Investigating Cyber Knight

Posted 25 Nov 2001 at 03:42 UTC by Pseudonym Share This

Seeing as how some anti-virus software manufacturers will not be looking for the FBI's Magic Lantern virus, it seems to me that the open source/free software community should be doing what it does best: doing it ourselves.

Network administrators have a responsibility to keep their network secure. That means keeping out unintended software and unintended traffic, no matter who it originates from. Those organisations who pay for their network by bandwidth in particular have a responsibility to investigate and remove any traffic which may affect costs.

What specific security holes will Magic Lantern exploit? What else could make it in through those holes and how do we patch them?

To help answer these questions, I've set up a few pages on usemod Wiki. Since Magic Lantern hasn't yet been deployed (as far as we know), for the moment we can only collect words. I'm particularly interested in press reports or press releases on anything to do with the FBI's computer wiretap technology. Government reports or enabling legislation would also be helpful. A detail here and there may help build a bigger picture, so please add 'em if you've got 'em.

Huh? DeletedPage, posted 25 Nov 2001 at 08:31 UTC by goingware » (Master)

Looks like the purveyors of the wiki didn't like your effort. The wiki page is now marked DeletedPage with the explanation of "spam from (this article)".

Maybe there's a better place to carry it out?

Strange, posted 25 Nov 2001 at 12:17 UTC by Pseudonym » (Journeyer)

Calling it "spam" is a quite weird, but weirdness is a privilege of being an editor. :-)

Does anyone else have any suggestions?

Note that if the issue is one of legality, the intention is not to facilitate breaking the law, but rather to gather information which is legally available and try to put two and two together.

cryptome?, posted 25 Nov 2001 at 21:12 UTC by roundeye » (Journeyer)

If what you're looking for is a repository to hold information about Magic Lantern, why not submit the articles to John Young over at cryptome? If it's not worth keeping on cryptome it's probably not worth worrying about losing. For things that are less sensitive but still interesting why not gather together a group of people whom you trust (preferably in various countries outside the US) and agree to each save a copy of any interesting documents?

/me wonders whatever happened to the concept of a data haven.

Spam is off-topic content, posted 25 Nov 2001 at 21:36 UTC by jhermann » (Master)

See subject.

Etymology of "spam", posted 26 Nov 2001 at 12:44 UTC by Pseudonym » (Journeyer)

Please note that this rant is just loosely motivated by the "spam == anything offtopic" idea and should not be directed at anyone or any event in particular.

Am I the only one who remembers what "spam" means? Does anyone else remember how it's distinguished from "velveeta"? Mind you, the relaxed meaning of the term "hacker" doesn't jar me, so it's probably a deeply personal thing as to what misused words you object to.

re: spam, posted 28 Nov 2001 at 02:30 UTC by Sunir » (Journeyer)

See my diary for more. By the way, velveeta is not a good description of the above act, really. More like excessive newbieness. ;)

New Advogato Features

New HTML Parser: The long-awaited libxml2 based HTML parser code is live. It needs further work but already handles most markup better than the original parser.

Keep up with the latest Advogato features by reading the Advogato status blog.

If you're a C programmer with some spare time, take a look at the mod_virgule project page and help us with one of the tasks on the ToDo list!

Share this page