Donald Trump Running Insecure Email Servers

Donald Trump has slammed Hillary Clinton for using private email servers numerous times, but it turns out his inboxes aren't that secure either. From a report on The Register: Security researcher Kevin Beaumont discovered the Trump organization uses a hopelessly outdated and insecure internet setup. Servers on the Trump Organization's domain, TrumpOrg.com, are using outdated software, run Windows Server 2003 and the built-in Internet Information Server 6 web server. Microsoft cut off support for this technology in July 2015, leaving the systems unpatched for the last 15 months. In addition, Beaumont said he'd found that emails from the Trump Organization failed to support two-factor authentication. That's particularly bad because the Trump Organization's web-based email access page relies on an outdated March 2015 build of Microsoft Exchange 2007, he says. "Windows Server 2003, IIS 6 and Exchange 2003 went end of life years ago. There are no security fixes. They don't have basics down," the UK-based researcher concludes. Beaumont's findings are based simply on inspecting publicly available information rather than actively scanning for vulnerabilities or attempting to gain access to insecure systems, a point lost on Trump supporters who have reported him to the Feds.

But . . .

[reboot246]

Trump is not the Secretary of State. He doesn't have the country's classified documents on his server.

Re:But . . .

Exactly. Thread closed.

Re:But . . .

[Software]

One of Trump's frequent arguments is that he's so much better than Clinton because he "hires the best people." This story puts the lie to that.

Re:But . . .

Exactly right. This article REEKS of whiny liberal finger pointing. When he's Secretary of State and hides an email server in his bathroom at his house, then you have a scandal. Kevin Beaumont comes off like a juvenile, as do the author and anyone citing this "article" as some kind of "gotcha" moment.

But liberals, who claim keeping a server in your bathroom closet when your the Secretary of State is a "non issue", will undoubtedly continue to show their hypocrisy with this.

Re:But . . .

[ScentCone]

As if the Secretary of State even had access to the truly classified documents...

Yes, the SoS does have access to such. And is regularly briefed on stuff that's much, much more sensitive than merely "classified." The person holding that job is on the short list of people in line for the presidency if a small number of particularly bad things happen.

The documents Clinton had slopping around on her home computer included things that were considered so sensitive that the intel community insisted not on merely having the contents redacted, but on the documents not even being abstractly described (in terms of dates, to/from info, let alone the actual content).

Re:But . . .

[unixisc]

Trump is not the Secretary of State. He doesn't have the country's classified documents on his server.

Precisely! It's not like Trump has overridden the State Department and insisted in substituting their secure servers for his insecure ones. It just happens that his organization uses servers that it bought way back 12 years ago, and didn't consider it worthwhile getting onto the Microsoft upgrade treadmill. Can't say that I would fault them.

But they might do well to look into migrating to either Linux or one of the BSDs, so that this is not an issue going forward

Re:As much as I dislike Trump ...

[smooth+wombat]

So she was following the example of Bush who didn't preserve millions of emails as the law requires so he could hide his illegal activities from FOIA requests.

Got it.