Slashdot Mirror
Seattle Police Raid Tor-Using Privacy Activists (thestranger.com)
Frosty Piss writes: Seattle police raided the home of two outspoken privacy activists early on March 30th. Jan Bultmann and David Robinson, a married couple and co-founders of the Seattle Privacy Coalition, were awakened at 6:15 a.m. by a team of six detectives from the Seattle Police Department who had a search warrant to examine their equipment. They claimed to be looking for child pornography, however Bultmann and Robinson believe the raid is because they run a Tor exit node out of their home. They said they operated the node as a service to dissidents in repressive countries, knowing full well that criminals might use it as well, much like any other communication tool. The Seattle Police Department acknowledged that no child porn was found, no assets were seized, and no arrests were made.
Seattle's blog The Stranger notes that the FBI has conducted many other Tor raids across the country, and Friday quoted a tweet from the co-founder of Seattle's Center for Open Policing addressing the police. "You knew about the Tor node, but didn't mention it in warrant application. Y'all pulled a fast one on the judge... you knew the uploader could have been literally anyone in the world."
This is pretty much standard operating procedure. They can't outlaw anonymizing services, but they can make running them so much hassle that very, VERY few people want to get involved.
-=This sig has nothing to do with my comment. Move along now=-
why would u run this from yr house? there r many hosting providers that r tor friendly. amazon comes to mind.
They said it was to look for child porn. What they didn't mention was the USB stick they plugged in...
More about it here...
If you want news from today, you have to come back tomorrow.
Because all other serious crimes have been solved and prevented already.
Presuming they don't have the remote access, maybe they use the opportunity to install some spy/otherware on all these nodes they are 'checking'...
So the police trace an IP address located in their jurisdiction downloading kiddie porn. They're not suppose to investigate? The couple running the exit node weren't aware that their equipment could be used to facilitate criminal actions? Free speech is important. Activism is important. Thwarting government surveillance is important. But thinking you're going to be free from the consequences of doing any the above things is delusional.
In the police's defense it would be pretty trivial to run a tor exit node, do evil stuff on the internet, then blame tor for any of the evils. And since they 'acknowledged that no child porn was found, no assets were seized, and no arrests were made' this doesn't seem like it was much a of problem in the end expect the cops wasting a bit of their time on a dead end. If you don't want to deal with issues associated with a hosting a service... don't host a service.
This is not the first time the Seattle Police have made forays into spying on the citizenry.
If you want news from today, you have to come back tomorrow.
I'm rather shocked and surprised equipment wasn't seized. Isn't that pretty much standard operating procedure when it comes to computer crime? Seize the equipment and examine it elsewhere. Something isn't right here. Are police sophisticated enough to do in-home examination of computer equipment to see if it contains 'contraband' data?
Something doesn't add up here, if you asked me. There is no way a 'higher up' would trust goons in the field to make an exhaustive search of the equipment for 'contraband' data. Not saying I'm upset the equipment wasn't seized, I'm happy for the people (though I'd never run anything like that out of my home, that's what cloud services are for!), just SHOCKED the stuff wasn't taken back to a lab for forensic examinations.
I hate to be the one defending the cops, but it really sounds like they did things the right way here. They raided a little early, but not in the middle of the night. They knocked on the door instead of ramming it down, they didn't throw flashbangs, they didn't shoot any dogs or anything else for that matter. The cops didn't steal a bunch of unrelated stuff and there were no bullshit charges leveled against the couple.
The real test will be seeing what they do next. If they learned from this raid and generally leave them alone, I have no complaints. If they do this every other week when someone else uses their Tor node for child porn, then and only then is it harassment.
I read the warrant affidavit (https://www.seattleprivacy.org/wp-content/uploads/2016/04/154-AFFIDAVITCONDOINTERENTWAVEG401PARKPLACECEN.pdf) and they were not just "searching for child porn" but searching for the uploader of a specific file to a specific post on 4chan.
This specificity makes me think that they sincerely thought they could find the uploader of the child porn clip in question, but didn't understand how TOR works, or how exit nodes work, at least.
If you run an exit node, there's the chance that some pedo is going to use it and their actions are going to be stamped with your IP address.
Given the level of technical knowledge required to understand the technologies involved, I can't even chalk this up to incompetence on the part of the law enforcement officers.
-- My Weblog.
Is the problem with Tor that the exit node can be used to interact with any web site and that is the problem, the "any" part? Because there could be a Tor like network that only allowed for connection to a very large list of white-listed sites. Given the nodes are all over the world no single government could control the white-list contents therefore genuine users can be provided with a secure channel for legitimate activities without compromising their privacy while drastically limiting the amount of abuse possible using the network. Good and Bad are abstraction that only gain meaning from a consensus, so why not use one to protect the integrity of Tor?
God damn privacy advocates. They are probably a bunch of paranoids who think the government is after them too. This should teach them a lesson.
I'm an American. I love this country and the freedoms that we used to have.
It doesn't matter how Tor works. As long as the exit nodes stand out like little flashing lighthouses, it will attract unwanted attention.
“He’s not deformed, he’s just drunk!”
They knew it was a tor node and knew the warrant was used for harassment only.
Seems like an easy 4th amendment lawsuit. Pre-filled form warrant, Knew it was a tor node, Expert lied to filled out the warrant.
But I guess society lets them do it, over and over and over.
....get my IP blacklisted so that I have to enter a CAPTCHA to get to many sites... ....violate my provider's ToS.... ...and get raided by the police all at the same time?
I know! I'll run a Tor exit node! It's not like people in China or Oman run VPNs.
This sounds similar to the search of Free Talk Live in Keene, NH about 2 weeks ago. Early on a Sunday morning, the FBI served a warrant , under which FBI agents walked off with anything with a USB or SATA interface.
I do not deploy Linux. Ever.
Tomorrow the knock on the door comes in the middle of the night.
The police believe the equipment was being used to access child pornography...based on what evidence? If there was no basis for the warrant then the search is illegal and the police department could very well be sued.
That will teach you believing in the U.S. Constitution or the Bill of Rights, or anything our founding fathers fought and died for.
https://www.youtube.com/c/BrendaEM
Welcome to the American Police State.
A local report I heard on the radio (KIRO or KPLU, can't find it now) says that one of the cops was enough of a geek to know what TOR was and that is why the issue was cleared up so quickly. I mean how were they going to find out it was an exit node anyway? They got an IP and an location, got a warrant and then went to talk to the guy. Should they have tapped his connection first to find out it was an exit node? How would you tell just from the exit traffic anyway? I suspect they weren't thinking TOR but an unsecured WiFi or a pedo, if the latter then that's why they had the warrant. If an unsecured WiFi then the geek cop could figure that out quickly enough but it would also mean that they were close to the pedo's location and then may have setup their own honeypot WiFi.
Cops don't like TOR because it give false hits like this and take up a lot of time and money.
-- I have a private email server in my basement.
So say I leave my wifi public and open to the entire neighborhood. Why would I be surprised if the police gave me a visit to investigate something that was downloaded to my house?
Laws are rules for the court, but merely a bottom bar to hit for life. Think beyond laws in your actions always.
Ohh, so that's why cops don't like TOR. Gotcha!
No it was a coordinated thing between Feds and Locals and so they totally knew what a Tor exit node is. The article makes the point that this is not a one-off thing, they've been doing it systematically.
The compromised exit node hardware is likely the point. Once that hardware has been seized and returned, its compromised and is likely running a bit of NSA extra code.
How about we rephrase the title like this: "Seattle police investigating child pornography execute a search warrant"? Nothing happened, they did not even take the couple's computers — as used to happen before.
The folks knew, their computer could be used by criminals. It did happen. Police had reasonable cause for suspicion, obtained a search warrant, performed the search, found nothing and left. What exactly is the cause for outrage here?
In Soviet Washington the swamp drains you.
The founding fathers fucked over the revolutionary soldier within the first 10 years of the country's founding. Their first tax was a liquor tax that cost the moonshiners more than the 'big city folk', and thanks to the merchants extravagant loans to 'win the war', they decided to call in all those debts against the subsistence farmers who had served during the war. Look up the Whiskey Rebellion and Shay's Rebellion and ask yourself if the people who died, or the people who fought actually got justice thanks to the actions of the 'Founding Fathers', or if it was just one oligarchy replacing another.
Yep. Cases they are working go cold. Now in a less free society the things cops may be looking for are what we call human rights, why TOR was invented. But the downside is that when cops are working valid cases trying to protect kids human rights of not getting fiddled with, it hampers the investigation. The cops spent a lot of time on the case and because it turned out to be TOR, they are unhappy. But in the US and the rest of the free world, that is the price we pay for trying to protect those that don't have our rights.
-- I have a private email server in my basement.
And what malware or monitoring software did they plant on the computer while they were "searching for child porn"? Hmmmm?
Just cruising through this digital world at 33 1/3 rpm...
I'm sooo grateful to live in a free society, where the authorities are only interested in protecting us. All of us, equally.
I mean how were they going to find out it was an exit node anyway?
Plug the IP address into Google? If it's been operating as a TOR exit node for more than a day or two, it would show up all over the Google results that this was a TOR node.
Part of 'making the US better' involves not buying into the cop-drama bullshit you seem to believe. Read the news sometime.
Supposing the police were to plant evidence;
What could you even do to prove in court that the police planted evidence on your computer after it left your custody and entered theirs?
Full encryption and locking them out might work until you're forced to disclose passwords by a judge, granting them access.
Perhaps running your own "snapshot" system via backups similar to a git repository?
Maybe some sort of hardware/software checksum?
It just seems like a really simple and easy way for pretty much anyone (not just police) to incriminate you without much/any effort on their own part.
Oh wait. The Democratic Party has run Seattle since 1969. Forget this post.
https://en.wikipedia.org/wiki/...
"The average reporter we talk to is 27 years old......They literally know nothing." - Ben Rhodes
There is no evidence of a lack of probable cause though. The problem is that there was still an illegal post made from that ip address which was assigned to a physical address and specific people. You still have probable cause to look for evidence that it was made from a computer at the physical address or through the TOR node. Nothing about the node changes that other than possibly clearing the person when the evidence doesn't exist.
The Node highly changes the likelihood that there is evidence of the crime there. Tor exit nodes are designed not to know anything about the sender. This was about posts made from that node. While it is hypothetically possible for a research institution or government agency to modify an exit node, add sniffers, etc..., there is no reason to expect a civilian running an exit node to be doing that. While it is also possible for someone who owns a machine at that address to be the guilty party, the fact that an exit node is present makes it much, much, much less likely. It has a direct impact on the totality-of-the-circumstances analysis someone should use in determining whether PC exists.
If they were running a Tor node it is very likely that they were distributing child porn even if they didn't know about.
Basically, the were allowing other people (from around the work) to use their IP to transfer files. And they had zero (as in nothing) control over what was passing over their node.
No, this was handled properly. Suspected illegal activity was investigated and they were quickly found to not be part of it with minimal inconvenience. I'm not sure why this is even a story. Guess what, if you are around a store that gets robbed or some other crimes the cops will investigate also.
Also, "Minimal Inconvenience" compared to what? The guy had six cops show up at his home at 6:15, barge in, intimidate him, watch as he got dressed, etc...
Yes, it's a minimal inconvenience compared to them arresting him or sending him to federal prison. And it's GREAT that somebody on-scene had the good sense to say they don't even have to seize any assets. But it's still a MASSIVE intrusion into his life, one that the Constitution exists to protect him from.
Most cops are trying to go a good job, so when an officer and a judge sign off on this kind of intrusion without better cause, it makes them all look bad, because it means they wind up hurting the community, hurting the trust between the community and the police, and wasting resources that could be spent going after actual criminals.
Keep up the heat and they'll see the light: operate a TOR node, get a visit. It's that simple. Stop pretending you're fighting for freedom of speech when you're only aiding and abetting criminals.
No. That's a false dichotomy.
The alternative in this case is that the police appropriately inform the judge of all of the relevant (even exculpatory) evidence that they have gathered. If they're aware of a Tor node, the judge should be, too. How hard would it be to mention?
Think of it this way:
Who is more a probable uploader of kiddie porn?
1) The IP detected uploading it, with no Tor node running.
2) The IP detected uploading it, a known Tor exit node.
So we know that case 2 is less probable as a suspect, though there may still be probable cause. Whether or not there is probable cause is for a *judge* to decide. Keep them in the dark at your own peril. There are 6 more detectives who will need to shop for a new judge next time.
Shouldn't the penalties for misleading a judge into granting a search-warrant, and then executing that warrant, be, as a minimum, the same as an illegal search, i.e., without a warrant, in violation of the Fourth Amendment, and possibly other applicable laws, if (of course,) that is indeed what happened?
Will the people responsible for this egregious violation of the law be held responsible? I'm betting they won't. Raiding TOR node-hosts makes as much sense as raiding package-stores because someone suspects an underage person somehow got hold of some hooch. It isn't right, it isn't fair, it isn't what a government does when it is truly governing with the consent of the governed... RIP, freedom.
The cost of running a TOR node is miniscule in the context of a national defense / intelligence budget.
They could launch ten thousand TOR nodes overnight.
And reliable, trusted people running TOR nodes are being raided as here, forcibly or by intimidation shutting down theirs. If they have a policy of doing this, then.. why wouldn't that policy be widely undertaken?
What if the combination means that the majority of nodes are actively malicious?
Starring the TOR Police.
[quote]Given the level of technical knowledge required to understand the technologies involved, I can't even chalk this up to incompetence on the part of the law enforcement officers.[/quote]
Uh, I think you meant to say: "Given the level of technical knowledge required to understand the technologies involved," either:
a) "I can't even chalk this up to incompetence on the part of the law enforcement officers, because they are inherently stupid," or
b) "I chalk this up to incompetence on the part of the law enforcement officers."
Seriously, how difficult a concept is it?
nobody was executed, beaten, and not even breaking or stealing of equipment? For the American police, that is almost unbelievable. Someone is going to lose their job.
(1) pissed off a judge who finds out about it,
I don't know about the state level courts in Washington, but close to half of Federal judges are former prosecutors.
I'm not sure how "pissed off" these judges would be if their origin is anything like Federal court. More likely, as former prosecutors, they are sympathetic to the police and are willing to accept whatever reasoning the police have for probable cause.
Plus the warrant was handled with kid gloves by police standards -- no flashbangs, nothing taken arbitrarily, no pets shot, etc.
I don't trust the police. But I don't trust anyone else either.
If Bultmann or Robinson have any suspected history in terms of dealing with child porn, it seems quite possible that the police are targeting them based on the totality of evidence and not exclusively the idea of "TOR".
Were they actually trying to protect a child being abused here? The link above to affidavit is broken, and it's an important distinction because if they were trying to save a child being actively abused by the poster that carries a lot more weight than trying to hunt down a troll re-posting illegal stuff they downloaded elsewhere to 4chan for the lulz.
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Yep,
But running an exit node does not mean you're not capable of uploading this file. The only fast way (AFAIK) to exclude the owners of the exit node is raid the house.
Of course there will be other techniques, but therefore you need some high level hackers. I don't think the police have access to these techniques.
Thing you learn.
The Judge that Rubber Stamped the warrant needs to be disbarred and the LEO that submitted it needs to be prosecuted for filing false legal documents!
Oh, cool. I'll just store all the contraband I have on IDE disks then.
"Slow Down Cowboy! It's been 58 minutes since you last successfully posted a comment" -- slashdot, driving users away.
By that logic, Comcast is in trouble, the police should confiscate their whole network whenever some dirtbag looks at some kiddie porn while connected to them.
Apocalypse Cancelled, Sorry, No Ticket Refunds
affidavit
Apocalypse Cancelled, Sorry, No Ticket Refunds
but couldn't find one.
My gut reaction is to sympathize with the targets of the raid and the tone of TFA.
However,
a. Where is there a directory of all the lists (in this case, public TOR exits) that should be checked for exculpatory info before seeking a warrant. Of course, this is moot if the police did know before the raid.
b. If being a TOR exit node was a barrier to a search warrant, wouldn't all paedophiles set up public TOR nodes?
Just because it was a TOR node doesn't automatically mean the people weren't up to no good. If running a TOR node got you a free pass then the first thing all the bad people would do is set up a TOR node and claim they weren't doing whatever they were doing. I don't know the solution, but as people have said, they didn't go in gun a blazing and confiscate all their equipment. That's what I think of when I hear there was a raid. This sounds more like they knocked on the door, questions the people, looked at their setup, and left.
Ninjas don't carry tic tacs
If the police already knew it was a tor exit node before, and if they knew what a tor exit node was too, they probably knew they wouldnt find any evidence there.
Then we may ask ourselves, why they would go raid theses peoples anyway ? Well, I think having physical access to that exit node might be pretty valuable to the police if they could install some kind of trojan of their own on it. Now I'm not familiar with police procedures for theses matters, however it seems to me that usually they would just take the hardware and use their in-house forensics tools in their own lab to proceed with the investigation.
Now all we see is just a bunch of polite detectives, just checking the server, deciding that "oh well, nothing to see here, sorry for the inconvenience, have a nice day". I mean how do they know the stuff haven't been deleted without checking the hard drive with some kind of low-level hard-disk tool ? Did they just searched for *.jpg and checked if the bin was already empty ? Seems a bit light of an investigation to me. Think about it this way: is this how YOU would do it if you were tasked with finding hidden files on a server ? As a matter of fact, we don't even know what kind of action were conducted on that hardware.
So unless the owners of the server were present at all times, as witnesses, checking and being explained every single action of the operator checking their hardware (yeah right, you can count on that), I would treat that server as compromised and do a complete wipe out and reinstall or even sell it on ebay as I coulndt even be sure that a complete reinstall would be enought.
Read this thread. Look at the *many* incorrect statements about Tor and the onion network. This site is populated by people who self-identify as being into tech. These people don't understand the tech. It might actually be expecting a bit much for cops to know about it. They're expected to know many things. I imagine that Tor is pretty low on the list of things to expect them to know about - though it appears one of them realized this during the execution of the warrant. There's some speculation that they knew about it beforehand but that appears to be speculation that's assumed to be factual.
"So long and thanks for all the fish."
Y'know with all that privacy it comes with.
There is no surprise, they should have known this. And there is no evil opression going on. See it the other way round: Run a tor node and download cp (without using tor) and you're having the best excuse ever. So they can come even when they know about tor, just to be sure it was the tor node.
Most tor FAQ have answers about the risks of running a node. The best solution is to run not from your home. Which doesn't neccessarily protect you, as there were cases when homes were raided, while the node kept running in the data center. So it will always be a risk to run a tor node under some ip which is associated with your name.
It happened to me in October (in Richmond,Va) and basically wrecked my life; I'm still currently putting the pieces back together. I had 5 years invested working for a large bank and teleworked from home; needless to say when the FBI confiscated every piece of electronic equipment I owned (including my work laptop) and called the bank asking them to un-encrypt my confiscated laptop, I was let go without any explanation . This kinda sh*t needs to stop.