FCC Won't Release DDoS Logs, And Will Probably Honor Fake Comments

An anonymous reader quotes ZDNet on the alleged denial of service attack which blocked comments supporting net neutrality. In a ZDNet interview, FCC chief information officer David Bray said that the agency would not release the logs, in part because the logs contain private information, such as IP addresses. In unprinted remarks, he said that the logs amounted to about 1 gigabyte per hour during the alleged attack... The log files showed that non-human [and cloud-based] bots submitted a flood of comments using the FCC's API. The bot that submitted these comments sparked the massive uptick in internet traffic on the FCC by using the public API as a vehicle...

Bray's comments further corroborate a ZDNet report (and others) that showed unknown anti-net neutrality spammers were behind the posting of hundreds of thousands of the same messages to the FCC's website using people's names and addresses without their consent -- a so-called "astroturfing" technique -- in an apparent attempt to influence the results of a public solicitation for feedback on net neutrality. Speaking to reporters last week, FCC chairman Ajit Pai hinted that the agency would likely honor those astroturfed comments, nonetheless.

Post Truth

[GWXerog]

Is this the post-truth world that I keep hearing about?

Re:Post Truth

[wonkey_monkey]

No, it definitely isn't.

Re:Post Truth

[ShanghaiBill]

The decision against NN had already been made, and the "public comments" were just political theater. So it doesn't really matter if they were DDOSed, since they would have had no effect either way.

Re:Post Truth

Just like every other invitation for comment printed in the register. The requirement to ask for comment is in law. It doesn't change the fact that the decision is already made.

Re:Post Truth

[Maritz]

Yeah. Once you've put a fox in the hen house there's basically fuck all you can do other than resign yourself to the shitstorm.

Re:Post Truth

[Rob+Y.]

I voted for a wall, and all I got were a few ISP monopolies that are free to sell my browsing history. Good job, folks!

Hack Job

[mbone]

Speaking to reporters last week, FCC chairman Ajit Pai hinted that the agency would likely honor those astroturfed comments, nonetheless.

Why not? He presumably paid good money for them.

Re:Hack Job

[Cyberpunk+Reality]

Sooner or later, the American public is going to stop honoring their fake democracy. Then we'll be in for some real interesting times.

Re:Hack Job

[mishehu]

I think we got a long way to go before we reach that point. Mostly because those with the means to do anything are purposely overworked.

Re:Hack Job

But you have to admit seeing everyone he loves on fire would serve as a pretty good warning that maybe Pai needs to start listening to the population instead of his conflict of interest.

Re:Hack Job

[jmccue]

Not with the US version of "bread and circuses", now people can get entertainment on their cell phones 24/7 and never have to care what is really going on around them. I almost wonder if the "Net Neutrality" fight is only to ensure this entertainment gets prioritized to keep people entertained without having to spend real money on bandwidth improvements. This way most people will will not care what is done in their country.

Re:Hack Job

[meerling]

You aren't the only that thought of that.

Re:Hack Job

[tlhIngan]

Speaking to reporters last week, FCC chairman Ajit Pai hinted that the agency would likely honor those astroturfed comments, nonetheless.

Why not? He presumably paid good money for them.

Well, the more obvious reason is if you're counting comments for and against net neutrality, the astroturf means the count is solidly against.

Think about it - if the DDoS filed 1 billion spammed's comments against it, what hope is there for the pro side that filed proper comments?

Now the FCC can claim that that people were "overwhelmingly against" net neutrality - who can argue when the vote is a billion against versus 100,000 for? Is it not obvious where public sentiment is? It's democracy people, the most votes win!

Because the truth is if they didn't count the astroturf, it would be 100,000 votes for versus 1000 against, and we can't have the vote going the wrong nway.

Re:Hack Job

Did you notice the last guy who was elected president? Tell me you noticed that, please. Now, tell me that you don't think that the majority of intelligent Americans has given up on democracy and abandoned the system to the rich and the stupid.

Lies are FIne

as long as they support the narrative of someone in power.

Gee, where have I recently saw that behavior? It's coming to me...

Personally, I hope there is a special place in hell for people like this.

Re:Lies are FIne

[BubbaDave]

Oh, there is, but it is required of good men the reservation be kept.

Maybe ...

[PPH]

... we could get the Russians to grab a copy of the logs for us.

Re:Maybe ...

[ebvwfbw]

... we could get the Russians to grab a copy of the logs for us.

Nah, That's so 2016. Just as the Chinese. Just send 'em $5 and they'll pop it right in the mail to you.

Regulatory comment system

One of the advantages of the comment system is they need not listen to a single thing, need not change their mind and can reissue the rule for further comment under the traditional system at any time.

The bad news is this is how our government is actually run and if you take them to court they are the judge with a presumption of correctness! :(

Re:Regulatory comment system

As opposed the the very useful brexit referendum?

Re:Regulatory comment system

If anything, Brexit shows just how critical it is to punish deliberate misinformation by government and media with excessive and relentless prejudice.

Keep in mind how many of those villages voted to exit because they had been convinced by both the media and all of their leaders that the EU was literally stealing their healthcare, when in fact they were receiving funds from it for that instead!

Re: Regulatory comment system

Brexit was lost on open borders not healthcare, congrats for spreading more fake news....

The message is clear.

The only way to win is to cheat.

The rules are only there to stop good people from winning.

Anonymize IPs

[ark1]

Anonymizing IPs is rather simple. Poor excuse.

Re:Anonymize IPs

[ausekilis]

Oh come now... we all know that

sed -i 's/[0-9]{3}\.[0-9]{3}\.[0-9]{3}/nnn\.nnn\.nnn/g' *

is one of the trickiest command line operations someone can do. I mean, it's right up there with

"grep -Rne '([0-9]{3}\.){2}[0-9]{3}' *"

*no, I haven't actually tested these...

The FCC was always like this

[ArchieBunker]

Back when Howard Stern was their main focus they counted every form letter as a unique complaint. So those fringe religious groups would send in a million identical letters and the FCC would count one million complaints.

Re:The FCC was always like this

[Hentes]

It's not a vote though. At most you can say that they have an obligation to read all the comments. Which is very easy to promise when you get a bunch of identical letters, just read the first one and you've read all million.

Re:The FCC was always like this

They count every single bit of data that favors their bias, and reject the rest.

Most people do this. People with a vested interest, like Pai, do this exactly as much as they can get away with, and just a bit more.

Re:The FCC was always like this

[volkris]

Bingo.

It's really unfortunate that some interest groups and media outlets have been giving people the impression that regulatory proceedings--and this comment period was even BEFORE the proceedings were kicked off--were democratic processes, with the numbers of comments directly influencing the outcomes.

The FCC is charged with implementing the laws passed by Congress. The democratic portion of the process is there. The rest of the regulatory process is just about making sure the ts are crossed.

Re:The FCC was always like this

[quantaman]

Back when Howard Stern was their main focus they counted every form letter as a unique complaint. So those fringe religious groups would send in a million identical letters and the FCC would count one million complaints.

Which it was, sending a form letter that endorses a point of view is a unique complaint. It's not an original complaint, and you may want to way the fact that it takes a lot less effort to send a form letter than to write an original complain, but each person who send in one of those letters intended to complain.

This, however, is fundamentally different. Those hundreds of thousands of identical comments are really only one comment, the comment of the person who wrote the bot, that's not to mention the people who had their identity stolen and their name put on the comment.

Re:The FCC was always like this

[ShanghaiBill]

How hard would it be to use a generative autoencoding NN to write unique complaints? We could train the network with some human written samples, and then turn it loose to generate millions more using the same basic arguments, but with different wording. Then the FCC could implement an adversarial network to read and analyse the letters. We could automate democracy.

Re: The FCC was always like this

[kqs]

Except that under Obama, the FCC was all set to destroy NN until a large public outcry changed their mind. So they put ISPs under Title II instead, completely reversing course.

So I think you mean "the comments are always ignored when one party is in power. The other party does sometimes listen to public comments."

If you vote for politicians who ignore you, then this is on you. Sadly, the rest of us are also stuck.

Re:The FCC was always like this

[retchdog]

this seems like a lot of work; just inject typos so that they hash differently. it's not like anyone is actually reading them.

as for the long run, it is easily proven by syllogism that democracy is already being automated through algorithmic traders. just sit tight and wait.

Re:The FCC was always like this

[K.+S.+Kyosuke]

Why a NN? We still have good old generative grammars, don't we?

Re:The FCC was always like this

[ShanghaiBill]

Why a NN?

Because NNs are way cooler.
You aren't going to impress the chicks by saying you know how to use a Markov Chain.

Re:The FCC was always like this

[K.+S.+Kyosuke]

I was under the impression that Markov models can't properly model what (probabilistic) generative grammars can.

Re: The FCC was always like this

[volkris]

Under Obama (and remember, the FCC is supposed to be independent of the president) the FCC supported NN in general. What actions it decided to take were in favor of the policy, not against it, and they only changed to Title II after courts pointed out that they otherwise lacked authority to make those regulations.

I mean, they probably lacked authority to change to Title II as well, but at least we can say that without Title II they definitely didn't have it.

Regulatory bodies are bound by law, not by public sentiment. The public speaks through their representatives, and the commission is required to abide by the laws passed by those representatives of the people. They're not allowed to go against the people based on numbers of clicks on a web form.

The amount of the same comments is not important

[eSyr]

> FCC chairman Ajit Pai hinted that the agency would likely honor those astroturfed comments
But since he previously said that "what matters most are the quality of the comments, not the quantity" [1], so we're fine, right, right?

[1] https://consumerist.com/2017/0...

I'm sure Netflix would host it for free...

I'd bet a good chunk of my paycheck that, if given the opportunity, Netflix's data wonks would be more than happy to anonymize the data, run a thorough analysis and host the results and raw dataset for free. Well at least as soon as they stopped laughing at the idea that a gig/hour of logging data an hour.

Re: I'm sure Netflix would host it for free...

Last week at work I shut off some extra logging which was relatively minor but wasn't necessarily anymore. It was averaging around 80GB/day, or 6% of our daily log ingestion rate.

So,I'm laughing too. And I just work at an insurance company.

Prepare for a world of hurt

[mnemotronic]

Mr. Pai is essentially saying that DDOSing and astroturfing is OK. This may be the wrong message to send.

Re:Prepare for a world of hurt

[arth1]

I believe his idea is that ISPs should be able to charge extra for DDOSing and astroturfing, and then it's okay. Whether you're the perp or the victim.

Re:Prepare for a world of hurt

[volkris]

It's more that Mr. Pai is correctly pointing out that DDOSing and astroturfing have nothing to do with the regulatory process.

The FCC has to implement the laws passed by Congress and the president, not make up its own laws based on counts of comments coming in to the agency. The commissioners abide by the law, whether the comments want them to or not.

So yeah, it stinks that people screwed with their comment submission forms, but it's such a minor deal that protection of the private information contained within outweighs any benefit that might come from making public all of their records.

Re:Prepare for a world of hurt

Oh please. He's already passed that private information along to anyone willing to buy him a beer for it.

Re:Prepare for a world of hurt

How is an IP addresss "private data"? You do realize that every site you go to knows it, right?

Whoops.

... well at least as soon as they stopped laughing at the idea that a gig/hour of logging data was a lot. // darn twitchy submit finger

Re: Obligoettery

The journal has been rotated since the unit was started.

Re: Frosty piss!

This must be an example FCC comment for why the logs were 1GB an hour.

Why a Public Comment API?

[JaneTheIgnorantSlut]

Seems to me that this would ensure that the comment mechanism is useless.

Re:Why a Public Comment API?

It seems very useful to me. The FCC wants to get rid of net neutrality. A bunch of anti-net neutrality bots post comments. The FCC says, "look at all these comments supporting us!" The rules then passed are very "popular" and sufficiently express the "views" of the American people.

It would only be useless if the FCC cared what you think.

Re:Why a Public Comment API?

Because only old Korean luddites and cows don't use APIs. APIs! APIs!

Re:Why a Public Comment API?

Seems to me that this would ensure that the comment mechanism is useless.

That's the intent of astroturfing: either the astroturfed anti-net neutrality comments get accepted as valid and influence the decision making process, or the public api is deemed useless and abandoned - which will also damage the perceived reliability of other methods that citizens can use, like emails (can be automatically sent), paper mail (form letters can be sent on behalf of citizens), and web forms (can be filled out via automated tools like selenium).

With comments from citizens suppressed, it's back to good old backroom lobbying (ie, money) as the most effective way to influence the FCC. And with corporations being treated as citizens in their ability to lobby (thanks Citizen United! /s), they win because they have the most money available to lobby with.

And those corporate lobbying expenses can be used as a tax deduction, if not directly connected to influencing legislation. So Verizon flying some members of congress to the US Virgin Islands for a roundtable discussion about the future of the internet in the USA, while not talking about any particular future legislation, and as a side activity taking them out for a little sailing on a nice yacht rented for use by the Verizon staff - that's all a general lobbying expense.

Re:The amount of the same comments is not importan

That's a change for the better. My church used to pass out form letters to send to the FCC to complain about Howard Stern. They should consider those complaints as low quality since they're so low effort.

How the regulatory process works...

[volkris]

In regulatory processes of the United States, regulatory bodies are charged with implementing the laws passed by Congress and the president. THAT's where the democratic part of the process is, where vote counts matter.

The regulatory process goes on to seek comments not as a way of redoing the legislative process, but just to make sure all the Ts have been crossed. For every issue brought up in comments (NOT for every comment) the agency has to justify its position.

In short, in the regulatory processes of the US, a million comments with the same concern represent one concern. Pushes by special interests and news organizations to have people submit the same perspective over and over again merely waste governmental resources as workers have to remove the duplicate comments.

Slashdot should do a better job of informing readers about how the regulatory process works. It's misleading to present this story as if the numbers of comments matter directly or to talk about "honoring" fake comments.

Re:How the regulatory process works...

Actually, some of us have actually existed prior to this particular instant in time. During our time in existence we have experienced FCC officials citing the number of comments received concerning some issues as justification for particular actions. Also, we have experienced situations where the sheer numbers led people to the realization of what is mainstream thus silencing any serious accusations of "radical" or "fringe" by opponents of a view. So you did use "directly" as a weasel word but your core point is false.; The numbers actually do matter. Of course the denial of service keeps some comments from reaching the FCC so there is that problem as well. I believe people can communicate freely within the general bounds of civil conversation. Just because they don't present things with specific distortions and veiled dishonesty that you desire is no sin or cause for criticism.

Re:How the regulatory process works...

[volkris]

Commissioners are free to cite numbers in their press releases, but in terms of the actual substance and legality of regulations, the notice and comment procedure doesn't have much to do with numbers. The regulator has to address issues whether they be brought be one person or a thousand.

You can see this in action by pulling up final rules as published in the Federal Register, which is what individuals and companies have to adhere to. In such a publication the regulator goes through addressing concerns regardless of the number of people who submitted each concern.

For example, here's the recent final rule on Alaska subsistence hunting. Notice that the regulator broke out eighteen individual issues brought up in comments, regardless of how many people may have provided each.
https://www.federalregister.go...

(Yes, I'm belaboring the point to stress it)

It's no weasel word to say that blasting redundant comments at the FCC's webpage doesn't do anything directly. Instead, that captures how US regulatory processes actually work. And heck, it serves as a reminder that Congress, not the regulator, is the place to go to push for change. If regulators were free to make their own laws based on things like website submission counts, that would be a bad thing.

So DDoS IT Again with Good Comments

Just hack a database of Comcast, AT&T, Verizon employees and flood the system with pro-net neutrality comments.

Re:So DDoS IT Again with Good Comments

Problem is when WE do it it's a federal crime.
When elected criminals do it it's good comments that should be taken into account.

It's almost as if NOT giving everything you own to the Sheriff of Nottingham's goons was deserving of harsh penalties...

Freedom of speech issue, perhaps?

[DaveM753]

If the bot's (or bots') comments are to be kept, then is it not reasonable that everyone (legal U.S. citizens) should be able to use a bot to post comments to the FCC?

I mean, if they allow one man's set of bot comments then, legally, don't they have to accept everybody's bots' comments?
 
If they don't, are they infringing freedom of speech?

Re:Freedom of speech issue, perhaps?

If the bot's (or bots') comments are to be kept, then is it not reasonable that everyone (legal U.S. citizens) should be able to use a bot to post comments to the FCC?

No. It is also the same reason that corporations really aren't people. If they held a vote of all employees every time they decided to spend money on politics, it might be reasonable, but they don't, and if they did, well people would be encouraged to vote the way that keeps them employed.

Re: Obligoettery

My favourite is where the journal fills up with messages that the file-system has run out of space, because the journal is full of messages that the file-system has run out of space ...

Dafuq

What the fuck is wrong with these people

Trump's Truth

No much different than the ways chosen by the "democratic" elected former president of Venezuela, Hugo Chavez, to uphold the "truth" set up state sponsored public demonstrations in the streets of Caracas, strategically filmed by state controller TV and radio that were broadcasted all over the rural Venezuela. At that time Internet was actively censored by Hugo and further strangled by a planned the divestment in data communication infrastructure accessible to the people.

In today's USA, Trump to uphold his "truth", set up a pseudo-state sponsored and sanctioned "cyber demonstration" using bot machines, no much different of what the Russian citizen that FBI arrested in Spain does but he is accused of being a Spam Kingpin.

Maybe it's time to read about how Hugo Chavez managed to become a Self-proclaimed Dictator when he was a Democratic elected President while retaining the approval of the people.

PS. Probably heard about the unprecedented massive cyberattack the western world suffered, what you may not know is that it started in less than 48h after his arrest, and we don't know if he ever got to the US.

Fraud on a massive scale

How is this not being investigated as massive fraud and identity theft?

Re:Fraud on a massive scale

[Man+On+Pink+Corner]

Because Republicans don't investigate Republicans. Try to keep up....

If he does accept the DDoS comments... roll on!

[drinkypoo]

If he does accept the DDoS comments... roll on the eternal DDoS against the FCC, which will have shown that kind of behavior is completely acceptable to them.

The value of public comments

Isn't what you think. The comments will not change the current decision in the least. The comments are meant to dissuade future admins from trying to change things and cover people when they see the failures of policy. We decided X because of all the public outpouring supporting it. It isn't meant for you, it is meant for other powerful people to use later on down the line.

Ajit Pai

What a total fuckhead.

DDOS right.

It might be DDOS. It might be John Oliver putting up a site to find the comments section after the FCC purposely hid it so people would give up and not comment.

The FCC is refusing to act transparently in the Trump era to avoid accountability either way.

Jeez

It's pretty damn obvious which comments were fake. They were scrolling through names alphabetically and posting the same comments over and over. Obviously a bot.

The FCC also does not represent the will of the people in any sense. We're going to have to work together to punish the telecoms that use the lack of regulation to burden us with more expense.

Ajit Pai is a corrupt scum bag

I hope he gets cancer

So, let me get this straight

[Opportunist]

DDoSing and astroturfing the FCC is fair game, did I get that right?

A totally unrelated question, is that LOIC thingamajig still operational?

Re:So, let me get this straight

They're just going to count it as 1 vote, and not 1 billion votes.

Cause/effect

[thegreatbob]

I wouldn't be so quick to say he'll 'honor' theses comments; his mind is made up, and his decisions will be the same, regardless. Unfortunately, this gives them an excuse.

Does the FCC not know how to hash?

[Verdatum]

If there's personal information, send those portions through a one-way hash and release the result. Then we can see activity-level of IP addresses or whatever else without knowing their actual value. This is pretty basic stuff, c'mon.

Of course...

[Rick+Zeman]

"Speaking to reporters last week, FCC chairman Ajit Pai hinted that the agency would likely honor those astroturfed comments, nonetheless."

Of course...they support his position.

Hit the nail on the head

[ebvwfbw]

Couldn't agree more. I see a lot of agencies doing this. One agency just spent a whole bunch of money to buy a bunch of appliance. Then was upset when she realized they all had to be secure and compliant with Federal regulations. We're talking probably a dozen or so physical machines. In the past machines like that were usually $30K a pop, and that was 20 years ago. I bet these were more like $50K pop and all to give an API that probably nobody will use. Seems to be the latest fad, just like Google boxes were years ago. I see them in the back hallways a lot lately, ready to be sent out for surplus.

AShit Pie...

...probably ring-led the DDoS attack himself.