Hmm...
$1.2m seems like a lot.
I'd have done it for a tenner less.
When a former IT consultant knocked out a government system in Australia's Northern Territories, costing taxpayers $1.2m (Australian), he was drunk and upset that his fiancee had broken off their engagement. David Anthony McIntosh told a Northern Territories court he was trying to prove there were security vulnerabilities in …
They spent AU$1.25m getting someone to run "tar -zxvf /backup/file.tar.gz"???
They did have a backup, didn't they?
No government organisation would run a major IT system without adequate backups, would they?
Where do I sign up to tender for installing a backup system for them? I'm sure I could do it for a shade under $1.2m, which could potentially save them millions in the future!!
tounge::cheek->remove
In the tradition of viewing government IT as an unnecessary overhead, I'm guessing their requests for inconsequential equipment purchases (network appliances, vmware, tape drives, etc) were rejected and they were forced to manually re-create the accounts.
Believe me it happens. My own department decided that overly expensive backup software (about $1000) and it's annual maintenance was a luxury purchase and therefore rejected. The sound reasoning for this is our network appliance is capable of snap shotting about 3 months worth of data.
The fact we now have a $30,000 tape backup device gathering dust or the fact that we spent close to another $10,000 getting the wiring, air conditioning and backup power upgraded partly to accommodate this tape drive cut little ice with the department heads. After all spending a grand so we can actually use $40,000 dollars worth of purchasing is obviously frivolous.
The life span of construction jobs being decades also didn't deter their assumption that 3 months of partial backups was plenty.
So it wouldn't surprise me at all if this guy was operating in a similar environment and his drunken and astonishingly ill thought-out protest had something to do with showing them how vulnerable they were without the gear he wanted.
Meanwhile, if they'd had decent backups it would have taken 3 hours and $500. But of course they'll never admit that they were complete tossers for not having any sort of disaster recovery plan, and it's always easier to blame someone else.
<p>
I hope the folks responsible (ie: the managers who said backups were "too expensive", as they always do) were fired. Or at least caned. Or something.
Yes, the Australian Government would.
This is the same government currently sending $1400 "recovery packages" to foreigners who came here once in 1963, stayed for about 5 minutes until they found out how fucking god-awful it si down here, then left.
I am assuming they are using the same 'database' or whatever the hell our fat-arsed wombats, er, politicians use down 'ere in gawds ern erf.
"It took 130 experts, five days, and $1.25m "
I'm sorry, maybe I'm thick or something, I've read and re-read this and the comments and for the life of me I cannot, even using quantum mechanics (are there any other kind?) conceive how it COST $1.25m - even in Australian dollars - to recover.
Is there anyone here who can explain where the fuck this figure comes from? Is there another kind of math that I don't know about, maybe it's the same math that's used to calculate the value of drug hauls?
http://news.bbc.co.uk/1/hi/world/europe/7916115.stm
"David Anthony McIntosh told a Northern Territories court he was trying to prove there were security vulnerabilities in the government's IT system. "
So, on in May of 2008, one month after he resigned his position, he logged into government servers and deleted 10,475 user
Job done
Maybe I'm making the wrong connections, but...
His fiance had broken off their engagement.
He used the logon creds of a former workmate with whom he was living.
Surely it's not too much of a stretch to assume the former workmate and the fiance were one and the same sheila. In which case was he actually trying to lay the blame at the door of his fiance?
Aussies always have to go one up on us Poms.....
Now Ade's claiming that Aussie politicos are tighter & dumber than ours.
Sorry mate - once you've seen Harridan Harperson, Reichsfuhrer Schmidt, Wee Gordie, etc., you realise ours really are the ultimate pits.
Although you could have been in with a chance, if you hadn't sent us the gorgeous, pouting Patricia Hewitt...
The recovery exercise did not cost AU$1.25m, that was the final bill. In that bill is included the amount of time the 10,475 employees affected were not productive due to not being able to access their files/system. That's ~AU$100 per employee, which is roughly 1 hour of "productive time" per employee at standard *costing* levels (not *pay* levels, different kettle of fish). Plus actual recovery costs. Cheap, actually.
As for the delay, if the place in the NT is like the other Gov IT dept I worked for in Oz, then the backup almost immediately go to secure storage offsite. Depending on when the malarkey occurred, getting the backups out of offsite storage can take up to 24 hours.
Personally, I doubt the "5 days" line unless it happened during a long weekend.
Don't forget the nominal wages of 10,000+ government drones. From reading court documents, I believe this was factored in to the overall costs.
I also believe most of the drones were back on the system after a day or so, the other few days was to make sure that someone couldn't do the same thing to them twice.
I'm sure they'll have figured in downtime losses, e.g. the biling department sent out $X invoices everyday, they were off-line for Y days, so we lose $XY cash flow. Or we have to pay the workforce for doing nothing for Y days. etc etc etc. It's the same financial model which makes a suitcase of pirate DVD's worth billions.
Have YOU been tempted to do just such a thing, but either hadn't drank quite enough, or had already drank too much to pull it off. There have been a number of times I have considered doing just such a thing or worse, but thought better of it.
And I would venture a guess that the co-worker he was staying with and his fiancee were not one in the same, which would explain why she was his ex....
And don't forget the forensics! You can't proceed with the restore until after you've completed the forensics. Unless you buy new kit, which of course they never do, and it would take days to get there anyway, if for no other reason than that they need the computer your fixing to process the paperwork for a new computer.