that he should have the charge of secretly stealing data leveled against him by the people who secretly stole the data of tens of millions of people.

that unidentified phone numbers were being collected.

It was a hell of a lot more than that. And yes, in secret. Much of most of it is still secret.

If the government wanted more information, such as a wiretap, they'd have to go to the judge with probable cause and get a warrant.

And this collection of phone numbers was debated in public when the Patriot Act was passed, which you'd know if you'd been paying attention. It was no secret.

Most hearings, when held are cosed door.

using that to rationalize this program is fucking ludicrous.

when it passed and everyone knew it involved collecting phone numbers. That wasn't a secret.

The only part of what Snowden said about this that was "news" turned out to be false. The Prism program collects data from foreign targets, not U.S.

Exactly. They want us to trust them to use the data legally and in a responsible manner but can't even protect the friggin' information from being leaked. Trust them? Not in this lifetime.

What kind of lax security do they have?

that were supposed to protect against unauthorized downloads.

I know nothing about computers but this seems like an extremely hard problem to solve -- everything seems to hinge on the honesty of the tech people.

Well that much is clear. This is about as easy to solve as a script and locking down the BIOS.

This exposes his employer as having very lax security. They should know or should track who has the privileges of copying data to external media to thumb drives, but should rethink how or why they allow that capability. Seems pretty clear that he's abused his sys admin privileges at minimum.

They should at least have logged what was copied from his computer to the thumb drive.

I suspect he'll go down as a common data thief / trafficker of government documents rather than the hunted martyr.

Describes it all.

This is dumb as stumps levels of technology and just as easy to prevent from happening.

None that I had access to even had USB sockets on them. I wonder what/how he figured that out.

Normally, you'd install software to disable the USB ports for almost all employees, but a sysadmin would have the ability to turn them back on.

The ones everyone here is trusting with their data.

This guy just keeps looking like a criminal.

conscientious administrators lock them down both via hardware and via OS.

does that classify as stealing govt. equipment yet?

not haphazard fools.

How is that supposed to work?

Clearly, the system failed. But that doesn't let him off the hook. He still stole documents. The fact that they made it too easy for him to do so doesn't mitigate his admitted crime.

I don't work for Booz Allen. Maybe I should. It is clearly a circus there.

contractors get to flout all the normal and expected security measures? This thing is so effed up.

they are inaccessible if you have a halfway decent admin. I swear, Booz Allen sounds like Cletus the slack-jawed yokel of security firms.

"Some folk'll never lose a toe"
"But some folk'll"

The new DU hero turned out to be a Chinese agent (likely paid) with a fake resume.

the U.S. spook house? Heads going to roll over this?

It's totally unacceptable.

sis boom bah, China! yah, that's the ticket.

yah, Eddie! we will cheer even louder if some of the info you have results in a major attack in some large U.S. city! yah! you go, man! There are more people dieing from slipping on dog shit than terror attacks so who the hell cares about numbers. Numbers, Schmumbers!

...it is highly unlikely that he would have gone public like he did.

Demanding a get-a-way car and cash for his silence.

OTOH, NSA might be worried about us finding out who else they've been spying on.

That was the other part he claimed to know - the names of operatives and station chiefs.

pretend deadly agents who he warned the Washington Post reporter about. He's nothing but a poser trying to act smarter than he is, more important than he is.

He might have managed to steal a few things. But he's still a loser.

But I meant why would Tierra_y_Libertad care?

And, everywhere else.

Even close to what he claimed. Impossible. But he might have managed to learn a couple. But personally I'd play the game of chicken out and let the agents handle themselves. They've known since he popped up in HK and said what he did about identities.

is that if you are upset that data got leaked look at who is in charge of the data.

That bothers me. Never should have happened. Somebody vouched for him. Or there's a background investigator out there who's doing a lot of damage.

doesn't it?

I'm not as worried about the system stuff because I know 2 things. One is that corporations have all this anyway, and unencrypted. I know they cannot be trusted.

Next, I know the security system isn't as he described it. That would be like a single sign-on system and it's ludicrous on its face. One guy being able to rewrite code from one location and bring down the entire intelligence network. No other humans involved, no other verification but computer code, passwords, etc?

Not only no but I'm still giggling.

do you use a salt for your password, and modify it based upon where you log in? If not, there are probably a few locations that can access your data at will. Using the same password is pretty much a recipe for your data getting accessed. Just food for thought.

but it's the truth. Logs reveal you passwords, and if you use the same one over and over without variation, it's simple to hack. Use a salt. That way you can remember it, but it's a variation.

I'm talking about levels in which an actual physical presence is required to be verified at different stages, in different ways. When you're talking about agencies of analysts and cryptographers and programmers, other methods are used, especially when you're talking about rewriting code to make the system disappear completely. And it wouldn't be just one person, either.

That's why I giggled at him.

boondoggle.

yep, most likely there are others involved in a much higher position than Edward. Someone on the inside may have paved the way.

Remember than Glen knew Ed before Ed started working there. There are at least 3 people involved in all this at that level.

There must be a couple of others involved at this clearance level.

something like this. People with resentment and a need to prove they're smarter than everybody else (especially the mean government they resent for not letting them be in the Green Berets) are low hanging fruit.

so they just have to trust that the computer people working for them aren't working for the Chinese. Or anybody else.

You have some pure idiots in charge of hiring. I say that without malice, it's just the truth.

get nuclear on me for that observation?

Something like software and networking -- not so much.

I worked on a project managed by a retired Navy Captain -- It was all about how many "resources" do you have on this or that task. They can count people, severs, routers, etc., but they have very little understanding of what the people do or how the software is designed.

It was that way longer ago in commercial work, when minicomputers were new, and projects were run by electrical engineers who had never programmed computers.

But it doesn't excuse the lax security at his firm. They are going to own that forever.

anyone doubt it?

even if he didn't want chinese authorities to see it could he prevent them from seeing it if they are able to get it from him ?

them from seeing it.

and they wonder why we find things worrisome?

that the state is extremely competent when securing stored information.