3 of 4 Charges Against Terry Childs Dropped 189
phantomfive writes "Terry Childs, who was arrested nearly a year ago for refusing to turn over the passwords to San Francisco's FiberWAN network, has been cleared of three of the four charges against him. The dropped charges referred to the attachment of modems to the network; the remaining charge is for refusing to turn over the password. The prosecutor has vowed to appeal, to have the charges reinstated. We have the original story, and the story where Childs tells his side, for those who want a refresher."
Witch hunt (Score:5, Insightful)
Always seemed to me this was not much more than a witch hunt. Why else would them set a bail higher than for killers and rapists?
Re:Witch hunt (Score:5, Insightful)
politics 101. pissing of the ones in power is the worst crime you can commit.
Re: (Score:2)
This guy should never have had to go to jail over this garbage. They could still have had court cases in a civil fashion.
Re: (Score:2)
Why else would them set a bail higher than for killers and rapists?
AIUI, the process of setting bail includes making a judgment of how much money the accused could afford to lose. See Stack v Boyle:
"Bail is excessive when set at an amount higher than necessary to achieve a legitimate government purpose. If the purpose is to ensure a defendant's appearance at trial, and if found guilty serve the sentence, then bail may not be set higher than needed to meet those ends."
The judge setting bail must take this i
1M bail and 1yr in jail...? (Score:5, Insightful)
I'm sorry but this guy has already had time served. Even if they do find him guilty one year in jail for what he did is far more than enough. Plus 1M bail? Is he a violent criminal? ...
This sounds like a classic story if ignorant people making decisions about technical crime and getting scared. I aim that both at the city and at the judge who set the original bail.
We need special technical trials for things like this within which both the defence and prosecution are allowed to bring in technical witnesses to put the case into perspective for non-technical people (as opposed to "HACKER! Get the pitch forks!").
Re:1M bail and 1yr in jail...? (Score:5, Insightful)
Ignorant people are afraid of the technologically savvy the same way they are afraid of science. They don't understand it, so rather than bettering their knowledge and informing themselves, they'd rather fear the worst and attack those who represent a threat (that is, those who know something they don't).
Also, why didn't the guy just say "dude, it was a complex random password and I've completely forgotten it"? They can't force you to give them a password that you've forgotten, surely? Also, is a partial "moral victory" really worth an entire year of your short life span?
Re:1M bail and 1yr in jail...? (Score:5, Funny)
Well, they should be afraid. Because I'm going to kick their asses for their ignorance!
(*blend to underwater lair under a volcano*)
Release the sha... what?... OK, the sea bass...
MUHAHAHAAAA
Re:1M bail and 1yr in jail...? (Score:5, Informative)
He didn't say he'd forgotten it because he was simply doing what his job description told him to do. He was called into a room with a dozen people he didn't know, he refused to hand over the password to these people. When a single person (the mayor) who was authorized to know the password asked for it, he handed it over without hesitation.
Re: (Score:2)
You and I both know that the people that Childs met on July 9th were authorized to receive those passwords.
How did Childs know? These are people he hasn't met, and as I recall, wasn't expecting to meet.
Re: (Score:2)
You and I both know that the people that Childs met on July 9th were authorized to receive those passwords.
Did he know?
To pretend that between then and when he was arrested on July 12th he had no opportunity to meet with anyone that he could identify as authorized to receive those passwords is farce.
Three days? That really doesn't seem plausible to you?
To maintain that, once in jail, he had no idea that maybe the people he was meeting were who they were claiming to be is either paranoid fantasy
Paranoid, maybe, but not fantasy. Keep in mind, as a system administrator, paranoia is part of the job.
Re: (Score:2)
What a pity the facts of the case bear nor resemblance to your rant.
Is there some part of 'He was only permitted to release the passwords to the mayor' you dont understand?
Re: (Score:2)
Also, is a partial "moral victory" really worth an entire year of your short life span?
Is these times? Fuck yes.
Re:1M bail and 1yr in jail...? (Score:5, Insightful)
Huh? Special technical trials? Why? The current system already allows lawyers to bring in expert witnesses [wikipedia.org] to explain stuff. And lawyers are allowed to do a bit of story telling during their opening and closing arguments, and they can use that opportunity to explain thing in other terms (including car analogies, if they choose).
A lot of us around here always complain about legislature creating special laws to make illegal things that are already illegal under an existing law. Let's not turn it around and start asking for special trials when the cases can already be accommodated by the existing court system.
Re:1M bail and 1yr in jail...? (Score:5, Insightful)
Huh? Special technical trials? Why? The current system already allows lawyers to bring in expert witnesses to explain stuff. And lawyers are allowed to do a bit of story telling during their opening and closing arguments, and they can use that opportunity to explain thing in other terms (including car analogies, if they choose).
Once upon a time a "jury of your peers" really meant peers, and not just the most easily swayed people in the jury pool. I'm not saying every single person on the jury needs to be a network engineer, but you can pretty much count on the prosecutor objecting to anyone in the pool with any technical expertise relevant to the case.
So, not special trials per se, but a process that rules out anyone with domain knowledge relevant to the trial is fundamentally broken. The number of really bad car analogies that get made here everyday among the relatively technically astute should be proof enough that requiring the issues to be dumbed down for an uneducated jury is not a very good way to run the system.
Re: (Score:2)
So, not special trials per se, but a process that rules out anyone with domain knowledge relevant to the trial is fundamentally broken. The number of really bad car analogies that get made here everyday among the relatively technically astute should be proof enough that requiring the issues to be dumbed down for an uneducated jury is not a very good way to run the system.
So in a medical misconduct trial you want 12 doctors on the jury, able to understand the medical evidence? In a copyright infringement trial, you want 12 copyright experts which inevitably have tight links to the copyright industry on the jury? I certainly don't think you'd want 12 policemen with domain knowledge on what police work involves in a trial about excessive police violence.
I'm not saying it's perfect, but it's better than any other system we've tried. Honestly, if you compare it to the 1700s when
Re: (Score:2)
So, not special trials per se, but a process that rules out anyone with domain knowledge relevant to the trial is fundamentally broken.
So in a medical misconduct trial you want 12 doctors on the jury, able to understand the medical evidence?
Possibly. But the GP's term "domain knowledge" can mean different things: you don't necessarily have to have specific knowledge of the particular fields involved in a trial to be a better juror. Honestly, a jury with a basic understanding of scientific method, and an adequate command of math and statistics would help a lot. Is that asking too much?
Re: (Score:2)
Re: (Score:2)
One can take peer too far either way. Certainly we can't compose juries entirely of other defendants for the same trial, but by the same token, having people who don't even understand what you're supposed to have done or what you should have done (or not done) instead isn't good either.
Perhaps a medical misconduct trial shouldn't have 12 doctors as jurors, but it shouldn't have NO doctors as jurors either. It surely shouldn't be composed of 12 illiterate professional ditch diggers who couldn't figure out ho
Re: (Score:2)
The issues here isn't really technical. It can much easier be explained as in a matter of general security. Let say some people who you didn't know called you into a room at your
Re:1M bail and 1yr in jail...? (Score:5, Insightful)
With respect, none of this is as complex as DNA and other forensic evidence which is handled quite well in criminal trials every day.
With equal respect, have you ever been through jury selection? I have (a number of times unfortunately: every time I move they waste a day of my time not selecting me) and the GP is correct. The system selects for the most ignorant of any issues relevant to the proceedings, and anyone who could be presumed to have knowledge of mathematics or statistics suffer the first peremptory challenges issued. Don't want someone who can see through the numbers the trial lawyers and their expert witnesses pull out of their nether regions. I'm just a software engineer, and every god damn time I was asked what I do for a living I was promptly removed from the jury. The people that were left were often very nice people (you get to know some of your potential fellow jurors in the jury pool beforehand) but not people that I would want on my jury, if I were accused of a computer crime ... especially if I were innocent. The naked fear so many individuals have of computers, and especially those who are accused of computer crimes is unnerving. Fear of the unknown is not intrinsically irrational: but fear of gaining understanding is.
All the juries I've (almost) been on are filled with people to whom a trial about computer systems is, in fact, just as unfamiliar and frightening as a trial involving DNA or other complex evidence, and might just as well be about DNA so far as their level of understanding is concerned. The idea of a technical court is not a bad one at all, particularly given the importance of sophisticated science and technology to all of us, not just those with technical backgrounds. Imagine judges with engineering or science degrees running the show in such trials. Honestly, if we had such courts the patent system probably wouldn't be broken and the RIAA would have been laughed out of court from day one. I can just see a judge who just incidentally happened to have a degree in computer science asking an RIAA attorney: "So, you're claiming that a logged IP address infallibly identifies an individual copyright infringer? Hm. Not on this planet, bucko."
Truly, in these times ignorance is not bliss, and we as a society are paying the price for allowing our adversarial system to dumb down those who judge us. Remember, our justice system was developed in much simpler times. The pace of change being what it is, it's too much to expect the law itself to always be on top of things, but it shouldn't be too much to expect our juries to really be composed of our peers.
Re: (Score:3, Interesting)
That's interesting: the trial I was in had a jury with a chemist and 2 software developers. The only person booted for professional reasons was an attorney. However, this was in a county court system that put a lot of effort into making the jury pool a wider selection of people in the interests of getting a fair trial (silly concept, I know).
YMMV, but blind cynicism about what a well-run court would look like is about as useful as blind trust in the court system. If you're in an area where judges are electe
Re: (Score:2)
Re:1M bail and 1yr in jail...? (Score:5, Interesting)
Speaking of incompetent but well meaning people on the jury, I used to work with a girl who sat on a jury trial over a murder where two boys (14 and 16) shot and killed some girl who was obsessed with one of them, enlisted the help of his mom and another friend (a 19 year old woman) who took the body to a barn across the county and caught it on fire.
This girl on the jury came into work after the first day of trial and told us they were going to fry if she had anything to do with it. I wrote a letter to the judge and defense attorney about this. She was left on the jury and the death penalty was taken off the table. I was also arrested and brought before the judge and told that if I threaten a juror it was a felony and so on before being release 5 miles away from my car with no way to get home but walking with no charges ever being filed. I was totally flabbergasted and had no idea what was going on. The jury was then sequestered.
Years later, someone else that used to work there told me she had told the judge that she only said those things because I kept telling her to convict the people. I never spoke to her directly, I was just there when she was bragging about how much power the jury had (and hence, how much power she had because of it) I guess I had the same last name (no relation) as one of the defendants and throwing me under the bus was her way of making sure they paid while she stayed out of trouble.
Re: (Score:2)
Re:1M bail and 1yr in jail...? (Score:4, Interesting)
I was young, about 19 at the time. I could have handled it different and trust me, with hindsight, I would have. I thought I was doing the right thing and it left me very scared to do anything else at the time. I'm not that way any more and I'm willing to stand up to them if nothing else but to get my chastising them onto the public record.
The country I live is is really corrupt (well it appears that way). When I was a kid, the sheriff had his house blown up by some Mob associates because he decided to close down a gambling hall and run it himself. He quit and his replacement has lost an election some 10 years later because drug dealers were complaining that they didn't touch drugs until the sheriff recruited them to do sting operations in which all traces of the drugs except those used to convict them disappeared. Evidently the sheriff was framing people in order to show results at a time people were demanding others to be tough on crime. The sheriff after that is currently serving time in federal prison for embezzlement and something else. The then 30 year tenure chief of police of the nearest town and county seat resigned without pension to avoid charges of embezzlement, improper allocations of public resources and systematic mistreatment of prisoners along with a few allegations of planting evidence made on a couple officers who resigned also.
It appears to have taken about a 8 year lapse in corruption but I was recently (2 years ago) threatened by a police officer in the lobby of the police station over wanting to file a complain for misconduct against another officer. I handled that entirely different and went to the mayor, the state and federal attorney generals office, and even called the FBI who was investigating another corrupt sheriff a county or two away. I can't really do anything to him for it because he didn't act on the threats which he kept vague and the audio to the surveillance system was somehow turned off ten minutes before I got there and turned back on a half hour after I left. The video shows anger on both out faces but he kept his back to the cameras when speaking. But I am privy to an internal disciplinary action on the officer who was order to take an anger management class on his own time and a refresher course on dealing with the public on the department's dime. I also got an apology from the deputy director of the police force and the mayor went to bat with me to make sure that no threats would be followed through with.
Re: (Score:2)
One potential way to at least partially alleviate the problem would be to allow the jury to have experts to consult as well. People they can talk with informally in the jury room who aren't paid by either side. I can see problems there as well such as a persuasive expert essentially becoming a jury of one. I'm not sure what to do about that.
Re:1M bail and 1yr in jail...? (Score:5, Insightful)
There is a saying, There is no such thing as a bad student only a bad teacher. If the legal system is ignorant about how 'technical crime' should be addressed it's because we, as technology professionals, have failed to lobby for the appropriate changes to be made to law to handle these cases properly.
Why? The framework for all of these things already exist in the legal system. All this world changing technology has been unleashed over the last decade or two and Information Technology is maturing as a profession. It's a bit unrealistic to expect the legal system to make quality decisions about how the law should be adapted to handle those changes while the people responsible for delivering the technology do not get involved in educating those who can codify the law to behave reasonably.
It ridicules us to point the finger and say 'look at how ignorant they are' when in reality we should be more self critical and understand that this is the treatment we should expect if we are too apathetic to influence the legal system appropriately.
Re:1M bail and 1yr in jail...? (Score:5, Insightful)
You haven't seen some people who don't want and/or are incapable of learning the most basic scientific facts. Yes, you could spend with them 5x the normal time for normal student, but is it really worth it? We need someone to clean the streets, and really intelligent ambitious people don't really want to do it. Typical street cleaner doesn't need to know what an Ohm's law is.
Re: (Score:2)
That is irrelevant because the target audience is layers and politicians. They have to be educated or, at the very least, ambitious to be able to perform their work. They don't need all of the details, just the executive summary of the consequences and recommendations of how they should act to achieve the appropriate outcome.
You are not talking to the masses here, you are talking to a select group
Re:1M bail and 1yr in jail...? (Score:4, Interesting)
I have to disagree with your entire statement. Lawyers are busy people, a lot the local ones are my clients.
They don't have time to learn more about anything other than law.
There is no way to educate someone who doesn't have a desire to learn, or who has themselves convinced that they don't have time to learn.
Some of my clients ask for my opinion on cases, and I've been an expert witness on 2.
One good example is this one. A local kid "cracked" into his schools (completely unprotected) "teacher only" network share and looked at his grades, then told the "network administrator" (read:80year old librarian) about the security issue.
A month later, some grades were changed in this system (still unprotected to this day btw) and they threw the book at this kid.
I can access this system from the parking lot, with my cell phone.
After explaining this to the court, the prosecutor still insisted that the kid must have hacked into the system because of half of an answer to a single question,
Lawyer : "Are you suggesting that any one member of the jury could have done this easily?"
Me: "Probably not, but" >> "Thank you, no further questions."
When the expert witnesses get cut off in the middle of their explanations, how in the hell are we supposed to educate anyone?
Fyi, the kid was released because someone else went in and deleted the entire network share while he was still in jail.
Re: (Score:2)
Lawyer : "Are you suggesting that any one member of the jury could have done this easily?" Me: "Probably not, but" >> "Thank you, no further questions."
When the expert witnesses get cut off in the middle of their explanations, how in the hell are we supposed to educate anyone?
Unfortunately a better answer with the method the courts use would be "I can't speculate as to their knowledge of computer systems." You have to give a non-answer to a question you can't possibly know the answer to, so the lawyer has to re-phrase the question so it's not so loaded.
Re: (Score:2)
When the expert witnesses get cut off in the middle of their explanations, how in the hell are we supposed to educate anyone?
Competent cross-examination?
Re: (Score:2)
Re: (Score:2)
There are many forums [aclu.org] to conduct the business of shaping democracy. This is their *business*, ask them, show an interest in being part of the democratic process that shapes laws. I'm sure the attitude will change.
So have you actually taken the time to formulate an effective question in you mind so you don't waste their time when you a
Re: (Score:2)
Re:1M bail and 1yr in jail...? (Score:4, Insightful)
You do realize that there is a truck driver that knows so much about the nuclear weapons built in the 1940s and '50s that he has been invited to give presentations at Los Almos. Some people like menial labor because it give them the opportunity to think about things they are more passionate about.
Re: (Score:3, Insightful)
Oh, God, don't you think we've TRIED? Forget the legal system; you can't get the ordinary person on the street to deal with the idea that computers are science, not black magic!
"Any sufficiently advanced technology is indistinguishable from magic" - - Arthur C. Clarke
The problem is, a lot of people are insufficiently advanced, and are unable to make that distinction.
Re:1M bail and 1yr in jail...? (Score:4, Funny)
So... if Childs floats, the must be guilty right?
Re: (Score:2)
It's already possible to bring in such people, they are known as "expert witnesses". The issue here is more the lack of a prompt trial. Maybe what's needed is a rule along the lines that someone is automatically found "not guilty" if their trial does not start
Re: (Score:2)
Most people delay their own trial. He could have had one before this point.
Of course, the reason they're delaying it is that the cost of an attorney keeps rising, so the cheap ones are working on fifty cases at once. (And you don't want to know how many cases court-appointed ones are working on.)
We need to demand that people actually are given actual representation in a timely manner.
Re: (Score:2)
Five million dollars in bail, actually. And bail is based not only on the crime, but also on the person's resources and ability to leave. It's a discouragement to skip out on the trial.
Actual crime (Score:2, Interesting)
Shocking! The charge that sticks is the only one related to what he actually did wrong! I know the "City of San Francisco" is royally pissed, but even if they're throwing the book at him they have an obligation to stay within the bounds of fact.
I hope he's let off the hook, personally. The damage he's done to his career (who'll hire a DBA who would hijack the whole network?) is probably enough punishment even by itself. And the details of the offense (hostage-taking to avoid a pink slip) are sufficient
Re:Actual crime (Score:5, Insightful)
...sufficient to keep him from being hired...
After this thorough exposure and experience with the legal profession, law firms should be recruiting him. Not to mention his arrogance and narrow focus on a crucial point of fact indicates he would fit well in with lawyers of the same personality traits.
Re:Actual crime (Score:4, Insightful)
I'm not really sure that makes sense either but we should know soon. It really just looks like management that was so spectacularly bad that they called in the police to handle a simple workplace dispute. It should have been escalated up the chain away from these clowns to some form of adult supervision before calling in the police.
Just a bit of wild speculation here, but it will be very interesting to find out if the inexperienced "IT security" person that sparked all this off is a relative or lover of the new management that handled this all so badly. If I found a complete stranger wandering about removing hard drives containing sensitive information I would be asking rude questions, taking photos and making threats about calling the police as well. The only way you tell a surprise security audit from a robbery is by having someone known within the company follow them around to avoid STUPID situations like this. If a manager can't get anyone or do it themselves they really have to put in their notice and get a job with less responsibility.
Very wild speculation here, but wouldn't it be funny if the entire thing was revenge for making the new manager's mistress cry?
Re:Actual crime (Score:5, Informative)
It really looks like he made someone angry and they decided to put him in jail in revenge.
Re:Actual crime (Score:5, Insightful)
Lets not forget...
I would hire him.
Re: (Score:2)
(who'll hire a DBA who would hijack the whole network?)
He isn't a DBA, he's in charge of the network, and I'd hire him if I had need for that level of admin. He didn't hijack the network, either - he did what he did with the knowledge and consent of his higherups, largely because his coworkers were incompetent.
But Why Go to the Trouble? (Score:4, Interesting)
I opined on the last story that he was playing the 'power game' from the bottom of the political strata. By most accounts he was at the top of the network knowledge, so a technically important guy. 'Network God' doesn't translate into political power and he got burned.
But what else is in the plea deal? I can't help but think there's waaaay more to the story given the political heat this guy brought on himself. Maybe the plea deal keeps him quiet?
Plea? What plea? (Score:5, Insightful)
The defense made a motion challenging the evidence and the judge agreed that there was not sufficient evidence to support 3 of the 4 charges. There was no plea here. The court threw out the state's allegations for lack of evidence. There was no evidence because what he did was probably not sufficient as a matter of law (a matter of fact would probably have been decided by a jury). The charges were merely trumped up. Fabricated. Lies.
And yet they still kept this man in jail for a year awaiting trial for a ridiculous amount of bail money for a non-violent crime.
Excelent way to link to that interview. (Score:5, Informative)
Link to an old Slashdot story that then links to an archive page that doesn't even have the word Childs on it.
You have to go to page three of the archive to find the bloody interview [infoworld.com]!
Why the hell is it so difficult to provide direct links to the actual articles?
Re:Excelent way to link to that interview. (Score:4, Interesting)
*sigh*
Apparently that wasn't the interview either. Where the hell is that interview?
It's like watching cable news doing a circle jerk talking about how a twitter post talks about a blog post that mentions an article that refers to an interview where the reporter asks a question about something, but no one even cares about showing the relevant clip!
Re: (Score:3, Insightful)
It's like watching cable news doing a circle jerk talking about how a twitter post talks about a blog post that mentions an article that refers to an interview where the reporter asks a question about something, but no one even cares about showing the relevant clip!
They do that kind of thing on the news all the time. When they do, it is always a sign that they want you to blindly accept what they are telling you. They will tell you about a hundred times what the video clip shows and then finally show it to you after they've programmed you to accept their version of events.
Not saying that's what's happening here, but when someone hides the facts from me, I assume they are acting nefariously. Incompetence qualifies, if you are behaving as if you had a clue.
Re: (Score:2)
That's fox news, CNN and CNBC.
I dont see that happening on NPR or other reputable new sources.
People need to stop watching the Equivalent of the national Enquirer for their news.
Re:Excelent way to link to that interview. (Score:5, Interesting)
NPR doesn't show video clips at all. :)
All kidding aside, I think you have your blinders on. I listen to NPR for, on average, an hour a day (most of my morning and evening commutes) and while I find them to be superior to most other news outlets other than the BBC, there have been plenty of times that I've noticed them talking about something at length, before playing the source material (and sometimes they don't play the source material at all), which is the exact behavior that the GP described. I also listen to right wing talk radio, and while the entire reason that they seem to exist is to program responses into people, their methods of doing so are a bit different. Someone like Limbaugh or Hannity absolutely loves playing soundbites (original source material in this case) over, and over, and over, but they're often taken out of context or referencing a slightly (in some cases completely) different subject.
Re: (Score:3, Interesting)
It's really sad that these days the best source of news on American television is a comedian who makes no attempt at journalistic integrity.
So much so that people who ARE supposed to be journalists immediatly go on the defensive when they interview him (and so make asses of themselves).
Charges were not dropped... (Score:5, Informative)
I don't have to read the article to know that. If the charges were dropped, the prosecutor would not be vowing to appeal. When a judge gets rid of charges, they're dismissed. When a prosecutor voluntarily gets rid of charges, then they're dropped.
Comment removed (Score:5, Informative)
Re:Overzealous prosecutors (Score:5, Interesting)
It's a little known fact that prosecutors cannot be sued for anything they do in court [reason.com] to a defendant. Prosecutors are truly the worst part of the system since they are unaccountable to the public and are rewarded for getting convictions, not enforcing the law wisely. As a profession, they are so corrupt that they make civil lawyers look sympathetic since civil lawyers are at least limiting themselves to cases where you can kinda sorta see how their client was genuinely harmed.
Most prosecutors answer to the District Attorney, and can be fired by the DA almost at will. The District Attorney is an elected official. In those cases where the prosecutor doesn't answer to the elected District Attorney (or essentially the same office with a different title), they answer to the elected head of the of the executive branch of whatever level of government they represent (Mayor, Governor, President, etc). If your local prosecutors are loose cannons, campaign against their boss.
The only reason that prosecutors appear to be unaccountable to the public is because the public doesn't pay enough attention to local politics/civics
Re: (Score:2)
You think because you know who controls local politics, but don't know who controls state politics that local politics is more of a closed "shop" than state politics. It isn't.
Changing things is not easy, or quick. If you want to change thing
Remaining charge? (Score:2)
The article doesn't specify what the actual remaining charge is, only that it's about not revealing the network passwords.
Can someone explain how not revealing a password is actually illegal? Contempt of court?
He did everything by the book (Score:5, Informative)
So announcing it at a meeting was right out.
The person that should have taken this all into hand and resulted in a normal dismissal instead of an arrest is Chris Vein. He was originally an accountant but many CIOs are and some manage to pick up management skills and familiarity with technology along the way.
Here is what http://blogs.zdnet.com/BTL/?p=4692 [zdnet.com] says about him:
It's still possible he got there by merit, but it starting to look like a political appointment. On his linkedin page he describes himself as "Delivering strong and effective leadership", which often means someone that fires people for no good reason to show they are "strong" but maybe I've just seen too many bastards in action that like that word. These things may give an insight or maybe not, but the end result of getting the police involved in a workplace dispute demonstrates to me that he is not paticularly effective, let alone the situation where there was only one person that could do the job. BTW San Francisco, do you have your free WiFi from 2006 yet? If not you now know the name of the guy that was in charge of delivering it.
One more bit (Score:5, Interesting)
I hope this case looks deeply at the motivations behind getting the police involved. I'm also extremely curious as to what the $1million that has to be spent to repair the "damage" is required for and hope the defence and judge push hard for an explanation of this unusual claim
Re: (Score:2)
I'm also extremely curious as to what the $1million that has to be spent to repair the "damage" is required for and hope the defence and judge push hard for an explanation of this unusual claim
It's a bullshit claim, I'm sure. Such things are always vastly inflated so as to make law enforcement believe that a serious crime was committed. The old Bell System did that when a couple of (ahem!) "hackers" released some supposedly confidential internal documents back in the early eighties (if I remember correctly.) They were claimed to be worth some insane amount of money, when it turned out that anyone could order them for a couple of bucks. There's also a degree of ass-covering involved in situations
Re: (Score:2)
The person that should have taken this all into hand and resulted in a normal dismissal instead of an arrest is Chris Vein.
Of course, had he actually been a good manager, there probably would have been no need for any of this, much less a dismissal.
Re: (Score:3, Interesting)
On his linkedin page he describes himself as "Delivering strong and effective leadership", which often means someone that fires people for no good reason to show they are "strong" but maybe I've just seen too many bastards in action that like that word.
I'm not defending this person at all, but I wanted to disagree with you on this point. I'm a senior IT manager, and I would describe myself as delivering strong and effective leadership. What strong and effective leadership means to me is helping people to reach the next level (where interested) and achieve their personal goals, while matching the right skills in the right people to the right problems. I bring people together, and have proven myself particularly effective in getting opposite sides to come t
Re: (Score:2)
The lesson to be learned (Score:2, Informative)
for sys/net admins is to keep in the back of your mind that your actions can be scrutinized somewhere down the line, even if you are the most conscientious, morally upright employee.
If you work in an environment where you are the key technical resource, and others don't have the chops to safely manage the systems you designed/built, you still need to be sure that you put mechanisms in place to track access first, and then you need to provide equivalent access as agreed with management, to other administrato
This is crazy! (Score:2, Insightful)
Re: (Score:2)
the point was that the manager wasn't properly trained to have those passwords, and had already accused him of "hacking" and disrupting the network in the few days between demanding the passwords in a meeting and calling the cops. Childs was fucked over if he turned them over because if anything broke it would have been "Childs" fault for not turning the password over, then for not leaving instructions to use the password, then for not describing the configuration, then for doing something "off-script" fro
It's been a year already? (Score:4, Informative)
Really the classic bit of this story is how the prosecutors included a list of usernames and passwords in their court filing which couldn't have been a better home-run for the defense in terms of 'See what happens when you give the passwords out to these idiots?'.
A year of his life gone though.. This should be a cautionary tale for any IT person.. When things get so bad that you're angry and not making good decisions.. just quit. Find somewhere else, relax. A job at burger king is better than going to prison.
misleading title and tags don't work (Score:4, Insightful)
misleading title...as the charges weren't "dropped," they were dismissed by the Judge (yes...I rtfa).
"Dropped" implies that the prosecutor did the "dropping," either due to a plea bargain or because the lack of evidence.
plus I don't like how the Examiner "labels" Childs as a hacker....he was the f*cking sysadmin and essentially the father/protector of the city's fiberWAN.
Especially considering the incompetence with computers and network security policies and practices by other city workers, he was considered the messiah/scapegoat.
(definitely, among those of us who have had to deal with the city govt)
there are plenty of other fish that the prosecutor(s) can fry that are worth the frying.
oh, btw, I can't get the triangle button to add a tag to work anymore.
Weird Arrest (Score:2)
To start with normally crimes involve doing something wrong not in failing to do something right. Secondly if the man was fired and then asked to hand over a password he has no obligation at all to his former employer. If he was asked to reveal his password before he was fired and failed to do so then the remedy is to fire him and perhaps to sue him in a civil court. The fact that his failure to reveal his password was expensive to others is irrelevant. This man should sue for false arrest.
criminal? (Score:2)
The thing I don't get is how refusing to give away the password is a crime. Even if he was wrong to refuse to give it away when asked (which is unclear), that would be grounds for dismissal and a civil suit to obtain the password and/or damages, but I fail to see what criminal offence he might have committed. None of the articles that I have seen explain this. Anybody know what exactly the remaining charge is?
Re: (Score:3, Informative)
As an ex-employee, it's no longer his call as to "who gets the keys"
Re:Great! (Score:5, Insightful)
As an ex-employee, it's no longer his call as to "who gets the keys"
Wrong! The SOP was that he was only to turn the passwords over to the Mayor. This has been covered extensively. This requirement DOES go away if you're fired... you don't [by default] have to turn over ANY passwords! Just say "I don't work here any more, and I don't have your passwords." Meanwhile, if you do still work there, then you're still bound by the agreement you already made to follow the policies and procedures, which means he was bound to turn the passwords only over to the mayor.
In other words, the only charge not dismissed by the judge is the only one which he ever should have been accused of (if any) and he has a solid defense against it. We shall see how it plays out, but it is not nearly as cut and dried as you imagine or pretend.
Re: (Score:3, Insightful)
Wrong! The SOP was that he was only to turn the passwords over to the Mayor. This has been covered extensively. This requirement DOES go away if you're fired... you don't [by default] have to turn over ANY passwords! Just say "I don't work here any more, and I don't have your passwords." Meanwhile, if you do still work there, then you're still bound by the agreement you already made to follow the policies and procedures, which means he w
Re: (Score:2, Informative)
Re: (Score:2)
In fact, assuming it was just a few logins, I'd even give it to him for free, regardless of whetehr I was still an employee or not.
I'll tell you what... Whoever replaced you (in this situation) should be fired immediately if any of the passwords you knew still worked.
I know for a fact that any access I had in each of the last two jobs was eliminated upon my release (one I left a job to take the second, and the second was a recent lay-off). It isn't necessarily a case where I wasn't trusted, but simply one where no self-respecting SysAdmin is going to intentionally leave access open to former employees without a good reason.
In fact, if they want to pay for my services, I'll happily root all their servers and routers and tell them what the new passwords are.
THIS is an
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Re:Great! (Score:4, Insightful)
Well, you don't have to turn the equipment over because of employment, you have to turn it over because your (now former) employer is the rightful owner.
Before they fired him, he was bound by policy NOT to give the password to his boss or co-workers. After he was fired, he wasn't even bound to remember the password at all much less tell someone what it was.
Personally when I leave an engagement where I had passwords, I delete personal accounts and if I was the only person with a role account password, change it to unmemorable junk, write it down, and seal it in an envelope (then forget it). That goes to whoever the policy says should have it ONLY. If others already legitimately have the role passwords I tell them to change it IN WRITING.
If they choose not to have an appropriate transitional arrangement for that to happen, that's it, I'm gone, good luck to ya! I don't remember a thing!
He indicated willingness to give the password to the mayor. Once the mayor could be bothered to get said password from him, he did just that. Too bad they made a big stink of it such that that step took place while he was in jail. As for the claims of millions in damage to "repair" the network, that seems rather unlikely unless they really were the bumbling id10ts Childs makes them out to be. Even then, that's not HIS doing.
He should have offered his resignation ... (Score:3, Insightful)
Bullshit. A skilled system administrator can get root / Administrator access so long as they have access to the machine, so the benefits of giving the password up are far outweighed by the benefits of following industry standard security practices. All too often incompetent upper management needs to be protected from it's own incompetence. Yo
Re: (Score:2)
A skilled system administrator can get root / Administrator access so long as they have access to the machine
I challange your usage of the word, "skilled"." The hardest part is reading.
Owait ... this is /., I see your point now. :P
Re: (Score:3, Insightful)
Ya know... that is not always the case. Or to use your vernacular, with emphasis... BULLSHIT! I have administered systems which were secure enough that they would not boot up into single user mode and grant access without the root password, and the drives were secured in such a way that not even pulling the drive and putting it in another system would help... the boot loader required a password to decrypt the filesystem. Given that this machine was up for like 10 years last I knew, when it was finally ta
Re:Pathetic accusations (Score:4, Informative)
Re: (Score:2)
that was the point... if anybody can grab the password, then if they have the hardware, they can add new network nodes wherever they want. City offices are stolen from all the time, it was a reasonable precaution for the overly paranoid admin to take rather than having to chase down passwords all the time. This is why he had all the VPN routers set up with a modem connection to his office!
Re: (Score:2)
Re: (Score:2, Interesting)
As I recall it was something to do with the routers that if they lost power, they lost configuration - something to make sure if gear was stolen then it didnt come up with any of the secure networks details.
From memory someone viewed this as him setting up some sort of timebomb instead of being good security practices, and charged him as such.
some of the routers where in a place with little s (Score:4, Insightful)
some of the routers where in a place with little security and that is where you may want to use that config.
Re: (Score:2)
Bottom line: that is NOT good security practice. Show me one citation where this is recommended.
http://searchnetworkingchannel.techtarget.com/generic/0,295582,sid100_gci1334133,00.html [techtarget.com]
http://www.cisco.com/en/US/products/hw/routers/ps274/products_configuration_example09186a00801d8113.shtml [cisco.com]
Re: (Score:2)
In his particular case he knew
Re: (Score:2)
That's the one thing that confuses me. He still hasn't turned over any passwords, right? Why not?
I don't know whether he is. But if he is supposed to, who is he supposed to turn them over to, and would this be legal?
Re:Why isn't he turning over the passwords? (Score:4, Informative)
Re: (Score:2)
Wrong. He turned over the correct passwords to the Mayor of San Francisco when the Mayor visited him in jail (sorry, I read it but can't find the story link now). As soon as he turned over the passwords, someone who wasn't in jail promptly botched the network.
Re: (Score:3, Informative)
Re: (Score:2)
Re: (Score:3, Interesting)
Re: (Score:2)
COSF is the government. While they may have no interest in someone's WoW password, this sounds like it's going in the wrong direction to me.
They went in the wrong direction a looooong time ago.
Re: (Score:2)
Otherwise Childs could sue SF farther into bankruptcy
Farther into BK - I like that.