OSTG|SourceForge -ThinkGeek -IT Manager's Journal -Linux.com -NewsForge -freshmeat -Newsletters -TechJobs -SlashdotBroadbandX
Click Here
Welcome to Slashdot
Login
Why Login?
Why Subscribe?

Sections
Main
Apache
Apple
1 more
AskSlashdot
5 more
Books
BSD
1 more
Developers
Games
1 more
Interviews
IT
3 more
Linux
2 more
Science
5 more
YRO
Help
FAQ
Bugs

Stories
Old Stories
Old Polls
Topics
Hall of Fame
Submit Story

About
Supporters
Code
Awards

Services
Broadband
Online Books
PriceGrabber
Product News
Tech Jobs
IT Research

Blackhat/Defcon Report
Programming
Security
The Internet
IT
Posted by michael on Tuesday August 03, @12:57PM
from the neuromancer dept.
Joe Barr writes "NewsForge [ed. note: part of OSTG along with Slashdot] is running its concluding piece on the week-long Blackhat/DEFCON hackerfest in Las Vegas. Want to know how little our police/intelligence agencies seem to have learned from their failures prior to 9/11? Or how a very large goon known only as Priest prevented outright political violence at a DEFCON presentation on Civil Disobedience? Or which of the two conferences is right for you? It's all here in the Blackhat/Defcon: Final report." Reader M. Curphey writes "The Web Application Security Consortium (WASC) announced at Blackhat the release of a 'Threat Classifications' document. This document attempts to clarify web security terminology such as Cross Site Scripting, Session Fixation, Cookie poisoning, and HTTP response splitting (to name a few)."

Slashdot Log In
Nickname:

Password:

Public Terminal

[ Create a new account ]

Related Links
Joe Barr
OSTG
here in the Blackhat/Defcon: Final report
M. Curphey
Web Application Security Consortium (WASC)
Threat Classifications
More stories
Also by michael
Blackhat/Defcon Report | Log in/Create an Account | Top | 305 comments | Search Discussion
Threshold:
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Hmm... (Score:5, Interesting)
by VeriTea (795384) on Tuesday August 03, @01:06PM (#9869746)
(Last Journal: Saturday July 10, @03:06PM)
Looks like the 503 Errors with Firefox are really slowing down discussions.

The article mentioned that the new number range search feature in Google could be particularly dangerous. Maybe I'm a little naive... why is it so dangerous?
[ Reply to This ]
  • Re:Hmm... by evslin (Score:1) Tuesday August 03, @01:11PM
    • Re:Hmm... (Score:4, Informative)
      by Maestro4k (707634) on Tuesday August 03, @01:17PM (#9869830)
      (Last Journal: Friday July 30, @03:34PM)
        Looks like the 503 Errors with Firefox are really slowing down discussions.
      They're not just in Firefox, they're affecting everyone. Slashdot's been more like SlashNOT this week so far.
      [ Reply to This | Parent ]
        Re:Hmm... (Score:5, Informative)
        by Cramer (69040) on Tuesday August 03, @01:51PM (#9870065)
        (http://do.i.have.to?)
        There have been a high number of occurances of 503's since the zero-notice updates a few weeks ago. (at the same time, all web pages started returning "no-cache" so simple brower navigation is forced to redownload every byte on every mouse click. When I logged a bug about this, it was immediately dismissed without comment.)
        [ Reply to This | Parent ]
        • Re:Hmm... by DAldredge (Score:3) Tuesday August 03, @02:03PM
          • Re:Hmm... by Cramer (Score:1) Tuesday August 03, @02:17PM
            • Re:Hmm... by Cramer (Score:1) Tuesday August 03, @02:20PM
              • Re:Hmm... by DAldredge (Score:1) Tuesday August 03, @02:51PM
          • Re:Hmm... by david.given (Score:2) Tuesday August 03, @03:39PM
            • 1 reply beneath your current threshold.
          • 1 reply beneath your current threshold.
          Re:Hmm... (Score:5, Interesting)
          by Anonymous Coward on Tuesday August 03, @01:33PM (#9869912)
          Try googling:

          visa 4356000000000000..4356999999999999

          For example. Not saying this is the only way to find these, but it certainly is an interesting application of Google.
          [ Reply to This | Parent ]
        • Re:Hmm... by SpaceLifeForm (Score:3) Tuesday August 03, @01:37PM
          • Re:Hmm... by One Childish N00b (Score:1) Tuesday August 03, @01:49PM
            • Re:Hmm... by Aliencow (Score:1) Tuesday August 03, @01:55PM
              • Re:Hmm... by Jeff DeMaagd (Score:2) Tuesday August 03, @02:32PM
              • Re:Hmm... by Angostura (Score:2) Tuesday August 03, @02:21PM
                • Re:Hmm... by garcia (Score:3) Tuesday August 03, @03:28PM
                  • Re:Hmm... by Alan Hicks (Score:2) Tuesday August 03, @04:33PM
                  • Re:Hmm... by kalirion (Score:1) Tuesday August 03, @01:13PM
                    • 1 reply beneath your current threshold.
                  • 3 replies beneath your current threshold.
                  Girls (Score:4, Interesting)
                  by Klar (522420) on Tuesday August 03, @01:07PM (#9869749)
                  (http://www.uoguelph.ca/~mcurchin)
                  I have been thinking of going to defcon for the last lil while, and maybe will be able to next year. The trip would also need to include my g/f, she knows a bit about computers, but not a whole lot. In your opinion, would there be enough for her to do there, or should she venture other places?
                  [ Reply to This ]
                  • Re:Girls by Aardpig (Score:2) Tuesday August 03, @01:10PM
                  • Re:Girls by Penguinisto (Score:2) Tuesday August 03, @01:11PM
                    • Re:Girls (Score:4, Funny)
                      by vegaspctech (769513) <vegaspctech@yahoo.com> on Tuesday August 03, @01:18PM (#9869839)

                      Bring a girl to defcon? Isn't that like bringing a pizza to a fat farm?

                      ;-)

                      Seriously, bring her along. If she doesn't like the event, there's plenty for her to do nearby.

                      [ Reply to This | Parent ]
                      • Re:Girls by Otter (Score:3) Tuesday August 03, @02:11PM
                        Re:Girls (Score:4, Informative)
                        by DecoDragon (161394) on Tuesday August 03, @01:23PM (#9869863)
                        First off, there are females at DefCon, and not all of them are there, because they think it's an easy place to pick up guys.

                        That said, have her look at the program and see if any of the talks are interesting to her. If she knows only a bit, maybe the technical talks won't be that interesting, but the talks that delve into the overlap between politics and technology might be of interest. I'm guessing if she's not that into it, the contests wouldn't be very fun to her.

                        If it's not her thing at all, have her look and see if Vegas is something interesting to her, and she can join you later. But, I'd be more inclined to say, if it's not her thing, plan a different trip that both of you would enjoy before or after DefCon.
                        [ Reply to This | Parent ]
                        • Re:Girls by Exantrius (Score:2) Tuesday August 03, @11:37PM
                          • 3 replies beneath your current threshold.
                        • Re:Girls by Minkas_Detroit_Techn (Score:1) Tuesday August 03, @01:42PM
                          • Re:Girls by junk (Score:2) Tuesday August 03, @01:50PM
                            • Re:Girls by Klar (Score:2) Tuesday August 03, @03:55PM
                              • Re:Girls by Lord_Byron (Score:1) Wednesday August 04, @09:37AM
                                • Re:Girls by Knara (Score:2) Tuesday August 03, @04:35PM
                                  • 1 reply beneath your current threshold.
                              • Re:Girls by tweedlebait (Score:1) Thursday August 05, @12:19PM
                                • 2 replies beneath your current threshold.
                                Struggling... (Score:5, Interesting)
                                by perlglob (800781) on Tuesday August 03, @01:07PM (#9869755)
                                I've attended the past 7 defcons, and I'm starting to feel like it's losing its magic. The first defcon I went to (defcon 3) had a crowd that was much more focused on doing meaningful hacking (some ethical, some otherwise) in the field...it seems like now it's a bunch of 20 year olds who think they're hackers because they know how to reprogram their mac address on their linux labtop.

                                Maybe I'm just getting old, but it feels like the good old days are passing me by.

                                Who is fighting to save slashdot? [slashdot.org]
                                [ Reply to This ]
                                What police/intelligence agencies have learned. (Score:5, Interesting)
                                by Maestro4k (707634) on Tuesday August 03, @01:08PM (#9869763)
                                (Last Journal: Friday July 30, @03:34PM)
                                  Want to know how little our police/intelligence agencies seem to have learned from their failures prior to 9/11?
                                I'm afraid we don't need Black Hat/Defcon to tell us this. Just yesterday we had major terrorism alerts about specific targets and today we find out the information was all years old. Does that mean the buildings weren't targets still? Well seeing as some of the info went back prior to 9/11 it would make it seem a fairly safe bet that the seriousness of the threat was vastly overstated.

                                So we know what they haven't learned quite well and many of us keep hoping they'll stop crying wolf without good reason. It's only so long till most Americans start ignoring the terror alerts as things now stand, something that would be very bad.

                                I'm sure there were plenty of more interesting things at Black Hat/Defcon though. :)

                                [ Reply to This ]
                                Just one thing that very few learn... (Score:5, Interesting)
                                by Penguinisto (415985) on Tuesday August 03, @01:08PM (#9869765)
                                (http://www.sparkchaser.net/ | Last Journal: Friday March 26, @03:46PM)
                                ...it's easier to know how to break into a system/box/whatever, than it is to learn exactly what happened and take measures to prevent it.

                                Sure, some items are fairly obvious, but I'm willing to wager that there are a lot of exploits that even dedicated security officials aren't aware of, simply because the exploit was found and put to use, but never reported.

                                As it applies to 9/11, I'm fairly certain that OBL and his boys are more willing to shell out the cash for the folks who can find undiscovered vulns than for scripters who get their rocks off by passing around " 'sploits".

                                Given this, I doubt there is too awful much one can learn about securing the network completely against future attacks.

                                /P

                                [ Reply to This ]
                                Crimethinc (Score:5, Insightful)
                                by evslin (612024) on Tuesday August 03, @01:14PM (#9869812)
                                Questions were asked about what "going over the line" meant. Assclowns like Crimethinc are exactly what you'd want to point at and say "that's what I'm talking about." Disagreeing with the government (or even just Republicans) is one thing, but going around encouraging people to vandalize websites/etc is something else.

                                Jesus. No wonder he looked like he was expecting to be arrested.
                                [ Reply to This ]
                                This 503 stuff is getting nuts (Score:5, Interesting)
                                by phoxix (161744) on Tuesday August 03, @01:16PM (#9869824)
                                (http://opencurve.org/~sunny/)
                                Can we get an official word on whats going on?

                                Sunny Dubey
                                [ Reply to This ]
                                About one of the articles posted... (Score:1, Interesting)
                                by Anonymous Coward on Tuesday August 03, @01:19PM (#9869844)
                                One of the articles speaks about a guy who spoke at Defconf and promoted giving those attending the Republicats convention a hard time.

                                What surprised me is that the journalist did not have any problems with having the guy thrown out simply because the guy's speech was controversial. They justified censorship by stating that they had to stop him for his protection. Since when does a person in America have to abdicate his own personal responsibility and be protected for his own speech?

                                As far as I can tell from their web site, Crimethinc does try to take people out of apathy, but their most important weapon is language:

                                http://www.crimethinc.com/library/english/contents .html

                                http://www.crimethinc.com/library/english/libselec t.html

                                [ Reply to This ]
                                9/11 lessons (Score:5, Interesting)
                                by Anonymous Coward on Tuesday August 03, @01:22PM (#9869858)
                                from the article:
                                Christy had mentioned that one of the things they were doing at Defcon was recruiting. He went on to tell the crowd that if they were interested, and "had not gone over the line," to talk to him afterwards. The "had not gone over the line" comment became one of the hottest topics during the Q&A.

                                It appears that the lessons the intelligence community has learned from 9/11 have not yet trickled all the way down through the federal bureaucracy -- particularly that bit about the failure of our intelligence pre-9/11 being primarily because of our loss of vital HUMINT owing to both budget and moral directives. When the CIA was told it could only use politically correct HUMINT operatives, it lost its most vital flow of intelligence.


                                Actually, I think the remark in question -- "had not gone over the line" -- meant no the criminal record, stable finances, etc. required of regular government employees who need clearances, like programmers and sys admins. IOW, they were looking for technical staffers for work at HQ.

                                The PC'ness at the CIA regarding HUMINT referred to who they could and couldn't hire as intelligence sources. E.g. (hypothetical examples here), several years ago, the CIA could hire a mid-level Iraqi military paper-pusher to smuggle out documents about what Saddam was up to, but at the same time couldn't hire a low-level al Qaeda operative to do the same because he's gone through terror training involving weapon experiments on animals. Even if the operative could give excrutiating details about the next terror strike (such as time/place/MO), he had done those evil experiments on animals, which somehow made him ineligible for the CIA payroll. (How such rules came into effect I dont know)

                                Whether or not US intelligence has changed this since 9/11 I dont know the answer. I do know that one such scenario I described above was something discussed at length by news orgs immediately after 9/11 as speculation for why the US intelligence failed. (IMO, there shouldn't be such silly restrictions on who the CIA can hire as sources. If the source gives good info, pay him for it to encourage more. If he don't, or the stuff he gives is turns out to be unreliable, stop paying him.)

                                But as for "going over the line" - for what the guy was looking for in personnel, he means things like ability to pee in a cup cleanly, unlike Ricky Williams, and not having a rap sheet.
                                [ Reply to This ]
                                Oxymoronic Priest Quote (Score:5, Insightful)
                                by Rufus88 (748752) on Tuesday August 03, @01:23PM (#9869862)
                                "We got the call for trouble in the room. The gentleman, I was told, was preaching sedition. I knew that we had to take some steps quickly preventing that. Defcon is definitely for free speech, definitely for legal civil disobedience. But not anarchy, not psychopathic destruction of property. " [Emphasis mine]

                                Civil disobedience is, by definition, illegal. That's the whole point of it.
                                [ Reply to This ]
                                Again, the Left is inciting violence (Score:4, Interesting)
                                by Anonymous Coward on Tuesday August 03, @01:28PM (#9869878)
                                How is it that the members of the most dovish American ideology when it comes to foreign policy always seem to be the ones for inciting violence against their domestic enemies? CrimeThinc (yes, I actually read the article) is just one of a long line stretching back to the Weatherman Underground and the SLA up to the Seattle WTO protestors smashing windows. Discounting lone nuts like Timothy McVee (and remember that the Oklahoma City bombing was universally condemned among conservatives), how is it that the half of America which owns guns is never the one calling for violence?

                                Crow T. Trollbot
                                [ Reply to This ]
                                  Re:Again, the Left is inciting violence (Score:4, Insightful)
                                  by Anonymous Coward on Tuesday August 03, @01:44PM (#9870004)
                                  There are some anti-abortion groups (on the conservative end of the spectrum) which advocate violence, and also militia groups (some of which McVeigh had contact with) which also advocate violence. There have been numerous other right-wing groups in America which have used violence against their political enemies - in the sixties there were more than a couple anti-war protesters that got their heads bashed in with axe handles. Also don't forget the various Civil Rights workers in the south during the 50s/60s who were murdered by folks who were definitely on the right-wing end of the spectrum.

                                  It's not as one sided as you make it out to be.
                                  [ Reply to This | Parent ]
                                  Re:Again, the Left is inciting violence (Score:5, Insightful)
                                  by smooth wombat (796938) on Tuesday August 03, @01:48PM (#9870026)
                                  (Last Journal: Friday August 06, @03:24PM)
                                  how is it that the half of America which owns guns is never the one calling for violence?

                                  You've never heard of militias, have you? Listen to some of the right-wing crud that they spew and you'll see how wrong your comment is.

                                  Southern Michigan Regional Militia [michiganmilitia.org]
                                  Militia of Montana [militiaofmontana.com]

                                  Those are just two to get you started but feel free to do your own research.

                                  [ Reply to This | Parent ]
                                • Re:Again, the Left is inciting violence by Anonymous Coward (Score:2) Tuesday August 03, @01:56PM
                                  • Violence is both Leftist and Rightist (Score:5, Insightful)
                                    by FreeUser (11483) on Tuesday August 03, @01:59PM (#9870141)
                                    (http://jean.nu/)
                                    How is it that the members of the most dovish American ideology when it comes to foreign policy always seem to be the ones for inciting violence against their domestic enemies?

                                    For the same reason that the radical right are always the ones who seem to be inciting violence against their domestic enemies. Tim McVee is hardly unique in his political stance and aspirations, nor have you cited anyone on the left that equals his level of destructiveness or intent (there are such people, but CrimeThinc is hardly of that caliber. He is not advocating mass murder).

                                    The reality is that the so-called political spectrum is more of a sphere than a line. The extreme right and far left meet and become one and the same. Consider the similiarities of Stalin and Hitler, for example. Kids blowing up toilets to protest vietnam bear a striking similiarity to skinheads defacing jewish tombstones. Republican thugs terrorizing librarians and volunteers during the Florida recount bear a striking resemblence to communists in China enforcing campus-wide political correctness vis-a-vis the One True Party(tm) system.

                                    Radicalism is radicalism, whether dressed in a Liberal Left or Reactionary Right attire, just as religious fundamentalism is religious fundamentalism irrespective of its Christian, Jewish, or Islamic trappings.

                                    You have simply chosen to filter your perceptions through your own political dogma, as many people on both sides of the aisle often do. However, the reality is that folks of all radical stripes, in all political, religious, social, and philosophical directions, employ similiar methods to achieve their goals, those methods correlating much more strongly to their degree of radicalism and fanaticism than their particular social, political, religious, or philosophical bent.
                                    [ Reply to This | Parent ]
                                    • Re:Violence is both Leftist and Rightist by bear_phillips (Score:1) Tuesday August 03, @02:05PM
                                      • WILL SOMEONE PLEASE MOD UP PARENT? by e40 (Score:2) Tuesday August 03, @02:11PM
                                        • Slight Correction in the interests of accuracy (Score:5, Insightful)
                                          by FreeUser (11483) on Tuesday August 03, @02:16PM (#9870322)
                                          (http://jean.nu/)
                                          I wish one could go back and edit old posts. :-)

                                          I apologize for the sloppy use of language.

                                          If I had it to do over again, I would substitute zealotry for radicalism in the post above.

                                          There are many people with radical notions (where radical = divergence from the society's mainstream assumptions) who are not at all fanatical and would never resort to violent means to achieve those changes (Richard Stallman is an example of someone who is radical and stubborn, but not zealous or fanatical in any real sense of the word ... his detractor's rhetoric notwithstanding). Women's suffurage was at one time radical, but most of those persuing it were not fanatical and virtually everyone non-violent. This in contrast to those who fanatically defended the status quo and physically attacked and even murdered women for daring to insist on the same basic civil rights afforded the men of their day.

                                          So, to recap: the reality is that folks of all fanatical stripes, in all political, religious, social, and philosophical directions, employ similiar methods to achieve their goals, those methods correlating much more strongly to their degree of zealotry and fanaticism than their political, social, relgiious, or phisophical bent, or their degree of divergence from the political "mainstream."
                                          [ Reply to This | Parent ]
                                          • Re:Violence is both Leftist and Rightist by Zak3056 (Score:2) Tuesday August 03, @02:22PM
                                            • 1 reply beneath your current threshold.
                                          • Re:Again, the Left is inciting violence by Anonymous Coward (Score:1) Tuesday August 03, @01:59PM
                                            • If you don't count... (Score:5, Insightful)
                                              by edremy (36408) on Tuesday August 03, @02:17PM (#9870333)
                                              ...killing civil rights demonstrators, blowing up black girls attending churches and like as right wing violence your stats are pretty good. Oh yeah, and shooting abortion doctors, bombing the Olympics, killing Jewish schoolchildren [cnn.com], attacking gays [cnn.com], the OKC bombing....

                                              Yeah, the right wing is just *so* peaceful.

                                              [ Reply to This | Parent ]
                                              • Re:Again, the Left is inciting violence by mabu (Score:2) Tuesday August 03, @02:22PM
                                              • Re:Again, the Left is inciting violence by hkb (Score:1) Tuesday August 03, @02:41PM
                                                • Re:Again, the Left is inciting violence (Score:5, Insightful)
                                                  by murr (214674) on Tuesday August 03, @02:50PM (#9870638)
                                                  CrimeThinc (yes, I actually read the article) is just one of a long line stretching back to the Weatherman Underground and the SLA up to the Seattle WTO protestors smashing windows.

                                                  Setting bombs and robbing banks is hardly the same as smashing windows (not that I approve of either).

                                                  Discounting lone nuts like Timothy McVee

                                                  McVeigh.

                                                  (and remember that the Oklahoma City bombing was universally condemned among conservatives)

                                                  "condemned" like when Ann Coulter said "My only regret with
                                                  Timothy McVeigh is he did not go to the New York Times Building." ?

                                                  how is it that the half of America which owns guns is never the one calling for violence?

                                                  In my limited experience, the vast majority people who shoot other people tend to be in possession of guns at the time.

                                                  It seems you've never heard of (to only quote a few examples from the last 20 years, long after the Weather Underground and the SLA went out of business):

                                                  • The Order.
                                                  • The various militias.
                                                  • The World Church of the Creator.
                                                  • The James Byrd murder.
                                                  • The Matthew Shepard murder.
                                                  • Numerous murdered abortion providers.
                                                  • Eric Rudolph.
                                                  [ Reply to This | Parent ]
                                                • apples and oranges by Anonymous Coward (Score:1) Tuesday August 03, @05:00PM
                                                  • Re:Again, the Left is inciting violence by Oligonicella (Score:2) Tuesday August 03, @02:18PM
                                                  • 6 replies beneath your current threshold.
                                                  Pretty Decent (Score:2)
                                                  by bdowne01 (30824) on Tuesday August 03, @01:41PM (#9869968)
                                                  (http://www.briandowney.net/ | Last Journal: Monday September 15, @01:25PM)
                                                  DC12 was my first DefCon, my only two gripes were the heat (us northerners are wimps) and the chronic lack of seating. It seeed that by Saturday afternoon much of the crowds had subsided, but there were still issues nonetheless. I'll definitely be going back next year with a bigger group.

                                                  Possibly one of the highlights was getting pics of Woz and Mitnick standing a few feet apart from each other; with Woz on his Segway. Pretty cool.

                                                  [ Reply to This ]
                                                  um... how little did we learn since 9/11? (Score:4, Insightful)
                                                  by 192939495969798999 (58312) on Tuesday August 03, @01:42PM (#9869978)
                                                  (http://www.devinmoore.com/)
                                                  Yes, I RTFA, and somehow I didn't see much about our intelligence agencies "not learning much since 9/11". I suppose the summary is referring to not hiring crackers that have done illegal stuff, but that's moronic -- if the NSA would reject someone for a job breaking into things BECAUSE they know how to break into things, we are all in big trouble.
                                                  [ Reply to This ]
                                                  Too crowded (Score:3, Informative)
                                                  by Rorschach1 (174480) on Tuesday August 03, @01:47PM (#9870019)
                                                  (http://n1vg.net/)
                                                  I haven't been to Def Con in a couple of years. I went the first year they were at the Alexis Park, and it was OK. Went back the next year, and they'd clearly outgrown the venue. Wasn't able to get a seat for ANY of the talks.

                                                  I don't know if they've signed some sort of long-term contract, or maybe they've just gotten kicked out of everywhere else, but I'm not going back until they get a considerably larger place.
                                                  [ Reply to This ]
                                                  • Re:Too crowded by Anonymous Coward (Score:1) Tuesday August 03, @02:25PM
                                                    Hmm lots of pretending going on (Score:5, Insightful)
                                                    by gelfling (6534) on Tuesday August 03, @02:01PM (#9870169)
                                                    (http://slashdot.org/)
                                                    I would imagine that people by and large go to DefCon to learn HOW to do something not WHY. There appears to be a lot of faux anarcho posing going on as well as faux Fedcop speak in response.

                                                    Only another anarchist or Fedcop would ever think that what an anarchist or Fedcop has to say is remotely interesting. I can't imagine anyone at DefCon suddenly deciding that either breaking thinks is kewl or that diversity of opinion has to be tolerated. Nor would I think that the self professed Grey-Hats are going to come out in favor of the PATRIOT act.

                                                    When we all talk to a room full of people who are our clones it's got to get pretty boring.
                                                    [ Reply to This ]
                                                    What are you talking about? (Score:2, Interesting)
                                                    by Anonymous Coward on Tuesday August 03, @03:39PM (#9871039)
                                                    "Want to know how little our police/intelligence agencies seem to have learned from their failures prior to 9/11?"

                                                    Wow - everyone except law enforcement has the answers it seems.

                                                    Or maybe the reality is they've learned to NOT tell you what they've learned, finally.
                                                    [ Reply to This ]
                                                      On the Subject of Warrants and the Patriot Act . . (Score:5, Interesting)
                                                      by Dausha (546002) on Tuesday August 03, @04:41PM (#9871759)
                                                      (http://www.dausha.net/)
                                                      In the article, there was a section discussing "Meet the Feds." From that section, I quote: "The Patriot Act was also called into question by attendees. The FBI representative asserted that just because the act had been passed didn't mean they had carte blanche to surveil anyone they wanted, that judges still had approve their requests. That reasoning only flew so far, however, as the questioner pointed out that such requests by the FBI are always approved, never denied."

                                                      What we tend to forget is that, even in the Judicial system, there is a check-and-balance--especially when it comes to warrants. While a judge may allow a warrant, if a case ever goes to trial then a jury has an opportunity to nullify the value of any evidence obtained via a warrant. I know that sounds a little naiive, but this is one purpose of the jury--injecting the People into the judicial process to protect an accused from the Government. The jury is the key point in the process that is not absolutely Government controlled.

                                                      However, the attendees brought issue with the fact that "judges always approve." There was a landmark case (granted, it was in the early 18th C. in England) that allowed a victim to bring suit. The victim in question owned a printing press that printed pamphlets hostile to the Crown (or was it Parliment?). The Government responded by obtaining an ill-gotten warrant to wield as a weapon to silence him. However, the man suied and won a substancial sum. I think the right words were something to the effect of "a suitably painfully high sum to deter the Government from pursuing that line of action again."

                                                      Anyway, I'd like to point out that there are recourses of action for virtually anybody mis-treated by a ill-gotten warrant that are built into our legal system. Even if the judge always approve, there is the jury to help shield, and the precedence to file suit when abused. (I'd also like to point out that this is a common tactic by those justly prosecuted to try to wear down the government by attrition.)
                                                      [ Reply to This ]
                                                      Defcon isn't going downhill... (Score:2)
                                                      by severed (82501) on Tuesday August 03, @04:59PM (#9871953)
                                                      (http://www.haxxxor.com/)
                                                      Defcon isn't going downhill, it's still a great place to buy t-shirts!

                                                      Oh, there's something else going on there?
                                                      [ Reply to This ]
                                                        Look Ma, I'm on Newsforge (Score:2)
                                                        by Loki_1929 (550940) on Tuesday August 03, @09:15PM (#9874510)
                                                        (Last Journal: Wednesday December 10, @03:26AM)
                                                        "The FBI representative asserted that just because the act had been passed didn't mean they had carte blanche to surveil anyone they wanted, that judges still had approve their requests. That reasoning only flew so far, however, as the questioner pointed out that such requests by the FBI are always approved, never denied."[Emphasis mine, statement mine :-) ]

                                                        Actually, I didn't ask the original question, merely responded to the FBI guy's bullshit answer about them not being able to march right up and get warrants for whatever they want in terrorism cases (or rather cases they claim are related to a terrorism investigation - which means anything and everything they want it to mean). I threw my hand up about halfway through his answer (which he bumbled through briefly before resorting to more bullshit) to mention that an FBI agent had been barred from appearing before the FISA court ever again because he was blatantly lying to the court, and to talk a bit about National Security Letters (NSLs), which require 0 judicial oversight and which get a whole lot of non-content information from communications providers (like ISPs). Unfortunately for me, and fortunately for the poor FBI guy, they never called on me again after that. (It was a fed who was deciding who to call on).

                                                        If anyone saw who I am, forget who you saw - I don't exist. ;)

                                                        [ Reply to This ]
                                                          If they were going to kick out a speaker (Score:2)
                                                          by Edgy Loner (44682) on Tuesday August 03, @10:40PM (#9875087)
                                                          (http://slashdot.org/)
                                                          how about the virus guy who basically gave a 50 minute drunken rant about how stupid and worthless current viruses are.

                                                          Worst talk ever.

                                                          Overall it was a pretty good show I thought. Some excellent talks. It was pretty sedate overall, at least what I saw. I guess everybody is getting older.
                                                          [ Reply to This ]
                                                            Re:While Priest was only doing his job (Score:4, Interesting)
                                                            by g0bshiTe (596213) on Tuesday August 03, @03:31PM (#9870965)
                                                            LMFAO. I read that and a switch went off. I know that kid.
                                                            Last year I did some development on a website whose owner spoke often of going to Defcon in Vegas. He also spoke of Anarchy, and causing Civil Disobedience at the Democratic convention. It didn't take me long to figure out he was using his site not to teach admins how to spot vulnerabilities in their web code, but to spread his own political agenda, and gather a willing army of script kiddies.

                                                            Needless to say our beliefs on hacking weren't the same. Whoever this person was at Defcon, he is an embarassment to the hacking community, both whitehats and blackhats.

                                                            I stopped in on the sites IRC server to see what was up with some old friends, turns out this guy has a court date not too far off something about striking a police officer.

                                                            I would bet it's the same guy.

                                                            His politics, and genuine lack of interest in teaching admins the skills necessary to find and fix flaws in thier code is why I left.

                                                            I'm all for hacking code, but the art would be better suited to securing systems and spreading the knowledge of how to secure, instead of teaching an army of script kiddies to be a leet hax0rz.
                                                            [ Reply to This | Parent ]
                                                          • 9 replies beneath your current threshold.
                                                          • There can be no twisted thought without a twisted molecule. -- R. W. Gerard
                                                             All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest 1997-2004 OSTG.
                                                            [ home | awards | contribute story | older articles | OSTG | advertise | about | terms of service | privacy | faq | rss ]