[iwar] News
From: Fred Cohen
From: fc@all.net
To: iwar@egroups.com
Sat, 19 Aug 2000 06:24:28 -0700 (PDT)
fc Sat Aug 19 06:25:15 2000
Received: from 207.222.214.225
by localhost with POP3 (fetchmail-5.1.0)
for fc@localhost (single-drop); Sat, 19 Aug 2000 06:25:15 -0700 (PDT)
Received: by multi33.netcomi.com for fc
(with Netcom Interactive pop3d (v1.21.1 1998/05/07) Sat Aug 19 13:25:08 2000)
X-From_: sentto-279987-487-966691471-fc=all.net@returns.onelist.com Sat Aug 19 08:24:56 2000
Received: from mw.egroups.com (mw.egroups.com [208.50.144.94]) by multi33.netcomi.com (8.8.5/8.7.4) with SMTP id IAA27847 for ; Sat, 19 Aug 2000 08:24:56 -0500
X-eGroups-Return: sentto-279987-487-966691471-fc=all.net@returns.onelist.com
Received: from [10.1.10.36] by mw.egroups.com with NNFMP; 19 Aug 2000 13:24:32 -0000
Received: (qmail 25582 invoked from network); 19 Aug 2000 13:24:30 -0000
Received: from unknown (10.1.10.27) by m2.onelist.org with QMQP; 19 Aug 2000 13:24:30 -0000
Received: from unknown (HELO all.net) (24.1.84.100) by mta1 with SMTP; 19 Aug 2000 13:24:29 -0000
Received: (from fc@localhost) by all.net (8.9.3/8.7.3) id GAA10060 for iwar@onelist.com; Sat, 19 Aug 2000 06:24:28 -0700
Message-Id: <200008191324.GAA10060@all.net>
To: iwar@egroups.com
Organization: I'm not allowed to say
X-Mailer: don't even ask
X-Mailer: ELM [version 2.5 PL1]
From: Fred Cohen
MIME-Version: 1.0
Mailing-List: list iwar@egroups.com; contact iwar-owner@egroups.com
Delivered-To: mailing list iwar@egroups.com
Precedence: bulk
List-Unsubscribe:
Date: Sat, 19 Aug 2000 06:24:28 -0700 (PDT)
Reply-To: iwar@egroups.com
Subject: [iwar] News
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
The Latest News about the FBI's Carnivore
"FBI Prepares to Disclose Material on Wiretapping" -- Reuters (via Yahoo!news)
http://dailynews.yahoo.com/h/nm/20000817/wr/fbi_carnivore_dc_2.html
"Group Objects to FBI E-mail Release" -- AP (via Yahoo!news)
http://dailynews.yahoo.com/h/ap/20000817/tc/carnivore_6.html
"Carnivore Going to Review U." -- _Washington Post_
http://washingtonpost.com/wp-dyn/articles/A7949-2000Aug10.html
Focus on Carnivore -- _Computerworld_
http://www.computerworld.com/resources/carnivore/
Privacy in the Digital Age -- _New York Times_
http://www.nytimes.com/library/tech/reference/index-privacy.html
FBI Programs and Initiatives: Carnivore Diagnostic Tool
http://www.fbi.gov/programs/carnivore/carnivore.htm
Electronic Privacy Information Center
http://www.epic.org/
Memorandum in Support of Plaintiff's Motion for a Temporary
Restraining Order -- _Tech Law Journal_
http://www.techlawjournal.com/courts/epicvdoj/20000802mem.asp
"FBI's 'Carnivore' Follows Court Orders" -- _LA Times_
http://www.latimes.com/news/comment/20000812/t000075644.html
"Carnivore is why new laws are needed for new technology" -- _Computerworld_
http://www.computerworld.com/cwi/story/0,1199,NAV63-128-233-1141_STO48
648,00.html
Digital Privacy Act of 2000 -- GPO [.pdf, 5 pages]
http://frwebgate.access.gpo.gov/cgi-bin/getdoc.cgi?dbname=106_cong_bil
ls&docid=f:h4987ih.txt.pdf
As US Congressman (R-Ga) and House Judiciary Committee member Bob
Barr has pointed out, the latest US government surveillance project,
the FBI's Carnivore, might have been largely overlooked by the public
were it not for two factors: the choice on the part of the bureau to
name the system "Carnivore" and EarthLink Inc.'s litigation over the
placement of the packet-sniffer on its network. Be that as it may,
this email surveillance system has been at the center of controversy
of late. While the FBI has explained that the system uses
court-authorized wire taps to surveil criminal suspects, civil
liberties groups are concerned that Carnivore may violate the Fourth
Amendment Protection against illegal search and seizure. On July 12,
the Electronic Privacy Information Center (EPIC) filed a Freedom of
Information Act (FOIA) request, and six days later it asked the
Justice Department to expedite the request as Carnivore had become
such a focus of media concern. When the request was not granted after
the ten-day time limit FOIA required, EPIC filed a civil action, and
on August 2, US District Judge James Robertson ordered the FBI to
respond to EPIC's request within ten days with a schedule of record
releases. This Wednesday, the FBI announced that it would release the
first set of documents within 45 days. In the meantime, the
development of Carnivore moves ahead, as the Justice Department plans
to select a university within days to review the system's hardware
and software.
Recent coverage is available from Reuters, the Associated Press (both
via Yahoo!news), and the _Washington Post_, the first two of which
report on the FBI's Wednesday announcement and EPIC's response to the
timetable, while the _Post_ covers the Justice Department's decision
to have a major university review the system. For background
information, readers can turn to _Computerworld_'s special section on
Carnivore or the _New York Times_'s section on Internet privacy (free
registration required), or they can go right to sites of the
controversy's major players, the FBI and EPIC. The latter's August 2
petition to the US District Court has been posted online by _Tech Law
Journal_. An August 12 letter to the editor of the _LA TImes_ from
John E. Collingwood, the FBI's Assistant Director of Public and
Congressional Affairs defends Carnivore, while Bob Barr's editorial
in _Computerworld_ explains the need for the Digital Privacy Act of
2000, a bill he introduced in Congress July 27 in response to
Carnivore and other surveillance strategies.
________________________________________________________________________
No arrests imminent in Eircom hacker case
Eircom has refused to confirm whether it knows the
name of a hacker who breached its Internet service
on Wednesday night. Reports today suggested Eircom
had managed to track the hacker's movement on its
computer system but a spokeswoman would not confirm
this. Ms Majella Fitzpatrick said today the company
was co-operating with the Garda in the investigation
and hopeed for swift prosecution of the case. A Garda
spokesman said its investigation was ongoing but no
arrests were imminent.
http://www.ireland.com/newspaper/breaking/2000/0818/breaking24.htm
Aussie sites won't remove DVD descramble links
Australian Web sites will continue to link to and host
instructions for descrambling DVD movies, despite a
ruling by a United States court against hacker 'zine
2600 for publishing controversial DeCSS code on its
Web site. The DeCSS (Decrypted Content Scrambling System)
allows users to view DVD movies on computers on the Linux
Operating system. It also allows for the circumvention
of anti-piracy measures employed by the entertainment
industry. "2600 Australia is a linking to the DeCSS code
and Wiretapped.net is hosting it, both will continue to
link and host respectively," organiser of the hacker
advocate group 2600 Australia Grant Bayley said.
According to Bayley, 2600 Australia www.2600.org.au has
no relationship to the United States 2600.com Web site
-- the only association is the name.
http://www.zdnet.com.au/zdnn/stories/zdnn_display/au0004956.html
Scary Hole Found at ZKey
A hacker didn't need keys to access the private information
that was supposed to be securely stored on ZKey's award
winning information storage portal. All he needed was a
little JavaScript. A new security hole, discovered
Aug. 14 by a hacker who calls himself "Blue Adept,"
allows ZKey users on Internet Explorer 5.5 with a ZKey
account to easily steal the user names and passwords
of other ZKey users simply by sending an email that
includes a specific JavaScript code embedded in the
body of the message.
http://www.wired.com/news/technology/0,1282,38292,00.html
Feds To Fight Wiretap Ruling
Justice Department officials said Thursday that they
will keep pressing to expand the FBI's wiretap
capabilities, despite a federal appeals court's
rejection of recent government surveillance proposals
as threats to personal privacy. Without access to such
communications features as telephone credit-card
access codes, Assistant Attorney General Stephen
Colgate says, federal investigators could be left
in the dust by drug dealers and other criminals doing
business with simple calling cards.
http://www.newsbytes.com/pubNews/00/153858.html
Several departments haven't yet complied with order to stop
tracking Web users
The government is still grinding out "cookie" programs
two months after a White House directive ordered Web
masters to quit snooping on Internet visitors to
federal sites. While many government Web sites -
including the White House drug czar's office - shut
down their cookie operations after the June order,
a survey of federal sites this week found some still
delivering cookies.
http://www.sfgate.com/cgi-bin/article.cgi?file=/examiner/archive/2000/08/17/NEWS2531.dtl
'Cybersquatting' Gets Personal For Canadian Justice Minister
Canadian politician Anne McLellan might not be quite as
famous an American Actress Julia Roberts. But when it
comes to filing complaints against co-called domain-name
"cybersquatters," the signature of Canada's justice
minister - also the nation's attorney general - is
probably worth noting. This month, McLellan, a two-term
member of federal Parliament for the ruling Liberal Party,
filed her beef over the Internet addresses AnneMcLellan.com
and AnneMcLellan.org under a dispute resolution process,
which has already seen victories for a number of famous
individuals - including actress Roberts - who sought to
claim sound-alike domains.
http://www.newsbytes.com/pubNews/00/153880.html
Oversensitive Censorware Strikes Again
Censorware, the generic term for a variety of Web site
filtering programs, is far from perfect, a fact proven
once again by the experience of a Los Angeles attorney
who tried to enroll with an online service and was
rejected because of her surname. Sherril Babcock recently
tried to register for free membership with BlackPlanet.com,
a Web site that deals with African-American topics. When
the application did not go through, Babcock thought she
was doing something wrong. "After the third attempt, I
finally realized that it was saying that my name was
'inappropriate,'" said Babcock. "I wondered if they were
referring to the last four letters of my last name."
Indeed they were.
http://www.newsbytes.com/pubNews/00/153884.html
Hacked websites 'didn't read the manual'
Microsoft has blamed administrator error, rather than
a bug in its software, for leaving hundreds of websites
running SQL server open to attack this week. Several UK
government websites were attacked on Monday by a hacker,
called Herbless, who claimed to have exploited a weakness
in SQL server allowing him to take over the websites of
three local authorities and five government agencies.
Attacks made on major corporate sites in the US by
pro-Napster activists, have been linked to the same
problem.
http://www.vnunet.com/News/1109143
People Want More Control Over Personal Info Online - Study
Americans are becoming more demanding when their
personal privacy is on the line: Roughly 86 percent
say hey think Internet companies should be required
to ask users before sharing their personal information
with third parties, according to a study released today.
The study, conducted by the Pew Internet & American Life
Project, found 54 percent of those surveyed considered
the use of tracking devices such as "cookies" an invasion
of privacy, while only 27 percent said they agreed with
the argument that tracking customers online can help
companies provide more useful and targeted content.
http://www.newsbytes.com/pubNews/00/153874.html
Take it to the Online Judge
Everyone knows the US court system is clogged with cases,
whether they be criminal, civil, or small claims lawsuits.
Imagine filing your case using the Internet. Online dispute
resolution is not a new concept. Cybercourts include
Click-n-Settle, SquareTrade.com, and now, iCourthouse.com.
And at iCourthouse.com, your virtual courtroom comes
complete with trial books, evidence, and even a jury.
http://www.zdtv.com/zdtv/cybercrime/digitaldisputes/story/0,9955,6413,00.html
Encryption Gets Really Small
Scientists at the University of Geneva are collaborating
with the Swiss Ministry of Posts and Telecommunications
on an experiment that uses quantum computers to run an
unbreakable encryption algorithm. Cryptography could,
in fact, be the first commercial application for this
technology. Quantum computers are molecules, and being
that tiny they can process data millions of times faster
than the quickest supercomputer. But being so small,
they also can take advantage of the peculiar rules of
quantum physics.
http://www.informationweek.com/story/IWK20000818S0002
The World's Most Secure Operating System
The cartoon character on Theo de Raadt's business card
is surprisingly uncuddly. Most upstart software companies
employ cute mascots Linux's bemused penguin, for example
but de Raadt, project leader for the open source
operating system OpenBSD, favors a smirking, muscular
demon clad in policeman's garb. The fiend brandishes a
badge reading: "OpenBSD: To Serve and Protect."
http://www.thestandard.com/article/display/0,1151,17541,00.html
Digital Copyright Act comes back to haunt consumers
TWO years ago, Congress passed a law called the Digital
Millennium Copyright Act (DMCA). Many people warned
correctly that this legislation was an abandonment of
constitutional principles and the public interest --
a grossly unbalanced law that would give the owners
of intellectual property vast new authority,
simultaneously shredding users' rights. The latest
fallout from Congress' sellout rained down Thursday
in New York. U.S. District Judge Lewis Kaplan, spewing
contempt for the defendants in a closely watched case,
ruled that it was not only illegal for a Web site to
post software code that allowed people to view DVD
movies on non-authorized devices, but that it was also
illegal even to post a hyperlink to the code on someone
else's computer.
http://www.mercurycenter.com/svtech/columns/gillmor/docs/dg081800.htm
---------------------------------------------------------------------
------------------
http://all.net/