Grim's Hall

Ashley Madison & dot-govs

The list says there are 44 emails registered on the Ashley Madison site with a "WhiteHouse.gov" address.

The largest non-military user of Ashley Madison appears to be the Department of Veterans Affairs. The leaked summary shows 104 emails from "va.gov."

The Federal Bureau of Prisons is close behind, with 88 emails. The U.S. Postal Service shows 52 emails, and the Department of Homeland Security has 45.

The cheating website also has 42 emails registered from the Social Security Administration, 33 from the State Department, and six from the IRS.

The Federal Aviation Administration has 17 emails on the list, and the Labor Department has 15.

Watchdog Group: She Used Option One

A former US Army counterintelligence officer who now works for a watchdog group says he believes that Secretary Clinton used what I described as "option (1)" to get around the air gap:

Farrell said his investigation of the matter indicates that Clinton aides likely read classified documents and then digested and excerpted the material into the unclassified email system. Clinton has said she never sent any classified information on the email server and did not receive any classified information that was marked as such. “So she’s relying on the idea that somehow her deputies, Huma Abedin and Jay Sullivan, would excerpt the pertinent points out of a classified cable,” Farrell said. “They would pull those nuggets out of the classified version and restate it in an regular, unclassified conventional email on her server. And that’s what we’ve come across now.”

...

Said Farrell: “Here’s the bottom line: The secretary of state in an extraordinary and unprecedented move, set up a private email server to circumvent the conventional government classified and unclassified networks. Her aides and assistants excerpted code-word material from various classified message traffic and then took those excerpts and then sent them to her over an unclassified email server.”

Perhaps the biggest news in the story is that Huma Abedin and Cheryl Mills disregarded the Federal judge's order that they give sworn statements in this matter. That is going to have consequences.

From Malcolm Gladwell in The New Yorker, a disturbing analysis of Katrina's forcible relocation of many of the residents of the worst bomb-crater neighborhoods in New Orleans. The removal improved not only the lives of those who moved away but also the lives of those who stayed behind. I don't know of any way to look at these results than to conclude that there is a poor black culture that can be improved--and can be prevented from dragging down the cultures it touches--only if it remains a locally diluted minority. If you belonged to that culture, what could be a harder message to accept?

Irony and the State Department

Classified military intelligence on Libya? Send it in an email. Details about the Iran 'secret deals'? Sorry, man, it can't leave the SCIF.

The Obama administration delivered 18 documents to Congress on July 19, in accordance with legislation requiring a congressional review of the nuclear deal. Only one of these documents is classified, while the remaining 17 are unclassified.

Yet many of these unclassified documents cannot be shared with the public or discussed openly with the press. The protocol for handling these documents, set by the State Department and carried out by Congress, is that these unreleased documents can only be reviewed ‘in camera’—a Latin term that means only those with special clearance can read them—and must be held in various congressional SCIFs.

Most staffers were hesitant to discuss—let alone share—a number of these documents, even though they’re not classified, because they require security clearances to view. By mixing a classified document with unclassified documents, critics of this arrangement contend, important facts are being kept from the public just as Congress is deciding whether to support or oppose the Iran deal.

On the upside, it's good to hear that they're suddenly taking seriously questions of proper handling procedures.

Way better than the actual debate

Bad Lip Reading

What "Secret Deal"? This is a "Confidential Agreement," Morons.

Secretary Kerry explains it all, starting at 4:45.

This is just an ordinary ~~secret~~ confidential ~~deal~~, um, arrangement that is perfectly ordinary and standard practice in these matters. We've been doing all this for a long time. Nothing to see here. Move on.

Schlock Mercenary

Joe W. introduced me to this strip years ago, and I continue to follow it. Minor quibbles aside, it's remained impressive year after year. If you haven't read it before, you can start at the beginning and enjoy weeks of binge reading pleasure.

Well, Why Not?

Iran was already going to get to limit the citizenship of inspectors to countries with which it has normal relations. It was going to get to sign off on each individual inspector via a background check by its spy agency. So why not just let them use their own experts to inspect their military facilities?

[T]he agreement diverges from normal inspection procedures between the IAEA and a member country by essentially ceding the agency's investigative authority to Iran. It allows Tehran to employ its own experts and equipment in the search for evidence for activities that it has consistently denied - trying to develop nuclear weapons....

The White House has denied claims by critics that a secret "side deal" favorable to Tehran exists. U.S. Secretary of State John Kerry has said the Parchin document is like other routine arrangements between the agency and individual IAEA member nations, while IAEA chief Yukiya Amano told Republican senators last week that he is obligated to keep the document confidential.

But Republican critics are bound to harshly criticize any document that cedes to Iran the right to look for the very nuclear wrongdoing that it has denied committing.

Kerry says he's been briefed on this and is OK with it. Clearly our real goal cannot be to stop their nuclear program. It makes me wonder if our real goal to raise their self-esteem. Iran's got a space program too, you know -- at least, they claim that's why they want advanced ballistic missiles capable of hitting precise targets.

Stones or Speeding Tickets?

As radar gun technology improved, and later laser speed detectors, my father used to tell me that someday it just wouldn't be possible to speed any more. You'd have to drive the speed limit all the time, because the instant you violated it a ticket would get mailed to your house. These days it might get texted to your phone, or just automatically debited from your account.

Not to worry, I said: what will really happen is that, once we're all obliged to stop pretending that we ever obey the speed limits, we'll revise them upwards according to what we really think they ought to be. The lies aren't setting us free, they're the things that are posting speed traps all over the roads. It's the truth that will really set us free.

I'm thinking about this again as the Ashley Madison hack becomes dumped on the internet. Tens of millions of people are about to have to account for their behavior. Will they be stoned to death, metaphorically, as people fear? Or will the society simply revise its standards to more honestly account for the fact that this behavior is apparently widely practiced -- the database is the size of fully ten percent of the US population, apparently.

Adultery is much more serious than speeding, of course. It's a moral offense, and not merely a formal violation of the motor vehicle code. However, our moral laws and moral standards on sexuality have rapidly eroded these last few years. Instead of the fearful punishment commentators seem to expect, I wonder if we won't see the remaining taboo against adultery collapse in the face of this exposure. That would be a grave matter for the survival of marriage -- I mean real, traditional marriage aimed at a stable family to raise and pass on a heritage for children, not celebrity-style serial marriage. Yet it seems to me a likely outcome.

None of us have any personal stake in this leak, I assume, but I'm curious as to what you think will happen as a result of it. Will we preserve the taboo by metaphorically stoning the adulterers? Or will we, as a society, elect to 'set ourselves free' of the taboo? Excepting the military, we've already removed adultery from the list of crimes punishable at law. Will we see the social follow the legal, as it so often has of late?

Well, That Is Sort Of Like A Faraday Cage...

Clinton's server was kept in bathroom closet of that first rate IT firm she trusted with national security.

That's Not A Sword...

My favorite part about this story is that the store owner also had a gun, and didn't even feel the need to make reference to it.

Bad Day on the Campaign Trail

Throwing the ball to the small child, it's Marco Rubio!

We all have bad days now and then.

The "taint of experience"

Jim Gerraghty's newsletter this morning pointed me toward a RedState piece about the current wave of Republican/Independent enthusiasm for a presidential candidate who's never been involved in politics:

Basically everyone who’s in office right now at one point was a political outsider. No one was born into elected office. At some point, all the people who have frustrated you (the voters) and pissed you off ran for office in their first campaign trying to tell you how they were different. They hadn’t been to Washington. They had success in business that would translate well to political office. They were wealthy and didn’t need help from special interests. And so on and so on. And, one by one, we elected those people and sent them to Washington or the Governor’s Mansion or wherever in the hopes that maybe they would be different.

Sen. Mitch McConnell (R-KY), Sen. John Cornyn (R-TX), Sen. Orrin Hatch (R-UT)–at one point, these guys were all oustiders. Rep. John Boehner (R-OH) himself was at one time not too long ago a guy with a compelling story of having risen through poverty as one of 12 kids to become President of the company he had worked for for 13 years. He ran successfully as an outsider and won.

The problem is, almost none of them actually were, after they got to office. Easily 95% of these political neophytes, once they got to office, were lured by the trappings of power and corrupted. And then they became the people you hated and the reason to send new political neophytes to power.

Here is the salient fact that many people are missing in this particular logical chain. It’s easy to say and do all the right things and to be non-corrupted when you are a political neophyte. Literally everyone who has ever run for office their first time has done it. What’s hard (apparently, at least based on the evidence) is to remain true to your principles after you win your election and actually get to power.

So what we ought to be looking for isn’t really someone who’s never been tested by the allure of power. History tells us that almost all people fail that test. What we ought to instead be looking for is people who have already been tested, to determine which ones have passed the test with the most success.

This is why I support Walker.

A Very Lucky Outcome

In Brazil, a female MMA fighter won a match that went the distance. It was a contested fight:

The fight three months ago, in the Noxii championship against Renata Baldan, lasted the full five minutes and three rounds - with Novaes eventually winning by a unanimous judge's decision. Video footage shows Novaes receiving several vicious knees to her stomach during the fight, as well as being body-slammed on to the ground.

Turns out, she was pregnant and didn't know it until after the victory. Luckily, the child will apparently be fine.

What About The "Air Gap"?

So I've been asking around to confirm whether State uses the same "air gap" technique that the military uses to protect classified information, and it appears that it does. What is an air gap?

HOW DO YOU remotely hack a computer that is not connected to the internet? Most of the time you can’t, which is why so-called air-gapped computers are considered more secure than others.

An air-gapped computer is one that is neither connected to the internet nor connected to other systems that are connected to the internet.... A true air gap means the machine or network is physically isolated from the internet, and data can only pass to it via a USB flash drive, other removable media, or a firewire connecting two computers directly. But many companies insist that a network or system is sufficiently air-gapped even if it is only separated from other computers or networks by a software firewall. Such firewalls, however, can be breached if the code has security holes or if the firewalls are configured insecurely.

The military actually uses several different systems for different levels and types of classification. By far the biggest one is the SIPRnet, which handles information rated SECRET and below. The SIPRnet is huge, comprising thousands of computers across the globe, but it is connected at no point to the commercial internet. Because of the dangers of removable media like thumbdrives, those are forbidden to be connected to the SIPRnet. The computers themselves have to be physically secured, usually by being kept on a military base.

If you want to move data from the internet into the SIPRnet, or vice-versa, it used to be possible by writing the data to a writable CD, transferring the data, and then breaking the CD to ensure that copy was destroyed. You could only do this legally with unclassified information. I don't know that CDs are even still allowed, meaning that data has to be physically re-typed from one system to the other (which is what we usually did when porting unclassified information, such as news reports relevant to our operations, into the SIPRnet). Then there is no danger of transferring any hidden malware.

Smaller and more secure systems handle Top Secret information, such as JWICS. Being kept on a base isn't good enough for a JWICS computer: it has to be kept locked in a proper SCIF. In addition, of course, it's password protected and requires a physical card identifying the user that is itself coded with information about your security clearance.

So how did this classified information get out of the classified, air-gapped networks and onto Clinton's server in the first place? There are really only two possibilities.

1) Someone, or a team of someones, illegally downloaded the material onto removable media, stripped it of its classification markings, and transmitted it onto the public internet.

2) Clinton arranged to have her private server networked with SECRET and TOP SECRET systems, compromising the security of all the information kept on those systems. If you could hack into her system, which was secured by a truly first-rate organization that made copies of the data and then sold the server on which they resided, you could bypass the air gap and get into nearly all of America's most classified data.

Option (1) is a clear felony, one that would have required numerous man-hours of labor given the number of classified records now turning up. It would have been fairly tedious, too, which means that the work would be passed down to flunkies who probably don't want to go to prison forever -- but their records of accessing the data just before the emails were sent on Clinton's private server will be recorded, because they had to log in and be physically present with their ID cards to do it. It should be possible to find these people and apply pressure to them until they crack and cooperate in return for reduced sentences.

Option (2) is a disaster of unimaginable proportions. However, it would have made it very easy for Clinton to access the information and move data back and forth between her private system and the systems used to communicate with her diplomats in the field. For that reason, I suspect it will prove to be the one she actually employed.

Sign Bill Clinton's Birthday Card

We've been invited. I mean, be polite. Be courteous. We're all gentlemen here, excepting the ladies.

Making a Cigar Box Guitar

Grim's 1332 post got me watching a bunch of cigar box guitar videos. Here's a good, time-condensed video of making an electric cigar box guitar from scratch. I thoroughly enjoyed watching the craftsmanship, though the background music gets a bit repetitive.

Update: If anyone's interested in a much, much simpler and easier way to do this, here are three different plans.

Art of Manliness: How to Make a Cigar Box Guitar

Make: Hand-Rolled Music

Cigar Box Nation plans

Glenn Watt has a bunch of useful videos on it as well, and there is a lot more out there.

Ranger School Update: The Fix Is In

So claims Havok Journal, at least, based on the President's sudden desire to attend graduation.

Now, I’m no fortuneteller, but when the travel agent of the Commander-in-Chief contacts your organization, travel plans probably isn’t the message trying to be delivered. “Undue command influence” is something JAG officers warn leaders about, especially during election cycles and sensitive topics that can get young NCOs and company commanders in trouble.

Call it what you will, but when the President says he’s attending graduation for Ranger School, something he’s never shown interest in prior to this class, there’s obviously a reason, and I’m sure there’s at least one or two Ranger candidates that will make the cut. Unfortunately, the premier leadership school in the Army is falling victim to an agenda and will soon find itself in a swelter of media madness like its never experienced, even up to this point.

So disconnected from the military is he that he does not realize that, rather than honoring the women by his presence, he will have undermined them in the eyes of everyone by doing this. Few will now believe that their passage through the school was fair and free from political pressure. I wonder if he can even imagine the damage he's doing to these two women, who have done gloriously to come this far, by making himself a part of this?

The South Must Be Destroyed

At the time that the world went insane over the display of the Confederate flag at a war memorial on the grounds of the South Carolina capitol, I told a friend that I was concerned that this would lead to a much more serious purge against the South. The language being used wasn't always anti-Confederate, but had a strong anti-Southern tendency -- especially the language of the powerful and politically connected, as opposed to the ordinary citizens of South Carolina who have a perfect right to debate how to remember their heritage.

That this is an anti-Southern purge by the cultural elite is clear, now, as the Washington Post leads the charge to destroy the Southern belle. Writing on a decision by the University of Georgia to ban the wearing of hoop skirts as somehow symbolic of slavery, though unlike the Confederate flag the skirt is characteristic of the South both before and after the end of slavery, the Post calls for much more purgery:

If UGA and other Southern schools really want to lead, they will not only ban the hoop; they will also go after the belle. This will be tougher to do. It will mean discontinuing support for still-prevalent campus productions that promote imaginative connection with the Old South. And it will mean instituting new campus productions in their place. For their part, traditionally white Southern sororities serious about anti-racism will scrap the belle aesthetic and corresponding performances designed to measure it. They will develop new yardsticks for evaluating potential members that are less about looks and more about leadership. In short, they will confront the central role their choreography plays in reiterating race and class privilege. They will just say to hell with the belle.

The language is extraordinarily hostile to a group of young women engaged in what, in an earlier era, we might have thought of as "protected acts of free expression." But the campus is no place for free expression these days. These days expressions on campus must be controlled by the Federal Government's Office for Civil Rights. Campuses in the South must be controlled most tightly of all.

I've seen this movie before.

It wasn't the Medieval English kings, as the film has it: it was in 1746 that the kilt was banned, and the pipes, and the symbols of Scotland.

This Story is Starting to Get Interesting

The National Review points out that the missing emails -- whether or not they end up creating a legal issue for Mrs. Clinton -- will probably derail the prosecution of a terrorist associated with the Benghazi attacks. If you felt that we needed to point to actual damage to the national security, now you can.

If Mrs. Clinton thinks FOIA is a headache, wait until she sees what happens when a top government official’s reckless mass deletion of e-mails takes center stage in a terrorism prosecution of intense national interest. Federal criminal court is not the nightly news. There, mass deletion of files is not gently described as “emails a government official chose not to retain”; it is described as “destruction of evidence” and “obstruction of justice.”

The problem is that the indictment tries to stand by the silly story that the attack was a spontaneous protest to an internet video, and the government is required to produce anything it has that "calls into question the prosecution’s version of events, theory of guilt, and credibility." Emails from the day of the attack touching on the attack are, of course, evidence of that kind. I can tell that the author really enjoyed writing this piece.

Now classified information might not be required to be produced in an open court, but it is Mrs. Clinton's stated belief that no classified information was sent on this system. Also, according to Federal law, these were government records that were required to be archived.

Meanwhile, in what may be an even more amazing story, the IT firm Mrs. Clinton used appears to have transferred all the data to another drive -- and then sold it.

Bloomberg reported Thursday night that Barbara Wells, an attorney for Platte River Networks, Inc., confirmed that while the server hardware now controlled by the FBI 'is blank and does not contain any useful data,' its contents could still be safe and sound elsewhere.

That's because the server's messages were 'migrated' to another server that still exists, she said, before ending the Bloomberg interview without specifying where that device is located and who owns it – only that her company no longer has it.

That's some first-rate security this firm provides for their clients' sensitive data!

Wonder who has it now?

Subscribe To