Do you have adblock enabled?
 
If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(ZDNet)   I'l take Blatantly Obvious for 200, Alex. Answer: An unsecured Amazon server. Where should you not store personal and analytical data for 198 million Americans?   ( zdnet.com) divider line
    More: Asinine, Elections, voter data, Deep Root, voter records, Barack Obama, voter registration details, Deep Root Analytics, S3 storage server  
•       •       •

6963 clicks; posted to Main » on 19 Jun 2017 at 11:58 AM (14 weeks ago)   |   Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



102 Comments     (+0 »)
 
View Voting Results: Smartest and Funniest


Oldest | « | 1 | 2 | 3 | » | Newest | Show all

 
2017-06-19 11:44:49 AM  
Even Bobby Tables?
 
2017-06-19 11:48:05 AM  
Wow. Good thing subby and the headline didn't bother to mention it was a GOP database on every American voter in at least the 2008 and 2012 elections.

Nothing to see here about the GOP here. Move along, citizen, and be sure and click on an RT or Breitbart link.

In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.
 
2017-06-19 12:03:58 PM  
Huh, remember when Republicans claimed that they had better data security than the Democrats, and they couldn't be hacked because of that? I'll bet they don't.
 
2017-06-19 12:04:14 PM  
Goddamnit, the whole point of being cozy w/ the Russians is so that they only hack the Democrats!
 
2017-06-19 12:07:32 PM  
The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.
 
2017-06-19 12:08:50 PM  

Trocadero: Goddamnit, the whole point of being cozy w/ the Russians is so that they only hack the Democrats!


The Russians hack everyone and only publish the data on the Democrats. Try to keep up here...
 
2017-06-19 12:12:11 PM  
img.fark.net
 
2017-06-19 12:12:26 PM  

Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.


They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".
 
2017-06-19 12:19:58 PM  

ImpendingCynic: Huh, remember when Republicans claimed that they had better data security than the Democrats, and they couldn't be hacked because of that? I'll bet they don't.


The GOP does, honest. Probably because they don't actually have any data.

This was a contractor. Whole different ball of wax. You can't be held responsible for the failings of the people you hire to do your work for you - just ask any CEO.
 
2017-06-19 12:25:52 PM  
so am i on there or what
 
2017-06-19 12:26:23 PM  
Jiro Dreams Of McRibs:
In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.

Are you really so stupid as to believe that the Democrats don't have a similar database?  Or that minor parties would too if they could afford it?
 
2017-06-19 12:27:07 PM  

theflatline: Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.

They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".


Fair enough, although I will note that if I rent a room I will generally say that I am not the owner.

Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.
 
2017-06-19 12:30:15 PM  
Odds on the data being unsecured on purpose?
 
2017-06-19 12:35:21 PM  

Manfred J. Hattan: Jiro Dreams Of McRibs:
In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.

Are you really so stupid as to believe that the Democrats don't have a similar database?  Or that minor parties would too if they could afford it?


Yeah, that's what I took away from a story about GOP gigantic voter databases (I wonder what nation helped them acquire that information) that instead of being on the Politics tab was put on the Geek tab.  Everyone else would do it so we should do it too!  Maybe even get our presidential candidate to beg the Russians to hack info for us.
 
2017-06-19 12:38:10 PM  

Arkanaut: theflatline: Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.

They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".

Fair enough, although I will note that if I rent a room I will generally say that I am not the owner.

Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.


Again, I will use a car analogy.

Same care has locks on it, you leave it unlocked and you get your shiat jacked, it ain't the manufacturers fault.

If you throw an insecure application on a server, and that app is open to the world, it ain't the job of aws to protect it.
 
2017-06-19 12:44:29 PM  
So the Republicans leaked the personal information of every single voter in America to the Russians. At this point, after all that's happened, if you still call yourself a Republican you are a traitor to America.
 
2017-06-19 12:46:53 PM  

usernameguy: So the Republicans leaked the personal information of every single voter in America to the Russians. At this point, after all that's happened, if you still call yourself a Republican you are a traitor to America.


yeah, that's kind of what bothered me about this being on the Geek page. It ain't about unsecured data. It's about unsecured GOP data--it either came from the Russians, went to the Russians or a mix of both most likely.

And Fark.com put it on the Geek page. Nice.
 
2017-06-19 12:47:15 PM  

Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.


The AWS account that contained the S3 bucket is owned and managed by a Republican group.

/open S3 permissions are one of the top security issues of using AWS
 
2017-06-19 12:56:07 PM  

Jiro Dreams Of McRibs: Wow. Good thing subby and the headline didn't bother to mention it was a GOP database on every American voter in at least the 2008 and 2012 elections.

Nothing to see here about the GOP here. Move along, citizen, and be sure and click on an RT or Breitbart link.

In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.


[ BUT HER EMAILS ]

 
2017-06-19 01:22:14 PM  
i.imgur.com
 
2017-06-19 01:39:20 PM  

usernameguy: So the Republicans leaked the personal information of every single voter in America to the Russians. At this point, after all that's happened, if you still call yourself a Republican you are a traitor to America.


This is marketing data. The Russians, and every other country has already bought the same data from Facebook, Google, Amazon, etc.

Way to make a mountain out of a molehill. Chicken little would be embarassed.
 
2017-06-19 01:43:13 PM  

Arkanaut: theflatline: Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.

They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".

Fair enough, although I will note that if I rent a room I will generally say that I am not the owner.

Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.


It isn't on a server, it is on their S3 service. It is object storage. the account is owned by Deep Root Analytics. This  is what happens when non technical reporters try to report on tech. By default only the owning account can access the data on the service, but it can be opened up so others can access. So it was uploaded to S3 and the permissions were opened. It didn't happen by accident.
 
2017-06-19 01:45:39 PM  

theflatline: Arkanaut: theflatline: Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.

They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".

Fair enough, although I will note that if I rent a room I will generally say that I am not the owner.

Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.

Again, I will use a car analogy.

Same care has locks on it, you leave it unlocked and you get your shiat jacked, it ain't the manufacturers fault.

If you throw an insecure application on a server, and that app is open to the world, it ain't the job of aws to protect it.


By default Amazon is pretty secure. They try to help you secure your servers, but you can't fix stupid.
 
2017-06-19 01:45:52 PM  
So, not actually Amazon's fault whatsoever? Got it. S3 is ridiculously easy to secure.

Deep Root Analytics mishandled data, including PII, as part of GOP voter efforts.

big pig peaches: usernameguy: So the Republicans leaked the personal information of every single voter in America to the Russians. At this point, after all that's happened, if you still call yourself a Republican you are a traitor to America.

This is marketing data. The Russians, and every other country has already bought the same data from Facebook, Google, Amazon, etc.

Way to make a mountain out of a molehill. Chicken little would be embarassed.


In aggregate, properly anonymized, as marketing information. What was leaked here was not marketing data, and attempting to trivialize the leak is ludicrous.
 
2017-06-19 01:47:10 PM  
Thanks, Bezos....
 
2017-06-19 01:48:00 PM  

garumph: By default Amazon is pretty secure. They try to help you secure your servers, but you can't fix stupid.


Yep - S3 is almost ridiculously easy to secure, and stays as secure as you want it to be. The simple fact is that Deep Root Analytics didn't bother to secure their bucket, and so their objects were apparently open to all.

There's no fixing stupid.
 
2017-06-19 01:49:57 PM  

Jiro Dreams Of McRibs: Manfred J. Hattan: Jiro Dreams Of McRibs:
In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.

Are you really so stupid as to believe that the Democrats don't have a similar database?  Or that minor parties would too if they could afford it?

Yeah, that's what I took away from a story about GOP gigantic voter databases (I wonder what nation helped them acquire that information) that instead of being on the Politics tab was put on the Geek tab.  Everyone else would do it so we should do it too!  Maybe even get our presidential candidate to beg the Russians to hack info for us.


He's right. You're a dumb-head.
 
2017-06-19 01:52:37 PM  

ImpendingCynic: Huh, remember when Republicans claimed that they had better data security than the Democrats, and they couldn't be hacked because of that? I'll bet they don't.


Funny thing though, this wasn't 'The Republicans', this was a third party company that catered to them.
 
2017-06-19 01:52:38 PM  

theflatline: Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.

They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".


Clearly you've never watched Cops.  "These aren't my pants!"
 
2017-06-19 01:52:51 PM  
This leak shines a spotlight on the Republicans' multi-million dollar effort to better target potential voters by utilizing big data. The move largely a response to the successes of the Barack Obama campaign in 2008, thought to have been the first data-driven campaign.

200 million voters info though?  I'd be more worried about the efforts to thwart (or worse) the ones they know won't vote for them, than their efforts towards the ones who they know will.
 
2017-06-19 01:53:13 PM  

Arkanaut: Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.


How secure is a cloud?
 
2017-06-19 01:53:29 PM  

FormlessOne: So, not actually Amazon's fault whatsoever? Got it. S3 is ridiculously easy to secure.

Deep Root Analytics mishandled data, including PII, as part of GOP voter efforts.

big pig peaches: usernameguy: So the Republicans leaked the personal information of every single voter in America to the Russians. At this point, after all that's happened, if you still call yourself a Republican you are a traitor to America.

This is marketing data. The Russians, and every other country has already bought the same data from Facebook, Google, Amazon, etc.

Way to make a mountain out of a molehill. Chicken little would be embarassed.

In aggregate, properly anonymized, as marketing information. What was leaked here was not marketing data, and attempting to trivialize the leak is ludicrous.


Yeah this leak is really bad, because the GOP dataset in the most recent election was considered to be "The most valuable voter dataset ever assembled."
Because the people doing the data collection were connecting all sorts of dots like prior contributions, personal income and very intimate contact data (like multiple phone numbers and even cell phone providers).

That's a goldmine of data that could be used in dozens of ways and its inexcusable to have it so poorly secured and available.  One of the biggest parts of Trumps warchest was his voter data stack, and now I am curious if this wasn't a way of getting the golden goose out of the naked emperor's hands.
 
2017-06-19 01:55:03 PM  
Wait...they know how I voted??

s-media-cache-ak0.pinimg.com
 
2017-06-19 01:56:12 PM  
I have a novel idea. Just tell us the candidates' positions and we'll decide who to vote for.

Stop trying to game us. Stop trying to tailor your message to your audience. Tell us what you sincerely believe and how you plan to serve us. We'll take it from there.

Nah, that'll never fly. It's all about winning, not about serving. Prepare to be manipulated from your first breath to your last.
 
2017-06-19 02:03:56 PM  
Who cares,  it's not as if they passed that information through the Trump Tower servers to the Russians.
 
2017-06-19 02:03:57 PM  

Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.


They own the account that the S3 end point is provisioned to
They chose to make the S3 end point open to the world, which is easily done by selecting the "static web site" option
 
2017-06-19 02:06:43 PM  

Andulamb: I have a novel idea. Just tell us the candidates' positions and we'll decide who to vote for.  Stop trying to game us. Stop trying to tailor your message to your audience. Tell us what you sincerely believe and how you plan to serve us. We'll take it from there.

No, you won't.  Voter information isn't used to cater to you; it's used to disenfranchise uppity commoners like you through gerrymandering and targeted ads.  The ones they care about are sheep that'll get trucked in on company dime if that's what it takes to get the leopards eating people's faces agenda passed.  They don't need your vote; they don't want your vote.  If they actually wanted you to vote they'd make Election Day a national holiday, among a host of other things they could do to improve turnout.
 
2017-06-19 02:07:36 PM  
The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

3.bp.blogspot.com
 
2017-06-19 02:09:22 PM  

Andulamb: I have a novel idea. Just tell us the candidates' positions and we'll decide who to vote for.

Stop trying to game us. Stop trying to tailor your message to your audience. Tell us what you sincerely believe and how you plan to serve us. We'll take it from there.

Nah, that'll never fly. It's all about winning, not about serving. Prepare to be manipulated from your first breath to your last.


Voters don't want to make hard decisions. They don't want to admit their taxes will go up for the things they want. They don't want to admit cheap stuff doesn't come if you have local manufacturing jobs that pay a living wage. They want to believe the state is a magic machine that can give cheap gas, low taxes, high wages, plentiful jobs and no drawbacks.

So they believe the things they want to hear. Nobody would get elected being honest about what the country needs. A state is only as smart as its people.
 
2017-06-19 02:12:29 PM  

Jiro Dreams Of McRibs: Manfred J. Hattan: Jiro Dreams Of McRibs:
In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.

Are you really so stupid as to believe that the Democrats don't have a similar database?  Or that minor parties would too if they could afford it?

Yeah, that's what I took away from a story about GOP gigantic voter databases (I wonder what nation helped them acquire that information) that instead of being on the Politics tab was put on the Geek tab.  Everyone else would do it so we should do it too!  Maybe even get our presidential candidate to beg the Russians to hack info for us.


Why would they have to hack anything? If you have enough money there's some company that has the information and thanks to the Koch brothers and a few other 0.1%ers the RNC has plenty of money to buy the data they need.
 
2017-06-19 02:13:46 PM  

garumph: Arkanaut: theflatline: Arkanaut: The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics.

What does this mean? I thought the whole point of AWS is that you're renting the server space, instead of owning the server outright.

They own it as long as they are paying rent on it.

In the sense of if you get pulled over and the cop says "is your car" you are going to say yes, not "no sir, i lease it".

Fair enough, although I will note that if I rent a room I will generally say that I am not the owner.

Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.

It isn't on a server, it is on their S3 service. It is object storage. the account is owned by Deep Root Analytics. This  is what happens when non technical reporters try to report on tech. By default only the owning account can access the data on the service, but it can be opened up so others can access. So it was uploaded to S3 and the permissions were opened. It didn't happen by accident.


This.  It wasn't a server.  S3 is distributed storage, and no this isn't a weakness in AWS.  They opened it up - which is something that makes a lot of sense for some people in some situations.  Say you want your S3 storage to serve the static content of your website, for example - and you don't mind people linking directly to said content.
 
2017-06-19 02:14:43 PM  

bigbadideasinaction: A state is only as smart as its people.

D'oh!
 
2017-06-19 02:14:59 PM  

dragonchild: Andulamb: I have a novel idea. Just tell us the candidates' positions and we'll decide who to vote for.  Stop trying to game us. Stop trying to tailor your message to your audience. Tell us what you sincerely believe and how you plan to serve us. We'll take it from there.
No, you won't.  Voter information isn't used to cater to you; it's used to disenfranchise uppity commoners like you through gerrymandering and targeted ads.  The ones they care about are sheep that'll get trucked in on company dime if that's what it takes to get the leopards eating people's faces agenda passed.  They don't need your vote; they don't want your vote.  If they actually wanted you to vote they'd make Election Day a national holiday, among a host of other things they could do to improve turnout.


That's a pretty salient explanation.  I'll also point out that hyperbole, embellishment, flat-out lies, and voter manipulation have been going on for centuries in this country.  If we, as a nation, were serious about stopping it, we'd give the FEC drastically sharper claws and a full budget.  We don't, so we aren't.  I bet the average American couldn't tell you what the FEC does, and 90% of the people that do couldn't tell you that they've been dramatically gutted and underfunded to the point of irrelevance.
 
2017-06-19 02:16:49 PM  

This text is now purple: Arkanaut: Based on what you're saying though, it would seem that Amazon does not offer secure servers as a basic feature. That's ... kind of alarming.

How secure is a cloud?


They do tend to leak.
 
2017-06-19 02:17:13 PM  
Its just as possible it was left in an unsecured place for others to access it. I am just going to "accidentally" leave this data here and if you just happen on it no harm no foul right Comrade ?

These companies bill $$$ for this info. I would bet they didnt mistakenly leave GBs of data on an unsecured S3 box.
 
2017-06-19 02:17:42 PM  

robodog: Jiro Dreams Of McRibs: Manfred J. Hattan: Jiro Dreams Of McRibs:
In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.

Are you really so stupid as to believe that the Democrats don't have a similar database?  Or that minor parties would too if they could afford it?

Yeah, that's what I took away from a story about GOP gigantic voter databases (I wonder what nation helped them acquire that information) that instead of being on the Politics tab was put on the Geek tab.  Everyone else would do it so we should do it too!  Maybe even get our presidential candidate to beg the Russians to hack info for us.

Why would they have to hack anything? If you have enough money there's some company that has the information and thanks to the Koch brothers and a few other 0.1%ers the RNC has plenty of money to buy the data they need.


It will be interesting if Mueller is comparing GOP voter databases like this one to publicly available databases. If they don't match up....oops.
 
2017-06-19 02:18:29 PM  
Oh boy, all the people who were angry about Hillary's insecure email server are gonna be furious about this!
 
2017-06-19 02:19:44 PM  

Manfred J. Hattan: Jiro Dreams Of McRibs:
In other words, it's bad that a database was unsecured. It's worse who was doing it, why and how large it was.

Are you really so stupid as to believe that the Democrats don't have a similar database?  Or that minor parties would too if they could afford it?


Deflection fail :)
 
2017-06-19 02:20:46 PM  
What's really important is how this is Killary's fault.
 
2017-06-19 02:22:55 PM  

mrsleep: ImpendingCynic: Huh, remember when Republicans claimed that they had better data security than the Democrats, and they couldn't be hacked because of that? I'll bet they don't.

Funny thing though, this wasn't 'The Republicans', this was a third party company that catered to them.


Yeah, that's MUCH better.
<eyeroll>

/guess the talking points haven't come out yet
 
Displayed 50 of 102 comments


Oldest | « | 1 | 2 | 3 | » | Newest | Show all


View Voting Results: Smartest and Funniest

This thread is closed to new comments.

Continue Farking

On Twitter





Top Commented
Javascript is required to view headlines in widget.
  1. Links are submitted by members of the Fark community.

  2. When community members submit a link, they also write a custom headline for the story.

  3. Other Farkers comment on the links. This is the number of comments. Click here to read them.

  4. Click here to submit a link.

Report