Packet Storm Security site closed down

krp writes "The well known and regarded security softare and information site Packet Storm Security has been closed down by Harvard, who hosted the site, becuase of claims from John Vranesevich, of www.AntiOnline.com, about libellous material. The site will not re-open and backups will be destoryed. Ken Williams explains here and here - this guy put a lot of work into that site. "

antionline.com

From www.antionline.com, coming from the article WWW page. The Site You Visited Before AntiOnline Is On The Denied Referer List The site that you visted before AntiOnline is a Denied Referer. What does this mean? Basically, it means that AntiOnline does not allow the site that you just came from to link directly to AntiOnline content, or to utilize any resources that may be part of the AntiOnline Network.
To find out how you can stop malicious hackers, visit AntiOnline's Fight Back!
For the latest security news, views, and information, visit the Main AntiOnline Website.

Re:antionline.com

[Dagmar+d'Surreal]

Vranesovich isn't blocking links from other sites... AntiOnline is just plain broken. I really doubt that he'll be feeding reporters from ComputerWorld some bullshit story about how he easily weathered the DoS attack they're probably getting right now. (Search ComputerWorld Magazines's website, and you'll see some really OBVIOUS self-aggrandizing stories in there from where JP has clearly fed reporters exactly what he wants them to print.) JP, is IMHO, a charlatan of the worst sort.

Re:antionline.com

[chialea]

yep. the first thing I think of when I think slashdot is "malicious hacker".

*pssst* Hemos will crack anything for nanorobots.

if this is true, that destroys any respect I have for him and his site (and yes, I did have some before)

I'd be interested in the sites blocked. I don't see it in the source (JavaScript or anything). anyone?

Lea

ps I'm not getting that error, but that's probably becasue I'm having some little "problems" with my SGI right now, which are preventing me from storing a history.

Re:antionline.com

[azz]

Why on earth are you passing on referrer info?

Get something like IJB that you can use to filter out Referrer: headers. It breaks most counters, but do you really miss those? It can cut out banner ads too.

And no, I don't work for Junkbusters. I just like (well, mostly) their software. Mail me for patches to make it mangle pages less badly.

"I want to use software that doesn't suck." - ESR
"All software that isn't free sucks." - RMS

Re:antionline.com

[delmoi]

hrm.. antionline is not down, its simply blocking links from slashdot.org pages... I also saw this: My name is John Vranesevich, and I am the Founder and General Partner of AntiOnline LLP, a computer security company based outside of Pittsburgh, PA. Earlier today, one of my colleagues forwarded me the following URL: http://packetstorm.harvard.edu/jp/ Needless to say, I was shocked and outraged at what I saw. This page contains a large archive of libelous and, to put it bluntly, sick material. Everything from archives of copyrighted material from our website, to altered pictures of my family, to 'stories' about me which contain images ranging from people engaged in homosexual activities, to a nun that appears to be covered in seminal fluid.

of course, we'll never know wether or not it was true now, will we?
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:antionline.com

[Akeldama]

you might want to check out www.attrition.org and the links on their frontpage then. if you look at attrition's negation section you'll see why

Re:antionline.com

[kts]

i know that attrition.org, osall, and i think hackernews.com and probably several other affilitated sites are blocked. attrition.org has all the info.

Legality

Isn't that some sort of theft of data? NO matter how it got there, destroying 3gb of someone elses data is not legal.
Could this person not hold the university responsible for both the delteion of his school work (his failure of a course) as well as destruction of his copyrighted material (the site itself)? Given that someone with 'authority' personally gave him the okay to set it up?

I hate that.
Fight back.

Re:Legality

I'm no lawyer but I work for a University also. Harvard has every right to do anything on their computers they see fit. Unless, Uncle Sam or the FBI gets involved, then it's theirs. Most University policies deem that with probable cause, administrators (with permission of the dean of the college and/or in some cases as well as the President of the University) can read, remove, edit, etc. material on University computers. This may include computers not bought buy the University but connected to the University's networking infrastructure. In essence, a person who connects to the network with a personally bought computer must adhear to University standards. Of course, without reading Harvard Policy indepthly, I can only presume that it is similar to mine.

2 things though.

1.) If AntiOnline is going to sue, they won't have a case because Harvard is destroying everything. Hence, without evidence it won't hold up. Even though AntiOnline has a copy, it may be deemed as hear say.

2.) Without reading or seeing what was in http://packetstorm.harvard.edu/jp/, Mr. John Vranesevich should understand that if your in the public eye, your free game. I am not saying that you can threaten to kill people and get away with it. People make fun of other people all of the time. Look at the President. I have seen alot of sexual explict material with his face on it and he doesn't sue. You have to except the fact people make fun of other people either on a website or not.

Example:

If I am walking down the street and someone tells me that my mother's a whore, my sister is tramp and sucks donkey dick, and that I should go to hell. I either:

1.) Send pulses from my brain down to my arm and hand, telling them to slam my fist down his throat and if he doesn't go down the first time, try...try and try again. Which is battery but I still can do it.
2.) Walk away and think nothing off it.
3.) Threaten to sue him, like everyone today.
4.) Ask him why he thinks that and maybe talk it out and see what his fu*king problem is.

To me, Ken did two things wrong:

1.) Didn't do any backups, which I don't think is true. I think he is smarter than that and he just wants to have his shit back.

and

2.) If your going to attack people, attack them intellectually.

Ken, words of advice if the police interogate you about this, use these lines:

--Play dumb, "I swear, I didn't know it was there."

--OJ Simpson style, "I wasn't there, I was on a plane to Chicago. Someone else planted it there to frame me. Its a conspiracy, I TELL YOU!"

--Godfather style (and say it with a Brando-esk dialect), "I wasss...unaware of my associates wrong doing. I am a business man. My families' name is ashamed to be linked to suchhh...libellous activities. Be assured that thisss...unprofessional manner will not happen again." Then tell Polly to round up the goons and take care of unfinished business.

--Clinton style, "I DID NOT place any libellous material on my website."

Re:Legality

[sjames]

I am not a lawyer, nor do I play one on TV, however:

That's a good point. Unless or until a libel suit is decided in court, it's only an allegation. In any event, Harvard is within their rights to take the site down (they may even be legally obligated to do so). But they do not have a right to destroy the data. Simply hosting the site and making the backups as a favor does not entitle them to destroy the data, they may only demand that he come pick it up within a reasonable time.

This is not unlike storing another persons physical posessions as a favor.

Re:Legality

[clawson]

I'm no lawyer but I work for a University also. Harvard has every right to do anything on their computers they see fit. Unless, Uncle Sam or the FBI gets involved, then it's theirs. Most University policies deem that with probable cause, administrators (with permission of the dean of the college and/or in some cases as well as the President of the University) can read, remove, edit, etc. material on University computers. This may include computers not bought buy the University but connected to the University's networking infrastructure. In essence, a person who connects to the network with a personally bought computer must adhear to University standards. Of course, without reading Harvard Policy indepthly, I can only presume that it is similar to mine.

Hmm...this is just a little bit scary. Think about it for a second. That means that a student's privately owned PC in his dorm room, hooked to the campus network (however), is thus in the domain (in a legal sense) of the University?

Or, just a bit more abstract, that your University employees, if they use your school's dial-up network services, that their computers are thus in the domain of the University while they're using the University's dialup networking services (thus justifying University personnel to hack into a person's computer to see what they could find while it was on the network)?

I somehow don't think this is quite so. If it is, then it is kind of scary, for it would justify any company making their software have similar phraseology in their EULAs or other agreements (yes, I know of the problems with UCITA, if it gets approved, which would definitely provide the contractural basis for allowing stupid ass things like this to happen for real in EULAs)...

Re:Legality

[cyberwench]

Agreed - but he wasn't a student there, which complicates things. He signed no agreement of any kind with the university, so on one hand they have no explicit right to destroy the data. On the other hand, he was allowed to put data on there by someone at Harvard. Whether they had "legal" authority to offer him the space/bandwidth is another question. Without something explicit allowing that from the suits over there, I'm guessing they can do whatever they want - legally.

Re:Legality

[the_tsi]

Most universities (especially major ones) have clauses in your acceptance paperwork (or whatever) that anything you create, contribute to, etc, while a student/intern/graduate/professor is owned by the university. So I guess they could go and do whatever they want with the tapes.

-Chris

Re:Legality

[skip277]

You can't generally fire up the shredder in Ollie North style once the doodoo is on a trajectory towards the fan. (It's like the goaltending rule:)

Bwahahahahaha! That's one of the funniest things I've heard in a LONG time. I may make it my sig if its ok with you, Mr. AC.

Skippy

Re:Legality

[patowic]

If the police interrogate you at ANY time, for ANY reason, this is the only proper response:

"I want a lawyer."

Re:Legality

[sgml4kids]

I wish someone would write a RAID-style filesystem
that was distributed over multiple computers on
the net. Preferably with an encryption and validation so that the data can't be destroyed until they hunt down several of the physical drives.

If we could distribute the "location" of data, we'd really mess up the lawyers who trying to apply 19th C laws to computers and networks.

I love it!

A meta-script-kiddie war!

This is great stuff. Keep it up guys.

Lets start a fund for defense from idiots.

I would gladly donate to help his defense. On a low end just him, on a high end all of the constitution. This is a sympton of something more. Welcome to orwells nightmare. America isn't what it used to be. I rather hope it crashes like rome did (everything hits the fan around century 2). Then we can try again to have the country we deserve.

Besides JP is an ass. He sold out.

Re:Lets start a fund for defense from idiots.

[Freshman]

Maybe CmdrTaco could help out now that he has some change? Rob?

Re:Attrition

In particular under that URL at attrition.org, be sure to take a look at: http://www.attrition.org/negation/www/tech.01.html It's a shell history file from an account JP had a year ago or so. It pretty much speaks for itself as far as his Unix ability and his activities.

Careful here. This looks pretty much like as a fake. For instance, he looks very much like he never used a unix C compiler, but without a 'ls -l', he guesses that the name of the executable file is 'a.out'.

Also, he looks like he never used much Unix before, but he knows the name of many commands (pico, cc, write, cd, ftp, ps, kill, logout, cat, pine, write, w, ls, man, lynx, talk, vi, mv, chown, mkdir, mail, clear, '--help' option, and the './program' way to run programs). Strangely enough, in the log, by some miracle, he knows the name of the command but too often doesn't find the proper arguments. This is unlikely.

Re:Free speech

Given this little gem (pointed out by another below), I'm not surprised.

Harvard's official statment!

Snagged from freshmeat.net where it was posted by J-Dog.
------------------------------------------------ --------------------
* S T A T E M E N T *



As a service to the Internet community, Harvard agreed to host a Packet Storm Security Website for security-related materials only. Without Harvard's knowledge, unrelated content was put on the Harvard server, including sexually-related material and personal attacks on an individual not affiliated with the University. A Harvard administrative site focused on security issues is not the forum for this type of material. We are returning the content on the site and hope that Packet Storm will make its security tools available through its own Website.

Joe Wrinn
Director
Office of News and Public Affairs


Joe Wrinn
Director, Harvard News Office
1350 Massachusetts Ave., Rm. 1060
Cambridge, MA 02138
Phone: 617-495-1585
Fax: 617-495-0754
joe_wrinn@harvard.edu

Packet Storm no saint - check out the other side

Here is the direct link to Antionline editorial on the subject:
http://www.antionline.com/archives/editorials/pa cketstorm.html

If anitonline's statements are correct, Ken Williams is no saint who was needlessly attacked. I am not saying antionline is a saint either, but it does look like there are two sides to this story.

JP's Letter About PacketStorm

Apparently for some time now, PacketStorm Security, a popular underground collection of security related tools and information, has been maintaining a vast archive of materials about AntiOnline. These materials included entire stories, copies of the weekly mailbag, e-mails, and other materials copyrighted by AntiOnline LLP.

On top of that, and what was far more serious, the site contained dozens and dozens of pages of libelous, harassing, and threatening items which included: e-mails, messages, documents, images, and even public surveys. These materials were libelous, and in some cases, were blatant threats against members of my immediate family, myself, and my company.

While I value the right to free speech as much, if not more, than the average American, I do not believe in individuals posting threatening and harassing documents about another individual, and their family members. It was for this reason, and no other, that I contacted Harvard University, which was hosting the PacketStorm Website, and requested that it be shut down. I did not threaten legal action, but simply directed University Administration to the website, for them to view, and to judge, on their own. Below is a copy of that letter:

Greetings:

May I first say that I did my best to see that this letter got sent to the appropriate individuals. I had some difficulty determining who those individuals may be, so if I have made an error, I would greatly appreciate it if you would forward this letter on to the appropriate individual(s).

My name is John Vranesevich, and I am the Founder and General Partner of AntiOnline LLP, a computer security company based outside of Pittsburgh, PA.

Earlier today, one of my colleagues forwarded me the following URL:

http://packetstorm.harvard.edu/jp/

Needless to say, I was shocked and outraged at what I saw. This page contains a large archive of libelous and, to put it bluntly, sick material. Everything from archives of copyrighted material from our website, to altered pictures of my family, to 'stories' about me which contain images ranging from people engaged in homosexual activities, to a nun that appears to be covered in seminal fluid.

I am astounded that an institution as prestigious Harvard would be party to the dissemination of this type of material. It is my hope that the University Administration was unaware of this site, and now that it has been brought to their attention, it is my hope that it will be dealt with promptly.

I have worked to help several educational institutions develop 'Acceptable Use Policies', and if Harvard is similar to them, the above URL would be a clear violation of that policy.

It is my hope that the above mentioned domain will be shut down immediately, and that the individual responsible will be seriously reprimanded.

I hope to hear from you soon about this matter, and what you may have done regarding it.

Yours In CyberSpace,
John Vranesevich
Founder, AntiOnline


Tonight, Ken Williams, the founder of Packet Storm Security, released a letter to the public. The letter read in part:

Funny how I spent the past few years donating my time, literally thousands of hours, to "the security community", never making even a penny off the time and work I invested, and have now lost it all because some asshole named John Vranesevich is able to make a quick phone call, fabricate absurd stories about criminal activity and bullshit I never did, and effectively ruin years of work, my education, my career, my life.

Ken, I know what it's like to dedicate many, many, thankless hours into a project, believe me. But, you did not loose your site because of me, you lost it because of you. I could not stand by and watch your site be used as a platform to harass and threaten my family, myself, and the business which I have worked hard to start. While you, and others who 'follow you' may criticize me for what I did, I think everyone that's reading this, who has family members that they love, and a career that they enjoy, will admit to themselves that if in my shoes, they would have done at least the same. I hold absolutely no grudge towards you as a person, and I hope that you have the best of success in all that you do.

Due to the types of threats that I have been receiving, and that sites like PacketStorm have been propagating, local law enforcement agencies were put on alert, and began doing extensive extra patrolling of the residence of my family members, my own residence, and the AntiOnline Offices. I realize that the actions that I have taken against PacketStorm may greatly increase the immediate threat against my family, myself, and my company; and that the harassment will now only get worse. However, I will not allow my family, myself, nor my company to become a victim. I am standing my ground, and will continue AntiOnline's mission of putting an end to malicious hackers.

People in this country have the right to say and do whatever they please, unless that is, what they say and do infringes on the rights of another - anonymous.

Yours In CyberSpace,
John Vranesevich
Founder, AntiOnline

Re:JP's Letter About PacketStorm

[mosch]

John-

While I'm glad to read the original notice given to Harvard, the fact of the matter is that network administrators have a daunting task when it comes to security. While you refer to PacketStorm as an "underground" publication, the fact of the matter is that in high-security systems, one HAS to use every available resource, from CERT to the better security sites that truly are "underground".

I understand your considerable outrage at the alleged contents of the /jp directory (I haven't seen them, there is no available reference, therefore I can't check the veracity of any claims regarding the contents therein) but in your haste to remove the inappropriate and libellious material, you have destroyed a valuable resource.

If the allegations are true, then what Ken Williams did on those pages was wrong, but destroying a reference that professionals use daily is just as wrong.

I hope you'll write a letter to Harvard explaining that you only wanted the offensive material removed, and that much of the other material is valued by the security community.

Kevin Way

Re:JP's Letter About PacketStorm

[NullPointer]

Did he really write this:

"a popular underground collection of security related tools and information"

I must inform you that I am about as far as you can get from the underground (whatever that means). I have enough trouble keeping up with security issues without some whiner taking down one of the most informative sites available. I have removed your site from my bookmarks and will not be visiting again...ever! Self-destruction is even stranger than self-delusion John, you've done plenty of damage for one day... get a life and quit messing with mine.

Re:JP's Letter About PacketStorm

[Andy+Muldowney]

I especially love this line: People in this country have the right to say and do whatever they please, unless that is, what they say and do infringes on the rights of another - anonymous.

What an excellent choice of quotes, considering the fact that JP shut down a public IRC server just less than a week ago. He totally contradicts everything that he says. He talks about free speech this and free speech that, and yet when someone says anything remotely demoting of him he runs off like some small child crying for their mother.

I wouldn't be surprised if sometime soon he accidentaly ends up suing himself. I don't know why he thinks that he can just go around shutting down servers like he does. He has some sort of power problem and thinks that he is in control of everything. Well, he's not. He will cause the himself and his little company that he likes to call AntiOnline to crumble in the very near future. The best thing that we can do is just sit back, watch, and enjoy. He is digging his own grave here, and is too ignorant to see it. Sooner or later he's bound to fall in.
-Andy

Re:JP's Letter About PacketStorm

[MindStalker]

JP's Quote of Ken Williams, and Ken Williams accual quote
(differences are underlined)
Funny how I spent the past few years donating my time, literally thousands of hours, to "the security community", never making even a penny off the time and work I invested, and have now lost it all because some asshole named John Vranesevich is able to make a quick phone call, fabricate absurd stories about criminal activity and bullshit I never did, and effectively ruin years of work, my education, my career, my life.

Ken Williams' acual statements (can be found at http://www.hackernews.com/orig/williams.html and many other sites.. all pgp signed by ken williams)

Funny how I spent the past few years donating my time, literally thousands and thousands of hours, to "the security community", never asking for or making a single penny off the time and work I invested, and have now lost it all because John Vranesevich and a few of his IRC friends are able to make quick phone calls, fabricate absurd stories about criminal activity, libel, threaten to sue Harvard, and I don't even get to plead my case. I am guilty without even being informed of what was going on.

All above is copyrighted by Ken Williams (which he gives permission to copy freely in his letter) except the few portions that seem to have been written by someone else, and I dare them to sue for me that.. hmm maby I shouldn't say that.. NA

Re:JP's Letter About PacketStorm

[MindStalker]

well I did put in underlines.. oh well nevermind.. you can oviously see the differences for yourself

Re:JP's Letter About PacketStorm

[MindStalker]

Does anyone know where JP lives? No I do not want to harm him in anyway. I'm am more just curious of the city he lives in.. I would LOVE to check with the local law enforement and find out if they have had any contact with JP, and or are protecting him, for some reason I seriously doupt that and if any contact exist most likly its not a friendly relationship.

Re:JP's Letter About PacketStorm

[MindStalker]

ARG I hate it when I have to recant things I just wrote, oviously Ken really did say this (possibly unless someone hacked packetstorm.genocide2600.com
But it seemed to be genuine. This was on the site, and seemed to directly mirror what JP quoted (minus the curse words which Ken admits to having)

Funny how I spent the past few years donating my time, literally thousands of hours, to "the security community", never making even a penny off the time and work I invested, and have now lost it all because John Vranesevich is able to make a quick phone call, fabricate absurd stories about criminal activity, and effectively ruin years of work, my education, my career, my life.

So much for Truth and Justice.

-- Ken Williams, Wed Jun 30 22:35:59 EDT 1999

("bullshit", "damn", and "asshole" removed from the above statement because somebody was offended and complained)

Re:JP's Letter About PacketStorm

[KirkKhan]

Could this guy's ego be any bigger? It looks to me like he is loving this whole thing for all of the press it is creating for him. I bet he'll use the negative comments as proof to corporate clients that he must be good - otherwise why would all these scary computer freaks hate him so much? And he'll get away with it . . .

Re:Hmm..

[Yarn]

if it is the slashdot effect it wouldnt be too out of character for him to claim that slashdot performed a DOS attack on him, 'justifying' the referal block he seems to have in effect.

Re:Why has no one commented on the "homosexual" pa

[stevied]

Because it's America, Land Of The Free. How many women presidents have you had? How many members of your cabinet (or equivalent) are openly gay? Not many, I'll bet.

Strange place.

Packet Storm Will Return

[hank]

I haven't had time to read all of the postings; however, it seems that everyone has the impression that the site is gone. We do not need to search our cache, nor do we need to whine.

Yahoo has an article, in which it says "Harvard intends to send the complete contents of the site back to Williams so that he can post it elsewhere." http://dailynews.yahoo.com/headlines/technology/zd net/story.html?s=v/zd/19990 701/tc/19990701380.

Whose side are you on?

[William+Aoki]

You realize that all you are doing by spouting threats is lending credence to JP's side of the story...

Insanity!

[khaladan]

John Vranesevich is a twit who has done NOTHING to help the security community. He continually makes himself look like a fool when he thinks he has some rightous cause. I looked up the defininition of "lamer" and it cross-referenced me to John Vranesevich. I wonder if he's gotten his copy of Win2k Beta 3.

P.S. I hope the venture capital he got kills his "business".

No big shocker this

[Skyshadow]

Yeah, but JP's always been the type that would change sides in a heartbeat if he thought it suited him. I mean, the guy's site begins as a "Script Kiddie Resource", then he switches sides and says he's coming to hunt the hackers on the behalf of the Air Force (I could hear the crackers quaking in their boots), now he's turning into the typical litigious-happy whiner.

Basically, he sucks. He just does this stuff to get attention, like some little kid having a spaz at the supermarket. Hell, all you have to do is read his site to realize that the guy's not quite right in the head (egomania, anyone?).

Anyway, the best way to handle a guy like this is to ignore him.

----

Re:Doesn't anybody have a mirror?

[Aaron+M.+Renn]

If it's anything like the genocide site, there is a block on robots and linking directly to subpages. The return page if you try is very obnoxious and accuses you of bandwidth theft. This guy was a fucking moron and deserves to lose everything for that alone because if he'd just let Google spider his site he could have redownloaded the whole thing from their cache.

Re:HAHAHAAH JP LIVES 1 HR AWAY

[Aaron+M.+Renn]

I wonder if that could really be JP himself just trying to get another enemy in trouble for making death threats?

Re:Local Internet

[gavinhall]

Posted by Lord Kano-The Gangster Of Love:

I too am very seriously considering mirroring a few pages locally. If I can work out some type of reasonable deal with either my cable or DSL company I will.

Most of the pages that I want to mirror are political in nature, but the principle is the same. Just because someone wants it shutdown does not mean that is should be.

My question is this, why did he not have local backups of his work? I don't even do work for customers without keeping a backup of it for a while. (just in case they stiff me on the payment, I can still get paid for my work).

LK

Re:Destroying the Evidence?

[gavinhall]

Posted by Ungrounded Lightning Rod:

If the allegedly injured party asks to have
the site taken down and the backups destroyed,
and this is done, he'll look rather silly
demanding in court the evidence that he told
them he wanted them to destroy.

Update : Packet Storm Not Lost

[gavinhall]

Posted by crunchberry wonderfuck:

HNN has an update; Harvard will return a copy of the site to Ken Williams. Also AntiOnline (JP's site) is uber-down. No DNS, no nuthin'. Figures, I suppose.

Re:One side of the story.

[gavinhall]

Posted by Ungrounded Lightning Rod:

He was not a Harvard student, but a student
at another university. According to his
postings, a Harvard sysadmin had offered to
host his security website - and he kept the
only copies of his class notes from the other
school's classes, his website, and the related
data on this Harvard machine - trusting them
to back it up for him and keep it available.

Oops.

Re:TO BE BLUNT - *YAWN*

[Suydam]

Where do most of the child molestors come from ? hmm ......

i believe the answer is New jersey.
But what does that have to do with the discussion?
:)

Re:AntiOnline.com, can't even get to it....

[Suydam]

Dont blame Harvard.
Someone called, threatened to sue and whoever was on the phone probably freaked out and pulled the plug.

What JP doesn't realize is that eventually, this sort of behaviour will chase all his potential viewers away. Without traffic, his VC-funded site will go down the tubes and all will be well again.

The best thing to do is to just ignore him and his site and stop visiting.

Re:One side of the story.

[pb]

Actually, he goes to *my* school, and he worked on that site all the time. (if you saw him on a machine, some of what he was doing was telnetting somewhere to maintain things, do the requisite surfing to see what the #*(@ is going on, etc, etc.)

He was looking for another place to host his site, because it was so huge. I should have grabbed the humor section when I had a chance, he had a lot of classic stuff archived there.

Oh, and what does he have on his local web site? His pgp keys. :) (he's got some other stuff too, but his real web site was packetstorm)

Poor fellow BOFH, getting shut down by just a regular B...

Re:Attrition

[Danse]

Same here... I knew many of the common commands, but couldn't always remember the arguments and didn't always get the format right... this is not that farfetched at all.

Re:AntiOnline.com, can't even get to it....

[sjames]

Looks like the router loop is fixed, but now his web server is dead. Last good hop is antionline-gw.cust.stargate.net.

Isn't it ironic?

[adam]

Am I the only person who remembers this story?

http://www.wired.com/news/news/culture/story/868 5.html

The main difference, of course, is that AntiOnline wasn't shut down because of derogatory statements. But it does seem rather ironic.

Adam

Re:Update in the situation...?

[sighup]

The official response from Harvard (found at www.hackernews.com):


=======================
* S T A T E M E N T *
As a service to the Internet community, Harvard agreed to
host a Packet Storm Security Website for security-related
materials only. Without Harvard's knowledge, unrelated
content was put on the Harvard server, including
sexually-related material and personal attacks on an
individual not affiliated with the University. A Harvard
administrative site focused on security issues is not the forum
for this type of material. We are returning the
content on the site and hope that Packet Storm will make
its security tools available through its own Website.

Joe Wrinn
Director
Office of News and Public Affairs

Joe Wrinn
Director, Harvard News Office
1350 Massachusetts Ave., Rm. 1060
Cambridge, MA 02138

So did he, or didn't he?

[Brian+Kendig]

The web page at " http://www.antionlin e.com/archives/editorials/packetstorm.html" says that the PacketStorm web site contained "altered pictures of [John Vranesevich's] family, to 'stories' about [him] which contain images ranging from people engaged in homosexual activities, to a nun that appears to be covered in seminal fluid."

Umm, this seems like it would have been a fairly easy thing to verify before taking action, wouldn't it? Am I right to assume that PacketStorm never contained anything of that sort?

Re:So did he, or didn't he?

[Eddie+the+Jedi]

I guess now we'll never know.

Convenient that JP instructed Harvard to delete all copies of the data, isn't it...

Doesn't anybody have a mirror?

[andreas]

I can't believe that there isn't a single person out there that did a wget -r on that site. If you happen to have a mirror of that data, even if it is partial and a year old, please get in contact with Ken or the cDc. Or post the URL here, if you can stand the traffic.

Re:Doesn't anybody have a mirror?

[sparty]

I think he did that because he was already maxing out the bandwidth. If he was getting 10GB/day in transfers while blocking robots, how much would he have gotten if every guy with disk space and bandwidth was mirroring it? (Not to mention people stealing everything and putting it up elsewhere...) The info he had up on genocide2600.com suggested that if he didn't block robots, the bandwidth simply wouldn't hold up and nobody would get access.

eternity (was: Re:Local Internet)

[Zooko]

The cypherpunks have been working on "non-erasable Internet space" for some time now. They call them "Eternity servers" and they already have some working prototypes running. If you would like to see a world where it is mathematically impossible to censor someone's web pages (without taking down the whole 'Net), then visit some of the following sites, and/or subscribe to the cypherpunks list and pitch in!

Ken Williams and his character

[Bill+Dimmick]

I've known Ken Williams for about three years now,
ever since he came to NCSU and zephyred me about
how to use the Sparc4s we had at the time. I
gave some of my typical LabOp(tm) Brand Advice
and watched him eat it up. He was in the lab for
days. He slept there, he ate there. We split
pizzas and good conversation. (He still owes me
lunch for admitting PERL is better than Java)

Eventually, all his hard work paid off and he
picked up on network security and got packet storm
up and running. Although I never contributed, I
was a long time listener.

I say I know him pretty well. As well as anyone
else around at NCSU. We're all pretty damn
unsatisfied that he's been treated this way,
especially since he gave us knowledge and he
was a campus character to boot.

Ken is not a bad person, he's not someone who
is likely to hurt anyone. He's got his opinions, he voices him, and doesn't expect you to change
yours for his. All he ever cared about, really,
was the information.

He's the Real American Cracker.

He knows his stuff, and doesn't pretend to know
what he doesn't. He'll talk your ear off about
networks and share a cigarette over some talk
about how weak the System is. He's just a good guy, that's all, and I'd say that in any forum or institution, International or Domestic.

That's all I have to say about Ken.

Now, the others....

Harvard was trying to protect itself by purging Ken from its records. Destroying his site was just that. Not letting him have the backups was the line. Hopefully, in the future, they'll be less like little bastards and more like men.

JP. Shove him. Don't pay him any respect. In my eyes, AntiOnline has been a pox on the security community for too long....

Peace,
BFD

Re:Ken Williams and his character

[joq]

Very well stated. Ken is one of the most admirable guys I've come across on the net and I haven't had the opportunity to meet him. Its a shame to see this happen to him. As for JP it wouldn't be worth another keystroke typing the thoughts about him. Harvard made themselves look like the biggest asses by pulling that sort of manuever, without question. Freedom of speech to them must mean: Freedom of speech as long as it doesn't interrupt out financial status or Prestige. But there Prestige just took the backseat.

Ken your the man.

xp0rnstar
sil@antioffline.com
sil@macroshaft.org

JP, Carolyn Meinel... They're all alike....

[schematic]

It's really a shame seeing a site like Packet Storm shut down. It was a really nice source of information. JP has done things like this many times before. From shutting down public IRC servers which he had no rightful adminstration access over to shutting down PS which said some things he didn't like. He has gone too far this time and I have a feeling that popular opinion about him and his buddy, Carolyn Meinel, are about to change. Carolyn Meinel. Do not trust a word she says. She, like JP, will say anything to get you to do what she wants you to. I will not go into full detail about her, but if you have not heard of her before, run far far away. (P.S. For all newbies wanting to learn about security, there will be an open wargame at www.tg0d.org and help will be provided for those who need it.) I have dealt with the two of these people for almost a year. They are frauds and don't care about anything you do. To see more about my personal exprience with meinel and JP, check out schematic.org. For more information about what happened with JP and Meinel, check out (one at a time, for the next 1 mins only) www.whereipretendtowork.com.

Re:JP, Carolyn Meinel... They're all alike....

[generic]

I agree CM is a dope, I had a long debate with her via email. I doubt she has ever read a TCP/IP book in her life.

No local backups? Oops!

[David+Jao]

While Harvard's behavior has been very poor, Ken should never have put himself in a position where the Harvard sysadmins controlled all copies of the site. These days, 3GB of CD-R media costs about $5. With these kinds of costs, there is no excuse for not having a physical copy of important data.

I can only hope that the web site wasn't that important to him (yeah right), or that Ken is just pretending not to have any backups.

People with important data ought to be a little more paranoid. Don't trust someone else to keep your data safe. Always have a copy on you.

Re:Free speech

[tesla]

What I can't believe is that anti-online denied
requests that were referred from www.attrition.org
to the following URL. How immature.

http://www.antionline.com/archives/editorials/pa cketstorm.html

Interesting cached page on google

[tesla]

http://www.google.com/search?q=cache:6863037&dq=ca che:www.antionline.com/archives/pages/ww w.netsnitch.com/

This cached page from google is probably an example of the type of thing that they are complaining about

Dammit

[drexel]

It is sad to see Packet Storm go down, especially in this manner. IMHO this was a childish move on JP's part, and Harvard didn't make things much better by destroying all of Ken's data.

I'll bet there is more to this story than we are being told.

Good luck in whatever you do next Ken...

Re:One side of the story.

[Dastardly]

Actually, it isn't that he will get kicked out of school. First, he is going to fail one of his CS clsses because all his scholl work was on the Harvard computer. Second, if he gets charged with computer crimes he could have his computer accounts revoked, which the University can pretty much do at will. As a CS major having your computer account revoked is pretty much equivalent to being kicked out.

Re:Attrition

[el_nino]

"Quotes that show the real AntiOnline"?
http://www.attrition.org/negation/quotes.html

Now most of these are taken out of context, and they mostly show that
1. JP has a sense of humor.
2. JP isn't very polite.
3. JP made one insensitive quote about albanians - don't know if that makes him a RACIST (sic!)

Disclaimer: I don't know JP, he might be a rapist KKK member eating children for breakfast as far as I know, but pulling those quotes out of context doesn't really makes me certain that he is...

/El Niño

I'm stupid

[el_nino]

Okej, the RACIST link went to a separate page with more quotes, but I still think most of those first quotes doesn't show JP to so very terrible.

Also, please understand that I'm not defending JP in any way for being an asshole, which it seems he is, I just think that _first_ quote page wasn't very good for conveying that.
/El Niño

Re:You know what?

[Tweety+Fish]

Heh, that's a mighty nice compliment from you... I must say, though, that both cDc and l0pht have great respect for the work that PacketStorms's been doing. There's been a real need for a comprehensive vulnerabi9lity database, and the fact that Ken was doing that non-commercially is real service to the computer security community. Indeed, the site was so well respected that it was mentioned in InfoWorld's Security Watch column not two weeks ago.

I, at least, hope that Packetstorm will find a backup and a new home, or that somebody new like www.securityfocus.com will step in to fill the gap. Otherwise we might go back to the "bad old days", where the only people who know about certain vulnerabilities are small groups of hackers and irresponsible vendors with no incentive to fix problems.

In praise of full disclosure,
Tweety Fish, cDc

save packetstorm emergency archive

[Rik+van+Riel]

In order to rescue as much as possible of the wonderful packetstorm archive, I have setup a makeshift "save packetstorm" emergency archive.

Vistors can look at the archive at:

http://packetstorm.nl.linux.org/

UPloaders can use:

ftp://ftp.nl.linux.org/incoming/packet storm/

to upload all the stuff they saved from packetstorm.

PLEASE, do everything in your power to save the knowledge in the packetstorm archive from being lost... (hint to moderators :)

Thanks,
Rik van Riel

Re:Free speech

[clawson]

Nah, free speech means I can say this:

"I'm gonna find you and waste your pathetic loser ass into fish food for my pet pirhanas!"

Yep. It does. Now, is there any context that I might actually do this? Nope.

I can also say, "I wanna blow the muthafuckas up!" Again, it might get someone's attention, but, again, there is no context about who I want to blow up.

Does JV have "malicious hackers" stalking him, as he claims, or is he just listening for the footsteps just a little bit too closely? He may claim these bad things have happened to him.

Seems like JV has just a bit too thin of skin. If the only way he can wall it off is to try and get rid if it by running to the Teacher or Mommy, well, I guess that's his right. Or is he really crying out for help and can't afford to go to the public mental health clinic to talk about his delusions?

Too bad we all lose by the loss of someone else's web site from his paranoic rantings and actions.

That the click-through on

Re:Legal help

[clawson]

Bullshit if the 1st Amendment only applies to the Federal Government.

Re:Contrast with Demon case

[clawson]

"We hold these truths to be self-evident, that all men are created equal, and granted by the Creator certain unalienable rights"

Umm...even though it's not a law, it is a guiding principle of how the law is interpreted and applied...

If the 1st Amendment (or, hell, the rest of the Constitution) doesn't apply to anyone else OTHER than the US Government, then...we're all f'd.

Attrition

[GeorgeH]

http://www.attrition.org/negation/

Moderators: I don't beg for upping of my posts scores, but I think its important for everyone to see JP for who he is.

Re:Attrition

[bee]

In particular under that URL at attrition.org, be sure to take a look at:

http://www.attrition.org/negation/www/tech.01.html

It's a shell history file from an account JP had a year ago or so. It pretty much speaks for itself as far as his Unix ability and his activities.

Re:Attrition

[synthetic]

Attrition also has one for Carolyn Meinel. Her's is pretty funny...i like the "su -username" myself. http://www.attrition.org/shame/www/tech-07.html

Re:Attrition

[Hard_Code]

Yes, I went there too...
People really should take a look at it...
I'm not saying I believe it all, but it is eye-opening

BTW, what evidence is there for a "threat" to the lives of JP and his family?

All the info I need...

[LarrySmith]

When I saw antionline home page describe itself
as the "National Enquirer of Cyberspace" I had
all the information I needed to make a judgement.
Now I'm sure the National Enquirer NOT in cyber-
space is right about 1 time in 5000, but life is
short and I'm betting short odds.

Why has no one commented on the "homosexual" part?

[jsm]

Why has no one commented on this?

In his letter to Harvard, John Vranesevich accuses Packet Storm of posting images of "people engaged in homosexual activities".

Why, exactly, would that be any worse than people engaged in heterosexual activities?

In addition to his other stellar characteristics, it looks like JP is a homophobe.

People, we need to catch things like this. Homophobia should not be tolerated in the online community.

Cheers,
James, who is not homosexual but knows a whole lot of great people who are.

A sign of worse things to come

[brennanw]

[ r a n t ]

This is so depressing, and more, it enrages me to think that this kind of stuff can happen.

Anyone who wants to do _anything_ as a public service can no longer simply "just do it" -- cover your backsides, boys and girls, because if you piss off anyone, I mean _anyone_ your "host" might decide to send you up as a sacrificial lamb.

Get everything in writing.

Keep backups of everything on a really big hard drive.

Encourage supporters to archive your site.

I think it's shameful that Harvard won't let him get the information he needs to graduate. I think it's shameful that his professor doesn't seem to give a damn. Personally, I think Harvard's reaction disgusts me more than AntiOnline's.

Don't think for a second, however, that I approve of AntiOnline's actions to any degree. I'm ashamed that they can do this stuff and still look themselves in the face at night. So much for the computing "community."

It's going to get worse. Apparently, the whole idea that the internet is a medium for the free exchange of ideas is getting less and less true, becasue any idea that you don't like can be litigated out of existence.

[ / r a n t ]

pick up your telephone

[twl]

1. 'whois antionline.com'
2. dial

Re:pick up your telephone

[Barrier]

I just called and the phone just kept ringing. Do you think their telco is being /.'d? :)

Re:pick up your telephone

[travisd]

Wonder is Pitt Students is a legal entity or not... if so, would this be a falsified domain registration? ;)


Registrant:
Pitt Students (ANTIONLINE2-DOM)
395 State Stree Suite B
Beaver, PA 15009
US

Domain Name: ANTIONLINE.COM

Administrative Contact, Technical Contact, Zone Contact:
Vranesevich, John (VJ288) jp@ANTIONLINE.COM
724-728-6203
Billing Contact:
Vranesevich, John (VJ288) jp@ANTIONLINE.COM
724-728-6203

Record last updated on 03-Feb-99.
Record created on 05-Sep-97.
Database last updated on 30-Jun-99 10:01:39 EDT.

Domain servers in listed order:

NS.ANTIONLINE.NET 209.166.177.35
NS2.ANTIONLINE.NET 209.166.177.36

Re:TO BE BLUNT - *YAWN*

[hime]

>Where do most of the child molestors come from ?

Both in terms of raw numbers, and if I remember correctly, percentages - heterosexuals.

Re:I want my, I want my, I want my packetsormsecur

[jtn]

What do First Amendment rights have to do with this? At last notice, enforcement of the First Amendment only applied to the federal government.

Re:Legal help

[jtn]

Please don't reduce the importance of "free speech" and the American First Amendment by crying censorship each time somebody is squelched. The First Amendment ONLY applies to the federal goverment.

Re:Let's all email Harvard and complain....

[jtn]

While I might not agree with the action Harvard took, they were fully within their rights. There was no contract in place, and Ken was not a student. I fail to see any criminal intent here.

Re:HAHAHAAH JP LIVES 1 HR AWAY

[ajf]

I wonder if that could really be JP himself just trying to get another enemy in trouble for making death threats?

He'd better not be. That would be stealing Laurence Godfrey's schtick.

Re:He wants a job in IT

[poink]

I am sure there is an offsite backup, but owned (or paid for) by Harvard.

JP a "Security Expert" ?

[GypC]

Here's a rather hilarious .history file that allegedly comes from one of JP's accounts.

Re:This is classic JP

[Accipiter]

#HackPhreak is absolutely NOT affiliated with JP or his shitty website. And if you even go in there and mention JP, you won't get a good response.

-- Give him Head? Be a Beacon?

Re:Packet Storm no saint - check out the other sid

[Accipiter]

JP was a senior OP in #HackPhreak a long time ago. At that time, he took it upon himself to remove valued ops, ban entire domains, as well as entire countries, and generally just piss anyone and everyone off. Needless to say, he was removed. Not soon enough though.

After working with him for that time period, I can easily say he's a total asshole, and likes to take everything said as it was directed at him. He got picked on a little too much in school, and now, if anyone "picks on him", his retaliation is to sue. Back when he was an op in #HackPhreak, his retaliation was to ban their entire domain/country. Some things never change.

-- Give him Head? Be a Beacon?

Re:What was Packet Storm?

[walflour]

www.google.com still has the text in there cache
so try and do a google search on packet storm
--

Practical legality

[UncleRoger]

Okay, I am not a lawyer, but I do watch Ally McBeal.

First off, It seems unlikely to me that Harvard, with a reputation of being an excellent law school, would destroy evidence if some sort of wrong-doing had been done. They really ought to know better.

But, if they did wipe the site completely, Ken has nothing to worry about in terms of lawsuits (without evidence, it's all he-said-she-said), disciplinary action from Harvard (he's not a student), or loss of his job (no reason, because there's no evidence).

Furthermore, I suspect he would have a good case against Harvard for destruction of his site, including the loss of his schoolwork. (Can you say Harvard is a cracker?) If I were on a jury, I'd certainly have Harvard pay him enough so he wouldn't have to worry about his schooling being screwed up.

If, however, Harvard does have a copy, then there is a possibility of a lawsuit happening. In which case, Ken Williams has really nothing to worry about from Harvard claiming he cracked their systems -- even the world's worst lawyer could get a judge/jury to see that 400K hits could not go unnoticed. If Harvard knew about it, they must have approved of it.

That would leave only the alledgedly libelous material. Which, if it was as John Vranesevich claims, than KW deserves whatever he gets. If it is not, than JV should be rightly counter-sued.

My guess is that Harvard pulled the server and is preventing KW access until they can determine what's what. If there really was libellous material, they certainly don't want KW to go and erase it.

Wait and see is all we can do.

Antionline.com not completely down

[Barbarian]

The main page seems to load, but all the links are broken from what I can tell.

Re:Seems like we /. ed it..

[arrow]

Negitive on that.

Several members of the internet community have taken it apon themselfs to make sure AntiOnlines site is down.

Last I heard the uplink was just ignoring all packets bound for *.antionline.com...

-Mike

Re:Destroying the Evidence?

[ansible]

Yup. The cover-your-ass position for Harvard in any matter similar to this is:

1. Take the site in question offline (done).

2. Make more backups of the questionable material, so that the lawyers can sort it out later. Especially if Harvard is sueing the site owner! How are they going to sue if they're destroying the evidence they need to sue?

Something just doesn't make sense.

Re:AntiOnline.com, can't even get to it....

[ch-chuck]

traceroute 208.166.177.37 from here doesn't get past border1-hssi2-0.minneapolis.usinternet.com

Chuck

Cheezus, for the past year and ½ we've been watching seminal fluid on the seal of the US white house.

Re:Packet Storm

[Freshman]

Packet Storm Security had over 4 gigs and 45,000 files of Security related bulletins, exploits, technical writeups, references, and even some 0-day.

It was basically an archive of all things security. It had a discussion forum where people could talk about security / computers / operating systems, new files and documents updated nightly, and even a poll thrown in. (heh, those were clever)

Re:Backups, whos got backups!

[Freshman]

It was a 4 gig site... 45,000 files

Re:Online Cache services

[Freshman]

Ken disabled robots while he was on genocide2600.com , so I doubt they got much..

what I sent

[Freshman]

just a quick note..


It has come to my attention that you have confiscated the data that
belonged to Ken Williams, a brilliant man and a close friend of mine.

The 4 gigabytes of Data that was formerly hosted on
packetstorm.harvard.edu contained 7 months of school work , and 4 years
of dedication into the Internet's largest security site, "Packet Storm
Security".
In no way was Ken using the server space (graciously donated to him by
Jeff Gray!) for profit, but as a storing house to hold his life's work.

Please, mail Mr. Ken Williams (snail mail) copies of the data that
belongs to him. You can contact him here: jkwilli2@unity.ncsu.edu

Thank you,
-Andrew Niese
Founder, Fresh Software

Seems to be resolving itself...

[psaltes]

Things seem to be clearing up...Harvard has not in fact wiped the site completely, and antionline is no longer online...

from www.hackernews.com:
AntiOnline is currently offline. It is unknown if this was done
due to a descision by John Vranesevich, his ISP, or if some
other action has been taken. HNN has offered to host
AntiOnlines comments but we have not received a
response.

We have word that the PacketStorm site has not been
deleted and that Harvard University will be supplying Ken
Williams with a back up copy of the site.

Re:Seems to be resolving itself...

[psaltes]

back up now...for a while, I couldnt even do a dns lookup or connect to the IP.

Natedawg's makin' it rea clea

[NatePuri]

As long as litigation remains only a threat
they can destroy the material that is their property.

I'm sure there are agreements present where this
guy waived ownership rights to his work while
employed there.

Whatever the case, Harvard has no worries.

For penalties to arise from destroying evidence
there must be a lawsuit filed already, and a mere threat will not do.

OOOO COUNTERSUE!!! (It's natedawg again)....

[NatePuri]

Hmmm... Harvard administrators consented to housing the info.

They aided him in maintaining the site.

Gave him superuser privileges. (Made him a privileged user).

There was a threat of lawsuit, and they destroyed his IP that they allowed him to publish for very long long time.

Depending on the value of the material (which would have to be argued), He may have a claim against Harvard yet for conversion, intentional infliction of emotional distress (killed is school project with their outrageous response thus depriving him of his educational benefits and expenditures in tuition), perhaps even interference with a contract. All of these are tort (injury) type claims and punitive damages would be available. OOOO He has some reputation damages as well!!! Ha Ha, he's got claims... Harvard will settle on a handsome sum of cash after a little bargaining.

Let's get him a lawyer to represent him on a contingency fee basis in a lawsuit against Harvard! He must be really really pissed.

I sympathize and all, but...

[cyberwench]

With that much information of that much importance - why does no one have a backup of the site? I wouldn't trust my college to hold the sole copy of anything I cared about. Is any of this data someplace else, or does anyone have copies of it?

Leilah

Re:I sympathize and all, but...

[delmoi]

The guy wasn't a student there, the Harverd was hosting the page beacuse they thought it was a good resourse, I assume. he probably didn't do any local backups himself beacuse the colage was doing tapes, or somthing. and I'm sure he didn't exspect *this*
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:Packet Storm no saint - check out the other sid

[john+barleycorn]

Sorry but at this point in the game Ken has way more credability than JP does. A month ago I would have agreed....but the events (articals Ive read....interviews with JP....E mail snippets from both attrition.org and antionline.com) that have passed these last few weeks do not weigh on JP's side. No Im not totally convinced JP was paying hackers to hack government sites.....but I do think thers much more to it than JP lets on....at the very least he knew about senate.gov beforhand then lied about several times. That is conspiracy.

As for the material on the site that was supposedly ther as an assult on JP: thats the same kind of crap almost a half dozen web sites have been posting for months. Why? Because JP's an ass.
The Packet Storm incident just solidifies that. Pure and simple. Some of that stuff was lightweight compared to what www.innerpulse.com prints about him on a weekly basis.

I have serious doubts that anyone (including ken) would think they could get away with hosting a site like packet storm at havard without telling anyone. That agrument just doesnt fly.

Its these kinds of things that make ppl *HATE* JP.
I think only one things for certain now: the net will make him bleed.

Local Internet

[cloudmaster]

Every time one of these sites goes down, I get closer and closer to mirroring every decent site I visit locally. I shouldn't even have to consider that... And doesn't the site just say "accused", which implies nothing's been proven anyway?

Something doesn't sound quite right about this whole thing...

Re:Local Internet

[cloudmaster]

Doesn't Alexa archive the net, like every couple months?

As someone else mentioned, a lot of the pages are still in http://www.google.com's cache 'o pages. Maybe someone oughtta pull down as many as they can find and piece them back together... :)

Re:Local Internet

[cloudmaster]

linux network block devices and software raid5 perhaps? I'm considering doing that for my own use, but haven't taken the time to find out if the 2 setups will work together - anyone know?

Re:Local Internet

[doom]

Sure, I might be interested in working on a project like this. I think of it as "trying to make the web a little more like Xanadu".

You folks could do worse than to read a bit of Ted Nelson to go with your Neal Stephanson: A New Home for the Mind?

It's pretty obvious these days that Xanadu was an attempt at doing too much all at once ("worse is better" and all that). Now that we've got part of what it was intended to be, it might be a good idea to try and evolve towards it...

Re:Local Internet

[TheLurker]

This encourages me to begin a project that was partially inspired by Neil Stephenson's "Snow Crash" and partially by "Cryptonomicon".

The idea is for a "CryptNet" Here is the idea...
Anyone who has a Net connected computer with some space and wants to be part of the network sets up a cryptnet server daemon and allocates some disk space to it. The space allocated is encrypted and the site admin has NO direct access to the data stored there. He has no control over or access to the contents. All these servers are linked together to form what ammounts to a big distributed file system that anyone can store data in. (Or maybe instead of opening it to the public completely, you can only store as much data as the space you donate to crypt net?) Several "Gateway" servers are set up to display what is IN the "filesystem". The "gateway" would act as a sort of proxy server to the gateway, so that the actual physical location of the data is unknown (or maybe we can avoid going through the directory server if the packet source can be anonymized some other way). Suddenly, physical location of the data is no longer an issue. The only problem I see is if a node goes down, suddenly that data in unavailable, but this can be avoided by only allowing responsible admins to join the network, not just anyone (similar to IRC?) or making sure each byte of data is stored in two or more locations. Anyway.. thats the general idea, and thats all it is. Anyone interested in helping start a project like this?

Re:Local Internet

[TheLurker]

This encourages me to begin a project that was partially inspired by Neil Stephenson's "Snow Crash" and partially by "Cryptonomicon".



The idea is for a "CryptNet" Here is the idea...

Anyone who has a Net connected computer with some space and wants to be part of the network sets up a cryptnet server daemon and allocates some disk space to it. The space allocated is encrypted and the site admin has NO direct access to the data stored there. He has no control over or access to the contents. All these servers are linked together to form what ammounts to a big distributed file system that anyone can store data in. (Or maybe instead of opening it to the public completely, you can only store as much data as the space you donate to crypt net?) Several "Gateway" servers are set up to display what is IN the "filesystem". The "gateway" would act as a sort of proxy server to the gateway, so that the actual physical location of the data is unknown (or maybe we can avoid going through the directory server if the packet source can be anonymized some other way). Suddenly, physical location of the data is no longer an issue. The only problem I see is if a node goes down, suddenly that data in unavailable, but this can be avoided by only allowing responsible admins to join the network, not just anyone (similar to IRC?) or making sure each byte of data is stored in two or more locations. Anyway.. thats the general idea, and thats all it is. Anyone interested in helping start a project like this?

Re:Local Internet

[Hard_Code]

Check out the Kha0s link on Slashdot today...I read somewhere it is based on an open-standards encrypted filesystem, "Matt Blaze's CFS"? It'll be open source, so perhaps the filesystem could be used or extended for a CryptNettish application?

Re:Local Internet

[WowMan]

If the "file-space" servers could be configured
to perform some form of "data striping", then
the actual offensive material would literally
have a "distributed" location. The Leagal Eagles
would relly have a tough time nailing down
precisely where the "offensive" data lived.

Off-site backups: you know it makes sense

[rjk]

If you have off-site backups, it doesn't matter too much if your data is destroyed.

The original claim that Harvard were going to destroy the site and its backups just emphasizes the point that you need off-sites which are under different administrative control than the originals, as well as at a physically different location.

Fight them back.

[EvilNight]

This is total bullshit. Even if the data on the site was controversial, their rights END when they tell you to shut it down. It is completely illegal for them to destroy your data like they have done. I have a friend who is an IP lawyer and he thinks you would have a good shot at landing a nice settement if you sue them. Verbal contracts are STILL contracts, you just need someone to verify that you had such a contract in the first place. You would need someone who heard the contract or has firsthand knowledge of its existence to testify to that fact and then you have proof that it existed.

You should also ask for the drives - if they don't know what they are doing when they delete it you might be able to retrieve some of the data. It takes a triple format to totally erase all data from standard hard drives. There are companies that specialize in recovering data in these situations. My 1st ISP had a hacker breakin where he wiped their system and they got it all back using a company like that. They can also restore CDs if they were only broken - you need to burn the pits and valleys out to destroy a cd, shattering it only destroys the ones under the cracks and those can be repaired often. I don't know any off the top of my head but I am sure a quick search will turn up someone who can provide these services, though they are not cheap. If a fellow slashdotter has any such information could you post it below?

This is blatant censorship - just because they do not like the nature of the data does not give them the right to destroy it. They have the right move it off of their servers only. Destroying the backups instead of returning them to you, especially if they know you have no other copies, is illegal destruction of intellectual property. If you had any of it copyrighted it will be even better for you in court.

At the very least you should be able to get the university to allow you time to make up for the lost class materials.

Even if there is a 'hidden' side to this story, it is still irrelevant. Destruction of IP is still a crime.

Sorry about the rant but this sort of thing really, really ticks me off...

They're destroying the BACKUPS also!

[TrentC]

He wants a job in IT but he doesn't make backups of his important data?

If you'd take a second to read some of the links about this, you'd see that Harvard is destroying the on-site backups of Packet Storm Security as well.

"I was told by Leo Donnelly at Harvard, via phone, that ALL of the content AND the backups made are either destroyed, being destroyed now, or will be before I can do anything to prevent it. All 4+ GB of files in the publicly accessible directories, over 45,000 files collected and archived over the years, are gone." -- Ken Williams, from a letter at attrition.org.

Given that the Slashdot blurbs appear to be from the story submitter and may reflect a lack of understanding of the issue (like the one about Yahoo "owning" all of the GeoCities content) you'd think reading the corresponding links wouldn't be too much to ask before commenting.

Jay (=

Re:They're destroying the BACKUPS also!

[mistabobdobalina]

>lack of understanding of the issue (like the one about Yahoo "owning" all of the GeoCities content)

how was this incorrect?

Because Harvard detroyed the info

[TrentC]

Because Harvard is not only shutting the site down, they are deleting all of the material on his machine (including 7 weeks of schoolwork for the classes he was taking at another school -- he wasn't a Harvard student) and destroying the backup tapes as well.

Jay (=

Re:AntiOnline Bias -- Provable, too?

[TrentC]

Scary how the AntiOnline version is tweaked just enough to make Ken Williams seem vengeful and juvenile.

And what's funny is that the version on HNN is apparently PGP-signed (the signature is at the bottom of the message!), where the (edited, I assume) excerpt from AntiOnline is not. Gee, wonder which one I'm going to believe?

I think that qualifies as a Perry Mason moment...

Jay (=

WHat a shame...

[Bubba]

As good a person as Ken is, I find it a shame that someone who spent as much time working on his site, has to have it shutdown. Whenever I have a question regarding some security topic, he usually has an answer for me. I just feel sorry for you folks that won't have the opportunity to use him and his website a resource in the future. Rock on Ken.

Ugh, this makes me feel ill...

[Mycroft-X]

Ok, these actions seem to be very rash on Harvard's part. I can understand why they want to avoid anything that might lead to a lawsuit, but before taking such extreme measures one would think they would set up a hearing or something so that both sides can be heard.

If I were him I would look up his Terms of Service and demand access to his IP (Int. Property, not the address, which is obviously owned by Harvard) as long as Harvard doesn't do something along the lines of Yahoo...even then I think he would have a right to it. Find a 3rd year Law student (hmm...not many of THOSE at Harvard... :-) and have him/her help him out.

And shame on his part for not keeping a local backup of the site...ok, I have never been there, so it could have been organized in such a way that it would take up massive amounts of disk space, but he could at least have backups of the important sections.

It's sad when an organization such as Harvard will comply with someone they have never heard of rather than trust that their students know and are doing the Right Thing(tm).

Tom Byrum

Re:Ugh, this makes me feel ill...

[Mycroft-X]

Ok, I didn't read the second part (thought it was the same as the first).

The fact that he has nothing in writing from Harvard is a Bad Thing(tm). When dealing with faceless organizations you want everything you can in writing, or know you have a solid case without it. In this day and age you need to be prepared for any lawsuit someone can dream up. What I wouldn't give for a device that I could type short agreements into and have both parties thumbprint or legally bind it some way, just so I could CMY.

Anyway, I admit things to not look good for him, though I can't see how there can be any suits or criminal charges (unless the big H decides to majorly screw him over beyond any need to) against him. Any content cached from his site with such alleged libel would (I would think) be inadmissable into evidence because it would come from the accuser in the first place.

Tom Byrum

Re:Ugh, this makes me feel ill...

[Mansing]

Rather than contacting the webmaster of the site, like a good netizen should, JP screams law suit. Great.

However, Ken probably shouldn't have had his private musings about JP or his current CS project on a server that's not his.

Obviously, JP needs to learn to accept that people in the Internet community may not like him or his views. I don't, but then again, I won't sue him, either.

Where's the ACLU when you need them?

pfc

Re:Destroying evidence

[Crankpin]

"Someone should shut Anti-Online down using the same tactics. They shouldn't be allowed (by the community, of course it's legal) to narc all their alleged contacts, then get paid for it."

Apparently someone has. Antionline has been unreachable (from here anyway) for at least the last hour.

As a Unix/Linux newbie, I haven't gotten too involved in security issues as yet, so I've never had occasion to visit the PacketStorm site. However, I find this kind of harassment, as well as Harvard's complete bendover in the face of a legal threat from this Vranesevich yahoo is unconsionable. They did not bother to even speak to Ken Williams before trashing _all_ of his data.

Lack of data

[Christopher+Thomas]

As has been pointed out by previous posters, the actions of Harvard seem inconsistent with the picture of the situation as given by Ken Williams. There are two possibilities:

• Harvard is being really, really stupid.
  
  
• There is additional information that makes their actions make sense (at least from their point of view).
  
  

IMO, the second is more likely. This doesn't mean that we are being misled - just that we have an incomplete view. Can anyone who has emailed Harvard management (or who is within Harvard management), or who is otherwise involved with this, provide more information on what is actually going on?

Re:Lack of data

[interiot]

I know very little about this situation, but I've had one of my own with Ball State that was fairly similar.

I had a linux box on the internet, and someone wanted an account on my computer to set up a talker (a usually open-source piece of software). I gave it too them, and a couple of months later, someone sent sent Ball State a fax saying that the talker on my computer was copyrighted by him and that they would take legal action against Ball State. Before I knew it, I was almost kicked out of school (even though it wasn't even me who had installed the software), and the guy hadn't given any proof, just accusations. Fortunately, Ball State didn't do anything too rash before they got more facts. I just think that when organizations hear the word "lawsuit", they do rash things.

Re:TO BE BLUNT - *YAWN*

[Byter]

"Where do most of the child molestors come from ?"

They're usually straight...Gay != Child Molestor.

"OR mabye it's a result of moral and religious beliefs."

If your beliefs are that you will hate somebody based on their preferred sexual behaviour that is with a consenting adult, and you want to use COERCION to enforce those beliefs on others, then I shit all over your beliefs. :P

I'm not a lawer...

[Natedog]

but I believe you're wrong. If I where to say to someone "I'm gonna find you and waste your pathetic loser ass into fish food for my pet pirhanas!" that would be a physical threat and I could be charged with assault. The right to free speach (in the US) does not mean you can say whatever the hell you wish - this has been well established in US courts, the typical example of this is yelling "fire" in a crowded theater when there is none - putting the crowd in a panic and endangering lives. Likewise, you can not say whatever you like about whomever you like. This may lead to a character depravation lawsuit - the US tabloids deal with this often. In short, if you are trying to damage someone's reputation by making false claims or such, legal action can be brought against you.

If what this letter says is true, then I'm on JV's side. Also,if it is true, it is a shame that the whole site will be destroyed all because of one person's unprofessional behavior.

I'm sure a lot of people disagree with such things (and I don't agree with all of them), but you have to play by the rules to win the game (just as the FSF has done by creating the copyleft). Go ahead, flame me!

Re:I'm not a lawer...

[duckbill]

Your assertion is incorrect,
"If I where to say to someone "I'm gonna find you and waste your pathetic loser ass into fish food for my pet pirhanas!" that would be a physical threat and I could be charged with assault. "

Assault requires an IMMINENT apprehension of a harmful or offensive contact. This statement does not meet the imminence test unless it also included an overt act. Even saying, "I am going home, getting my knife, and cutting you up in an hour." would not pass the test.

The speaker could be liable for a tort of Intentional Inflection of Emotional Distress if the conduct was outrageous. Also, if it were conducted in some mediums, (i.e. over a telephone), you could be charged with a statute about communicating threats through this medium.

Re:I'm not a lawer...

[jjohnson]

I assume that the relevant laws in the U.S. are the same as in Canada, from where I hail. Telling someone, however metaphorically, that you're going to harm them is a crime itself called 'making threats', which gives the police some legal handle on the threatener in case s/he's serious. I believe it's not as serious as actually harassing or stalking someone, but it can get you into trouble if you're uncautious about it.

I'm not a lawer...

[Natedog]

but I believe you're wrong. If I where to say to someone "I'm gonna find you and waste your pathetic loser ass into fish food for my pet pirhanas!" that would be a physical threat and I could be charged with assault. The right to free speach (in the US) does not mean you can say whatever the hell you wish - this has been well established in US courts, the typical example of this is yelling "fire" in a crowded theater when there is none - putting the crowd in a panic and endangering lives. Likewise, you can not say whatever you like about whomever you like. This may lead to a character depravation lawsuit - the US tabloids deal with this often. In short, if you are trying to damage someone's reputation by making false claims or such, legal action can be brought against you.



If what this letter says is true, then I'm on JV's side. Also,if it is true, it is a shame that the whole site will be destroyed all because of one person's unprofessional behavior.



I'm sure a lot of people disagree with such things (and I don't agree with all of them), but you have to play by the rules to win the game (just as the FSF has done by creating the copyleft). Go ahead, flame me!

Other incidents involving JP

[Andy+Muldowney]

This is not the first incident of JP shutting down something because of material on it relating to him. JP also recently (within the last week) shut down the HappyHacker IRC server which I helped maintain. This was a public server that he had no authority over, which he shut down due to people making fun of him and questioning his journalistic tactics in a public chat room. It is ridiculous that he can get away with what he's been doing lately. Check out http://www.attrition.org/ne ws/content/99-06-26.001.html for more info on the HappyHacker incident.
-Andy (a.k.a Punchdown)

Re:Packet Storm no saint - check out the other sid

[Andy+Muldowney]

After having worked with JP almost a year now on HappyHacker, I am finding it harder and harder to believe what he has said. I've been involved in incidents with him and then he turns around and says something totally against the truth. In my book, he no longer has any credibilty.

Re:Why cant packetstorm go back to its old address

[Andy+Muldowney]

Plus, I don't think that genocide has the bandwidth to accomodate it anymore. It's only on a T1 I believe, and I think that PS was getting up to 8 GB of transfer a day.

Re:You know what?

[azz]

They do REAL things, they work HARD at it, and they have been doing so for a LONG LONG TIME!

That doesn't stop them being a bunch of criminals. This kind of attitude does not help.

"I want to use software that doesn't suck." - ESR
"All software that isn't free sucks." - RMS

Re:He wants a job in IT

[dirty]

Actually he has a 33.6 acording to one of his posts, so it would have taken a really long time. I do think not keeping his school stuff at home was a bad idea though.

Re:Contrast with Demon case

[dirty]

Some of you should actually read the first ammendment. It starts out, "Congress shall make no law..." the key word being "Congress." It applies only to the government, more specifically congress. I cannot violate someone else's first ammendment rights. Harvard cannot violate someone's first ammendment rights. Only the government can. I just get sick of people touting "first ammendment rights" in areas where they are not in the slightest bit relevant.

Packet Storm Security

[generic]

I am kicking myself for not doing a getwww of packet storm security. They should have setup a mirror. Too bad about his school work though they should return at least that to him.

Re:You know what?

[generic]

I agree slander is lousy, but he had a good site with a great deal of information. Its a shame to see it go. I do regular security audits on my network 500 hosts + and I run penetration tests using these sites as references, seeing a large library of exploits and information go is sad. PacketStorm used to update each date too, unlike
rootshell which seems to fall asleep every month.

Rootshell is also rather incomplete when looking for vulnerabilities. I hope fydor updates exploit world soon.

feeding fuel to the fire

[Gary+Gnu]

Everyone seems to be missing the whole point to this whole fiasco -- these two people are just trying to get public attention by trying to get the entire planet involved in their little skirmish. I remember about a couple of years ago when JP's original AntiOnline server was shut down by his college (pitt.edu) because the content was considered inappropriate by the college and we can clearly see that he is now trying to make his past situation the same for Ken Williams. There are also several hundred clues that I have found out that tell me that JP is a very unliked individual in the "underground community" which is an oxymoron in itself considering most of the people who claim to be in this community are always trying to get public attention by whoring themselves out to the press (i.e. Pete Shipley, Se7en, Brian Martin, route, Carol Meinel, John Vranesevich, etc...). There are also several clues that tell me that alot of people try to take what JP says out of context to discredit him and this really pisses me off because these people are doing exactly the same thing JP is and it is really does not help in ther vendetta against him.
Then there are clues that tell me that JP is a self-centered egomaniac who deserves what he gets and his contradictive statements make him look bad in everyone's eyes. I can also see that Ken Williams and his friends has tried to twist the truth to make it look like only JP is in the wrong but after looking at the supposed mirror of the /JP directory at www.Genocide2600.com/JP I have seen that JP was actually wronged by these people and that Harvard's actions were justified and that they should not even be involved in JP and Ken's fiasco.

If only we stopped giving in to our crab mentality and refrain from trying to bring people down and just worry about more serious things such as helping the Open Source community, making the public aware of security issues, and to advance in scientific studies we would be in a better shape than the next inhabited star system in the universe.

One side of the story.

[richnut]

It's pretty clear that we're receiving only one side of the story here. There's no way Harvard would destroy all of the contents of this site if there's legal action coming. They know better.

The claim that he's going to get kicked out of school is rather dubious as well, Getting sued is not grounds for removal at any school I've ever heard of (Heck I know of people who were sued by their own school and still graduated), sure it's possible, but there has to be something else going on here. All you students go read your student code of conduct and tell me about the part where you're automatically kicked out of school for being accused of something.

If someone on /. finds the rest of the story I'd love to hear about it.

-Rich

Re:One side of the story.

[synthetic]

I think the point he was trying to make about getting kicked out of school was about the possible computer crimes charges brought on by Harvard. I go to Michigan State, and work in IT dept. for a college here, and part of MSU's Acceptable Use Policy, deals with hacking type stuff. MSU will and has terminate employment and/or expell students/employees for hacking on university computers. Now, if he did work on the site from a university machine, and Harvard chooses to do computer trespass stuff, I can see that being a reason to be worried.

Re:One side of the story.

[SamIIs]

Are you saying that he goes to NC State?

Sorry. Just snooping at your email address.

Re:Destroying the Evidence?

[Dr+Drew]

That's a strong point. Wouldn't it seem that if legal action was coming in, destroying the evidence beforehand could be viewed as admitting guilt? Wasn't there some fairly famous precedent... what was it called... water-something...Meanwhile, I hardly see the logic in bringing down a HUGE site, just because there were complaints about some of the content. At any rate, it seems like the complaints were about the /jp directory, so why didn't they just remove that? Seems like a fishy deal...gotta feel bad for the guy, the email especially brings a tear.

Expect more Web-related lawsuit threats

[sethg]

Many people have observed that thanks to the Internet's low price and popularity, anyone with disk space and a Net connection can be a publisher.

This story points out the flip side. Anyone who publishes on the Web, or who helps someone else publish on the Web, is exposed to the same legal risks that paper-and-ink publishers have.

Re:You put a comma by accident

[webslacker]

The fixed link is over here.

Destroying the Evidence?

[Industrial+Disease]

Let me get this straight. Because AntiOnline is threatening legal action, Harvard is destroying all copies of the relevant data? Completely apart from whether or not this legal action has any merit, couldn't Harvard get in a lot more trouble for destroying evidence in a suit than they are likely to face in the suit itself?

AntiOnline.com, can't even get to it....

[icepick]

Any DNS lookup I do fails, even trying to get it directly from their dns servers...
--

Re:AntiOnline.com, can't even get to it....

[bliss]

The fool could try however he would not succeed. What makes this world great is that you can do something about an injustice what ever it is anything at all. If someone tried to take down my site I would bring them to court and make them pay.

Re:AntiOnline.com, can't even get to it....

[blixco]

Try a tracert....I get loops between two routers. Looks like a nice router problem (all traffic being static routed back and forth till TTL dies). Doubt if it was spontaneous.

Re:AntiOnline.com, can't even get to it....

[thailin]

I was able to get into his site. I had to enter the IP address 208.166.177.37 to get in. If I went by the DNS name it didn't work. I also had to empty my history file (since I remember that there is a way to read that). If anyone can't get to the site, there is a news post about the closing of Packet Storm there.

-Thailin

ps. This is my first post and I don't know if this used my ID or not. :)

Re:AntiOnline.com, can't even get to it....

[thailin]

ack typo, make that 209.166.177.37.

-Thailin

Re:AntiOnline.com, can't even get to it....

[BLKMGK]

Heh, perhaps a bit of justice is being meeted out. IMO anything done to trash his site is fine by me, I'm more than a little ticked his rant has removed one of my favorite sites! Wonder how JP might feel when his content gets trashed? What a jerk, not sure Harvard looks much better in this either....

Re:AntiOnline.com, can't even get to it....

[r_hakz]

Same here...

Re:AntiOnline.com, can't even get to it....

[ostiguy]

Don't blame Harvard? They just wantonly start destroying all the data related to this site, as it appears, without any legal consideration on their part? What the hell happened to Harvard?

Ignore him? If he keeps this up, every security site but for his will be closed. How will we ignore him then?

Re:AntiOnline.com, can't even get to it....

[ufdraco]

This is strange...I've tried to look up here at work and I get "Bad IP Address." However, I did make it to their web site once. What's going on?

Re:AntiOnline.com, can't even get to it....

[ufdraco]

yeah, he corrected the IP elsewhere in the thread. It should be 20 9 .166.177.37

This may not correct the problem, but it'll getcha closer.

Re:He wants a job in IT

[fishCannon]

I really can't fault him for not making backups. Backups were made on a regular basis, by the Sysadmins at Harvard. If he made any mistake it was that he trusted Harvard

Re:He wants a job in IT

[Ted+Nitz]

How fesable is it for him to make backups of 3+gb worth of data that's all on a remote server. How often should he have backed up? given a 56k modem connection to the net how frequently could he back up if he were downloading CONSTANTLY, probably once every other day or so. His link is probably faster than that, but 3gb is a lot to be backing up like that. I'm sorry for his loss, and sorry that the admins at Harvord are being such morons.
-Ted

Hmm..

[Khan]

Looks like the /. effect strikes again. Either that, or someone has taken "care" of antionline. Waiting to read their "allegations" before I make a reply. But I agree that destroying ALL of the Packet Storm data is wrong on Harvard's part. Even if their "stellar" image were tarnished by any controversy, they would get over it. It *IS* Harvard afterall.

This is classic JP

[mplex]

He's just a scared kid who talks big. Go pay him and his friends a visit on #hackphreak on undernet...You will see what these people are really like.

Somewhere in the middle lies the truth

[Hangtime]

Let's face it boys and girls, these two are not very likeable characters. Neither one of these guys will win contests for likeablity. But like what happens when most things come through this forum, we shoot first, ask questions latter.

FACT: I doubt Harvard wouldnt have looked at the link on the site before the pulled the page. More then likely it was full of alot of the crap that was said about it or Harvard would have said to go screw yourself. Being from a private university, appearances must be kept up. In fact, here where I goto school three staff members were fired for posting a Playboy nude of Pamela Andersen. Harvard's covering their ass.

FACT: These two have had a long running feud between each other and this a pissing contest. However, somebody got caught were their pants down this time. I doubt anybody here would have want their work copied like antionline has been for the past how many months by packetstorm.

FACT: I doubt the FBI, Air Force, Computer Associates as well as numerous others would have put their trust into someone who they didnt throughly check out.

My point, grab both sides of the story before you start taking sides. Both of these sites have been credits to web but when they dengerate to this stuff like making threats or taking each others sites down, it just feeds the fire. This is a pissing contest plain and simple. Nothing less and nothing more. Pack up the stuff and move on.

Hangtime

I think this is a long standing feud between these

[rueba]

1. http://www.attrition.org, various random "hackers", and possibly Packetstorm have been dissing JP (and vice versa) for a while. He claims they are malicious hackers and script kiddies, they claim he is clueless and a careless self-aggrandizing journalist.

2. This is purely subjective, but I have heard a lot of good comments being made about

Packetstorm on this discussion and not many good comments about JP.

3. I would love to know the actual root of their conflict and why exactly they are going

after each other like this. I don't think we have gotten the full truth from either side.

Conclusion: This is just another episode in "Hacker Wars:The Phantom Lawsuit" (Or maybe

Script Kiddie Wars?)

You know what?

[mindstrm]

Okay. Perhaps the univeristy acted harshly. But from my point of view, if someone was hosting something on my network, because one of my staff let him (who didn't have the authority to, and the network admin probably DOESN'T have the authority to delegate university resources wherever he feels like it), and I was threatened with a lawsuit, I would say 'delete it all, this isn't our problem'.
No, I probably woulnd't bother erasing all the backups, because that is a PAIN and makes extra work.
Yes, the guy who's site was gone should have had a backup. It's not your web-hoster's responsibility, generally, to keep backups of your site for you.

Yes, anti-online might be bad.. but you know what? I've been at this game for 15 years now. You can drop lots of names that I understand.. All the cDc fellows have done many many great things that added to my enjoyment of the computer world, for instance. Names like Kevin Mitnick that actually stand for something, there are lots of them. But who are these antionline people? Or packetstorm?
All I see are a bunch of kids who like calling themselves 'security' experts.. why, because they hacked some sites? because they know some exploits they farmed out of the net like wild mushrooms in the forest? Yes, some of them put up nice sites, collect information.. but then they go on big slander campaigns against each other.
You knwo what? I couldn't care less if Attrition.org says antionline.com violated some stupid copyrights. None of this is REAL! Run a site, brag lots, sign your mail as the 'founder' of some group/site/whatever... GET A JOB! GET A LIFE!

Someone in a post here on Slashdot mentioned the l0pht had been accused of something....
how does L0pht Heavy Industries, the old cDc guys, compare with ANYONE who is new? They do REAL things, they work HARD at it, and they have been doing so for a LONG LONG TIME! And they STILL don't go around bragging like a bunch of kids.

Damn. What is the world coming to.

--
mindstrm
Founder of nothing.
Member of nothing.

Re:You know what?

[starvo]

Amen to that rant. :-)

I'm not sure who the real Hack/Crack(Insert term)'ers are now... But I have this gut feeling that whatever real hackers thee are out thee.. they're laughing whenever they see site such as Anti, etc...

Awell... Praise the internet for easy access to information.. No don't mind me, I'm about to drift out, and dream about the olden day's of BBS'ing... ahh sweet sweet 1990 and Telegard, and PcBoard.. :-)

JP, the amazing egotistical fascist

[Clocker]

I myself have personally spoken to JP. This man is compeletely insane. He threatened me with legal action for criticizing him in the IRC channel #hackphreak on Undernet, I suspect he caused my previous ISP to terminate my account due to so-called "IRC abuse," and he generally acts like a child when he doesn't get his way. At one point, he was the senior operator in #hackphreak, at which time he proceeded to ban entire ISPs, until he was removed from the channel for banning *!*@*. This man cannot accept any sort of criticism, however he deals it out constantly. He has criticized several other news/underground sites, repeatedly. But the thing which bothers me the most is how he claims to be a member of the "underground" community, while all he has served to do so far is to hurt it. Finally, as many others have said, the sad thing is JP has broken no laws. This man is devoid of morals, but there is really nothing anyone can do. The only thing I can do is suggest that you do not visit AntiOnline, and pray for JP to be hit by lightning. Linux is like a dog. It's fun to play with, but you wouldn't want to take it home.

Legal help

[Shadok]

Souns like Ken might want to contact the ACLU about some legal help. IF this is considered a free speech issue they might want to help.

Re:Legal help

[bpw]

Is Harvard not publically funded at all? Do they not fall under any kind of Education Department? They're not a totally private institution, AFAIK. If they're funded by the Fed, consider them the Fed.

Harvard never should have taken in PacketStorm

[JohnZed]

PacketStorm was quite clearly in violation of Harvard's acceptable use policies, which, like most universities, actually permit VERY LITTLE. Their correct response should have been to cut off the server from the outside world, allow Ken to get his data, and be done with it.
Their real mistake was inviting him onto the network in the first place. A site like this, operated by one person and centering on controversial issues like cracking and information security, is bound to attract unwanted attention. It should NOT be located on the net of a private, conservative university which has a repuation (albeit not a good one among people I know. . .) to uphold, trustees to satisfy, and lawyers to please.
--JZ

I want my, I want my, I want my packetsormsecurity

[Provos]

Amazing. Antionline's legal facism strikes again. Criticism can not be had of this Amazingly Wonderful Security Site, and it's Amazingly Wonderful Contributors because as we all know, Antionline is always right, always will be, and... oops... damn, I must have crossed over from another universe again.

It's almost funny how antionline can claim to be what it is, when all it does is try to shut down competitors. I've never seen anything useful come out of antionline, and I doubt I ever will. Packet Storm actually had something to contribute, and while I didn't visit the site that often, this really ticks me off.

Of course, Harvard is trying to cover their ass, as opposed to supporting packet storm, because they're scared of the controversy. It's kind of sad when everyone around is scared to protect first amendment rights. But then hey, I'd be screamin my head off in pure terror if anything that had to do with Ms. Meinel even thought about me.

Even worse.

[Obscure+Images]

The really sad part about this is that his school work was on there, and is now gone. The fact that this could end his grad school career because of the timidity of Harvard AND the increasingly idiotic actions of JP. If JP has his way, it looks like all security sites will have to disappear. Even if JP has to hire a hacker to frame them.

Re:Free speech

[bliss]

Let me begin by saying that something libelous is quit bad for the person expecially if it means that his family is involved. This response must be temered with one of rationality about the event. Did he really suffer any harm. Seems to me that this person shutting down his server and "taking away his livelyhood" from his page is rather harsh.

In addition I am an ardent person who believes that Acceptable Use Policies (AUP's) are bad. No worse than bad just plain authoratarian and more like natzi's or maybe Doestyveski's Grand Inquisitor. It really seems that people have to force their belief's down other's throat's in this world. Every time I ever have to use a public computing service it makes my blood boil that I have to put up with stupid, inane rules that have little practal importance. For example I pay tax dollars to fund things like libraries to have a better computer than I have at home. Then they turn around and say that I cannot do this and that. It just makes me want to strike at the heart of them when I do get something better (get $100,000 and buy a top of the line machine with the finest network protocols and produce a better FREER service than they offer). This guy seems to be the type of person that many sysadmins are just a restrictive loud BOFH. Most of the people I have met in this area are quite (how shall we put this delicately.....evil) they were rude to me to the point of me giving the name of the lawyer who would contact them. They act like everything is their private fiefdom and no one has any rights. They speak of users like they were some sort of permanent underclass of people who just don't have a clue. I really thought that someone like harvard with people paying >$30,000US a year to go there would be above siding with a fool like this. It seems that all network admins are just not in tune with what it means to be fair, pleaneant, or knowledgable with anyone.

I know for this if I ever get a job like that I will make sure on my grave that I will make sure people get a fair shake and not tossed around like so much trash. I say why dosn't harvard grow up and give people more freedom!

Re:Free speech

[bliss]

I would feel rather flattered that I would be well known enough that someone wasted a couple days in photoshop making me look like a homosexual just to embarass me?? Is that supposed to be emparassing? This guy must be delusional

Re:Free speech

[bliss]

It could be that sysadmins have the mentality they do due to limited size of genitals so they compensate by administering BIG machines. Just a thought.

Re:Why has no one commented on the "homosexual" pa

[bliss]

Basically it is because not a whole lot of people have the same views. The same effect can be achieved with womeone who wears a pink shirt to work instead of a white one (like all the other people). Just draws a reaction.

Re:TO BE BLUNT

[bliss]

The only time I ever hated anyone directly because they were a homosexual was probably some kid who kept anoying me in highschool and kept bothering me with vivid descritptions about such behavior. Mostly I was just turned off by his lack of common conduct. However this is not the way most people act. There are jerks and polite people from all over. What people are seeing when the think of gay people in a bad light is most likely the instince I encountered.

Re:Harvard Statement

[bliss]

Yeah it was however it is still nice to get the word out to people who don't view the whole ball of wax (-1 comment threshold) like me.

Incidently I might act as a partial mirror if I could just out of principle of the thing.

Re:Harvard Statement

[bliss]

II. FreeServers.com may terminate user accounts at any time, without notice for conduct that violates these guidelines, or
for any other reason, and may terminate user accounts and delete any and all user information for conduct that FreeServers.com
believes is harmful to the business of FreeServers.com, or any of its users, or partners. Pages found in violation of these items
may be subject to immediate deletion and removal from our servers, and their webmasters subject to banishment from the
Freeservers network. The following is a non-exclusive list of content and behaviors that are UNACCEPTABLE on
FreeServers.com.



b. Content that condones, promotes, contains, or links to warez, cracks, hacks, their associated
utilities, or other piracy related information, whether for educational purposes or not.


------------------------------------------------ -

I guess that rules out the mirror thing damn

Re:My idea to prevent this in the future

[bliss]

Sounds like a pretty good idea I shure would like to find out about it drop me a mail.

Only one problem wouldn't someone eventually try to take it down (like the govt)??

Re:Legal Rights

[bliss]

How was material submitted to the site?? How could anyone get pictures of anything like that on there?? Just dosn't add up. I say just start having everyone go at one time say about 0700 EST to his site and wait til it crashes that might change the tune a little

Re:Free speech

[bliss]

Actually the people that I have met have all been windows/mac/netware admins. Never really have seen a true unix admin in the flesh though.

Re:HaHAHa! AntiOnline.com DOS'ed!

[bliss]

Unfortunately I do not believe that web traffic can count as DOSing anything. You take a risk putting anything (even a geocities page) on the internet. Anyone can access it. You should expect this. This is especially true with a site devoted to security and even more especially about a controversial subject to boot.

Re:Contrast with Demon case

[bliss]

I think that the constitution is quite good. Even though the US sometimes does stupid things at times who else could you turn in the event of something going horribly wrong (say the govt executing people for wearing green)?

Destroying evidence

[lythander]

It's not evidence until there's a suit, right? Except for some things that are already required by law to be kept on file (financial records, etc.), wouldn't this be legal? Or is the threat of a suit enough to make this a crime?

By the same reasoning, my company uses a POP3 server, mandates no mail be left on the server, and does not back up the directories where actual mail resides.

Someone should shut Anti-Online down using the same tactics. They shouldn't be allowed (by the community, of course it's legal) to narc all their alleged contacts, then get paid for it.

Online Cache services

[lythander]

With things like Google and Alexa, aren't there a few places where one might find this data available for retrieval? And doesn't that make destroying evidence a whole lot harder?

Re:Online Cache services

[patowic]

I checked Google, but it was not cached there. It looks like Ken put all his eggs in one basket, and is now horrified because his basket has been confiscated.

Methinks he should have had offsite backups, such as 'in his hands'.

Is it possible that what Harvard said was wrong? Has anyone heard _their_ side of the story?

"Childish" is the only way to put it.

[NecronomiconII]

Looking at the various content of the different "ANTI" Anti-online sites, and AntiOnline itself,
looking up personal information on the people involved, it seems simply - Childish. How old is JP? If he was a underclassmen in High School in 96, it's reasonable to assume he is just starting college or is a senior in High School.. If anything this just leads one to ponder the overall
maturity level of JP.. "Attack me and I harrass you.." and then to do something as silly as go up against MSNBC, who, I'm sorry to say, have a whole department of Lawyers.. In a real lawsuit, who do you think would win? It's really just immature and silly.

Re:AntiOnline Bias

[MindStalker]

Accually I thought so too (read my comment)
But if you look at packetstorm.genocide2600.com
you find out that he did say this (apparently revised his statement a few times) but this is exactly what was quoted by JP minus the cuss words in which he notes where removed at the bottom of the page.

Let's all email Harvard and complain....

[Seth+Cohn]

Could someone post an email address please?

I want to let them know that Packet Storm was a VERY valuable ANTI-hacker tool for me, as a professional sysadmin, and that I strongly object to their onesided handling of this. Packet Storm contained 'antiJP' stuff long before it moved to Harvards domain, and deleting the content was more than wrong, it was criminal.

Re:A bit of new information, courtesy of Harvard.

[Seth+Cohn]

Ken's reply was that that Harvard's claim was itself libelous, and he intends to hire legal eagles in response.

Harvard's playing this as if they didn't nothing wrong, which is nonsense. "Sexually" related material? Out of How many GIGS of Data, they found something they didn't like? Sorry, I think not. I think they yanked it without ever looking at it to start with - they just pulled the plug on a single (JP) complaint.

Letter I sent...

[Seth+Cohn]

To: uis-webadmin@harvard.edu, provost@harvard.edu
Subject: Letter of Protest


Dear CAIS and the Harvard Computing Community,

I am writing to protest strongly Harvard's confiscation of Ken Williams' site PacketStorm.

Ken is one of the brightest talents in the security community, has worked tirelessly for years on security related issues and has freely shared his
work with the rest of the community.

To pull his site and prohibit him from accessing his own content is outrageous.

As a professional network administrator, I used his site services at least once a day, and found his content to be professional accurate and trustworthy. His content helped me PROTECT MY NETWORK, and according to all reports, you've destroyed all of his content, his hard work, and a RESOURCE that I used. This is absurd. His content, regardless of libelousness, existed BEFORE it came to Harvard's domain, and libel suit threat aside, destroying data like that is a crime. If you wanted it removed, pull the plug on the machine, and RETURN the data to Ken.

It is my sincere hope that you will reconsider your actions.

Thank you for your considerate attention.

Sincerely,

Seth Cohn
network administrator of [removed for privacy]

Re:Letter I sent...

[HSinclair]

(my own short version)

To: uis-webadmin@harvard.edu, provost@harvard.edu
Subject: Ken Williams and PacketStorm Security

I sincerely hope Harvard rescinds its decision to destroy the data that was on Mr. William's website. Please allow him access to the data, if it hasn't been deleted already, so he can move to another site and continue to provide useful and important information to the Internet community.

Thanks in advance,
H. Sinclair

hypertext trasfer protocol (http)

[delmoi]

when you make an HTTP requrest, you send more then just the URL you want (usualy) you also send aditional information, including the page that you linked from, so it wouldn't requre any javascript to implement a page like that....
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:AntiOnline.com, you *can* get to it...

[delmoi]

Just open a new browser window, and paist the URL, (I also did it from IE to netscape...)
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:antionline.com down?

[delmoi]

no, they arn't down. infact they are a live and well, talking abou what happned to... but they are blocking slashdot.org refers.... copy and paist the URL into another netscape window, if you are using IE it the new window may start with the page youre on, so you may need to restart your browser
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

That shouldn't be to hard, since there blocking...

[delmoi]

people comming from slashdot........
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:Ryeah well at least u can still READ antionline

[delmoi]

without moderators, we would have SPAM
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

- anonymous.

[delmoi]

"People in this country have the right to say and do whatever they please, unless that is, what they say and do infringes on the rights of another - anonymous." WOW, I guess we should all live by that then, since it was written by "anonymous"... with all the contributions that "anonyomous" has made to western civilization. And seeing how "anonyomous" Was pivotil in the creations of the 1st amendment. it's to bad what happend to "anonyomous" in the end, ironic, though, considering....
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

you know, the nazis tried to kill fags to...

[delmoi]

Sorry, I just wanted to kill this side thread as quickly as possible :)

_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

wow

[delmoi]

has attached himself annoyingly to the cracking community. Nobody wants you around Gay Pee!

AHAHAHAHAHAHA
rejected by the Cracking comunity...

_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

vagina-snatch

[delmoi]

Hasn't anyone else though that up?
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

I just lost all respect for this guy...

[delmoi]

Nothing is better then java, period
(this is sarcasm, btw)
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

sounds great for kiddie porn

[delmoi]

Yeh, but with a system like that, how are you going to stop things like kiddie porn?

there could be some problems with systems like that...

and what about SPAM???
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:maybe he had pics of alan turing?

[delmoi]

didnt' he belive in paranormal phinominon or somthing?
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

turing test

[delmoi]

One of the ways that Alan Turning thought that someone could lose a turning test would be to use ESP to find out whether or not it was a person or a box.... hrm
_
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

backup mystery.....

[thebrit]

If you were that well in with the main sys-admin who you hosted your site/server...surely you would ask for your own backup image once a month !!!

3Gb is a shit load to lose, all for the cost of a DAT/DLT etc.... and for your own peace of mind its always nice to have .

poor guy

blocking referrals

[mistabobdobalina]

this biz about blocking linking from slashdot, hackernews, etc. proves what type of site antionline is - designed for skr1pt k1dd13s only. jp _wishes_ he had the cred of slashdot..

the nun...

[mistabobdobalina]

is obviously the seminal issue in determing who is right in this dispute ;)

Re:Free speech

[RasmusKaj]

Calm down now ... Free speach does not imply that threats and libel (1) is legal. I'm all for free speach (and free beer :) but if someone threatens / libels me, I take action.

Heres the mail John Vranesevich says he sent to Harward. If this mail is what made Harward close the site, then I'm all on Vranesevich's side. The important thing to remember, though, is we don't know!

Greetings:

May I first say that I did my best to see that this letter got sent to the appropriate individuals. I had some difficulty determining who those individuals may be, so if I have made an error, I would greatly appreciate it if you would forward this letter on to the appropriate individual(s).

My name is John Vranesevich, and I am the Founder and General Partner of AntiOnline LLP, a computer security company based outside of Pittsburgh, PA.

Earlier today, one of my colleagues forwarded me the following URL:

http://packetstorm.harvard.edu/jp/

Needless to say, I was shocked and outraged at what I saw. This page contains a large archive of libelous and, to put it bluntly, sick material. Everything from archives of copyrighted material from our website, to altered pictures of my family, to 'stories' about me which contain images ranging from people engaged in homosexual activities, to a nun that appears to be covered in seminal fluid.

I am astounded that an institution as prestigious Harvard would be party to the dissemination of this type of material. It is my hope that the University Administration was unaware of this site, and now that it has been brought to their attention, it is my hope that it will be dealt with promptly.

I have worked to help several educational institutions develop 'Acceptable Use Policies', and if Harvard is similar to them, the above URL would be a clear violation of that policy.

It is my hope that the above mentioned domain will be shut down immediately, and that the individual responsible will be seriously reprimanded.

I hope to hear from you soon about this matter, and what you may have done regarding it.

Yours In CyberSpace,
John Vranesevich
Founder, AntiOnline

(1) English is not my first language, so I'm sorry if this is the right word, what I mean is e.g. publishes fake porn images of me.

Re:Unfortuneatly...

[tlhIngan]

Obviously you haven't heard of WGet. It performs similar functions to WebWhacker, etc. Open source, with a win32 version available. Lets you spoof a version reply if necessary. Get it at your favorite GNU tool website.

What was the material?

[sphoenix]

I never got a chance to see the material that John Vranesevich says were "blatant threats against members of my immediate family, myself, and my company." Can anyone fill the rest of us in on what the material was? Without seeing the evidence it's impossible to make a call of whether the material was inappropriate. Either way, Harvard's reaction seems like overkill.

Re:JP

[DeepThought]

Ooh. There we go. Hey, that's just as good of an idea as suing for spilling hot coffee on yourself. Let's just KILL anyone that we have a disagreement with. That will solve all our problems! With this type of attitude, let's hope you don't ever have kids. I don't want my kids growing up in a world where they have to be afraid of speaking their mind. I'm not defending the dweeb that had the site shut down, nor am I defending the site builder, but I am defending both of their rights to say what they feel is right without fear of repercussions threatening their right to live. We don't even know any facts, and the first thing you can think of is "This mo-fo deserves to die!" There are better ways to solve our problems.

More info on www.hackernews.com

[hackernews]

The Hacker News Network has more information with explanation of why the data has been destoryed as well as letters from Ken Williams. etc.

My problem with this is that ...

[squireson]

My problem here is that they ( may have ) invited Packet Storm onto their computers and somehow gained intellectual rights to their data . Whether the data was in part copyrighted material is another matter altogether . Harvard could have simply kicked him off . Destroying the backups
was totally unneeded if they were covering their butts . Furthermore , Antionline made it very difficult for me to access their site to see what was going on .
I had to disable cookies and clear my cache before I could get ot www.antionline.com .
I had already tried to reconnect ( figuring that I could get a new IP address from my provider that way .... just incase the site was using RDNS lookups ) .
I don't know . The tactics involved were a little
reminiscent of Scientology .
And remember :
Slander is the promotion of PROVABLY untrue statements .
Your squire
Squireson
squireson@bigfoot.com

OK, now Calm Down....

[Patman]

While I agree that Harvard is making a big mistake shutting the whole site down, and by destroying the site itself, the fact remains that we don't really know what the hey is going on. We've got Kevin's righteous indignation side of the story, and a reply from the now-vilified JP. No one here(at least no one admitting) has seen the offensive material, or knows what happened behind the scenes to get to this point. Yeah, it sucks that the site is down, but WE DON'T HAVE ALL THE INFORMATION. For instance, two days ago, around my office, people were talking about helping that "nice little Honduran boy who made it all the way from Central America to New York!" Come to find out the kid lived in Miami, and was only smart enough to make up a nicely believable story. Moral: Give the story time to develop, without jumping right on the banner headline: "POPULAR SITE SHUT DOWN BY JERK!"

Re:Lessons to be Learned

[davehart]

Amen! My first question was why the site's maintainer didn't have his own backup, and my second question is why he wasn't hosting the site himself or paying someone to host it, rather than leeching Harvard's bandwidth.

Re:Legal Rights

[davehart]

The ACLU is not a substitute for your own legal counsel. They are not "happy to provide pro-bono legal services to defend the first amendment" in the general sense that you imply. Many ACLU participating attorneys may in fact be happy to provide pro bono (no hyphen) defense of the First Amendment, but the ACLU itself is interested in setting precedent that will broadly affect the legal system, not in fighting every fight themselves. More notably, this isn't a First Amendment issue. The government is not attempting to limit anyone's free speech. If the site were being hosted by a paid webhosting provider, there would be a potential breach of contract case, but since Harvard was donating its equipment and bandwidth and chose (rather rudely, perhaps) to cease donating said items. I've read the material on attrition.org, and a number of press pieces on the antionline disputes. I'm withholding judgement until I can see antionline for myself again. Do me a favor, join the ACLU and learn about it and help the group in its defense of the Bill Of Rights. If you do that, I doubt you'll continue to offer their services as you do in this post.

Ok, now where?

[Sea++]

Since Packet Storm has died (just figured out where I'm not going to collage!) is there any place else that had that kind of thing? It was an invaluble resource, and now it's gone. This bites big time! I think it's time to make a trip to Pittsburg. --Sea

Re:Ok, now where?

[J.+Pierpont]

Well, you might want to focus on places with really good art programs. I don't know how well you could do collages at Harvard.

Sorry for the spelling flame, but it was required for a message that misspelled 'college' while discussing the possibility of going to Harvard. Or is that Harverd?

-awc

Re:HAHAHAAH JP LIVES 1 HR AWAY

[itachi]

Being biggoted is no better than what Mr Vranesevich has allegedly done. It is offensive and ignorant to be homophobic. Please consider this in the future, and think about what it would be like for someone to discriminate against you because of who you are.

itachi

Re:TO BE BLUNT

[itachi]

No there isn't. All I can do is ask you to reconsider. After all, do you plan on being rasict for the rest of your life? Sexist? Will you hate tall people because they are tall? I am just asking you to think about why you feel that it is ookay to hate homosexuals because of who they are.


itachi

A bit of new information, courtesy of Harvard.

[itachi]

A gentleman from Harvard Net Ops was kind enough to reply to a email I had sent him earlier in the day, and he included a Harvard press release. They are in fact going to return the full contents of the site to Ken Williams, although the site is no longer welcome on the Harvard network. The decision was in fact based on the fact that there were "sexually-related material and personal attacks on an individual not affiliated with the University". Which does change the situation, IMHO. I do home that a new home can be found for PacketStorm, but Harvard's decision is much more understandable now.

itachi

Re:herbert hoover!

[akmed]

You've got the wrong hoover. You're talking about J. Edgar Hoover of the FBI, and if you're interested in the rumors around him, I suggest the following site: http://www.crimelibrary.com/hoover /hooverhomo.htm. I dug it up searching through yahoo for info about Hoover. -Mike

You moron!

[BLKMGK]

That site was one of the best resources on the 'net for security related stuff. I used it on a regualr basis along with several others to keep tabs on what was coming out in the way of exploits. As a sys admin in the INFOSEC field the loss of this site hurts. JP's AntiOnline crap site isn't worth a damn and his antics to get this site removed are pathetic.

your statements concerning this site make it obvious that you've not been paying attention and that you've never visited Packet Storm prior to it's being pulled. You're much the poorer for it....

Unfortuneatly...

[BLKMGK]

Ken's site was pretty dynamic and he just overhauled the entire thing when he moved it over to Harvard's server (grr). Files and exploits were posted on a daily basis if not hourly. On top of that mirroring it for yourself might have been complicated by the fact that his site blocked tools that honored "robot rules" (right term?). Tools that I attempted to use to suck down interesting files during off hours were blocked by his site - yeah these were Wintel tools. Obviously there are tools that would've ignored the rules but having to find such a tool would've made mirroring things harder.

This is a REAL shame and I'm most distressed. If it comes to a legal fight for Ken I'll be contributing to any fund that gets setup. A shame he didn't provide any addresses for the schmoes at Harvard that claim to be destroying his data before he has a chance to stop them - something smells badly here.

Harvard Statement

[Gartmeister]

Dont know if this was posted already or not:

=======================

* S T A T E M E N T *

As a service to the Internet community, Harvard agreed to host a Packet Storm Security Website for security-related materials only. Without Harvard's knowledge, unrelated content was put on the Harvard server, including sexually-related material and personal attacks on an individual not affiliated with the University. A Harvard administrative site focused on security issues is not the forum for this type of material. We are returning the content on the site and hope that Packet Storm will make its security tools available through its own Website.

Joe Wrinn

Director

Office of News and Public Affairs

Seems to me that harvard is giving Ken his site back.

Lessons to be Learned

[miracle69]

If the events that Ken describe are accurate, his situation does indeed suck. However, there are lessons to be learned here.

1) ALWAYS BACKUP DATA. This seems to burn you whenever you don't.

2) Always have a written contract. Harvard is pulling the site because he isn't a student. Because his contract wasn't written, and he isn't a student, Harvard doesn't have any reason not to pull the site without a hearing. The site shouldn't have been there in the first place, at least, in the eyes of Harvard. I'm sure Antionline knew this. (Strange, I can't connect to their site now... Timeouts and all...)

3) ALWAYS BACKUP DATA - this goes for regular users too. If you have a site you love with information you love, backup that information, if nothing else.

I truly feel for Ken. He seems to have gotten a shaft that few of us can ever imagine receiving. I would reccomend that he get a good lawyer, fight the charges, and file a counter suit. If he has been acedemically, financially, and personally destroyed by this, and their claims have no merit, then he should be able to punish them legally.

However, I doubt he has any case against Harvard. It *IS* Harvard, and he isn't a student. They're just wiping their hands clean. What can you expect from the school that has helped shape the dismal state of the Americal Legal System?

His only hope is that Jeff Gray makes a backup of his data before officially destroying it, and sometime in the future, Ken receives a complete backup of his data, site and all, from an anonymous user. If Jeff is all Ken cracks him up to be, I wouldn't doubt that this has already been done.

Why cant packetstorm go back to its old address?

[vipvop]

It used to be www.genocide2600.com/~tattooman/, why cant it just go back there?
It sure didnt last very long at harvard, did the new file part every get working?

Update in the situation...?

[heech]

I wrote to Leo Donnelly, one of the network engineer/admins at Harvard (as quoted in the original email), and he informed me that the files are NOT (no longer?) being destroyed.

To quote...

All of the site's data is being returned to the owner. An offical statement will be released later today. NO data was destroyed and the owner is aware the data is being returned.

Re:Free speech

[Core-Pump]

In any we can confirm that is a the right one -letter... went to the place a couple of times, and never saw it the supposed /jp site linked... then again i went for the real content (thing which antionline never had, and im damn sure IT WILL NEVER have... ). But im fair, lets assume there was such a a site (im not sure) well... damn, sick id be mad as hell. So what i do?
talked it calmed and go fix things with Ken!
not run away to mommy harvard... your adopted son is messing with me...
jp out there is more serious, than in your own little world. meaby if u didn't have such a hated site that u'd have to spend 24/7 guarding the thing better than the pentagon because everyone that has a linux box, and has heard about u tries to hack it... u would know that out there, behind yer desk, in yer bought site... there is a real world

The love of hackers

[Louis+Blue]

It's now 11:24am and www.antionline is now off the web. They cannot be reached. Thank you.

As for the rest of my message, Ken was a very good to all of us. He was one reason I moved over to Linux. I find it great that HackerNewsNetwork and the cDc both had something to say Slashdot. Hackers are like a mob family. Treat them well and you can enjoy great riches, like Packet Storm, 2600's Off the Hook, and DefCon, but if you cross us, you will be fitted for electronic cement shoes.

As for some of the comments about mirrors, Ken didn't allow them, so no one had them. The security at Packet Storm was tight, and JP knew that. The only way he could get rid of Ken was to get Harvard to pull the plug.

I was even thinking about going there, just to work with Ken, or to talk to him. That may not happen now.

From the konsole of,
Louis Blue

P.S. The next "Hacker's Jargon File" needs to have a place in it for Packet Storm Security and Ken Williams, and how JP made it all go away.

Re:The love of hackers

[Leech_boy]

huh, http://www.antionline.com/ is online
current time pac. 10.00AM

P.S. If ANYONE CAN DO IT; MAKE THAT SITE BE GONE FOREVER

AUP's are good

[Greg@RageNet]

Speaking as a UNIX SA, and a former head SA of an ISP, I couldn't imagine running a service without one.

For some ungodly reason, people have to be told that they can't send 'get rich quick' mails to millions of people, that they aren't allowed to use their shell account to pingflood other internet users, and that they are not permitted to fill their home directory with gigs of warez and give their login to everyone on IRC.

If you terminated the account of someone who just finished spamming half a million internet users and you did not have an AUP in place the spamming user could SUE you for disconnecting his service.

AUP's protect both who run the system and those who use it from those who abuse it.

Re:Justice, only a matter of dollars and time

[Sun+Tzu]

heh. I have to agree with your assessment of the legal climate. However, for Harvard to destroy the potential evidence, after receiving a letter using the word "libel" (IIRC) to describe the site's contents, does not sound like the rational CYA approach. OTOH, of late it appears that "accidents" and destruction of evidence are not as hazardous in practice as they are in theory. ;)

Legal Rights

[Thalia]

Actually, I expect that Ken had every right to rant and rave about JP on his web site. Generally, saying nasty opinions about someone is acceptable. HOWEVER, the letter by JP also mentions that Ken apparently reflected/copied large chunks of copyrighted information from JP's site. This is known to be unacceptable behavior. So, if in fact this was the case (I haven't seen the site), Harvard had a right and in fact an obligation to remove the site or those portions of the site that were infringing. This was brought out quite clearly in the Netcom v. RTC case (http://www.eff.org/pub/Censorship/CoS_v_the_Net/w hyte_netcom_112195.order), when the ISP is notified of infringing activity, they must take action. Otherwise, they may be held liable for contributory copyright infringement.

On the other hand, I do not believe for a second that Harvard actually destroyed the backups. I expect they only removed access to the site from the Web. This is a legitimate step to protect themselves from suit. If they destroyed the backups (or the original, in fact) they could be implicated in destroying evidence. After all, at that point, if there is a suit, JP could not prove that such a site existed and/or had infringing materials. So, Harvard probably told Ken that the site was destroyed to keep him from badgering the SysAdmin who allowed him to put up the site for a copy. (which I expect he could still do.)

In any case, there are two sides to this issue. And we have only seen one, and haven't seen the original site that caused all this trouble.

I doubt that Harvard would bring a suit. Few people are willing to commit perjury, and the SysAdmin who invited Kevin would be sure to testify. So Ken shouldn't worry too much.

As a side note, the ACLU and others are happy to provide pro-bono (that's free for you non-legal types out there) legal services to defend the first amendment.

Re:Legal Rights

[Thalia]

Actually, I am a member. And they provide referrals to other attorneys for non-groundbreaking cases.

Re:He wants a job in IT

[empath]

He *did* have backups. Didn't you read where Harvard was in the process of destroying all backups? The data would have been fine in the event of a simple server crash.

Re:TO BE BLUNT

[MattTC]

Well, you know a lot of psychologists today say that Homophobia is usually due to suppressed homosexual tendencies, and that this causes a neurosis due to an innate conflict between the person's desires and their beleifs. This conflict is then expressed by a hatred and fear toward homosexuals as a group. Since gays are no threat to anyone, it makes little sense to be afraid of them (or hate them).

In short, your hatred and fear, my friend, is of yourself.

Re:No, actually

[MattTC]

check it out if you dont beleive me.

http://www4.ncbi.nlm.nih.gov/htbin-post/Entrez/q uery?uid=8772014&form=6&db=m&Dopt=b

He wants a job in IT

[bitflip]

But he doesn't make backups of his important data?

JP may be an ass, but KW's a twit. The loss of his data is his own fault. What if the server simply crashed? Who would he blame then? Not himself, it seems.

Seems to me some of his sniveling should be directed at his own ineptness.

Re:He wants a job in IT

[bitflip]

What a load of hooey. All JP did was exploit packet storm's single point of failure - Harvard. If he didn't know that all of his data belonged to Harvard, that's his fault, too.

If he had really been concerned about Packet Storm, and his school assignments, he would've backed it up, himself (and stuck it under his pillow :-). Losing Packet Storm (and all of his work) was his own damn fault.

Haven't any of you heard of "personal responsibility"? He was given root - he _was_ the sysadmin. He could've backed up to anywhere in the world. He was a security "expert". Why didn't he notice his own vulnerability?

People are so damn quick to point at someone else, and say "its their fault! they said they'd take care of me!"

Everybody is vulnerable. Looks to me like someone forgot.

Re:He wants a job in IT

[SpaceCadet]

Looks to me like someone should be able to examine his own large intestine.

Tell me, have you ever made a mistake? That's all this was. I would never have suspected that an institution such as Harvard would destroy the data that way. Take down the site - certainly. But I would have expected that at most they would remove the site and order him to go elsewhere - but that they would provide him with the content, particularly if they were his backup tapes.

As a matter of fact, according to another site, Harvard is giving him a copy of all the content. Which is what I would have expected in the first place. I think someone overstepped their bounds in their zeal to correct an actionable problem, and that has now been partially corrected.

I would certainly give him a job. And server room as part of his compensation.

Re:He wants a job in IT

[ufdraco]

What if the server simply crashed?

If the server containing he data had crashed, he would have had multiple backups of the information--that was done automatically. The problem here is that those backups are/have been/soon will be destroyed. Yes, he should have had a personal backup, but your scenario simply doesn't hold up. After all, multiple backups sounds sufficiently redundant to me.

Maybe paranoia has some benefits, after all... :-(

Backup Slashdot

[Hard_Code]

Maybe somebody should archive Slashdot...I'm sure there's something JP (or anybody else) might not like here...

This is ridiculous...
I hope, that if this is actually true, and there isn't some tremendous mitigating circumstance explaining Harvard's bizarre and rash actions, that they and AO get sued into the dirt...

The net community must show that this kind of bullying will not be permitted in our community

Re:TO BE BLUNT - *YAWN*

[underwhelm]

"Where do most of the child molestors come from ?"
------------------------------------------------ --
Where?

Re:Backups, whos got backups!

[lbergstr]

Aren't there a number of projects attempting to archive the entire web? How about Alexa, for example? Or Google?

Re:Free speech

[sgml4kids]

That .history log was a hoot but towards the
end I started to doubt its plausibility.

"write robbie ha ha i nuked him"?

Does that sound like something _anyone_ would
type (except in a work of fiction)?

Re:Free speech

[sgml4kids]

IMHO, libel laws are silly. A very wise person
once said:

"Sticks and stones may break my bones/
But [words/names] will never hurt me."

We all learned this in the first grade, but once
people realize you can make money from being
"libelled" this fundamental lesson in life gets
forgotten. Threats are one thing but grown adults
should be able to cope with being mocked and
ridiculed.

On another front, this guy is fairly well-known
in the security realm (mostly because of his own
self-promotion) which makes me think that he
is a "public figure" (at least within the
community in question). Isn't it the law in the
USA that public figures have less protection under
these types of laws (libel/slander/etc)? Esp
when the person attempts to make themselves
very visible.

Also, what kind of "threats" could be stored on
a webserver? Don't you have to inform the target
of your evil intentions for it to become a threat?
It looks like JP wasn't on out of the loop about
http://packetstorm.harvard.edu/jp/ so no one was
actually threating him...

Re:Free speech

[sgml4kids]

LOL... oh god, I guess /. is next on JP's hit list.

"Greetings Anonymous Coward,

First of all let me say that I went to a great
deal of trouble trying to locate the person
in charge of www.slashdot.org. Now that I've
found you, I'd like to draw your attention..."

We will see.

[Velox_SwiftFox]

Well, the Harvard authorities are reportedly returning the site. Presumably it will be restored, somewhere. Past experience says that the controversy will be resolved in and by the glare of publicity and concentrated attention.

One credible? The other? Both, despite specific disagreements and rivalries? Neither?

AntiOnline Sort of Functioning

[jplan34]

After repeated attempts to view this site earlier, I finally got through and was able to read the posted statement.

It's appalling that jp claims to be a major supporter of free speech and then when he is slighted decides that somehow this is against the law.

If /. keeps visiting the site it will probably go back down again. When I was browsing around some pages took a couple of tries to open. Serves them right...

Update! Harvard gives Ken the goods back!

[reve]

"We have word that the PacketStorm site has not been deleted and that Harvard University will be supplying Ken Williams with a back up copy of the site. "

-- as yet unconfirmed, from www.hackernews.com

AntiOnline Bias

[r0wan]

I noticed when checking Ken Williams letter posted on both sites AntiOnline and HNN that there were some discrepancies. See for yourself: http://www.antionline.com/archives/editorials/pack etstorm.html and http://www.hackernews.com/orig/williams.html Scary how the AntiOnline version is tweaked just enough to make Ken Williams seem vengeful and juvenile.

Re:Backups

[Mr_Ceebs]

When he says
"ALL of the content AND the backups made are either destroyed, being destroyed now, or will be before I can do anything to prevent it."
how often does Harvard back up it's system? surely those tapes are not going to be reused for a couple of days if not weeks, if they follow any of the pretty standard procedures that are used by system managers. are they going to want to risk the chance of loosing ther backups of other things on that machine? which they will have to destroy as well?

if there's anyone else with stuff on the same server they could demand that Harvard not destroy their backups and so preserve those tapes.

Re:Free speech

[nullsyntax]

Kill the JayPee bastard....that sonuva bitch..
he ruined my daily round of internet meal..
boycott antionline.com

Update

[visionik]

I just received an email from Leo Donnely at Harvard re: packetstorm saying the following:

ALL of the sites content is being returned to the owner and the owner is aware of this. A formal statement will be issued later today.


Regards,

Leo.

Should be interesting to see what they say.

Re:Is this really a crisis for freedom?

[joq]

This has got to be the most moronic posting I've seen. Packet Storm Security provided Corporations, Governments, with knowledge in the security field. He did it out of the love for computing and security. His own time. Wasted down the drain because of some just as moronic as you with statements as the one you've just made. Have you ever been there? Have you ever interacted with Ken? Ken is one of the coolest people I've had the opportunity to even exchange e-mail with. It's people like him and his love for the field that make it worthwhile. You must be on a Commodore 64 with AOL to _not_ understand what his site closing means to people.

xp0rnstar
sil@antioffline.com
sil@macroshaft.org

Another clueless gimp.

[joq]

Obviously this guy is clueless to the situation. And it should also be noted that anyone in their right mind would know that JP's petty threats mean jack sh!t. I get them all the time for running AntiOffline and I could care less what JP and his college dropout lawyer squad say or think. Hopefully Ken can retrieve his school work which is absolutely the most important part. Secondly I hope that this moronic childish, please-dont-call-me names outburst by that fag doesnt tarnish Ken's reputation which I highly doubt. Anyone who knows Ken, who has interacted with him knows he's a great guy 100%. Anyone else who begs to differ would be lying to themselves.

xp0rnstar Packet Storm Fan Club
sil@antioffline.com
sil@macroshaft.org

Will harvard treat a student the same way?

[Convergence]

Better yet, how about asking them if they would treat a student in this fashion?

Don't be a non-conformist student at harvard and annoy a litigious individual, they'll take your $50,000 then kick you out with a tarnished reputation, no degree, and a bunch of failing marks!

So ask them, if you're a prospective student or graduate student, mention that too.

Re:Free speech

[Convergence]

Two questions, was this what was actually sent? It might be.

Next question, were there such pics as he described on the site? If there were then harvard was right to drop the server, but not the contents of the server, immediately. If there weren't, and those pics were part of JB's paranoid imagination, then harvard and JB should be slapped, hard.

Likely JB chose just the right words to get harvard to drop it immediately, without getting them to check if the accusations actually were true, to force them to act as if they were true. Had harvard not dropped it immediately, and the accusations were true, then JB might have probable cause for suing.

Harvard is not completely to blame, but they completely mishandled it. Had they just taken it down momentarily to VERIFY the accusations and consult, likely nothing would have happened. But rather JP and their own nature caused them to act heavy-handed, and they did.

If there is one thing that the internet despises, its heavy handed behaivor companies or organizations squashing the little guy.

Free speech

[The+Shag]

Funny how some people who claim they believe in free speech tend to flip-flop when it comes to speech they don't like, huh?

Re:Free speech

[dcfix]

I can't verify, since anti-online has been /.'d, but I remember that JPee had a rant about how anti-online was kicked off Pitt.edu under similar circumstances. I guess hypocrisy is just another of JPee's 'marketable skills'

Illegal Knee Jerk

[CormacJ]

As far as I can see, destroying backups is illegal in two respects: 1) They are destroying evidence 2) They are destroying data that doesn't belong to themselves. This puts Harvard and JP in the same league as the crackers that they claim to deride and hate.

Little info on Packstorm for ppl. who don't know

[Leech_boy]

Packstorm is one of the top Security Site and the biggest free Security Site(as far as I know of)
Packetstorm is visited often by many of top security company employees as a requirement by their company.
So, I'm hoping some of those company
will stand up and help ken to kick antionline's butt(opps, or should I say F#ck antionline and harvard up)

Scandal and Outrage

[jus]

As a security professional PacketStorm was a huge resource with huge amounts of work put into it, and was really an asset to those working in the industry.

I feel that this whole issue is utter scandal and bullshit, and am completely outraged at the current actions of JP, Carolyn Meinel and the backstabbing nature of Harvard. Ken Williams may not even reclaim his acdemic work!

This is utter outrage and I believe that the community is not going to take this well. I guess antionline is down cos JP dont want it to be fdisked a few times :P
jus

Possibly not so harsh

[jz]

From what I understand, Harvard hasn't actually deleted the files and will be getting them back to him. It may well be that they're no longer hosting it, but it'd be the trashing of his stuff that would worry me most. ...JZ