Judge: Stingrays Are 'Simply Too Powerful' Without Adequate Oversight

New submitter managerialslime sends news that an Illinois judge has issued new requirements the government must meet before it can use cell-site simulators, a.k.a. "stingrays," to monitor the communications of suspected criminals. While it's likely to set precedent for pushing back against government surveillance powers, the ruling is specific to the Northern District of Illinois for now. What is surprising is Judge Johnston’s order to compel government investigators to not only obtain a warrant (which he acknowledges they do in this case), but also to not use them when "an inordinate number of innocent third parties’ information will be collected," such as at a public sporting event. This first requirement runs counter to the FBI’s previous claim that it can warrantlessly use stingrays in public places, where no reasonable expectation of privacy is granted. Second, the judge requires that the government "immediately destroy" collateral data collection within 48 hours (and prove it to the court). Finally, Judge Johnston also notes: "Third, law enforcement officers are prohibited from using any data acquired beyond that necessary to determine the cell phone information of the target. A cell-site simulator is simply too powerful of a device to be used and the information captured by it too vast to allow its use without specific authorization from a fully informed court."

A step in the right direction

But in the end, these court orders and government actions do little. These organizations are almost clandestine in nature and are just going to do what they want. Props to GNAA.

Re:A step in the right direction

[bhcompy]

They'll still use it, but it will not be used in court, rather it will be used to gather information until another method of making a charge stick is found. It's not fruit of the poison tree at that point.

Re:A step in the right direction

[bigpat]

But in the end, these court orders and government actions do little. These organizations are almost clandestine in nature and are just going to do what they want.

The point of the law, as always, isn't about some wishful thinking about those who would choose to violate the law. It applies to how we want to act within the law. Murder, rape, theft, fraud, are all illegal and yet still happen far too often. The point of having a clearly defined line is to let people know when they have crossed over it.

Re:A step in the right direction

"simply too powerful" could then also be applied to describe the underlying network itself, and furthermore "the internet", therein justifying the very surveillance you think you've just won a battle against.

props indeed to GNAA... you're all idiots.

Re:A step in the right direction

>Props to GNAA.
Wut?

Re:A step in the right direction

What the Judge said actually translates to "Too disliked by the public to be used without a whitewashing panel and renewed secrecy."

Re:A step in the right direction

[sumdumass]

Well, it is still fruit of the poison tree but is only known as such if someone is willing to admit that was how they found the information.

Parallel construction largely relies on a lie being in place. If at any time it is discovered that this other source or means was crafted due to the illegal connections, it can and likely would be toss out with it.

Re:A step in the right direction

[Frobnicator]

Well, it is still fruit of the poison tree but is only known as such if someone is willing to admit that was how they found the information.

Parallel construction largely relies on a lie being in place. If at any time it is discovered that this other source or means was crafted due to the illegal connections, it can and likely would be toss out with it.

One neat thing about this type of deception is that the bigger it grows, the harder it is to hide. One person can keep a secret. Two people struggle to keep a secret. Hundreds of people cannot keep a secret, there will be a media leak by with a citation as a "confidential source not authorized to talk to the media."

If that happened it would not be one case tossed. It would be at least one case tossed and thousands of other cases re-opened for investigation, and intense scrutiny and a nasty public relations backlash.

We had a situation in a local PD where a highly acclaimed officer was caught faking field sobriety tests, falsifying reports and even the discovery of dashcam video showing the tazering of a sober person while shouting at them. In addition to the officer losing their job and various awards, there were various convictions overturned, convictions expunged, and several settlements allegedly of a quarter million dollars each were issued.

When discovered the impact to the groups is huge.

Discovery of illegal wiretaps and illegal records and failure to disclose potentially exculpatory evidence? That's the kind of thing that gets mass terminations and prison time for officers.

Re:A step in the right direction

[chihowa]

You have far too much faith in the system. The DEA outright admitted to using parallel construction (One DEA official had told Reuters: "Parallel construction is a law enforcement technique we use every day. It's decades old, a bedrock concept.") and no cases were reopened or even scrutinized.

If somebody at a little local PD does some sleazy illegal stuff, people may go to jail. When whole branches of the federal government start doing illegal stuff in an organized manner, it becomes the de facto law of the land. "Well, when the government does it, that means that it is not illegal." By definition, right?

Re: A step in the right direction

No, that's not what it means. It means one agency of the government has too much power and not enough transparency.

And when the DEA says parallel construction, I think what they mean is when they have a tipper who will not openly testify, so they have to find evidence they can admit. Though certainly, they are crooked and use "poisin fruit", there is an alternate explanation for the parallel construction comment.

Re: A step in the right direction

And right there is the problem. Not that they want to use a stingray but that just about every way in which they conduct business is illegal and they will sell their mothers to lie and protect their activities. This is like getting a hand slap. Dont mean squat.

Re: A step in the right direction

[chihowa]

Or maybe they're getting tips from domestic and foreign intelligence agencies and not just from innocuous tippers who won't testify. But if you want to trust them implicitly, then go right ahead.

Steve Irwin agrees

[JoeyRox]

Crikey!

Re:Steve Irwin agrees

[wisnoskij]

I came here to make the same joke. I don't have any mod points, but I believe that this should be upvoted.

Re:Steve Irwin agrees

[bluefoxlucid]

Ay, mate, gotta watch for the tail 'cause it's reeeeeallly pointy!

Re:Steve Irwin agrees

[tommyjcarpenter]

dammit I came here to say the same thing!

And here I thought....

they were adding much needed oversight on the Chevy Corvette Stingray!

Re:Jihad

[Coren22]

Perhaps it was modded down because it has nothing to do with stingray use by police?

G'day mate!!!

G'day mate!!!

Watch me harass this deadly black mamba with a stick!!

Brilliant!!!!

Great

[clonehappy]

So the three-letter-agencies and the local yokels will have to just continue using parallel construction. Isn't it amazing how many detailed and accurate "anonymous tips" the police receive?

Re:Great

[rsborg]

So the three-letter-agencies and the local yokels will have to just continue using parallel construction. Isn't it amazing how many detailed and accurate "anonymous tips" the police receive?

Not sure how Stingrays wouldn't be supremely helpful to parallel construction. Sure they can't prove it with the call records, but now they might be taken to task for even using them at all.

Police State no-likey this.

Re:Great

Parallel Construction: Find evidence in a manner which is not legally acceptable to present in court, but make up an alternative, legally acceptable, method by which it is theoretically possible that you could potentially find the evidence, tell the court that is how you found the evidence. (AKA: Lie to the court about the methods used to discover evidence that you're presenting in court.)

Re:Great

I bet these organizations have collected so much juicy information now they don't have to worry about being able to force someone else to do their dirty work for them. The problem with mass surveillance is that it tends to collect too much information that's ripe for abuse. There's nothing in the law that forbids these agencies from blackmailing people if it gets them what they want. Good luck trying to prove any harm they cause; you can't. You can't ever sue them for it because you can't ever prove it. Meanwhile these "anonymous informants" they use seem to get enormous credibility even though we can't legally find out who they are. Hearsay can be used to roast my ass, but it doesn't work if I use it and the whole standard of proof goes to shit. You can't run any legal system like that.

So now the law is useless. You can't possibly follow it and they know enough to compel anyone to break it anyway. I hear they turn teenagers into drug kingpins these days...

The whole system is morally bankrupt.

Re:Great

[NormalVisual]

It's usually a little more subtle than that. Once the evidence is discovered via illegal means, the information is forwarded on to the local law enforcement folks, who then might tail the suspect until they do something *provably* illegal (tail light out, improper lane change, loitering, etc.). Once they have an excuse to detain the suspect, they can use dogs (also questionable, IMO) or whatever other *actual, documented* means (as opposed to "theoretical" means) to get the evidence that will then stand up to scrutiny in court. I imagine it often happens that the arresting officers themselves aren't even let in on the secret by their bosses. They're just told to look for a specific person or make/model of car with this license plate number, and find a reason to pull it over.

Your basic premise is sound though - it's still nothing more than a near-bulletproof means of gaining evidence illegally and keeping the true means by which it was discovered from the court. Lies of omission are still lies.

Re:Great

[Budgreen]

ohio state highway patrol (turnpike) works this way.

only they can once a week seem to pull someone over for an improper lane change or faulty license plate light and magically find 10 keys of coke hidden in a secret compartment inside the gas tank,

I drive through there with marker lights out all the time, but i'm not doing anything illegal so I won't get stopped.. but i guarantee if i had a trunk full of weed and only let my blinker flash twice before changing lanes, i would be in jail,

Re:Coren22 assburger retard: Eat your words

[Coren22]

Wow, you have really lost your mind over this, it is lovely to see I am getting to you finally, you are starting to correct some of the issues, though you did still ignore much of my responses yet again. I guess I shouldn't expect too much from you.

Re:Jihad

Yeah, because Saudi Police won't use Stingrays - at all.

No siree.

Re:Jihad

[Noah+Haders]

Modded down because it's offtopic...

Re:Coren22 assburger retard: Eat your words

See subject & this (my ware's been verified safe by 1 of the best) http://slashdot.org/comments.p... & this (60++ reputable sources say it's safe too) http://slashdot.org/comments.p... + this (false positives filtering done by my sources for hosts data AND my program too vs. your "MITM" bullshit) http://slashdot.org/comments.p... & lastly this (your lies on AD+DNS I never once said - show us where I did scumbag & YOUR SCREWUPS ON ADMIN PRIVELEGE USE IN MY PROGRAM) http://slashdot.org/comments.p...

* You fucking worm...

(Why'd you run from those, hmmm?)

APK

P.S.=> I am going to annihilate you publicly for those you reprehensible piece of fucking lying malicious libelous trolling trash - & YES I EMAILED Mr. Steven Burn of MalwareBytes today to make a statement that he has indeed seen my code & checked it for safety prior to hosting AND RECOMMENDING IT you disgusting piece of fucking libeling lying trolling mentally damaged goods retarded assburgers crap... apk

APK is my hero,

Re:Coren22, are you wrong on these things?

[Coren22]

That is easy, no.

countermeasures?

Can anything be done by privacy-concious folks to mitigate being swept up in overzealous use of such devices? Is it possible to control which cell towers your phone communicates with? Maybe a whitelist type thing? Are there crowd sourced maps of 'good cell towers' and known stingray devices?

Re:countermeasures?

Don't use a cell phone? No, really. Don't use a cell phone. Or don't say anything private on one.

Re: countermeasures?

Stingrays don't stay in one place any longer than they need it to so a map won't help much.
They work by lying about their signal strength which makes your phone prefer them. Then they tell your phone they don't support encryption so your phone stops using it. Some phones will bitch about that but those phones aren't popular so good luck finding one.

Re:Ok, 1 step @ a time... apk

[Coren22]

http://slashdot.org/comments.p...

Why do you keep asking me to repeat myself? Do you have short term memory loss?

Re:Love to meet you in person pussy... apk

[Coren22]

I'm not the AC, but I'll bite.

Come at me bro.

Re:Answer the question here retard

[Coren22]

http://slashdot.org/comments.p...

Is reading too much to ask? You ask the question, read the freaking answer. Yes, you claimed that DNS wasn't needed by trying to say that it uses more resources to run than a hosts file.

Re: These Republican judges always stand with free

They truly are the party of death.

Why use stingrays at all?

[hawguy]

Is there any information a stingray can collect that the cellular carriers don't also collect?

The stingray just seems like an end-run around getting a court order to subpoena the information from the carriers.

Re:Why use stingrays at all?

[AHuxley]

They get location, tech details about a call (unique ID numbers, traffic data), If needed voice prints, voice or message content, mapping or gov malware push down to allow a phone to be activated (live mic) or tracked.
"Turns Out Police Stingray Spy Tools Can Indeed Record Calls" (10.28.15)
http://www.wired.com/2015/10/s...
Why? Parallel construction. It gets around needing a warrant, taking to/entering details into any court system or having any telco database knowing who is been looked at.
Both court systems and telco databases can be seen by *many* different people as a sensitive case is been investigated.

Re:Why use stingrays at all?

[ShaunC]

Is there any information a stingray can collect that the cellular carriers don't also collect?

Yes, everyone else's information in addition to the hypothetical suspect's, with zero requirement for any semblance of probable cause.

The stingray just seems like an end-run around getting a court order to subpoena the information from the carriers.

Right, that's the whole point. The court would never grant a subpoena for information about "everyone who was in the area of Main St. and 4th Ave. on January the 9th," so they're subverting the court altogether.

Where are you in Maryland? apk

Better yet, come meet me here - you know where I am!

* :)

APK

P.S.=> You little FUCK - I will put your ass out, GUARAN-fucking-TEED you little cocksucking libelling lying motherfucker mentally damaged good do nothing trolling piece of SHIT... apk

Re:Where are you in Maryland? apk

[Coren22]

The smell might knock me out, but it is highly unlikely you could. You would probably hide behind your mom.

Re:Where are you in Maryland? apk

That's not all you're hiding from now is it, Coren22 http://slashdot.org/comments.p... ?

Re:Where are you in Maryland? apk

[Zontar+The+Mindless]

Better yet, come meet me here - you know where I am!

So does the rest of the planet, including me. As you know quite well, Mr Internet Tough Guy.

Re:Where are you in Maryland? apk

LOL Was it you who sent him the postcard in the snail mail?

Re:Where are you in Maryland? apk

[Coren22]

You are my hero. How did you resist the burning poop gag though?

Re: These Republican judges always stand with free

Instead of protecting rights, they need to start thinking about the children.

Re:Answer the question here retard

Is using conventional syntax, capitalization, and conversational tone too much for a venomous, lowlife wannabe-troll like you?

WTF does it have to do w/ AD & bullshit

See subject & your lying words again motherfucker:

"Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015

Where'd I say it? Show us. I say AD needs internal DNS far back as 2007 http://forums.tweaktown.com/wi...

See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there on OpenDNS free (I use it) + AD in my security guide.

APK

P.S.=> WTF? Where did I say I don't use DNS too? I do & detailed it for you AGAIN (my std. post on it vs. hosts) -> http://slashdot.org/comments.p... apk

Hiding behind "Coren22" pussy?

See subject: Anytime you LIKE motherfucker, come on face to face with me and I will END your retarded motherfucking ass... where in Maryland are you pussy?

APK

P.S.=> You're a little piece of fucking shit that needs to get his jaw fucking broken... apk

Re:Hiding behind "Coren22" pussy?

[Coren22]

What, are you going to try and sit on me?

Fuck no

Any government official who eavesdrops on the communications of US citizens should get the death penalty. No exceptions.

LMAO - Zontar the postcard pussy... apk

See subject everyone: Hello pussy!

APK

P.S.=> You're welcome to talk shit to my face too pussy... I'll hospitalize you in less than a minute... apk

Crikey!

Judge: Stingrays Are 'Simply Too Powerful' Without Adequate Oversight

The ghost of Steve Irwin agrees!

FINALLY!

[tgrigsby]

Someone who gets it!

Without getting stupidly extremist ("Death to eavesdroppers"? Really?!), our law enforcement and judicial systems have gotten off into the weeds and need to be reminded that the spirit of the Constitutional amendments that grant privacy are designed to limit personal exposure down to only what is needed to investigate specific crimes committed by specific individuals. The idea of casting a wide net and picking up everyone doing anything wrong will always be attractive and based on the faulty logic that our judicial system is perfect in discerning proof of offense from misleading and incomplete evidence. The Constitution, on the other hand, assumes the judicial system is imperfect and must be held to a high standard that assumes imperfection.

Same problem but in opposite direction

I just see this as the same problem: Judges who do not understand technology making rulings on the subject. Sure, it's a good ruling for the privacy side. But it completely fails to understand that while one can choose where they are deployed geographically one cannot choose to deploy them in a way that will not collect inordinate amount of data on the innocent.

Kudos on the ruling, I'd rather see technology misunderstood in favor of privacy (for a change...) But it is still technology misunderstood.

Re:Coren22 - total punk & running... apk

[Coren22]

So responding to the question three times is running away...I see...you are deranged aren't you?

Cell phone company to only allow registered towers

This is something that as the CEO of a cell phone company you could fight against.

Why hasn't someone simply said "No, the phones we issue will not connect to anything short of a proper registered cell phone tower which WE own, stingrays will be ignored".

Or is that somethign that isn't technically possible? I'm sure there's a way. And I for one would be quite willing to be restricted to the coverage area of a specific network IF that also ensured that I was guaranteed to not be fooled by a stingray.

Alternatively, is there not some way to overload the stingray so that the data it collects is simply useless, or better the stingray device is destroyed?

Next step?

[tgrigsby]

Perhaps carriers should be forced, by law, to encrypt their traffic such that the police would necessarily be forced to ask for the keys to decrypt the calls from a specific phone?

Re:Next step?

[sumdumass]

Stingrays wouldn't suffer any setback in this light. They work by simulating a cell tower and it is very difficult to find out that you are not connected to a legitimate tower.

Either way, the handset would have to negotiate the encryption key in which they capture or just mimic, or it would have to be hard coded into the system in which they already mimic. The same people producing the stingrays are likely the same producing the cell towers. Even if they are not, they are designed so your handset will not know the difference.

Re:Next step?

3G and 4G require the network to identify itself. You either need the carrier private key or downgrade the link to 2G (what most stingray class devices do)

Re:Next step?

[david_thornley]

3G and 4G require the network to identify itself. You either need the carrier private key or downgrade the link to 2G (what most stingray class devices do)

So I'm likely to know I'm on a Stingray. Do you think I could sort of wardrive to try to locate the device? Or should I just call a random friend and talk about it and say bad things about the FBI and law enforcement while on the line?

Re:Next step?

[sumdumass]

I've often thought about crap like that. Get a few burner phones, find a stingray and say we are moving two kilos of cocaine, the pot is in and we need to move a bale or something. Perhaps talk about someone selling explosives and going to pick them up at a specific time and location and wanting backup to watch your back. Then identifying myself as an older person driving a car which make and model and license matches that of the local judge or something. Perhaps the mayor's wife or family or something like that. Maybe even taping the burner phone under the bumper or something so they close in for the parallel construction in confidence.

I'm not sure if you could get into trouble for something like that. It would seem that if they wanted to bust you for something, they would either have to fabricate it or reveal their illegal wiretapping as the reason for arresting you.

Re:Next step?

[ShaunC]

So I'm likely to know I'm on a Stingray. Do you think I could sort of wardrive to try to locate the device?

Kinda. You can install AIMSICD on an Android phone; it displays a map of cell towers and alerts you when the presence of a stingray is likely. An icon in the phone's status bar will change from green, to yellow, to orange, to red indicating the threat level. I've seen a couple of yellows, which means something weird is going on with tower IDs, but isn't necessarily dangerous. If you got an orange or red icon you could pull up the tower map, find the dot, and drive towards it (or very fast away from it!).

Re:Next step?

[IamTheRealMike]

There are apps for Android that claim to do exactly that. I believe some of them warn you if you were downgraded to 2G unexpectedly or if encryption was switched off by the cell site.

Two problems. One is nobody uses such apps. It needs to be integrated with the OS really. And another is that apparently the makers of the Stingray devices have a device that can attack 3G networks as well. This latter device is only rumoured and last time I researched it, I concluded almost nothing is known about how it works, assuming it actually works at all. It's possible it's doing something like exploiting bugs in radio firmwares or something like that.

I use DNS but where'd I say

"Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015

Where'd I say it? Show us. I say AD needs internal DNS far back as 2007 http://forums.tweaktown.com/wi...

See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there on OpenDNS free (I use it) + AD in my security guide.

* I even proved I use DNS http://slashdot.org/comments.p... albeit REMOTE DNS, not local (wastes too much power, cpu & RAM with all of its parts + has security issues galore)

So where do you get the IDEA I said it's not worth using DNS much less with AD which I easily proved you wrong on ABOVE & with data of me saying it LONG AGO...?

APK

P.S.=> Not your FUCKED UP REASONING (your brain isn't normal assburgers retard) but where DID I SAY THAT which is in quotes above? Show us & answer here scumbag motherfucker... apk

Re:Cell phone company to only allow registered tow

[PPH]

This is something that as the CEO of a cell phone company you could fight against.

If you wanted to be harrassed by TLAs for the rest of your life.

I have a phone that displays the difference between a secure call/data connection and an unsecure (unencrypted) one. It is an ancient Motorola RAZR V3. Now, correct me if I'm wrong, but in the case of more modern phones, this feature has been dropped. And I'd guess that this was at the request of law enforcement.

Re:Coren22 - total punk & running... apk

Coren you say apk doesn't run dns so how can you it when he uses it? Where did he say he ran ad minus dns? It's all we want to know.

Where is the FCC in all of this?

If I set up a Cell simulator I would be hunted down and arrested. Doesn't the FCC take a very dim vue of such activities?

Re:Where is the FCC in all of this?

Did you count the number of letters in FCC? Notice it's the same number of letters as in FBI and CIA and NSA? Those are all known as TLAs and they all whore around town together. They certainly aren't going to cock-block each other.

FBI to Judge Johnston

"We don't use stingrays. Prove to us that we do. Neither ownership nor signing out a stingray constitutes proof. Should you be able to prove it we will issue an NSL and shut you down based upon National Security considerations. Also we have the President, Administration, CIA, NSA and Homeland Security on our side."

Problem solved!

Wow, did a troll just get +5

[rsilvergun]

Seriously. We're not talking about the CIA here. You want to build a Stingray? There are plans online. It's not hard. If I was a crook I'd say let 'em use one against me in the way you're suggesting. Without a court order it gets thrown out. If you want to stop worrying about the rest of the bad guys out there then go have a look at what Bernie Sanders is doing...

Meh, you do what you can

[rsilvergun]

Just because some asshats will still break the law doesn't mean we should give up on enforcing it.

Mobster judge? Trying to avoid corruption scandal?

I first thought 'Wow, a judge who gets it!' then said 'Wait a tic.... Illinois... Chicago... Corruption and Mobsters. Oh, I get it now.'

Does anyone else doubt that this is a self serving ruling intended to avoid 'collateral investigations' of local political/crime figures thanks to savvy abuse of the stingray on a warrant for some small fry who will be in a similiar area to a bigshot who can 'accidentally have his data intercepted'?

While I cheer for the aversion of a rights abuse for the rest of us, I have to wonder who this will really be benefitting in the short term.

Regulation

This is regulation that I can agree with.

Re: A step in the right direction ..privacy

I expect my calls to be private even on the street.
Someone has to make an encryption app for the calls where you exchange keys in person and they are never on the network.

Re:Jihad

What the Koran says doesn't have nearly as much to do with what most Muslims believe as you seem to think it does.

The relationship is identical to that of Christianity with the Bible. They proffer the book as the authority for their beliefs, but selectively ignore passages they don't like, and liberally interpret (totally change the meaning of) everything else. This happens because the greater part of the believers have socially matured to the point where they can see the evil in a lot of what was written in their ancient scriptures, but they can't yet bring themselves to let go of them (mostly due to the fear of punishment in the afterlife if they do). So, they reinterpret in order to have it both ways.

If you went around saying "Christians hate their families! They hate their siblings and their husbands and their wives, because that is exactly what Jesus told them to do," everyone would recognize you for the idiot you are. Yes, the Bible says that, and no, Christians don't believe that. Same thing here, Yes, the Koran says Jihad is duty, and no, most Muslims don't believe that.

Re: A step in the right direction ..privacy

[niftymitch]

I expect my calls to be private even on the street.
Someone has to make an encryption app for the calls where you exchange keys in person and they are never on the network.

Expectation of privacy needs to be reviewed. Definitions of privacy should not be capricious.
There is privacy in a crowded noisy room.
There is privacy in the middle of an open field.
There is privacy in the home.
There is privacy in the bedroom (hotels have bedrooms).
There is privacy in a special RF shielded, sound deadening special room.

A conversation in a restaurant while on a date has privacy expectation.
There is privacy in the confessional of the catholic church.

To subject the population to privacy rules for NSA secret meetings
is folly.

Not far enought

It's a step in the right direction.

But there's a fundamental problem here.

If the FBI is claiming "that it can warrantlessly use stingrays in public places, where no reasonable expectation of privacy is granted", then it is violating the Bill of Rights.

There are many situations where an expectation of privacy can exist in a public place. For example, if one is hiking on public lands, one might step behind a tree to relieve oneself.

That is reasonable conduct.

An expectation of privacy certainly exists in that situation.

Yet one is on public lands, which are a public place by definition.

The conclusion follows: the FBI's position is invalid. An expectation of privacy can exist in a public place.

Reasonable conduct, in addition to a broad, strong right to privacy, are certainly fundamental rights "retained by the people" under the 9th Amendment, and "reserved to the people" under the 10th Amendment.

It follows that not only is the FBI's position invalid, but it is illegal. Any precedents to the contrary are themselves illegal.

A policy consistent with the Bill of Rights would require a highly specific warrant for any surveillance mechanism involving an artificial enhancement to the human sensory system. Whether or not one is in a public place is irrelevant. We don't want the FBI putting a cloud hidden cameras behind every tree on public lands, or anything equivalent to that.

Time for the government to stop treating the Bill of Rights like toilet paper.

Coren22 = "Run, Forrest: RUN!!!" #1/6

"Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015

Where'd I say it? Show us (not your illogic logic but where I literally said that). I say AD needs internal DNS far back as 2007

http://forums.tweaktown.com/wi...

See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there on OpenDNS free (I use it) + AD in my security guide.

Running from a simple question WHERE I said that specifically that you shoot your mouth off lying about it & me, hmmm?

(OR is it just your mentally damaged goods assburgers brain acting up again w/ illogic logic trying to put words in my mouth I never said? Yes...) ... And

Where did I say I don't use DNS too?

Clue: I do & detailed it for you AGAIN (via my std. post on DNS vs. hosts) -> http://slashdot.org/comments.p...

APK

P.S.=> Con't. in 2/6... apk

Coren22 = "Run, Forrest: RUN!!!" #2/6

"figured out why privilege escalation's a bad thing?" - by Coren22 on Tuesday September 22, 2015

How else can I programmatically update hosts itself?

---

"it requires elevation to write hosts" - by Coren22 (1625475) on Wednesday September 23, 2015

Hypocrite later admits it!

Even MalwareBytes AntiMalware DEMANDS it or it can't do a job fully like many security tools!

---

"Needing admin privileges every time a program updates is poor design" - by Coren22 (1625475) on Tuesday November 10, 2015

Mine doesn't to get new data to update hosts vs. threats. Only hosts itself updates need it vs. WFP/SFP. Users set it too. It's not programmatic impersonation.

---

"90's tech to fight modern war" - by Coren22 (1625475) on Tuesday November 10, 2015

Ozymandias/Watchmen per a namesake:

"I resolved to apply antiquities teachings" (hosts) "to our world today & began my path to conquest - Conquest not of men but of the evils that beset them: Fossil Fuels (antispyware), Oil (antivir), Nuclear Power (addons) are like a drug & you gentlemen along w/ foreign interests are the pushers"

It works Aryeh Goretsky NOD32/ESET hosts = good security-> http://it.slashdot.org/comment...

Oliver Day (Symantec) too-> http://www.securityfocus.com/c...

MalwareBytes' hpHosts' Admin hosts + RECOMMENDS my APK Hosts File Engine 9.0++ SR-2 32/64-bit-> http://hosts-file.net/?s=Downl...

APK

P.S.=> Con't. in #3/6... apk

Coren22 = "Run, Forrest: RUN!!!" #3/6

"I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)

62 reputable sources + /. users say different:

Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...

+

the 32-bit model https://www.virustotal.com/en/...

&

Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...

---

MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...

(& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:

"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

APK

P.S.=> Con't in part #4/6... apk

Coren22 = "Run, Forrest: RUN!!!" #3/6

"I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)

62 reputable sources + /. users say different:

Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...

+

the 32-bit model https://www.virustotal.com/en/...

&

Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...

---

MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...

(& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:

"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

APK

P.S.=> Con't in part #4/6... apk

Coren22 = "Run, Forrest: RUN!!!" #4/6

"His newest post is trying to refute that MiTM attack opportunity his software provides" - by Coren22 (1625475) on Wednesday November 18, 2015

I DISPROVED it: Only hardcoded favs users provide themselves are REVERSE DNS verified.

My program filters 5,500++ false positives:

1.) Search engines
2.) Antivirus (e.g. updaters)
3.) Security community sites
4.) Captchas, brower home pages + download pages
5.) Ebay/Amazon (shopper & banking)

(Security community I get hosts data from do false positives filters in current data + removal lists).

---

"won't demonstrate security of his product be exposing the source (someone might steal it!)" - by Coren22 (1625475) on Wednesday November 18, 2015

I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

"the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015

My ware went thru code verification by Mr. Steven Burn of Malwarebytes' hpHosts

http://slashdot.org/comments.p...

A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...

NOT a secretary!

---

YOU BLEW IT ON ADMIN PRIV TOO: My program doesn't require it hosts does (WFP/SFP): my program protects hosts beyond it!

I.E.-> I run manually minus admin priv & drag result to hosts naming it "hosts" overwriting original.

Only auto update needs it (WFP/SFP) & users set it themselves in program shortcut: Not programmatic impersonation.

---

DNS introduces a SECURITY ISSUE RIDDLED SINGLE POINT OF FAILURE & doesn't secure down to endpoints on a LAN -> http://slashdot.org/comments.p...

How I use DNS-> http://slshdot.org/comments.pl... & what hosts overcome in DNS fails!

APK

P.S.=> Con't in part #5/6... apk

Coren22 = "Run, Forrest: RUN!!!" #5/6

"Virus scanners/Adblock software don't need admin priv to update" - by Coren22 (1625475) on Tuesday November 10, 2015

Neither does my program. AV does to remove threats - Adblock addons = Vastly INFERIOR in abilities + efficiency vs. hosts as I proved & no one proved me wrong to date!

---

"your software does" - by Coren22 (1625475) on Tuesday November 10, 2015

No hosts do (WFP/SFP) - Intake update of new hosts data doesn't!

---

"won't reveal your source code" - by Coren22 (1625475) on Tuesday November 10, 2015

I don't owe you it. I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

---

"What's stopping you from pointing my bank's web site at your private server?" - by Coren22 (1625475) on Tuesday November 10, 2015

I don't keep a server. Security guru (not - you create no ware for security & your forensics skills = non-existent): Put it in a VM, trace it via process monitor + wireshark (don't need code)!

---

"the possibility of being caught, which would be pretty hard to catch w/ such a large hosts file, as no one can go through it manually." - by Coren22 (1625475) on Tuesday November 10, 2015

I put hardcoded fav sites @ top of hosts for speed & reliabilty - spotted easily & bulk of hosts = sorted blocked known bad threats provided by the security community (filtered vs. 5,500++ false positive possibles in my program & by current security community data).

---

"What are you going to do when Windows gets rid of the hosts file completely?" - by Coren22 (1625475) on Tuesday November 10, 2015

Hasn't happened!

---

"They have already taken steps to make it useless in Windows 10." - by Coren22 (1625475) on Tuesday November 10, 2015

It works there!

Telemetry's killed 10 by itself: VISTA = Win10 = Win8 = flops - who're you fooling other than yourself?

APK

P.S.=> Con't. in #6/6... apk

Coren22 = "Run, Forrest: RUN!!!" #6/6

Coren22 'eats his words' vs. me 2x yet again:

"introduces risk you are relying on a 3rd party to update a hosts file potentially opening you up to MITM attacks" - by Coren22 (1625475) on Tuesday November 17, 2015

How?

My prog only puts entries in as non-blocking to hostnames is ones users give it as favs to speed up @ TOP of hosts REVERSE DNS VERIFIED!

(For more speed, & reliability + security - in RAM as 1st resolver queried = faster & more secure vs. remote DNS w/ all its security issues in Kaminsky flaw, DNSChanger malware IP stack settings, routers bushwhacked in DNS settings, rogue DNS, Open DNS servers abused by malware. It aids in reliability vs. redirects).

YOU'D SPOT IT INSTANTLY @ TOP OF CUSTOM HOSTS & can easily edit anything you want out!

(Rest = known bad sites from 10 reputable security community sites for blocking - the MAJORITY of what's in my hosts files!)

+ my sources do removal lists vs. false positives & helped me create a "FP" filter in my program (5,500++ of them)!

---

"maybe one day you can get a score 5 comment" - by Coren22 (1625475) on Tuesday November 17, 2015

See subject & ~ 12 +5 upmods: "Eat your words" (1st one: You tried using what I post there against me to FAIL):

+5 'modded up' posts by "yours truly" (11):

http://news.slashdot.org/comme...
http://tech.slashdot.org/comme...
http://news.slashdot.org/comme...
http://science.slashdot.org/co...
http://tech.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://news.slashdot.org/comme...
http://news.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://yro.slashdot.org/commen...
http://yro.slashdot.org/commen...

"You believe you are getting the better of me" - by Coren22 (1625475) on Tuesday November 17, 2015

YOU GOT THE BEST OF YOURSELF in fails & lies about me. Your immature signatures about me SCREAM you're butthurt - Did it to yourself.

APK

P.S.=> You fail Coren22... apk

Coren22 = "Run, Forrest: RUN!!!" #1/6

"Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015

Where'd I say it? Show us (not illogic logic but where I literally said it). I say AD needs internal DNS far back as 2007

http://forums.tweaktown.com/wi...

See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there in my security guide.

Fact: You shoot your mouth off lying about it & me, hmmm?

(It's your mentally damaged goods assburgers brain acting up trying to put words in my mouth I never said? Yes...)

---

Where did I say I don't use DNS too?

Clue: I do & detailed it for you AGAIN (via my std. post on DNS vs. hosts) -> http://slashdot.org/comments.p...

---

"You must really suck at programming" - by Coren22 on Monday November 23, 2015

What've you programmed? Other /.'ers disagree:

"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

APK

P.S.=> Con't. in 2/6... apk

Coren22 = "Run, Forrest: RUN!!!" #2/6

"figured out why privilege escalation's a bad thing?" - by Coren22 on Tuesday September 22, 2015

How else can I programmatically update hosts itself?

---

"it requires elevation to write hosts" - by Coren22 (1625475) on Wednesday September 23, 2015

Hypocrite later admits it!

Even MalwareBytes AntiMalware DEMANDS it or it can't do a job fully like many security tools!

---

"Needing admin privileges every time a program updates is poor design" - by Coren22 (1625475) on Tuesday November 10, 2015

Mine doesn't to get new data to update hosts vs. threats. Only hosts itself updates need it vs. WFP/SFP. Users set it too. It's not programmatic impersonation.

---

"90's tech to fight modern war" - by Coren22 (1625475) on Tuesday November 10, 2015

Ozymandias/Watchmen per a namesake:

"I resolved to apply antiquities teachings" (hosts) "to our world today & began my path to conquest - Conquest not of men but of the evils that beset them: Fossil Fuels (antispyware), Oil (antivir), Nuclear Power (addons) are like a drug & you gentlemen along w/ foreign interests are the pushers"

It works Aryeh Goretsky NOD32/ESET hosts = good security-> http://it.slashdot.org/comment...

Oliver Day (Symantec) too-> http://www.securityfocus.com/c...

MalwareBytes' hpHosts' Admin hosts + RECOMMENDS my APK Hosts File Engine 9.0++ SR-2 32/64-bit-> http://hosts-file.net/?s=Downl...

APK

P.S.=> Con't. in #3/6... apk

Coren22 = "Run, Forrest: RUN!!!" #3/6

"I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)

62 reputable sources + /. users say different:

Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...

+

the 32-bit model https://www.virustotal.com/en/...

&

Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...

---

MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...

(& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:

"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

APK

P.S.=> Con't in part #4/6... apk

Coren22 = "Run, Forrest: RUN!!!" #4/6

"His newest post is trying to refute that MiTM attack opportunity his software provides" - by Coren22 (1625475) on Wednesday November 18, 2015

I DISPROVED it: Hardcoded favs users provide themselves are REVERSE DNS verified & my program filters 5,500++ false positives:

1.) Search engines
2.) Antivirus (e.g. updaters)
3.) Security community sites
4.) Captchas, brower home pages + download pages
5.) Ebay/Amazon (shopper & banking)

(Security community I get hosts data from do false positives filters in current data + removal lists).

---

"won't demonstrate security of his product be exposing the source (someone might steal it!)" - by Coren22 (1625475) on Wednesday November 18, 2015

I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

"the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015

My ware went thru code verification by Mr. Steven Burn of Malwarebytes' hpHosts

http://slashdot.org/comments.p...

A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...

NOT a secretary!

---

YOU BLEW IT ON ADMIN PRIV TOO: My program doesn't require it hosts does (WFP/SFP): my program protects hosts beyond it!

I.E.-> I run manually minus admin priv & drag result to hosts naming it "hosts" overwriting original.

Only auto update needs it (WFP/SFP) & users set it themselves in program shortcut: Not programmatic impersonation.

---

DNS introduces a SECURITY ISSUE RIDDLED SINGLE POINT OF FAILURE & doesn't secure down to endpoints on a LAN -> http://slashdot.org/comments.p...

How I use remote filtering DNS combined w/ hosts is there showing many DNS security issues hosts overcome.

APK

P.S.=> Con't in part #5/6... apk

Coren22 = "Run, Forrest: RUN!!!" #5/6

"Virus scanners/Adblock software don't need admin priv to update" - by Coren22 (1625475) on Tuesday November 10, 2015

Neither does my program. AV does to remove threats - Adblock addons = Vastly INFERIOR in abilities + efficiency vs. hosts as I proved & no one proved me wrong to date!

---

"your software does" - by Coren22 (1625475) on Tuesday November 10, 2015

No hosts do (WFP/SFP) - Intake update of new hosts data doesn't!

---

"won't reveal your source code" - by Coren22 (1625475) on Tuesday November 10, 2015

I don't owe you it. I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

---

"What's stopping you from pointing my bank's web site at your private server?" - by Coren22 (1625475) on Tuesday November 10, 2015

I don't keep a server. Security guru (not - you create no ware for security & your forensics skills = non-existent): Put it in a VM, trace it via process monitor + wireshark (don't need code)!

---

"the possibility of being caught, which would be pretty hard to catch w/ such a large hosts file, as no one can go through it manually." - by Coren22 (1625475) on Tuesday November 10, 2015

I put hardcoded fav sites @ top of hosts for speed & reliabilty - spotted easily & bulk of hosts = sorted blocked known bad threats provided by the security community (filtered vs. 5,500++ false positive possibles in my program & by current security community data).

---

"What are you going to do when Windows gets rid of the hosts file completely?" - by Coren22 (1625475) on Tuesday November 10, 2015

Hasn't happened!

---

"They have already taken steps to make it useless in Windows 10." - by Coren22 (1625475) on Tuesday November 10, 2015

It works there!

Telemetry's killed 10 by itself: VISTA = Win10 = Win8 = flops - who're you fooling other than yourself?

APK

P.S.=> Con't. in #6/6... apk

Coren22 = "Run, Forrest: RUN!!!" #6/6

Coren22 'eats his words' vs. me 2x yet again:

"introduces risk you are relying on a 3rd party to update a hosts file potentially opening you up to MITM attacks" - by Coren22 (1625475) on Tuesday November 17, 2015

How? My prog puts entries in as non-blocking to hostnames on ones users give it as favs to speed up @ TOP of hosts REVERSE DNS VERIFIED!

(For more speed, & reliability + security - in RAM as 1st resolver queried = faster & more secure vs. remote DNS w/ all its security issues in Kaminsky flaw, DNSChanger malware IP stack settings, routers bushwhacked in DNS settings, rogue DNS, Open DNS servers abused by malware. It aids in reliability vs. redirects).

YOU'D SPOT IT INSTANTLY @ TOP OF CUSTOM HOSTS & can easily edit anything you want out!

(Rest = known bad sites from 10 reputable security community sites for blocking - the MAJORITY of what's in my hosts files!)

+ my sources do removal lists vs. false positives & helped me create a "FP" filter in my program (5,500++ of them)!

---

"maybe one day you can get a score 5 comment" - by Coren22 (1625475) on Tuesday November 17, 2015

See subject & ~ 12 +5 upmods: "Eat your words" (1st one: You tried using what I post there against me to FAIL):

+5 'modded up' posts by "yours truly" (11):

http://news.slashdot.org/comme...
http://tech.slashdot.org/comme...
http://news.slashdot.org/comme...
http://science.slashdot.org/co...
http://tech.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://news.slashdot.org/comme...
http://news.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://yro.slashdot.org/commen...
http://yro.slashdot.org/commen...

"You believe you are getting the better of me" - by Coren22 (1625475) on Tuesday November 17, 2015

YOU GOT THE BEST OF YOURSELF in fails & lies about me. Your immature signatures about me SCREAM you're butthurt - Did it to yourself.

APK

P.S.=> You fail Coren22... apk