[176090] in North American Network Operators' Group
Re: Kind of sad
daemon@ATHENA.MIT.EDU (Sholes, Joshua)
Wed Nov 12 10:27:28 2014
X-Original-To: nanog@nanog.org
From: "Sholes, Joshua" <Joshua_Sholes@cable.comcast.com>
To: Larry Sheldon <larrysheldon@cox.net>, "nanog@nanog.org" <nanog@nanog.org>
Date: Wed, 12 Nov 2014 15:27:13 +0000
In-Reply-To: <5462C50D.5030208@cox.net>
Errors-To: nanog-bounces@nanog.org
On 11/11/14, 9:25 PM, "Larry Sheldon" <larrysheldon@cox.net> wrote:
>On 11/11/2014 15:37, Ricky Beam wrote:
>> On Mon, 10 Nov 2014 22:43:09 -0500, Joe <jbfixurpc@gmail.com> wrote:
>>> Generally speaking its best you do what your good at and this is not
>>>it.
>>>
>>> Exposing there is a window open to a gov agency is not hacking, trust
>>> me. I would say go back to fathering children and once you have a few
>>> more years under your belt feel free to join in.
>>
>> And you, sir, should consult a lawyer before publicly slinging insults.
>>
>> I'm not a lawyer, but I have worked with one in this area. What you have
>> post *is* evidence of a crime under the Computer and Fraud Abuse Act.
>> The wording of that law is horrible, but it is what it is; the bar for
>> of "unauthorized access" is *very* low. How you found it is irrelevant.
>> You connected it to it -- knowing full well you are not authorized --
>> and proceeded to attempt to login, even if in jest.
>>
>> (Government agencies have zero sense of humor. And judges have next to
>> no understanding of technology. Merely being charged can be a career
>> killer.)
>
>As an ex-admin I completely--we took action for such things.
I concur. I was recently an admin/ITSO for a defense contractor, and
from a network logging standpoint it is VERY difficult to tell the
difference between what you posted and a really subtle
social-engineering-enabled attack--and EVERY attacker these days has to be
assumed to be subtle.
--Josh
