Berkeley CSUA MOTD:Entry 50581
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2018/10/21 [General] UID:1000 Activity:popular
10/21   

2008/7/15-23 [Computer/SW/Security] UID:50581 Activity:nil
7/14    anyone know this guy?
        A disgruntled city computer engineer has virtually commandeered
        San Francisco's new multimillion-dollar computer network,
        altering it to deny access to top administrators even as he
        sits in jail on $5 million bail, authorities said Monday.
        http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/07/14/BAOS11P1M5.DTL&tsp=PSB
        \_ The article is short on technologies involved.  It sounds vaguely
           like he commandeered their domain's administrator account.
           \- i suspect waterboarding would be successful in this case.
              \_ Is that you in the sfgate comments?
                 \- no, i didnt not read the comments.
                    \_ probably better that way.  they make me sad.
        \_ I enjoy how the article says there is no known motive.  Anyone who
           has hung out with disgruntled sysadmins know that no motive is
           needed.
        \_ No, but he is the poster child for a BOFH. I wish I knew him,
           so I could shake his hand.
           \_ Having worked with IT guys who couldn't comprehend the fact that
              IT is fucking support and not an ends to itself I wish I knew
              IT is f***ing support and not an ends to itself I wish I knew
              him so I could kick him in the balls.
              \_ Depends. IT can be support or it can be an ends to itself.
                 For the city I'd say IT is a big part of what they do.
                 \_ IT by itself is nothing.  IT is a tool to make other
                    tasks easier.  I accept that.  Keep the tools running
                    is an honorable job.  Just admit that's not what you
                    are doing.
                    \_ Well it depends. I think you are too limited in
                       your scope. There are a lot of situations where the
                       tool is more important than the operator. Making a
                       job so simple that a monkey can do it is one of the
                       areas where IT can help and in those instances I
                       think the IT adds more value than the actual "doers".
                       At that point where IT is contributing more
                       significantly to the bottom line I wouldn't say it
                       is a supporting role anymore, but a key role.
                       Addendum: What role you would say IT plays at companies
                       like eBay?
                       \_ Or Amazon, with the EC2 project?
        \_ it might be a big Peoplesoft install.
        \_ He made $149,269 working for the gov't, which is not bad now is it?
           \_ Previous motd postings lead me to believe that this makes him
              rich. Still won't make $5m bail, though.
           \_ This is a lot of money, almost as much as I make as a Director
              in the private sector. Maybe those public sector IT geeks are
              overpaid afterall...
              \_ Plus he can't get fired even when he's clearly got issues and
                 he probably has better benefits than you do, too.
ERROR, url_link recursive (eces.Colorado.EDU/secure/mindterm2) 2018/10/21 [General] UID:1000 Activity:popular
10/21   

You may also be interested in these entries...
2013/12/28 [Computer/SW/Security] UID:54760 Activity:nil
12/28   Happy holidays everyone.
        For some reason my work's ip address gets logged in /etc/hosts.deny and\
I cannot ssh in anymore from work
        (except from home where I can ssh in fine): anyone knows if this file is\
 auto-generated due to some event? Thanks
	...
2013/10/24-11/21 [Computer/Companies/Apple] UID:54747 Activity:nil
9/19    "No, A Severed Finger Will Not Be Able to Access a Stolen iPhone 5S"
        http://mashable.com/2013/09/15/severed-finger-iphone-5s
        I'm sure the Apple QA department has tested extensively that a severed
        finger will not be able to access a stolen iPhone 5S.
        \_ It doesn't matter whether or not a severed finger can be used.  It
           matters whether or not a robber thinks that a severed finger can be
	...
2013/6/6-7/31 [Politics/Foreign/Asia/China, Computer/SW/Security] UID:54690 Activity:nil
6/6     Wow, NSA rocks. Who would have thought they had access to major
        data exchangers? I have much more respect for government workers,
        crypto experts, mathematicans now than ever.
        \_ flea to Hong Kong --> best dim-sum in the world
           \_ "flee"
        \_ The dumb ones work for DMV, the smart ones for the NSA. If you
	...
2012/8/26-11/7 [Computer/SW/Security] UID:54465 Activity:nil
8/26    Poll: how many of you pub/priv key users: 1) use private keys that
        are not password protected 2) password protect your private keys
        but don't use ssh-agent 3) use ssh-agent:
        1) .
        2) ..
        3) ...
	...
2012/8/29-11/7 [Computer/SW/Security] UID:54467 Activity:nil
8/29    There was once a CSUA web page which runs an SSH client for logging
        on to soda.  Does that page still exist?  Can someone remind me of the
        URL please?  Thx.
        \_ what do you mean? instruction on how to ssh into soda?
           \_ No I think he means the ssh applet, which, iirc, was an applet
              that implemented an ssh v1 client.  I think this page went away
	...
2012/8/7-10/17 [Computer/SW/Security] UID:54455 Activity:nil
8/6     Amazon and Apple have lame security policies:
        http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all
        "First you call Amazon and tell them you are the account holder, and
         want to add a credit card number to the account. All you need is the
         name on the account, an associated e-mail address, and the billing
         address. "
	...
2011/4/27-7/30 [Computer/SW/Unix, Computer/SW/Security] UID:54096 Activity:nil
4/28    Will wall be fixed?   - jsl
        \_ What's wall?
           \_ An anachronism from a bygone era, when computers were hard to
              comeby, the dorms didn't have net, there was no airbears, and
              when phones didn't come standard with twitter or sms.
           \_ A non useful implementation of twitter.
	...
2011/5/19-7/30 [Computer/SW/Security] UID:54110 Activity:nil
5/19    Uh, is anyone still using this? Please mark here if you post and
        haven't added this yet. I'll start:
        \_ person k
        \_ ausman, I check in about once a week.
        \_ erikred, twice a week or so.
        \_ mehlhaff, I login when I actually own my home directory instead of
	...
2011/2/14-4/20 [Computer/SW/Unix] UID:54039 Activity:nil
2/14    You sure soda isn't running windows in disguise?  It would explain the
        uptimes.
        \_ hardly, My winbox stays up longer.
        \_ Nobody cares about uptime anymore brother, that's what web2.0 has
           taught us.  Everything is "stateless".
           \_ You;d think gamers would care more about uptime.
	...
Cache (3371 bytes)
www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/07/14/BAOS11P1M5.DTL&tsp=PSB
"This involves compromising a public system that we rely ... Terry Childs, a 43-year-old computer network administrator who lives in Pittsburg, has been charged with four counts of computer tampering and is scheduled to be arraigned today. Prosecutors say Childs, who works in the Department of Technology at a base salary of just over $126,000, tampered with the city's new FiberWAN (Wide Area Network), where records such as officials' e-mails, city payroll files, confidential law enforcement documents and jail inmates' bookings are stored. Childs created a password that granted him exclusive access to the system, authorities said. He initially gave pass codes to police, but they didn't work. When pressed, Childs refused to divulge the real code even when threatened with arrest, they said. City officials said late Monday that they had made some headway into cracking his pass codes and regaining access to the system. One official with knowledge of the case said he had been disciplined on the job in recent months for poor performance and that his supervisors had tried to fire him. "They weren't able to do it - this was kind of his insurance policy," said the official, speaking on condition of anonymity because the attempted firing was a personnel matter. Authorities say Childs began tampering with the computer system June 20. The damage is still being assessed, but authorities say undoing his denial of access to other system administrators could cost millions of dollars. Officials also said they feared that although Childs is in jail, he may have enabled a third party to access the system by telephone or other electronic device and order the destruction of hundreds of thousands of sensitive documents. Authorities have searched Childs' home and car for a device that could be used in such an attack, but so far no such evidence has been found. As part of his alleged sabotage, Childs engineered a tracing system to monitor what other administrators were saying and doing related to his personnel case, law enforcement officials said. Childs became the target of suspicions inside the technology agency this year, and the case was referred for police investigation in late June, authorities say. At a news conference announcing Childs' arrest, District Attorney Kamala Harris was tightlipped about what his motive may have been. "Motive is not necessarily an element of a crime," Harris said. She added, "This involves compromising a public system that we rely on. The system continues to operate even though administrators have limited or no access, officials said. "Right now our system is up and running and we haven't had any problems so far," said Ron Vinson, chief administrative officer for the Department of Technology. Vinson said the city is "working around the clock" to make sure the system is maintained and operable. Nathan Ballard, a spokesman for Mayor Gavin Newsom, said the mayor was "confident that (the Department of Technology) is doing everything necessary to maintain the integrity of the city's computer networks." Childs appeared in court Monday but did not have a lawyer assigned to him. Childs, according to payroll records, earned $126,735 in base pay in 2007 and additional premium pay of $22,534, for a total of $149,269. Vinson said the extra money was apparently compensation for being on-call as a trouble-shooter.