If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Wall Street Journal)   Hacker breaks into Pentagon network; gets routed to a hostile applet that takes down the hacker's server. So he apologized. Just kidding: He wants protection from"offensive use of information war"   (opinionjournal.com) divider line 64
    More: Dumbass  
•       •       •

5503 clicks; posted to Geek » on 14 Nov 2007 at 9:20 PM (6 years ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



64 Comments   (+0 »)
   

Archived thread

First | « | 1 | 2 | » | Last | Show all
 
2007-11-14 07:07:39 PM  
I believes this qualifies as a textbook definition of 'pwned', as much as I detest the word.
 
2007-11-14 07:08:14 PM  
*believe
 
2007-11-14 07:19:55 PM  
www.geocities.com
 
2007-11-14 07:24:58 PM  
Stupid hippie hacker!
 
2007-11-14 07:29:13 PM  
Waaah! Protect me from the negative consequences of my actions!
 
2007-11-14 07:49:11 PM  
lunchinlewis: www.geocities.com

nice :)
 
2007-11-14 08:23:00 PM  
Slughead

/obscure?
 
2007-11-14 08:24:17 PM  
Yay ... black ice.
 
2007-11-14 08:37:34 PM  
Here's your protection asshat. Don't do it again and you won't get your kneecaps broken and your bunghole repeatedly violated. Capisce?
 
2007-11-14 08:49:35 PM  
This warms my heart. The Pentagon used to be rawhide bone of noob hackers around the world.
 
2007-11-14 08:50:45 PM  
OK, so if they think that their hacking is a form of civil disobedience, then just spray their servers with fire hoses. They did it in the 1950's. Nobody get seriously hurt then, mabee we should try it again.
 
2007-11-14 09:10:25 PM  
randomizetimer: Stupid hippie hacker!

Hippies don't hack.

Chariset: Waaah! Protect me from the negative consequences of my actions!

This.

My server got hacked last weekend and although they had touted their completely unbreakable security, the asshats broke through.

After much work by ME to fix everything, because they were unhelpful to the point of idiocy, I am looking for a new host for all 4 of my sites.

I wish I could find said little anti-hacker bot. It would be in every directory of every site. Stupid little pricks. It must suck to have such a tiny peener that they have to do shiat like this to people who never bothered them.
 
2007-11-14 09:25:17 PM  
I'm glad to be out of systems and networks. There is nothing more depressing and sickening than having to nuke, pave, and rebuild a major production server (or fleet) because of some punkass and the crap he downloaded from bugtraq the night before.

He got what he deserved.
 
2007-11-14 09:27:23 PM  
darkhorse23: randomizetimer: Stupid hippie hacker!

Hippies don't hack.

He was hacking the pentagon for civil disobedience. See movie sneakers. He is a Hippie.

Sorry that you got hacked. Hackers suck.
 
2007-11-14 09:28:16 PM  
Global thermonuclear war.
 
2007-11-14 09:28:27 PM  
Is it just me, or if you got busted for breaking into the Pentagon's computer system, would you be looking at setting up false identities in Bum Fark Egypt, instead of trying to sue someone?
 
2007-11-14 09:34:15 PM  
carmody: Global thermonuclear war.

that is a W.O.P.R. of a tale.
 
2007-11-14 09:36:24 PM  
Stop him!

I wish I could, but he has tenure.
 
2007-11-14 09:37:05 PM  
FTFA: Forbes called this an "art project."

*headdesk*
 
2007-11-14 09:39:28 PM  
God help the biatch hackers if I get a hold of them. There is a reason they dont leave their basements,they would be throttled at the first indication of what they do.
 
2007-11-14 09:40:51 PM  
We believe we should be protected from such actions, that the government cannot attack civilians using any kind of software or hardware. What has become apparent is the kind of violence that these information war systems are now implementing against civilians to control whatever public space there is.

This is violence against civilians? WTF? People like this have no idea what true government oppression through violence is. This isn't any worse than a cop taking away your can of spray paint and sending you home, except that it takes a lot longer to get a new can of spray paint.
 
2007-11-14 09:42:24 PM  
So basically the pentagon has a program that will do the same thing to someone's server as say, getting a story greenlighted on fark.
/The only term I even know for this is farking a server.
 
2007-11-14 09:43:02 PM  
FTFA

This worried U.S. officials, even during the Clinton administration:

Jesus farking Christ, WSJ. Seriously? The Clinton WH sets up a counter-cyber-terrorism center and you can't just give them some farking credit?

// I hate "go team" politics
 
2007-11-14 09:46:09 PM  
Artproject?

So if I spray paint graffiti on his car/bike/door and call it an art project, is that cool?

Also, isn't the point of Civil Disobedience to be punished by the government. If there is no punishment, it is really something to worry about? Sort of like being civilly disobedient by riding your bicycle without hands.
 
2007-11-14 09:51:57 PM  
Wait, so now reloading a Website over and over again counts as "hacking" and "breaking into the Pentagon network?"

Damn. I'm leeter than I thought.
 
2007-11-14 09:53:08 PM  
summary please
 
2007-11-14 09:54:15 PM  
Oh, also, while browser further through the shiat that is "Opinion Journal," I note that they lambast Dave Matthews for performing a free concert at West Point after having called the war in Iraq wrong and un-American.

So, if he disagrees with this war, he can't still support the troops?
 
2007-11-14 09:59:00 PM  
Chester Fields: summary please

Some dude practices "hacktivism" by organizing an "electronic sit-in" which consists of thousands of protesters reloading the Pentagon homepage over and over again--a sort of low-efficiency DDOS. They facilitate this by using a crappy Java applet that reloads the page for them.

I seem to recall an anti-spam vendor trying such a thing a year or so ago.

Anyway, the Pentagon allegedly put their own applet on the page that crashed the activists' browsers. Big farking deal.
 
2007-11-14 10:02:12 PM  
Mentat: Stop him!

I wish I could, but he has tenure.


Watched that last night too, eh?
 
2007-11-14 10:07:34 PM  
Hostile applet? I thought that applets couldn't do harmful things (without the user's permission). Are there undocumented things that are possible in Java with regard to applets? Or are they taking advantage of a certain software company's crappy implementation of Java?
 
2007-11-14 10:09:33 PM  
Pro Zack: carmody: Global thermonuclear war.

that is a W.O.P.R. of a tale.


DEFCON: LOL

/nicely done, sir
 
2007-11-14 10:10:06 PM  
Whassup?

Slow night on HALO 3 ?
 
2007-11-14 10:11:11 PM  
i170.photobucket.com
i170.photobucket.com
i170.photobucket.com

It's 3x good
 
2007-11-14 10:12:50 PM  
It's also Its 3x good
 
2007-11-14 10:15:57 PM  
Chester Fields: summary please

I'll try:

Ricardo Dominguez launched a simultaneous FloodNet attack on the Pentagon and several other sites.

Pentagon programmers detoured FloodNet traffic into a hostile applet of its own.

Dominguez complained that when he attacked the Pentagon, he was the victim of government "violence . . . against civilians."

/left out some details.
//isn't that the point of a summary?
 
2007-11-14 10:29:13 PM  
Hack the planet!
 
2007-11-14 10:36:12 PM  
Befuddled: Hostile applet? I thought that applets couldn't do harmful things (without the user's permission). Are there undocumented things that are possible in Java with regard to applets? Or are they taking advantage of a certain software company's crappy implementation of Java?

The first is likely true, and the second is definitely true. Sandboxing is rarely perfect.

nobodyUwannaknow: Chester Fields: summary please

I'll try:

Ricardo Dominguez launched a simultaneous FloodNet attack on the Pentagon and several other sites.

Pentagon programmers detoured FloodNet traffic into a hostile applet of its own.

Dominguez complained that when he attacked the Pentagon, he was the victim of government "violence . . . against civilians."

/left out some details.
//isn't that the point of a summary?


It's probably important to note that "FloodNet" is probably legal in most jurisdictions, and doesn't really count as an "attack," since all the users are doing is visiting an open HTTP server with their computers.

Most laws against "hacking" (like the Computer Fraud and Abuse Act) seem to require you to access something "without authorization." Of course, the CFAA also forbids damaging the use of a government computer (or something like that)--and undoubtedly, DDOSes are illegal in most jurisdictions (or are intended to be)--so they might be able to prosecute him under that. But generally speaking, this is, at worst, in a gray area; it's hardly clear that this is an "attack."
 
2007-11-14 10:37:13 PM  
B-b-but hackers bring security flaws to your attention! They're doing you a favor! You ought to be paying them!
 
2007-11-14 10:38:38 PM  
BobtheFascist: Slughead

/obscure?


Goldeneye?
 
2007-11-14 10:43:19 PM  
img46.imageshack.us
 
2007-11-14 10:47:58 PM  
Don't backhack me, bro!

/This thread needs GitS quotes somewhere
 
2007-11-14 10:51:09 PM  
Captain Darling
B-b-but hackers bring security flaws to your attention!

I don't think anyone really tries to defend this kind of hacker, if something like this even qualified as hacking, even if it was years ago.
 
2007-11-14 10:53:24 PM  
Captain Darling: B-b-but hackers bring security flaws to your attention! They're doing you a favor! You ought to be paying them!

WTF are you talking about? Did you even read the farking article?
 
2007-11-14 10:56:03 PM  
Yeah, but can he hack a Gibson?

/mess with the best
//die like the rest
 
2007-11-14 11:00:52 PM  
Does anyone else remember reading about that British hacker, Gary McKinnon, who was breaking into DoD servers and that he said he could tell he was hardly the only one? Can't the gov't hire someone with the knowledge necessary to secure their networks?

http://news.bbc.co.uk/1/hi/programmes/click_online/4977134.stm
SK: So you're saying that you found computers which had a high-ranking status, administrator status, which hadn't had their passwords set - they were still set to default?

GM: Yes, precisely.

SK: Were you the only hacker to make it past the slightly lower-than-expected lines of defence?

GM: Yes, exactly, there were no lines of defence. There was a permanent tenancy of foreign hackers. You could run a command when you were on the machine that showed connections from all over the world, check the IP address to see if it was another military base or whatever, and it wasn't.

The General Accounting Office in America has again published another damning report saying that federal security is very, very poor.
 
2007-11-14 11:17:39 PM  
darkhorse23:

My server got hacked last weekend and although they had touted their completely unbreakable security, the asshats broke through.

1. That sucks. Track them down and I'm right there with ya. Lynch mob style.

2. Who the FARK told you they had unbreakable security?!? There is no such animal and they knew it when they told you that.
 
2007-11-14 11:24:09 PM  
Befuddled: Can't the gov't hire someone with the knowledge necessary to secure their networks?

90% of the DoD servers are what is known as "bait"

People hacking in get watched. But the bar isn't set very high.

When you actually get to someplace they don't want you, they either have an app as described, or you get investigated into oblivion by the IRS.

/Gitmo vs IRS
//Tough choice.
///Is hollow tooth an option?
 
2007-11-14 11:38:48 PM  
"Don't taser me, bro!"
 
2007-11-14 11:44:41 PM  
OregonGM: 2. Who the FARK told you they had unbreakable security?!? There is no such animal and they knew it when they told you that.

www.linuxelectrons.com
 
2007-11-14 11:54:32 PM  
KrispyKringle:

It's probably important to note that "FloodNet" is probably legal in most jurisdictions, and doesn't really count as an "attack," since all the users are doing is visiting an open HTTP server with their computers.


Faster and more repetitively that a blood & guts human being could ever do while reading the screen on a usable browser. Probably legal, but not very nice.

KrispyKringle:
Most laws against "hacking" (like the Computer Fraud and Abuse Act) seem to require you to access something "without authorization." Of course, the CFAA also forbids damaging the use of a government computer (or something like that)--and undoubtedly, DDOSes are illegal in most jurisdictions (or are intended to be)--so they might be able to prosecute him under that. But generally speaking, this is, at worst, in a gray area; it's hardly clear that this is an "attack."


I don't recall reading that Electronic Disturbance Theater's Ricardo Dominguez and Brett Stalbaum were prosecuted for anything. In fact, they have cushy jobs at UCSD now.

FTA: The DOD used a counter-hostile Java applet against FloodNet.

If you don't want your FloodNet to meet a counter-hostile Java applet, don't point it at the pentagon. Meanwhile, the pentagon is free to maintain their servers for traffic that is not disruptive.

Electronic Disturbance Theater said what they were doing was "civil disobedience". If they had staged their civil disobedience carrying picket signs blocking the gates of a military base they would have been dragged away so that the military could get their normal traffic in and out. Electronically, the pentagon's counter-hostile java applet (virtual Military Police) did exactly this to the FloodNet (virtual picket line).
 
Displayed 50 of 64 comments

First | « | 1 | 2 | » | Last | Show all



This thread is archived, and closed to new comments.

Continue Farking
Submit a Link »






Report