Bravo!! Encore!!
Finally!! A start toward an open and transparent government.
A confidential memo from one of the most secretive panels in Congress was leaked on a peer-to-peer file-sharing network, publicly detailing sensitive probes involving more than 30 lawmakers and aides. The release of the report was jarring enough that Zoe Lofgren, chairman of the House ethics committee, interrupted a series of …
"Legislators have grown so worried about inadvertent leaking of documents over P2P networks they've considered draconian bills that could render entire web browsers and operating systems illegal."
This is our new open and transparent government at work?
Same ol' same ol', only more draconian, then? Wonderful.
Not that I expected any different. At least the neo-nazis are (mostly) out of power.
I never understood how you could "inadvertently" share a file on P2P. With any of the file sharing software I've ever used, you have to specifically designate one or more folders to share, plus it may create a default one, something like "C:\Program Files\µZebra Wire\Shared". In either case, you'd have to put something in one of those folders intentionally, it doesn't just randomly grab files off the hard drive.
You're right, but if he had set his shared folder to an entire drive or his home folder (let's say D:\ or /home/<user>), the file would get inadvertedly shared. This only means he's not automatically a snitch, however, he's still a moron.
But, as has been pointed out, transparency in government is important and one can only applaud this guy's idiocy!
It could be that the P2P software was merely used as a scapegoat by the worker who was traced or that this is a convenient cover excuse while they investigate the security breach.
Secret documents should never be stored on home machines. Whoever allowed that should be fired.
How do you share a file inadvertently? Simples! Just think like a user...
"I get my music from limewire. I like to take it with me on my phone. I have an autosync program to make it simple to keep up-to-date. My phone can also act as a storage device, and sometimes I save email attachments to it". Or any of another hundred or so real-world scenarios you see every day from less technical users.
he probably had his my documents folder shared in kazaa, saved email attachment to the default location and voila.
only an idiot would use kazaa anyway. and these are the people the are taking our civil liberties away from us in the name of security. its about time we had revolution and got this upper class bunch of numpties out of power, they clearly cannot be trusted,
Having two incompetents for sisters, I can explain this problem easily. It seems a lot of the morons will, when asked for a folder to index for shared files, blithely indicate that it can go ahead and share the (my) documents folder. All of it.
Cue downloading confidential information to your computer (To the (my) documents folder, ofcourse) and the subsequent disaster recovery afterwards when their confidential information is suddenly available to everyone.
@Pablo - some of the sharing software out there is pretty lame. I have no idea where the kids find it from. But there are dozens of different flavours of program. And I've seen some which default to sharing everything in the My Documents folder. Some even have specific tick boxes to add in sharing for .doc file types. (why?)
Plenty of companies and hackers have taken open source P2P code and repackaged it for their own needs. Most efficient way of passing viruses around as the idiot targets download without a care.
Or we have an idiot who has shared his My Music folder, but then manages to copy documents into there as well. (Seriously - you will be amazed at the lack of knowledge of a file system that some users have. Not always their fault as there is no decent IT Training)
Combine idiot users with idiot software and this is the outcome. It is nothing to do with OS or Web Browser versions.
(I work as an IT Engineer visiting people's homes.... scary what is often found...)
"Legislators have grown so worried about inadvertent leaking of documents over P2P networks they've considered draconian bills that could render entire web browsers and operating systems illegal".
Such people would probably like to close down newspapers, radio and TV as well in case any of those got their grubby mitts on information they'd hoped to keep secret. But, hey, "Land of the Free" :-)
If one wants to keep data secret you've got to keep it secret. Draconian measures on those who want to break that secrecy are perhaps fair enough ( though there's always the 'public interest' and 'for the greater good' defences ), but otherwise it sails close to the wind as collective punishment for their failures.
As to "inadvertent leaking", that's just spin for top-down failures in keeping secrecy. The people ultimately responsible ducking their responsibility, passing the blame. That's well evidenced in the McKinnon case.
They should just not allow work to be stored on private computers instead of considering protecting people who accidentally share the information. Yes, I can see the sharing as being accidental since this does not seem to be some huge conspiracy worthy of distribution to the world. The idiot probably dragged and dropped it by accident or shared their MyDocuments folder...
Sucks about the investigation though. I hope if anyone is actually innocent that they don't get unduly dragged through the mud.
I put a non-DRM'ed disk in the reader and TOR copied the files, and then uTorrent shot it through the 'tubes to TPB, releasing it to all my Limewire contacts. These nefarious softwares and unfiltered pipes allowed this to happen. If only there were some more protections in place, my esteemed colleagues could have proved their innocence(wink, wink)... Let's make some new laws!
On to more important matters, who's turn is it to buy lunch today? Verizon? Goldman? Exxon hasn't bought in awhile...
Lets all blame the end user - he/she lacks knowledge.
Those with the knowledge (the system administrators build their systems so that contractors and employees can download to removable disks and USB devices. The reason you would want to do this? - so you can remove data from the site ie create a security breach.
This post has been deleted by its author
So tell me, why is a govenrment PC user allowed to install personal software? Why isn't the machine locked down more tightly? Crikey where I am, a bank, we can't even install software updates for software we maintain, without submitting a request to a seperate software support team!
This was a laptop, in use at a US government dept, not some run-of-the-mill company!
No... Its a home PC. Its because in the US they see nothing wrong with taking work home and using your own computor to do things. Its not an IT thing, its a work culture thing. The long hours only loosers lunch attitude.
@: skeptical i. What? 1) You don't know what the job was and 2) you don't know how low it was. These guys could have been highly qualified lawyers doing basic legal admin to pay the bills. Just because someone dosen't know PCs dosen't meen they are low skilled. Lots of people round here would have a much better life if they just pulled the stick out of there ass and realised that.
It is not just P2P, go into homegroup on win7, tick the docs file (everything else is set by default to share) and then go looking at it from a linux machine. If you input the password (and we all know how easy they are to get hold of on the majority of British wireless networks) You get access to every file. I was able to copy and rename system files in Windows FFS.
Blame p2p now. Once Win7 and home groups become the norm, it will get a whole lot more common.
AC because our crappy government is watching.
I truly think that USA govt should not run any LINUX,APPLE,Microsoft OS.
The USA govt should run its own custom OS that is not compatible with any retail copy OS and ownership of this custom OS should only be in GOVT buildings and not in homes.
If they did this then I am sure security will be improved vastly.