where that came from.

Re:No Clinton No Bush

[nobuddy]

This ignores the effectiveness of information control. You don't have to deprive everyone of the information they need to make an informed decision. Only enough to win the election. The massive expenditures in political advertisement, pundits to spread lies and half-truths, and blatant control of all of the news sources makes this downright easy to do.
The internet is making a small but growing subset of people that seek the actual facts in political claims. The problem is our vote is miniscule, and we have no influence on who runs.

Money in politics coupled with the first-past-the-post system makes this a very very effective way to control the government if you have the money.

Re:No Clinton No Bush

[nobuddy]

I wish Perot had won. Not because he would have been good for the country- he was as nutty on fiscal policy as modern teabaggers. But that would have been a key moment to break the two party system.

Re:No Clinton No Bush

[fustakrakich]

Right, so people must save themselves, and seek out the better alternative instead of rewarding the corruption for a 'piece of the pie'. Playing along only prolongs the misery. And maybe it's time to recognize a fatal flaw of majority rule while the majority remains so dazzled.

Re:No Clinton No Bush

[fustakrakich]

Your social 'realities' are entirely man made, easily formed into whatever image you desire. Either there is free will, or there isn't.

Re:No Clinton No Bush

[nobuddy]

Easy! All we need to do is match the combined $890B that the Koch network is dumping in to the GOP, and the $200M that Soros is dumping in to the Democrats, along with whatever funding the parties themselves have fenangled. Then we have to get the networks owned and controlled by interested barties to both run our ads AND present our candidate fairly in their "news" coverage.

This is such an easy task that the blame clearly lies with the person that went out and voted third party instead of performing this trivial task.

Re:No Clinton No Bush

[khallow]

he was as nutty on fiscal policy as modern teabaggers

What makes fiscal responsibility "nutty"? I find the real nuts to be the crowd who thinks we can borrow as much as we like, while completely ignoring inflation.

Re:No Clinton No Bush

[neoritter]

Because no one else within either party is allowed to run in their primaries right? Seriously people, there are other folks in these parties. I was quite a fan of Huntsman back in the '12 Republican primaries, but everytime I brought him up, the liberals said he wasn't liberal enough and the conservatives said he wasn't conservative enough. It's so laughable.

Go vote in primaries people!!! SERIOUSLY! Open primary states are the easiest. But if you're closed primary, register as Dem or Rep and go vote. I'm tired of all of your lazy asses whining about lack of choices when you won't engage in minimal effort.

Re:No Clinton No Bush

[spacepimp]

When people like you don't demand accountability on things like this you get what you deserve. She should be brought to trial, and made accountable for taking affairs of state off the grid, and off the record. This intentional effort to take government activity off record is despicable. So now we know that she is willing to hide all of her efforts from the appropriate scrutiny. It is unforgivable, especially when considering her as a potential candidate.

Re:No Clinton No Bush

[Penguinisto]

...only $200m from Soros? May want to count MoveOn.org, DU, Being Liberal, and a whole host of other endeavors he and his buddies have been dumping way more money into... not even counting MSNBC, a goodly chunk of CNN, Verio, et al. Also, check in with Warren Buffett; he's good for (probably) at least a few hundred million or more (probably way, way more.)

Fact is, the system is soaked with money on both sides, so your original point (shitloads of money corrupting/clouding the election process) is valid, but honestly, they *both* suck.

Re:No Clinton No Bush

[phantomfive]

Just get the non voters to unite on somebody,

The trick is getting a 'somebody' who would be better....I strongly dislike both those candidates, but there are people who would be much worse as president (Newt, for example). Both of them are at least semi-competent.

Re:No Clinton No Bush

[Coren22]

$890B? Please I need a link for that. If the Kochs has that kind of money to throw around, maybe they should be paying off the national debt.

Re:No Clinton No Bush

[AK+Marc]

I believe here, Jeb Bush is referring to LBJ's ability to get bipartisan support for his legislation.

LBJ would have been as effective as a president as Carter was, except for the "do it for the Dead Kennedy" subtext to everything he did.

Re:No Clinton No Bush

[AK+Marc]

I find the real nuts to be the crowd who thinks we can borrow as much as we like, while completely ignoring inflation.

That's called "conservative fiscal policy".

The "nutters" on fiscal policy were the ones that wanted to eliminate funding to hundreds or thousands of programs that would have left millions in such bad shape that an armed revolt would be a reasonable response for many.

The nutters are the ones that say they want something, the do the opposite. That's why I think most pro-life people are nutters. They say they want fewer abortions, then campaign against condoms and sex ed (two things proven to reduce abortion rates).

Re:No Clinton No Bush

[ganjadude]

Dont forget about Thomas Steyer $73,725,000.00 last year to the democrats

Re:No Clinton No Bush

[AK+Marc]

How many primaries are closed? I remember when I first voted in Texas, the primaries were open, then the Republicans closed theirs. I left before the Democrats closed theirs, and don't know if the Republicans ever un-closed theirs. And they weren't "closed". They were closed to registered democrats, but not closed to undeclared/undecided.

In Alaska, you can pick either ballot equally after you sign in. Regardless of who you are registered with. In Texas, many liberal people registered Republican because many races were unopposed, so if you didn't vote Republican in the primary, you didn't get a vote.

Re:No Clinton No Bush

Something something paul krugman hyperinflation can never happen to the USD because it hasn't happened yet. It's gotten ridiculous how people call people like ron paul lunatics on monetary and foreign policy, but can never really be bothered to explain why.

Re:No Clinton No Bush

[khallow]

LBJ would have been as effective as a president as Carter was, except for the "do it for the Dead Kennedy" subtext to everything he did.

No, he demonstrated considerable politic competence and leadership well before a dead Kennedy issued him a blank check.

Re:No Clinton No Bush

[khallow]

The "nutters" on fiscal policy were the ones that wanted to eliminate funding to hundreds or thousands of programs that would have left millions in such bad shape that an armed revolt would be a reasonable response for many.

You know we could keep a few programs around, say the two or three programs that really help, and get rid of the hundreds or thousands of programs that don't help.

Re:No Clinton No Bush

[LynnwoodRooster]

Instead we kept all those programs, and shuffled those millions of the "employable rolls" to keep the unemployment rate dropping. Record use of food stamps, record social spending, and a stagnant economy. What did we gain? Nothing - except another $8 trillion in debt... And millions still in bad shape.

Re:No Clinton No Bush

[LynnwoodRooster]

At $18 trillion, that $890 billion wouldn't do much... Heck, it wouldn't even cover last year's added debt.

Re:No Clinton No Bush

[khallow]

Supposedly, this wasn't illegal when she did it though apparently it is now. And who will prosecute her even if there was wrongdoing?

Re:No Clinton No Bush

[neoritter]

About half the country has open primaries I think.

http://en.wikipedia.org/wiki/O...

Re:No Clinton No Bush

[AK+Marc]

And if you cut them all tomorrow with no other plan, you'd spend that or more quelling the rebellion.

Re:No Clinton No Bush

[kwbauer]

It is a mixture. What I found quite hilarious is that the Democrats were suing the Republicans in one State for having closed their primary while the Democrats were closing their primaries in other States.

Re:No Clinton No Bush

[cupnoodleboy]

By itself, fiscal responsibility is certainly not "nutty". However, those who oppose any tax increase are. Any sane person running a business would realize that both decreasing expenditure and increasing income are essential for financial health, and using only one method would only lead to ruin. Nevertheless, there are merits to the view that the tax rate is already high enough, but the problem is that the multinational corporations and the wealthy, with the help of politicians, devised various nefarious schemes to decrease the tax they paid, thereby shifting the burden of taxation to the working class.

Re:No Clinton No Bush

And once again! We see the cowardly moderators attack the truth! Y'all can go fuck yourselves, you know that, right?

Re:No Clinton No Bush

[Dahan]

How many primaries are closed? I remember when I first voted in Texas, the primaries were open, then the Republicans closed theirs. I left before the Democrats closed theirs, and don't know if the Republicans ever un-closed theirs. And they weren't "closed". They were closed to registered democrats, but not closed to undeclared/undecided.

Texas has never had closed primaries, at least not as long as I've been voting (which is over 20 years)--and neoritter's wikipedia link lists Texas as an open primary state. There's also no official party registration in Texas. Sure, you can send some money to the Republicans or the Democrats and they'll send you a card so you can be a card-carrying [whatever], but at voting time, the state doesn't know or care. There is a restriction during the primaries: if you've voted in one party's primary during the election cycle, you may not also vote in the other party's primary during that same election cycle. But during the next election cycle, you're again free to choose which primary you want to vote in.

Re:No Clinton No Bush

[AK+Marc]

I've found that the local parties are amusingly not well aligned. The Republicans were first to try to close primaries in Texas and Alaska (while I lived in each), but the Democrats should do the same in more Democratic leaning states. For insane definitions of "should". The one with the most unopposed candidates in the fall wants to close the primaries.

Re:No Clinton No Bush

[AK+Marc]

It's a closed primary with same-day registration. Most call that open, but you have to "declare" a party (and go on the rolls for that party) to vote in the primary, and you are officially a member of that party until the next election cycle.

The truly open primaries allow you to vote for one candidate for seat 1, and a different candidate for seat 2, your choices could be among the Repubicans for seat 1, and among the Democrats for seat 2.

But primaries of any kind are a bad thing. They are state-sponsored petitions for the parties. The result is a lower barrier for the Democrats and Republicans than the 3rd parties. It's undemocratic and unfair.

Re:No Clinton No Bush

You know we could keep a few programs around, say the two or three programs that really help, and get rid of the hundreds or thousands of programs that don't help.

We could, but nobody trust the lizards in charge or want to be in charge to get it right. Then there are the partisan people who you won't ever convince.

So most people would rather do nothing than risk trying to fix things but failing or getting it wrong.

Re:No Clinton No Bush

[khallow]

Any sane person running a business would realize that both decreasing expenditure and increasing income are essential for financial health, and using only one method would only lead to ruin.

Wealth doesn't vanish, if you don't tax it. It's spent, reinvested, and eventually taxed again. A more serious issue are the people who want to cut spending, but not their Social Security, Medicare, and defense - that's more than half the budget right there folks.

Nevertheless, there are merits to the view that the tax rate is already high enough, but the problem is that the multinational corporations and the wealthy, with the help of politicians, devised various nefarious schemes to decrease the tax they paid, thereby shifting the burden of taxation to the working class.

I'll agree that there is merit to that view, but I think that problem exists in the first place because of high spending. It's easy to obscure tax avoidance in the sea of noise that the federal government creates. And spending also creates bribes for the electorate.

Re:No Clinton No Bush

[khallow]

How about cutting a mere 99% of them then? I'm sure we could keep the handful or less than actually quells rebellions.

Re:No Clinton No Bush

A more serious issue are the people who want to cut spending, but not their Social Security, Medicare, and defense - that's more than half the budget right there folks.

People calling for cuts are willing to cut a subset of those things, just not all.

What is happening is that everyone has their own subset or plan for cuts, but nobody can come up with one that can get enough support from the various groups, not without butchering the contents to the point it doesn't get the job of spending cuts done.

Basically, it's the old We ARE Struggling Together trope.

If history is any indication, the outcome will not be pretty. The groups most likely to win in this free for all tend to be more authoritarian, or end up that way on their road to secure victory.

Re:No Clinton No Bush

[HornWumpus]

Have you been paying attention or have you just not thought things through.

The NSA has been spying on everybody for decades. That means they have a file on every politician. At this point money is just a reward that people can get out of politics. It can't buy anybody. They are all OWNED by the threat of decades in federal prison.

It's all about power. Money is for the small minded. Those that have power will always be able to put their hands on all the money they need.

It doesn't matter who wins elections. They are all dirty and all open books to the NSA.

Re:No Clinton No Bush

[HornWumpus]

Fair enough. We're still waiting for the spending cut part of Grahm-Rudman. Until that's done no more 'taxes today, spending cuts tomorrow deals.'

We're now in 'Spending cut now, taxes tomorrow' territory.

Re:No Clinton No Bush

[HornWumpus]

For definitions of political competence equal to 'stuffing ballot boxes and enriching himself'.

He started politics flat broke, retired a multimillionaire without ever holding an honest job.

Re:No Clinton No Bush

[Coren22]

If the Koch brothers contribute $890B every couple years to the elections, I cannot imagine what their fortune must look like. You focused on the wrong part of my comment. If the Koch brothers can afford to push that much money at elections, they must be more rich than Gates: https://www.google.com/search?... who is apparently worth around $80B, and is either the top or second place richest in the world.

Re:No Clinton No Bush

[__aanbvm4272]

Hyper inflation will occur when we finally have to call home all those dollars they been printing to keep the country afloat. (Every dollar is a 'share' of the countries worth.)

Re:No Clinton No Bush

[LynnwoodRooster]

Cut the plans, give back the money, and I bet you won't see the rebellions...

Re:No Clinton No Bush

[AK+Marc]

Give back what money? The taxes that the conservatives say are over-paid by the rich, that the poor don't pay anyway? How will giving Donald Trump another $5M stop a revolt by the tens (to hundreds) of millions of poor the US has?

Re:No Clinton No Bush

[khallow]

I think budget cutting will happen just because most people want a functioning society. And it'll be across the board with funding backed by few constituents being particularly hard hit.

Re:No Clinton No Bush

[khallow]

Competence and corruption aren't mutually exclusive.

Re:No Clinton No Bush

[HornWumpus]

True, but you are better off with incompetent corrupt people vs competent corrupt.

Re:No Clinton No Bush

[khallow]

I don't buy that at all. While the cat is away the mice will play. Just because your highly visible, elected official is incompetent, doesn't mean that the bureaucrats are. At least a competence official can keep the bureaucrats in line.

Re:No Clinton No Bush

I don't buy that at all. While the cat is away the mice will play.

Except this is a competent and corrupt official. That's no cat, that's a fox. In the hen house. The fox is on the same side as the mice.

Re:No Clinton No Bush

[khallow]

Elected officials and bureaucrats are not natural allies. They have some things in common, sure, but they also are at odds in motivation and goals.

And in a democratic state, the power should be concentrated in the elected officials. So yes, it is better to have a competent but corrupt elected official than the incompetent version, because then the power is concentrated more in the elected official and their motivations (such as appeasing voters enough to get reelected) than in the bureaucracy.

Re:No Clinton No Bush

Elected officials and bureaucrats are not natural allies. They have some things in common, sure, but they also are at odds in motivation and goals.

They may not be natural allies, but they're closer to each other than they are to the people. Thus I say "same" side.

And in a democratic state, the power should be concentrated in the elected officials.

Never said otherwise.

So yes, it is better to have a competent but corrupt elected official than the incompetent version, because then the power is concentrated more in the elected official and their motivations (such as appeasing voters enough to get reelected) than in the bureaucracy.

Power should be concentrated, but that doesn't mean more concentration is always better. Remember it is the competent and corrupt we're talking about here. Concentrating more power into the official means you're concentrating more power to the corrupt. When the corrupt get power, one of the first things they do is to make it easier to keep that power. Read: weaken the power of your vote, so they can appease voters less and collude with the bureaucracy more.

And the more competent your official is, the better they are at making this happen.

It's 3am and a phone is ringing in the White House

It’s 3 a.m. and your children are safe and asleep. But there’s a phone in the White House and it’s ringing.

Something’s happening in the world. Your vote will decide who answers that call, whether it’s someone who already knows the world’s leaders, knows the military — someone tested and ready to lead in a dangerous world.

It’s 3 a.m. and your children are safe and asleep. Who do you want answering the phone?

Not the idiot who set up a private, hopelessly unsecure email server illegally used to conduct official State Department business while skirting public disclosure laws.

I will be very disappointed if Clinton opponents don't use some version of an ad that highlights this.

Since when is a "B" grade an "F"?

I click on the https://www.ssllabs.com/ssltest/analyze.html?d=mail.clintonemail.com link and I see the overall rating is a "B" not a "F".

Once again Slashdot can't get headings right.

Re:Since when is a "B" grade an "F"?

[Kobun]

https://www.ssllabs.com/ssltes... produced a big red-boxed 'F' when I clicked on it. Perhaps their server isn't doing well with the load of Slashdot's attention?

Re:Since when is a "B" grade an "F"?

[Jhon]

I just checked and it says "F" in a bright red box.

SSL Report: mail.clintonemail.com (64.94.172.146)

What IP address did YOU see? Maybe there's more than one server being polled?

Re:Since when is a "B" grade an "F"?

As has been stated by many others above, at the time the article was posted the rating was shown as an 'F' with a scan date of March 7th, but apparently patches have very recently been applied (read after news of scandal broke) and the newest scan result, dated March 10, is now showing a 'B'.

Re:Since when is a "B" grade an "F"?

I just checked and it says "F" in a bright red box.

SSL Report: mail.clintonemail.com (64.94.172.146)

What IP address did YOU see? Maybe there's more than one server being polled?

I did the same thing to Bill Clinton and it came back with a big Scarlet A.

Ms.Clinton changes tune

Curious the woman behind the eponymous HillaryCare lately didn't trust the gubment to manage her email.

"F" rating?

[Tablizer]

Bad H! She should have used them gov't servers, which are D-

Re:"F" rating?

Bad H! She should have used them gov't servers, which are D-

Good news everyone! The Government email servers PASSED their security review!

Re:"F" rating?

[tricorn]

I'd be curious to know what problems would have been found AT THE TIME (not now, a few years later), with the e-mail server itself (not web front-ends other than as actual vectors to compromise the system, not just an individual connection; is there any indication Clinton ever used a web front-end?), and compare that with the state.gov e-mail server (also at the same time).

Comparing this to someone using a gmail account is irrelevant. The biggest threat to security is probably going to be the people at a commercial business.

The distinction between "personal" or "private" or "government" e-mail systems is sort of dumb when she's using a specific system AS a "government" e-mail system. Perhaps she even had it authorized through whatever route that might take, maybe having State IT people take a look at it.

What were the data retention policies for the state.gov e-mail server at the time? Did they retain every single piece of mail, so you could ask now to see how many Viagra spams she received while in office? If she deleted a message, was it archived or is it gone now? Would outgoing messages be retained? What if an e-mail client was configured to send outgoing e-mail directly to the recipients server (I realize that's becoming harder to do now as more and more servers are set up to require relaying through an official authenticated server via DNS records, but what was the situation then?)

The people to put on the stand here are the IT people responsible for the state.gov e-mail servers and the IT people that Clinton used to set up her server.

No Law broken

[JimSadler]

Mrs. Clinton broke no laws at all. The laws requiring saving of emails by officials were passed after Mr. Clinton left office. Like all the other trashing this latest smear attempt is a wretched tactic by immoral right wing nuts to try to gain power. Bill Clinton may be the finest president in American history. If he could have stayed in office our national debt would be history, our economy would be robust and we could afford to fix most of what ails our nation. And that is really saying something after Reagan and Bush Sr. had America on its knees due to absurd economic theories that never had a chance of working. And then the right wingtards put another Bush in office who almost ended our nation and collapsed the economy of the entire world.

Re:No Law broken

[Anonymous+Codger]

I don't know whether to moderate you as Flamebait or Insightful, so I'll just leave this here.

Re:No Law broken

[93+Escort+Wagon]

Mrs. Clinton broke no laws at all. The laws requiring saving of emails by officials were passed after Mr. Clinton left office.

Nice attempt at obfuscation there. This has nothing to do with when Bill Clinton was President. This is about how Hillary Clinton handled her email while she was Secretary of State under President Obama.

Re:No Law broken

[DrStrangluv]

Just like the NSA surveillance programs, this isn't about "legal" vs "not legal". The NSA surveillance programs are "legal", but almost everyone outside of certain parts of the government understand that they shouldn't be. This is about choosing to circumvent systems that are in place to preserve access and security, in ways that possibly damaged national security. Should a person who would do that be elected President? Ms. Clinton is not her husband. Perhaps her best defense right now is that this was common practice. She may have been the last Secretary of State to use personal e-mail, but she was far from the first.

Re:No Law broken

[sycodon]

She did however break clear and unambiguous State Department Rules.

The fact that she is a Hypocrite is a bonus.

Re:No Law broken

[Archangel+Michael]

I bet if it was Palin, their cries would be a whole lot different (and they were). So much for "any appearance of impropriety" charge made by the Liberals on Conservatives.

Re:No Law broken

[celtic_hackr]

Perhaps you could use a non-partisan source to support that claim? So far, everything I've seen says she didn't break any rules.

Re:No Law broken

[g0bshiTe]

Take it by "another Bush" you mean Obama.

Re:No Law broken

[TwoEyedJack]

You forgot grifter and serial liar.

Re: No Law broken

I guess they got tired of yelling Benghazi!!!!

Re:No Law broken

[ScentCone]

So far, everything I've seen says she didn't break any rules.

She deliberately broke not only her boss's rules, but violated the rules she forced her own staffers to follow. But beyond that, she violated a plainly worded federal regulation: According to Section 1236.22 of the 2009 NARA requirements, “Agencies that allow employees to send and receive official electronic mail messages using a system not operated by the agency must ensure that Federal records sent or received on such systems are preserved in the appropriate agency recordkeeping system.”

She made no provision to make that happen while she was Secretary of State, and nor did she pass along any of those records as she left office. She set up a private server in her house to avoid complying with both the administration's own rules and that very specific federal regulation. And once a congressional investigation had their fill of her stonewalling and realized why State wasn't sending them any of her correspondence, they told her to cough them up .. and she had her own family business employees print out, on paper, a culled/filtered collection of messages that have weeks-long and months-long gaps in the records - and no independent entity can say what criteria she used to decide what was, or was not official. And if even a single email exchanged between her and some other party in the course of her entire tenure as the country's chief diplomat involved any classified information, there's another whole area of federal law that comes into play.

Re:No Law broken

[Straif]

The laws requiring the retention of all work records from federal agencies has been in place a very long time (1950's or so). There have been modifications to those laws over the years but they still stand in basically the same format as original.

The change made under Obama basically set a 20 day time limit on how long a person had to ensure any official record (external emails for example) was properly stored in the national archives for later retrieval and FOIA requests. These changes did not create the requirement for those documents to be retained, they merely set a time limit for their retention.

Under retention laws it was perfectly legal for a federal employee to use personal email for official use, but regardless of the server being used those emails were ALWAYS required to be retained and transmitted to the archives.

Each agency had the ability to dictate their own policies on external email usage and most, including State while Clinton was Secretary, had policies in place to discourage any outside email usage for official business. The rules in State were so strict that people were removed from office during Clinton's time there for using personal emails for work.

Re:No Law broken

[PapayaSF]

I believe this counts as a law. Was her server certified to FIPS 199 and NIST standards? Who did the certification? Were the results sent to the OMB?

I Disagree

I have been in the IT field for 30 years and I specialize in information security. Penetration testing and forensic investigations is what I do.

I do not agree with the assessment. Many argue that homes are more vulnerable, but even if it's the average home, it's far easier to find a disgruntled employee in some "cloud" service company and if you look at headlines in recent years like DRM, Target, SONY, and a number of others, you can see they are very vulnerable and for a lot of reasons.

It only takes one person on the inside, to screw things up. Edward Snowden did it with the NSA and Bradley Manning with the CIA.

Most homes are very vulnerable becuase they are all WIFI and not setup correctly. For those that do, they can be more secure. Add secret service to the mix and you have physical security.

Do you really think Clinton set up her own email server? No. She knows a lot of people in the industry and can be very selective. He data also remains under HER control, HER ownership, and if any of you idiots think your "cloud" data is safe, it just proves how inept you are.

I have to give her security grade a 'C', only because I don't have enough information to do a complete assessment.

Re:I Disagree

[darkmeridian]

It appears that whoever set up Clinton's email used GoDaddy as the SSL vendor. Seriously. Go Daddy.

Re:I Disagree

He[r] data also remains under HER control, HER ownership, and if any of you idiots think your "cloud" data is safe, it just proves how inept you are.

You are right but not for the reasons you believe. By owning the server she controls who can get the emails, and that includes from government investigators. When they review the emails she turns over, what proof is there that any problematic emails were not first erased? If it was in a "cloud" system, including a government system, then she would have lost the ability to sanitize the email trove before investigators get access. Regarding your calling people idiots who think differently than you and for trusting cloud systems, I guess it depends on against whom you are trying to protect the data.

Re:I Disagree

Things that make you go hmmm.......
mail.clintonemail.com resolves to New York. - 64.94.172.146
clintonemail.com resolves to the British Virgin islands - 208.91.197.27

Something is afoot.

Re:I Disagree

[g0bshiTe]

So you are working on the assumption that the person that setup her server and maintained was vetted, had security clearance?

Re:I Disagree

[Just+Some+Guy]

He data also remains under HER control, HER ownership

That's cute, except that it's not her data. That data is owned by the American people via its government, as are all official communications. When you're an officeholder, you don't "own" your official email.

Re:I Disagree

He[r] data also remains under HER control, HER ownership, and if any of you idiots think your "cloud" data is safe, it just proves how inept you are.

You are right but not for the reasons you believe. By owning the server she controls who can get the emails, and that includes from government investigators. When they review the emails she turns over, what proof is there that any problematic emails were not first erased? If it was in a "cloud" system, including a government system, then she would have lost the ability to sanitize the email trove before investigators get access. Regarding your calling people idiots who think differently than you and for trusting cloud systems, I guess it depends on against whom you are trying to protect the data.

Isn't that what Nixon thought about his tape recordings? It didn't work to hide his 18-minute gap and it shouldn't work to hide Hillary's many-months gap...but it probably will.

Re:I Disagree

That's cute, except it is HER data, until you prove otherwise. See when you are a US citizen you have certain rights that are not given away even when you become a senator.

It's not US Citizen, or Senator, it's both. So you need to show that she has not been forthright in turning over the official e-mails as requested.
Doesn't she get the same constitutional protections as you do?

Re:I Disagree

Why is that bad? Either it works or it doesn't, reputation doesn't mean a damn thing. Many people have been criticizing the certificate vendor yet not one has given valid reason.

Re:I Disagree

[Just+Some+Guy]

No. This was the email address she used for official state business. By law that is owned by the government and not by the individuals involved. This whole thing came up recently because there is evidence "that she has not been forthright in turning over the official e-mails as requested", such as other parties dutifully turning over their emails which were in reply to something she'd sent, but the referenced email not being present in the files she submitted.

Re:I Disagree

[mbone]

So you are working on the assumption that the person that setup her server and maintained was vetted, had security clearance?

They might have been. I am sure Bill Clinton, as former POTUS, has access to the SIPRnet if he wants it, and so does the Secretary of State. People at that level commonly have secure lines into their house, etc.; if there is a crisis, and the President wants to call you at three AM, you can bet he also wants to use a secure line to do so.

So, the question is not, could she have?, the question is, did she?, and I don't think we know the answer to that.

Re:I Disagree

[ganjadude]

That's cute, except it is HER data, until you prove otherwise.

the problem is by breaking the rules it makes it impossible to verify if its true or not. therefore the default position on her should be that she is hiding something because she has a record of hiding things

Re:I Disagree

[Straif]

That's true for her time as a Senator. Senator's work emails are subject to the laws of the state they represent and are usually considered private.

The problem is by printing 55,000 pages of work emails from her time at State (with months of holes) she has shown that she has violated the FEDERAL retention laws by storing federal records on her system with no known plan to transmit them to the national archive as required by federal law. By law those documents are federal property and do not belong to her.

It's possible that by her own actions (showing she has emails she did not send to archives) she may already have committed a felony under the federal law. The mere concealment of federal records (her emails while at state) is a felony that can carry a 3 year sentence and is one of the few I've heard of that actually legally bars anyone convicted of from ever holding public office in the United States.

Though charges are unlikely, if the investigative panel looking at her emails manages to show even 1 email missing that they have access to through an outside source (not another federal employee) I'm sure there are enough people out for her blood that would consider filing.

Re:I Disagree

[MtViewGuy]

It's still a terrible idea in my humble opinion, unless Hillary Clinton hired the very best IT people to diligently upgrade the server operating system, the mail server software and properly configure the server to make it as secure as possible. Otherwise, someone--including the Russian FSB and the Chinese Ministry of State Security with their excellent hackers--could have taken all of the mail from that server and she would have never known what happened.

Re:I Disagree

[Zaelath]

Seen this twice now, and have to ask, "umm so?"

Are their primes worse than $1000 primes? Or do you have some proof that their backend is insecure?

IANAUSC: So how is a surprise?

[gb7djk]

People's memory is remarkably short. There is an (IIRC) official annual survey of the web (and other) servers in the USG's estate. That survey has regularly comes up with many, many poor security ratings. This is just one more example.

webmail != SMTP

[equilith]

The Qualys tester only runs against port 443.

What about the ports used by SMTP transport (using STARTTLS)?

Re:webmail != SMTP

What about the DNSSEC? (Hint: there is none.)

What about the firewall? The patching policy? The log server? The audit trail?

To be fair.. ..

To be fair, you can't compare today's SSL standards and possible exploits to the server that has not been used in the capacity of the SoS, since 2012. If we had scans from the server 2010 or 2011 or even 2012 than that might be a different story. But Everybody can play Monday morning QB.

Re:To be fair.. ..

While on Monday morning you may not have all the evidence still intact, when you look down and see what remains still proves that things were done wrongly then you can still draw some conclusions. It sets a bar saying it was at least THIS bad, and possibly/probably worse.

What difference at this point does it make?

[WaffleMonster]

In my view assuming there was a need for security the entire fault should lie with state dept allowing emails to be sent and received to and from any domains outside of their administrative influence when conducting "official business".

SMTP Email always get an "F" security rating no matter what. Checking whether webmail interface has a secure cert is like making sure the front gate of your castle is locked and secured while east and west gates remain open to the creepers at the gates.

Re:What difference at this point does it make?

[jbmartin6]

Since she was running the State Department I'm not clear on what you expect them to do. "No boss, you can't have that thing, we won't allow it"?

Re:What difference at this point does it make?

[sumdumass]

Yes. That is exactly what is expected. And if she overrulled them or retaliated, there are official channels to report it that carry whistle blower protections when department rules and laws are not being followed.

My guess is that it likely did not get that far because there likely isn't an auditing system in place to catch it. Even the president who learned about it in the news paper like the rest of us was sending and revieving mail from her in this manner and it was not caught.

Re:What difference at this point does it make?

Whistle blower protections???

HAHAHAHAHAHAHAHAHAHAHAHAHA

Snowden.

Re:What difference at this point does it make?

[sumdumass]

Snowden has nothing to do with it. Read what was said again and try to comprehend it time.

Re:What difference at this point does it make?

[ilparatzo]

No one in their right mind near the top of the hierarchy is going to limit their future by exposing and/or going up against a political family like the Clintons in this situation. Protections or not, you stand a good chance to relegating yourself to lower level jobs for the foreseeable future.

Same no doubt would go for Republican dynasties.

Re:What difference at this point does it make?

[sumdumass]

Still doesn't change the expectations. I mean someone failing to act lawfully or ethically because they are worried about their potential comfort in the future is little different then someone robbing a bank to stop forclosure on his home. I can understand why they did it but i still expect them to act differently- breaking laws aside and all.

Re:What difference at this point does it make?

At some point you have to let people do their jobs. If she was told from day one you must use our email system, or if she was reminded and she continued, that is another matter, but then again, the only real sane recourse would be to fire her from the job she already retired from or not hire her again. I certainly wouldn't favor jailing someone because they didn't use the correct email system provided it is all unclassified.

The next logical thing to do is to archive every phone call, but where does it end? How could a sane person do his job if every word was scanned by hundreds of others for political advantage?

I'd rather see representatives picked randomly out of a pool of educated intelligent people. Sure you can do some more hoops and such for more important positions like secretary of state, such as voting them out of the pool of past representatives or similar, but you have to get rid of the career politicians, since, as near as i can tell, the ability to win an election is almost prima facia evidence that you shouldn't be trusted to govern. Still, there are no doubt good politicians, but, simply put, when the average voter has only a small amount of time to try to hear the faint truths among all the noise that is cranked up to eleven, well, I have little faith of an optimum outcome. Still democracy does have the bonus of allowing us to fire the worst offenders. Then again, redistricting and the primary process pretty much gaurantees anything but a moderate rational individual...

Re:What difference at this point does it make?

[sumdumass]

All it wouldd take is to block the email from her private server. No threats of jail time involved at all. Either blacklist it at the government servers or even just send it to the junk mail of her boss's account. Hell, even forcing a sender validation request to every .gov email address would be enough to change her to a .gov email address for government email.

Btw, hillary was appointed to the state department not elected in case you are confusing her term as senator (which is state wide so no redistricting is possible). But while i agree that representatives should be educated, i do not agree in limiting them any further than the condtitution does. They are supposed to be representative of the people they represent. Placing restrictions on top of that eould take us back to the political class and essentially bring back the aristicrats. If you think government represents special interests over the people now, just wait until you limit it to these new aristicrats.

Different rules for the ruling elite

[schwit1]

If you treat federal law the way the secretary of state does, you go to prison.
If you treat IRS rules the way the IRS treats IRS rules, you go to prison
If you treat immigration controls the way our immigration authorities do, you go to prison.
If you’re as careless in your handling of firearms as the ATF is, you go to prison.
If you cook your business’s books the way the federal government cooks its books, you go to prison.

Re:Different rules for the ruling elite

"Steal a little and they throw you in jail. Steal a lot and they make you king."

Bob Dylan

Re:Different rules for the ruling elite

[fsagx]

Number four in your list is my favorite:

DEA Agent shoots himself in the foot.

Always good for a chuckle, no matter how many times I've seen it.

Re:Different rules for the ruling elite

[Trailer+Trash]

Spot on. We just found out the the Ferguson "judge" responsible for jailing people who owe a few hundred dollars on a parking fine actually owes $170,000 to the IRS.

The bottom line is that people in power don't think the rules apply to them. Under rule of law, the rules do apply to them. But as we've seen more and more lately it's difficult to enforce the rules when they rule the enforcement mechanisms.

Re:Different rules for the ruling elite

What law did she break? The one you're probably thinking of wasn't enacted until two years after she left.

Re:Different rules for the ruling elite

[Straif]

Federal retention laws have been in place for decades. The change that took place after her time a State was merely to set a 20 day limit on how long you had to send any outside documentation (emails from private addresses for example) to your agencies retention facility for transmission to the national archives. It did not create the requirement, merely set a limit on how long you could delay acting on it.

Weak Troll

Not even a good attempt.

Re:It's 3am and a phone is ringing in the White Ho

[fustakrakich]

Clinton opponents

Have you seen the people running 'against' her? They are actually out there to make her look good!

Shows as a B for me as well. Here is a screenshot

[beernutz]

http://screencast.com/t/usfMoC...

What is the deal here?

Re:It's 3am and a phone is ringing in the White Ho

[OzPeter]

I will be very disappointed if Clinton opponents don't use some version of an ad that highlights this.

And following that, the Democrats will put up the exact same ad, but featuring Jeb Bush.

There have been a bunch of Republicans who have admitted to using their own (non-governmental) email systems, two of which were also former secretaries of state:

Condoleezza Rice
Colin Powell
Jeb Bush
Bobby Jindal
Rick Perry
Sarah Palin

And that' most likely not all of them. But don't take this as GOP bashing, I'm pretty sure that this sort of thing is rampant on both sides of the aisle. But once one side lifts the veil on it, the other side will respond in kind.

Re:It's 3am and a phone is ringing in the White Ho

Well, I had Democratic opponents in mind, but, yeah, the field so far is very depressing.

Set up Clinton's Server: "Just Do It!"

[BoRegardless]

I can imagine the demands and the lack of discussion, as Hillary doesn't get into pedantic stuff like data security.

Re:It's 3am and a phone is ringing in the White Ho

[g0bshiTe]

Why not? Current POTUS wasn't tested nor ready to lead.

What's the Big Deal

[wisnoskij]

These are just politicians. They probably just forward porn and memes to eachother all day long, and occasionally mail some billionaire to ask for a donation..

Re:What's the Big Deal

[hey!]

You're joking, but people would be shocked how much time politicians spend begging for money. A typical congressman spends more time on an average day raising money than he does on legislative business. And if he's successful at fundraising, his reward is to be forced to spend more time raising money for his less successful colleagues. It's actually kind of a big deal.

Perfect, there is surely a backup

[DigitalPagan]

Now there's no excuse. The NSA should definitely have backups of those emails. Crisis averted everyone.

This is clearly just another...

vast right-wing conspiracy

Big boss hates/gets around IT

[Billly+Gates]

Why do you think clouds and BYD are so popular?

Because those annoying cost centers keep getting in the way with their change controls and tickets

We don't have time for that! The big boss needs this done now and will get his way in the end. We can focus on change management later etc.

Why is Hillary no different than any other boss who can't afford to wait on IT?

Right now I am in a dilemma? Our policy is to leave our computers on. No one follows it. We have a big update tonight and this app will throw an exception if it is matched with the server update. So I come and stay til 1am turning on computer every DAM time!

So I am tempted to give them hell and not do it tonight because SOP are to be ignored unless it is ITs fault. Point being people do not respect IT

Exactly.

[hey!]

The first thing I did when I saw the discrepancies is look for a test date listed on the page, and here it was: ue Mar 10 09:50:02 PDT 2015 .

So this "B" score was earned literally minutes ago. People who are seeing an "F" are probably seeing cached data.

a PSA from your friendly Republican party:

[Thud457]

Don't forget to vote November 9th!

Let's try something else

[YrWrstNtmr]

For 36 years, except for the period 2013-2017, there will have been either a Clinton or a Bush, in or next to the Big Chair.
Let's try something else for a while, OK.

Re:Let's try something else

[nobuddy]

Uhh. I hate to break it to you, but Obama is neither a Clinton, nor a Bush. So we have that break from 2008-2016 already.

Re:Let's try something else

[YrWrstNtmr]

" in or next to the Big Chair."

SecState counts as "next to"

Seriously, do not run for president

[slashmydots]

Here's two things you don't do when you want to run for president. First, have the NSA revelations then digital threats from foreign countries and then run a secret, rule-breaking email system with pathetic security. Second, be a Democrat in a country with over 10 trillion in debt and run a failed political campaign that ends multiple millions in debt. Seriously you lunatic, if you can't run your own campaign's budget, why the hell would we let you be in charge of the country's budget?

Here's a bonus one. Don't point at people in the audience and pretend to know them when they're not actually there and you're doing it to look more folksy.

government servers not secure, either

[Cmdr-Absurd]

The Social Security website gets and "F", too. And it has been that way for quite some time.
https://www.ssllabs.com/ssltes...
So damned if you do, damned if you don't.

Seriously

[WindBourne]

Do you really think that just because you constantly lie, that others are going to believe it?

But where is the SECRET-level physical security?

[bfwebster]

I had someone who did SECRET-grade e-mails setup in the military write the following to me:

So, if for example Clinton only dealt with SECRET materials and they were sent or received in her email, all of the equipment (routers, switches, etc.) would have to be rated for that SIPRNet connection. Also, the space in which the equipment and servers and client computers resided in would also have to meet the specifications for SECRET material. This would include various forms of physical access to the space in the form of secure cards, biometrics, etc. No space rated for SECRET opens with a key from the local hardware store. . . .

The biggest issue I see here would be is if the server was connected to the public Internet and it resided in a non-DoD-approved space.

Not sure there are biometrics installed in the Clinton home in Chappaqua. ..bruce..

Re: It's 3am and a phone is ringing in the White H

The previous one was tested and ready to lead?
I guess Govenerner of Texas is not a good test.

Re:It's 3am and a phone is ringing in the White Ho

[halivar]

Sarah Palin

I don't know about anyone else on the list; I'd never heard it, but in this instance, a hacker broke into her personal email looking for dirt and found absolutely nothing. If anything, the hack as completely exculpatory. So this makes me doubt the rest of your list, as well.

Republicans are now the behavioral bar!

[mveloso]

One funny thing about the Obama White House is that past Republican behavior has become the new bar by which Democrats are judged - even by Democrats.

"But - but - Dick Cheney did the same thing!"

Democrats have already lost.

Re:It's 3am and a phone is ringing in the White Ho

[Sarius64]

I will be very disappointed if Clinton opponents don't use some version of an ad that highlights this.

And following that, the Democrats will put up the exact same ad, but featuring Jeb Bush.

There have been a bunch of Republicans who have admitted to using their own (non-governmental) email systems, two of which were also former secretaries of state:

Condoleezza Rice

Apparently not: http://www.politico.com/story/...

Clintons email

Convenient?Secy Of State , has an offical E-mail to use.All that she emailed, Would not be on an private e mail.She did it for a reason,if her emails were private.Now the State Dept are going to release all her e mails,There will be nothing on them,She sent them out Private.

Re:It's 3am and a phone is ringing in the White Ho

... because Palin is well known to have used private email and was hacked you don't believe any of the other listed individuals, who have admitted to using private email, actually used private email. Yeah, you really got him there with your inescapable logic.

holy shit that is some good stuff you are smoking.

Server was rated for Sensitive information right?

Either that or somehow she sent sensitive data some other way, not likely if she sticks to the one email story...

I propose new hash-tag(s)

#clinton #worseThanSnowden

what difference does it make?

[superwiz]

Cynicism aside, show me a Democrat who will not vote for a Republican if she gets the nomination. Oh, and show me a Democrat who can gain enough support among Democratic Party primary voters to beat her. As long as voter turn out is as low as it is, "bringing out the vote" will be the way elections are won.

Re:But where is the SECRET-level physical security

[mbone]

I had someone who did SECRET-grade e-mails setup in the military write the following to me:

So, if for example Clinton only dealt with SECRET materials and they were sent or received in her email, all of the equipment (routers, switches, etc.) would have to be rated for that SIPRNet connection. Also, the space in which the equipment and servers and client computers resided in would also have to meet the specifications for SECRET material. This would include various forms of physical access to the space in the form of secure cards, biometrics, etc. No space rated for SECRET opens with a key from the local hardware store. . . .

The biggest issue I see here would be is if the server was connected to the public Internet and it resided in a non-DoD-approved space.

Not sure there are biometrics installed in the Clinton home in Chappaqua. ..bruce..

Precisely. You or I (I am assuming that you are not at the SoS level; I am not) could never do this for a job that involved secret discussions, as we could never get SIPRNet at our house, the servers secured, etc. Now, I am sure either the SoS or a former President can get SIPRNET at their house - they may need to take a call at 3:00 AM, after all, and that call may be secret in nature. (The current POTUS may well want to call a former POTUS in a crisis to ask about something mission critical, send him pictures etc. as part of the call, and I am sure they would not want to have to use an unsecured network to do this.) So, to me, the real question is, was this done properly, by properly vetted personnel with security clearances, training, etc.? It might have been (she certainly had access to these resources, and so did Bill), but if it wasn't, she IMO isn't fit to be President (and some network security guys need to be fired).

In my humble opinion, this is the real "nut" here - the rest is just a false crisis (turning over records is fixed once the records are turned over*), but if Vladimir Putin (or Rupert Murdoch) was reading all of her emails, that is a real issue. (Note that she could fix this today by simply saying "I just took advantage of the security structure set up for my husband after he left the White House," if something like that were true, this goes away.)

* Her opponents can of course use this against her, but, really, it's not going to go anywhere without evidence of other malfeasance.

Re:It's 3am and a phone is ringing in the White Ho

[Straif]

Of those you listed only Rice and Powell were subject to federal records keeping laws that Clinton is accused of violating.

Rice didn't use email (and on those rare occasions she did, reportedly used a .gov account) and Powell claims to have not retained his personal emails but claims to have cc'd someone at State when his emails involved official work (at the time that was an accepted records retention practice). All others you mentioned are only covered under state laws, if they even exist, and in at least 2 cases (Bush and Palin) their private emails have all been made public and nothing secretive or really of much interest found (in Jeb's case a bit too public for some peoples liking).

Re:It's 3am and a phone is ringing in the White Ho

[Straif]

Here's a heads up for you, state politicians are subject to state records retention laws NOT the Federal retention laws that Clinton is accused of violating; their use of private emails is irrelevant. Only Powell and Rice were subject to similar laws and at the time Powell's reported practice of cc'ing someone at State was considered acceptable retention policy and Rice didn't use email.

Her Hardware/Software?

What was she using? Who set it up for her?

Re:But where is the SECRET-level physical security

A PIN and an RFID fob are quite sufficient to access facilities that house Secret information. No need for biometrics.

After all, you can send Secret info through mail, if you use registered mail.

http://fas.org/sgp/isoo/safeguard.html (Read Sec 2004.8(c)(2) ) (or search for "(2) Secret. Secret information shall be transmitted by:")

Federal Information Security Management Act

[PapayaSF]

Thank you. And in addition, computer systems that store and process US government are (and were when she was SoS) required to be certified according to the requirements of the Federal Information Security Management Act of 2002. My understanding is that complying with that is not a trivial undertaking. So who did that for her? Who were her server admins? I guess they'll be getting some Congressional subpoenas, once we know who they are.

Start counting at 0 or 1?

All of y'all aren't clear at all. The argument isn't about WHO is where in the list. The argument is about numbering and how one expresses ordered lists. The original statement was "Hillary is second in line". You guys are arguing that factually she is not, but assume for a moment that it was factually correct. The second part of the statement was "The VP is", which is wrong. The President isn't in line, so he can't be the head of the line, therefore the VP is first making Hillary second. Acoustix attempted to conglomerate both arguments into one statement which obviously fooled you into ignoring the actual argument and instead made you worry about the contents of the list and its accuracy. Your observations are probably more important, but that isn't what we're worried about in this little sub thread. The OP basically said that we count starting with zero, which is the president. Now that I type that out, I think OP may have been attempting some subtle inference...

Nothing is safer nothing.

A stand alone server is the only way to go.

No way!

[bitterblackale]

Email -- it's not for security.