Cracker Endangered Astronauts 224
DAldredge was one of a huge number of people that wrote in with the news that the BBC has
reported that a cracker(s) endangered the lives of astronauts in 1997 by "overloading NASA's communication system". Charming.
That's it! (Score:1)
Big Brother says:
"Just another example of why we need stronger anti-hacker laws and more government control of the internet. We need to keep information about hacking from reaching our precious youth. In addition, we'll have to raise taxes to pay for this crackdown.
"We should also be using genetic screening and peer reporting to catch troubled teenagers early so they can be treated."
Re:Two recent examples from Colorado (Score:3)
I find that reasoning dangerous... but I grew up in Florida (and had a HS classmate shot in the chest) during an era when the laws actually encouraged convenience store robbers to herd everyone into the freezer and execute them. Extending felony murder to include capital offenses for all is exceedingly dangerous - it means that instead of one person with nothing to lose you now have a carload of armed, desperate people with nothing to lose.
(My point stands, BTW. If the underlying felony was the burglary then the DA should have either charged all or charged none. To charge Lisl alone means that she and Mattheaus committed a felony that the others did not.)
Regarding "intent" - I don't disagree that intent is, and should be, irrelevant. My concern is the other half of the equation - casuality.
Nobody can dispute the causality of a death due to a stray bullet or fleeing (or pursuing) vehicle. I'm even willing to concede a causal connection between a bomb in a public space and a subsequent heart attack.
But I *don't* see a legally significant causal connection between someone helping to subdue a thief and a subsequent heart attack. I can't ignore the possibility that he was going to die that day regardless of what he did that morning, and that's enough to form reasonable doubt about the causal connection between the thief's acts and the subsequent death.
I might be willing to let this slide if the dead man was the victim -- but he wasn't. As I understand the situation he was a bystander who *choose* to get involved. He could have let the thief escape, or other men subdue the thief. What if he suffered a heart attack after chasing the thief (e.g., to get a description of his car?) What if he hopped into a car, pursued him, and died in an accident after blowing through a stop light or stop sign? At some point the victim *has* to bring on his own death by misadventure, instead of felony murder.
Finally, I know that suicide is *normally* an independent, intervening act that breaks liability... but that's not always the case. E.g., a recent case out of Orlando involved a woman who wanted to stop her daughter (IIRC) from refusing medical treatment (= a form of suicide) since the woman would then be charged with murder. (That also follows the ancient tradition that it's murder even if the victim survives, but dies from injuries within a given period - traditionally a year and a day.) My example was a bit more extreme, but that's the nature of slippery-slope arguments
Oh, I thought you meant a bisquit... (Score:1)
But when reading that this poor bisquit actually managed to overload the communication system I was perplexed. A bisquit could cause a short-circuit perhaps, or more likely the opposite, small particles could find their way into electrical couplings, thereby making bad connections, but overloading...
I did't understand it untill I actually read the article. And I've been sitting in front of the computer programming all day. I'm scared, is this normal?
Jurisdiction; also federal murder (Score:2)
(This, incidently, is a fscking big question with "Sea Haven." If it's truly sovereign, I can grab a helicopter, land there, shot everyone up, and get away clean because no civil authority exists to prosecute me.)
On an unrelated note, Federal land has historically either been a military base (and everyone was subject to military jurisdiction) or public lands where felonies were handled by the state. You couldn't get away with murder, but you could get away with most misdemeanors if you were off in a remote forest or beach. The car changed all of that, since you can now import blue-noses to be offended at the behavior of people who are deliberately trying to get away from the cookie-cutter norm.
Untrue (Score:1)
CNN has a story [cnn.com] where NASA disputes this whole thing.
-k
Update on CNN - NASA denies danger (Score:2)
Re:And crackling across the Ether... (Score:1)
Lameness filter encountered. Post aborted.
PLEASE DON'T USE SO MANY CAPS. USING CAPS IS LIKE YELLING!
Actually, I love brits so I'll rescind the above flame. Gormenghast kicked ASS, and the BBC miniseries wasn't too bad either. The final episode aired this weekend. got 'em all on tape. Rock on!
Must've been a Saltine (Score:1)
haiku (Score:1)
He must be out fly-fishing;
I'll fill in today
Most say "hack," some crack.
People argue semantics;
Does anyone care?
Astronauts go up
Cracker breaks in for a thrill
News at eleven
NASA desk jockey
Surfs the net to pass the day
Brave men die for porn
Re:Isn't the shuttle comms system isolated? (Score:1)
It must have been a bloody big room if you could have got spacecraft into orbit in it!
Suddenly, everyone's a critic but doesn't seem to have thought about the basics of the situation. You're going to need to feed the telemetry from several base stations around the world in different countries. Like hell you're going to run a completely isolated network, unless its absolutely required, which in this case it appears not to have been.
Re:It's called a Hacker, folks... (Score:1)
Here we go again.... (Score:2)
A thread full of trolls and you single out one silly little post. GET A LIFE!
Re:Murder? (Score:2)
Most states (Including Florida and Texas where the system is likely located) have Felony Murder statutes. Which state (in essence) that any death that occurs as a result of a commision of any Felony, regardless of whether that death is premeditated, or even intentional can be tried and punished as First Degree Murder.
If you rob a jewlery store and some old guy dies of a heart attack from the shock of the robbery, you're on the hook for First Degree Murder.
I have a feeling that if you're fiddling with systems that monitor an Astronaut's vitals and one of them dies up there you can damn well bet you're going to be tried for Felony Murder.
I don't believe it (Score:1)
<Conspiracy theory mode on>
First off, I don't believe that the folks at NASA are actually stupid enough to run such critical systems "connected to the Internet", accessible to Joe Cracker. (I mean, thats asking for trouble, come on)
Secondly, I can't help but notice that the press currently has many extremely negative portrayals of hacking/cracking, sometimes going beyond the point of misinformation.
It seems that whenever the government wants to create new laws to invade the privacy of their citizens, they start throwing around the usual scary terms like "terrorists" and "paedophiles" - often with seemingly random news articles cropping up about some or other paedophile caught ensnaring kiddies on irc - normally it's enough to pacify the majority of sheeple. This looks similar to me.
When I see all the negative articles about destructive hacker/crackers, I wonder if it's just the usual media sensationalism, or if somehow these articles are merely preparing the public for the next set of sweeping laws that will destroy our rights in the name of protecting us from these evil crackers. (Consider the recent mess in the UK with the RIP bill wrt encryption etc)
<Conspiracy theory mode off>
Or perhaps I'm just being paranoid. But in general I think it's a good idea to take everything you see/hear/read (particularly from mainstream media) with a bucket of salt.
Re:Hehe (Score:1)
Yeah (Score:1)
Re:Murder? (Score:2)
The NASA thing is a little different. If the cracker recognized that the system he accessed had to do with astronauts' health, and his actions then later caused their deaths, you could probably jack it up to murder one, same as the hospital. Deaths while committing a crime, under many state and federal statutes, gets you at least murder 2, if not murder 1.
If the cracker didn't realize the full extent of his penetration or recognize what systems he accessed, then manslaughter or reckless homicide would probably be called for.
Of course, there's jurisdictional issues as well. Actions against U.S. astronauts would likely fall within federal jurisdiction. Actions against a hospital's patients, on the other hand, would likely result in two separate state charges _ one for the hospital and one for wherever the cracker was _ plus federal charges for interstate crimes.
Now, a cracker may not get the chair for these kind of crimes, but geez...if a cracker kills a ward full of people, there's got to be something more than a few years in prison for simple stupidity, no? We're talking about lives here.
Re:Here's just a thought. (Score:1)
Re:Duh... It was a joke... (Score:1)
This guy is a DOSalyte!!!
Only dos uses tracert due to its eight-character limit. All the Unixen instead use traceroute in its correct, spelling-enhanced form.
In Retrospect of the Mars Missions... (Score:1)
You must be joking.... (Score:2)
(rant on)
I am not a doctor, but I don't run to the doctor because I am totally incompetent in deciding my own care.
I am not a CPA, but I don't run to the accountant every month so he can pay my bills, deposit my paycheck, etc.
I am not a lawyer, only someone with a graduate-level technical education which included some (not much) coverage of legal issue and a strong layman's interest in Civil Liberties law. But I guess you're right - in this field, alone, I am a drolling idiot who has absolutely no opinions of value to any other person.
Tell you what... why don't you take my voter card and cast my vote for me as well. I'm obviously incompetent to use my franchise.
I'm not picking on you, really, but this post demonstrates the type of arrogance that makes lawyers one of the most despised professions around. The mere fact that you feel the need to tell intelligent, educated people that they must remain silent unless they are practicing lawyers (or why else would you feel the need to mention your insurance?) says volumes about just how screwed up this country is.
If someone was asking -- or offering -- specific advice about a specific problem I would back you 100% in any statement that the person needs to see a practicing lawyer. Likewise, if someone has a sucking chest wound I'll tell them that they need to see a doctor, not someone who knows just enough first aid to get by while hiking.
But the vast majority of the "IANAL" posts I have seen refer to general questions that should be comprehensible to the average citizen... or we do not have a democracy. What is felony murder? Are slashdot comments copyrighted? Usenet comments? Small source files without any copyright notice? Can I be fired from my job (or suspended from my public high school) for possessing a magazine I bought at Barnes & Nobel during lunch? Can a cop demand to see what files are on my laptop? Even in an airport? (Read the letters in the summer issue of 2600 if you think the last few questions seem silly.)
The alternative which you suggest, whether you realize it or not, is to formally give up the American Experiment and recognize a two-class society. The upper class is practicing lawyers, and everyone else is banned from filing any grievance with the government or seeking redress (you know, those forgotten bits from the First Amendment), from <i>pro se</i> representation before either court or government agency, etc.
(Hmm, another poster's comments about his right to use an archaic title of nobility, "esquire," suddenly take on a whole new meaning. Last time I checked *any* American could add Esq. to their name if they desired. Of course I know that some lawyers were starting to use it, but I thought it was considered a bit of silliness by the mainstream of the bar. But it now sounds like at least one state has changed that....)
Do I think <i>pro se</i> representation is smart? For any serious problem, no. In fact, the only thing dumber than <i>pro se</i> is getting legal advice from slashdot.
But for *routine* issues, I get *very* alarmed when a practicing lawyer tells me that the law has gotten so complex that only a lawyer can say anything about it. When I hear that, I don't want to shut up, I want to kick out every member of Congress and elect a bunch who will pass laws that can be understood by the people who are expected to live by them. You cannot have a meaningful democracy if the law is "too complex" for any but a handful of voters to understand.
(rant off)
An aside, since the last paragraph is often followed by a statement supporting direct democracy or citizen referendums - the initiative process terrifies me because it tends to *write* extremely bad laws. (With a few notable exceptions, the electorate generally doesn't *pass* those laws, which is more than I can say about our legislature.
However, I find myself constantly defending actions that expand the power of citizen initiatives because the alternative is worse - I would rather have the people propose, and pass, bad law than Our Benevolent Lords and Masters of the Legislature have sole say in what laws are even discussed.
Real time version... (Score:1)
--
NASA disputes report that hacker endangered astros (Score:1)
Ambigous headline? (Score:1)
- Tasty crispy salty treat
- Hacker dude
- Racial slur for 'white guy'
- Mediocre early '90's alternative band
Or, it could have been all of the above... now THAT would be a story!Re:Murder? (Score:2)
Personally if these jokers want to have fun cracking systems, why don't they get into teams and crack eachother's systems. Make it a contest. Is Billy's new firewall able to withstand Mollie's attacks? At least they'd learn a marketable skill of defending systems.
As for why the 'ell are these fscking morons are posting they mission critical systems on the 'net is simple...they are fscking morons. I'm half expecting to hear about the school that was nuked by some packet monkey not wanting to have to take that test.
Mixed Terms (was Re:It's called a Hacker, folks) (Score:1)
Everyone who's sane knows that hackers:
While crackers do the opposite:
- Contributed in a mass effort to BREAK the Internet
- Revolve around exploiting everything and breaking security, causing problems from mild nuisances to outright disasters
- Are deeply involved in ActiveX trojans, Java exploits, BO2K, Netbus, and SubSeven, write software that not solves problems, but CREATES problems
- Are deeply involved in 0wn1ng p30pl3, ha><0ring non-31337, and other cracking rituals
Uhh now here's a quote: So listen up and use correct usage. Crackers Are Not Newbie Hackers. CANNH. One more quote:Re:Oooooooh - HACKers. I thought... (Score:1)
My favorite comment (Score:2)
NASA's SysAdmin (Score:1)
6mo before, they had the exact same problem. At that time they were instructed that their disk firmware on the shared SCSI bus were all horribly out of date, and needed updating, and the disks WOULD fall asleep if they didn't upgrade it. If they didn't, the side effect would be the cluster would take a bit longer to fail over. Oh, and it'd be nice if they upgraded to both a version of the OS still supported and put on the latest patches.
Needless to say, NONE of that was ever done and the big lash up was one of their monkies trying to FORCE a failover of NFS services and disks from node to node. In direct contravention to what they were told by DEC.
This was just the beginning of my disillusionment with every corporate group I've ever thought highly of.
VaxPunx (Score:1)
Re:Murder? (Score:1)
Movies will make you think that it is but no sadly you can be convicted guilty with 0 motive.
Manslaughter/second degree murder can be considered crimes of passion where the crime is commited on the spur of the moment, First degree murder is a pre-meditated act/
Re:You must be joking.... (Score:2)
I'm not picking on you, really, but this post demonstrates the type of arrogance that makes lawyers one of the most despised professions around. The mere fact that you feel the need to tell intelligent, educated people that they must remain silent unless they are practicing lawyers (or why else would you feel the need to mention your insurance?) says volumes about just how screwed up this country is.
Yes you are picking on him
Second, he said something you chose to ignore.
He said if you dont know something to be fact dont just say it as an uninformed person.
He did NOT say if your not a lawyer dont post something.
He just simply observed that is something seems approximate to how something should be it becomes popular and sets the
I did detect perhaps a hint of arrogance, but it was well informed arrogance deserved at the mannerisms most people post here anyways. HAH HAH Talk about arrogance.. Look around this forum its infected with it.
Jeremy
Cracker vs. Cracker (Score:1)
I thought, well they won't be eating crackers in space anymore now.
Re:Isn't the shuttle comms system isolated? (Score:2)
Oh, by the way, take a look at this GOA report [gao.gov]. It states that using trust relations between hosts you can reach some of NASA's critical systems.
I don't want to be an astronaut anymore
--
Re:Involuntary Manslaughter (Score:3)
The Jury doesn't have to answer to anyone (unless it can be shown the the jury was tampered with). This is the whole reason a jury exists...it is the FINAL Check on the system.
In fact the Jury can even find a person innocent simply because they believe the law itself is wrong. This is a tradition that goes back to the very beginnings of the Jury system.
The law is simply a set of rules...luckily the people who made those rules realised that no set of rules will ever be perfect (too bad they didn't also realise that rules are a figment of our collective overactive imagination...just like power and order and authority...) and they built in a saftey catch (unfortunaly one that doesn't always work...partially because Jurors are not informed about the true nature of their charge).
In fact, these days I am sorry that I found a way to get out of jury duty. I refuse to vote (don't believe in it) or take part in most things,...but I realise now that the Jury *IS* the final check and balance. Its the one place where ordinary people, without the delusions of grandure and "con-artist" personalities needed to hold public office, can actually make a difference.
The next time I am up for it...I will serve proudly....I think. Actually...I have moral objections to the entire concept of sending people to jail...I don't know if I could find a person guilty knowing what was in store for them...stripped of their freedom to satisfy vengence, done in the name of justice.....sigh.
The danger of crackers. (Score:2)
--
On the plus side... (Score:1)
What type of cracker caused it? (Score:1)
Oh my god, its a saltene (sp?)! Kill it! Kill it!
Two recent examples from Colorado (Score:3)
1) Group burglarizes an apartment (supposedly one member recently moved out and was "retrieving" personal possessions - I don't recall details). Couple in one car is seen by police, pursued. Woman refuses to pull over when cop flashes his lights; male passenger fires gun at pursuing officer. Later, the woman is in custody when male fatally shoots a cop, then takes his own life.
I'm not sure what the underlying felony was (I though refusal to pull over was a misdemeanor),
but she was charged with CAPITAL felony murder. She was ultimately sentenced to life-in-prison, no parole.
2) A man attempts to rob a grocery store. A group of patrons subdue him and hold him for police. A few hours later one of those men suffers a fatal heart attack.
The DA makes noises about charging the would-be thief with felony murder since the man suffered a fatal heart attack as a direct consequence of the excitement and exertion he experienced that day. (I don't recall if the DA actually filed the charges.)
These cases have opened up a local debate on the felony murder statutes. IANAL, but the second case seems excessive - people die from heart attacks every day, and this sets a dangerous precedence. Could someone be charged with felony murder if a TV viewer suffers a heart attack after watching live TV coverage? What if a distraught victim subsequently commits suicide?
The first case is more consistent with the intent of felony murder statutes... but was strangely incomplete. The woman claimed that she was unable to pull over because the gunman threatened to shoot her if she did - and she had no way of knowing he would ultimately kill a cop. All she was trying to do was get some distance between them and the cops so he would stop shooting.
On the other hand, she did willingly participate in the burglary. On the gripping hand, none of the other people involved in the burglary (who were in a separate car) were charged with felony murder.
I didn't follow the case closely, so there may have been a legitimate underlying felony that applied to her alone. I, and many other people, are disturbed by the prospect she might have faced a possible death sentence because she offered a ride to the wrong person.
As for the scenario in question, the biggest issue seems to be jurisdiction. If one astronaut flips out and murders another, where is the trial held?
(Hint: the same problem occurs with aircraft and ships in international waters... and this "hacker" would be no different than someone on shore interfering with navigational gear that affects a vessel in international waters.)
Re:Useless? (Score:1)
This quote doesn't say that a "hacker" penetrated the monitoring equipment, it says that a "hacker" overloaded "our system"(possibly being any computer on or near a NASA campus), and that the actions of this "hacker" interfered with the monitoring system. That still leaves open the possibility that the interference was an indirect effect of an attack somewhere else in "their system".
<rant to the ignorant>
Not that anyone's going to notice this. Looks like the highest rated posts are a close second to "hot British breakfast cereal" posts. Oh, don't open
No, I thought that too. (Score:1)
W
-------------------
Murder? (Score:4)
Cracking is all fine and good for 14 year old packet monkeys when they're doing it with each other's systems, but this is freakin' nuts.
BTW, why the hell are these systems even accessible in any way through the internet? I thought most of the government's really important systems had gotten hip to the fact that the only way to really be secure on the internet is to not be connected. And I can't imagine that the astronauts need yahoo stock quotes....
Re:Murder? (Score:2)
Houston (Score:2)
mmm.. crackers (Score:2)
Then I realized it was a 'cracker' in the slashbot-speek sense - someone who does naughty things with computers. Much less funny.
I really, really think that "cracker" is a stupid and confusing thing to call "evil hackers". Personally I think all news organizations should start calling such people "hax0rs".
You listening, New York Times? j00 b3tt3r b3!@$
Stupid NASA (Score:2)
Re:Involuntary Manslaughter (Score:4)
Just sayin' is all
Re:Isn't the shuttle comms system isolated? (Score:2)
Well, it wasn't totally his fault. The box was supposed to play war games, and come up with a winning outcome. It wasn't supposed to launch missiles, etc. Just like in the NASA situation, some shithead forgot the principle of airgapping.
I've always wondered how they would have managed to put the WOPR back to work after it had the realization that 'The only winning move is not to play'.
Re:Two recent examples from Colorado (Score:3)
I'm not sure what the underlying felony was (I though refusal to pull over was a misdemeanor),
but she was charged with CAPITAL felony murder. She was ultimately sentenced to life-in-prison, no parole.
This would be the Matthaeus Jaehnig case, from November 1997. The woman convicted of felony murder (not capital murder; they're two different crimes), Lisl Auman, enlisted Jaehnig's and a few others' help in grabbing her belongings from an ex-boyfriend's home. This was reported as a burglary (aka 1st degree criminal trespass, a felony), to which the cops responded. So it wasn't just the burglary, but the resulting flight from the cops that were used as factors in charging Auman with felony murder.
Felony murder law is nothing new; it has its roots in centuries-old British common law (though the UK dropped the statute many years ago). It holds that *anyone* involved in the commission of a felony that results in the death of a person is liable for that death, regardless of whether they were the murderer, or were even present at the time the murder occurred. Auman was already in custody before the cop was killed, but because she "initiated" the burglary and resulting flight, her hands were as bloody as Jaehnig's. As a result, Auman was convicted of first degree murder, and will spend the rest of her life in prison, without the possibility of parole. Did I mention she was just 21 at the time of her conviction?
Of course, the case isn't nearly as black-and-white as I've presented it here; you can go to a website [lisl.com] set up by the Auman family to hear the other side.
IANAL, but the second case seems excessive - people die from heart attacks every day, and this sets a dangerous precedence.
Remember the bombing at the Atlanta Olympics? One of the casualties died from a heart attack. I'd say whoever set off the bomb is responsible for that death. There has to be a pretty direct cause-effect relationship between the crime and the death. Actually pulling the trigger is obviously the most direct. Fleeing from police, and putting them in the position of being shot by a lunatic with an automatic assault rifle, is not as direct, but the felony murder statute allows such connections to be made.
Could someone be charged with felony murder if a TV viewer suffers a heart attack after watching live TV coverage? What if a distraught victim subsequently commits suicide?
Last year, the mother of one of the victims of the Columbine massacre killed herself. Just recently, the star basketball player at the school also took his own life. Apparently he was a close friend with a couple of the victims. I won't be overly surprised if his parents sue the parents of Eric Harris and Dylan Klebold for wrongful death. Granted, that would be a civil and not a criminal action, but the issue of responsibility remains the same.
My view (and, usually, the law's) is that someone who initiates an action that is the direct cause of a person's death or injury is the person most liable. That would rule out most suicides--provided of course that you can show evidence of other factors that would indicate a person's suicidal intentions.
The woman claimed that she was unable to pull over because the gunman threatened to shoot her if she did - and she had no way of knowing he would ultimately kill a cop.
Prior knowledge is completely irrelevant in a felony murder case. There doesn't even have to be intent--if you're the wheelman in a bank robbery, you certainly have no intention of shooting a guard, but if one of them is killed, you're as guilty as your accomplices.
There are mitigating circumstances that should be considered, but that occurs usually in the sentencing phase, after a conviction. Apparently, in Auman's case, the mitigating factors weren't enough. And, in Colorado, the judge has little leeway in the sentencing guidelines--if it's first degree murder, the two options are death (if it's a capital case) or life without parole.
Re:Murder? (felony murder) (Score:2)
There's a name for it: "felony murder." If, while commiting certain felony crimes, someone dies, the perpetrator is considered criminally responsible for that death. (Example: Some idiot with a gun holds up a convenience store. No shots are fired. The clerk has a heart attack and later dies.)
Details vary from (U.S.) state to state. I don't know where the crime would be considered to have occured; probably where the hacked server was physically located.
IANAL, but I was a juror in a trial where the charges were "assault and felony murder."
The strangest thing is that... (Score:2)
---
Re:Stupid NASA (Score:2)
Protecting Astonauts (Score:2)
am i alone? (Score:2)
Re:Murder? (Score:2)
--The knowledge that you are an idiot, is what distinguishes you from one.
Re:Involuntary Manslaughter (Score:4)
Sorry to disagree, but the hackers would be charged with 1st-degree murder, Party to a Crime. I was the head juror on a murder case where a guy arranged to rob his drug dealer, and in the process, killed him. The law read that if you intend to commit a crime, and another crime is committed as a result of your actions, you are responsible for both crimes. Since hacking into a government agency is considered a crime, if an astronaut died as a result of the hacking, the hacker would be liable for the death(s) of the astronauts.
It just goes to show that television courtroom shows are very inaccurate when it comes to the actual judicial system.
Re:Involuntary Manslaughter (Score:2)
Murder In the First Degree (Score:2)
Manslaughter is when someone dies as a direct consequence of your actions, although you had no intent, even at the time, of killing them. i.e. - drunk driving, and the cracking case this discussion is about. Fortunately for the cracker, it would be very easy to put reasonable doubt into the minds of a jury that most likely knows nothing about the logistics of cracking. Or - on the flip side - they could send some @home user to prison because he forgot to edit
But then again, that's life.
FluX
After 16 years, MTV has finally completed its deevolution into the shiny things network
This is a beat-up (Score:2)
Not that NASA shouldn't be concerned - any denial of service is always a concern, particularly for anything related to flight control - but claiming this was an "emergency" is debasing the term.
I knew it! (Score:3)
a. My ISP is far far away
b. NASA has definitely not isolated their systems!
1 gateway.cec.wustl.edu (128.252.21.249) 2.246 ms 2.006 ms 1.168 ms
2 border2-verio.wustl.edu (128.252.5.254) 15.746 ms 156.419 ms 200.945 ms
3 spaceship.nasa.gov (xxx.xxx.xx.xxx) 5.46 ms 16.41 ms 20.45 ms
4 controlcenter.nasa.gov (xx.xxx.xx.xxx) 3.27 ms 6.08 ms 3.12 ms
5 lifesupport.apollo13.nasa.gov (xxx.xxx.x.xxx) 15.746 ms 156.419 ms 200.945 ms
6 galileo.jupiter.nasa.gov (xxx.xxx.xx.xxx) 2.246 ms 2.006 ms 1.168 ms
7 206.220.243.49 (206.220.243.49) 16.222 ms 14.125 ms 16.237 ms
8 fullnet.okcity.good.net (209.140.161.2) 32.884 ms 34.316 ms *
9 edug.gadwale.com [gadwale.com] (216.226.24.76) 35.227 ms 60.082 ms 63.112 ms
Script Kiddies (Score:2)
*Dungeon Dweller smacks the script kiddie population*
That almost happened in the Simpsons too (Score:2)
Re:Isn't the shuttle comms system isolated? (Score:2)
Cheesy movie, but at the time (late 70's - early 80? ) it seemed really cool (hell, I had an acoustic coupler just like that! Probably around the same age too).
That's right -- the WOPR was dialing him back to play a game. 'Global ThremoNuclear War, anyone?'
Have to stop by the local video rental hole on the way home and see if I can pick it up. A bowl of popcorn, 3 or 18 beers and Ally Sheedy might just make my night!
BBC hype (Score:2)
Panorama used to be good - or at least, I remember it being good, perhaps I just didn't have the web to compare it against in those days. Nowadays it's been largely dumbed down and become increasingly sensationalist, along with the rest of their (domestic terrestrial) output.
BBC News 24 (reputedly) and the World Service (from personal experience) are still good, though.
Camaron de la Isla [flamenco-world.com] 'When I sing with pleasure, my
Interesting Story (Score:2)
Officer:"FREEZE! Boy you in a heap of trouble!
Torvalds: "What are you talking about?!?!"
Office: (sternly) "We have evidence that you're a known HACKER!!!!!!!"
Torvalds: "Yes, that's right. I created....aaaaahhhh!"
Linus falls to the ground as several FBI attack dogs wrestle with his legs...He's sent up to San Quentin to spend the rest of his days bartering for pudding. Thanks to the good work of all our law enforcement officials for rounding up all of the sinister and evil HACKERS, lest one of them be allowed to roam free, creating things like Linux and the UBL.
Can someone send AP a copy of the Hacker Jargon File please!?!?!?!?!
FluX
After 16 years, MTV has finally completed its deevolution into the shiny things network
Re:Isn't the shuttle comms system isolated? (Score:5)
Furthermore, all connections to the outside world -- both voice and data -- can be physically disconnected at the throw of a switch.
A couple of years ago, a group I work with wanted to enable a new "tap" into the MCC telemetry systems. We wanted to allow outcoming data only, and proposed the same kind of firewall protection used by existing connection points. It still took nearly an act of Congress to get our tap installed.
I've talked with NASA's information-security people, and they're nothing if not overcautious. They're not all technical geniouses, but they do employ some. For example, I know that they employ "white-hat" crackers to perform penetration tests of their systems.
So, are NASA's security arrangements foolproof? Certainly not, but I have a hard time taking that article at face value. The suggestion that a cracker from somewhere out on the net penetrated NASA's systems doesn't seem as likely as other explanations: That the reporter got the story wrong -- that the problem wasn't actually within MCC. Or that there was a problem, but NASA's technical people, unable to come up with the real explanation, invented a cracker to blame. Or even that the cracker existed, but came from within the MCC.
--Jim
Re:Murder? (Score:2)
BTW, I'm gonna check to see if my health insurance covers BSODs....
Oooooooh - HACKers. I thought... (Score:2)
Re:Involuntary Manslaughter (Score:2)
A crime, less severe than murder, involving the wrongful but non-malicious (see malice) killing of another person. There are various categories of manslaughter. In some states voluntary manslaughter is a killing in a sudden rage such as occurs during a quarrel and fight, and involuntary manslaughter is a killing with no intention to cause serious bodily harm, such as by acting without proper caution.
However, I think you could make a case for "reckless homocide," as "reckless" is defined:
"Reckless" can mean anything from "careless and inattentive" or "indifferent to consequences" to a "willful disregard for danger to the life or safety of others."
So of which one the cracker would be guilty depends on the circumstances and/or intent of the cracker. Murder doesn't seem to apply, given the definition:
"Murder: The unlawful killing of another human being that is premeditated (planned in advance) or is with malice aforethought (see that word). Most states divide murder into first and second degrees. First degree murder usually involves a willful and deliberate killing, such as by torture or lying in wait, or killing during the commission of another felony such as arson, rape, robbery, and kidnapping. Second degree murder is less serious, but still worse than manslaughter."
Unless the cracker intended to kill the astronaut, and either premeditated the killing or had prior malicious intent, which seems unlikely in this case.
Felony Murder (Score:3)
(IANAL)
It depends on how the perpetrator was charged. If charged with a felony (which is the likely scenario), then the "felony murder" rule is invoked. This states that any death which occurs as a result of the commission of a felony is automatically murder, not manslaughter. Examples:
Re:Who endangered who? (Score:2)
Re:Isn't the shuttle comms system isolated? (Score:2)
Yes, it would, and if the story is true, then I'm absolutely stunned. When I worked for the MoD, we had one machine connected to the Internet, and it was in it's own room, required clearance to even use it, and it wasn't connected to any other machines. The concept that the main servers would be even physically connected to the Internet was laughable. It just doesn't happen. I guess NASA doesn't have the same standards as the military...
Re:Murder? (Score:2)
Ought to work in the case of 'accidently' killing an astronaut too.
Re:Good thing... (Score:3)
Actually, per N etcraft [netcraft.com] they're running just about every OS you can name on at least one of their 456 publicly accessible webservers. A quick check of a few of them showed NT, Solaris, IRIX, and Linux.
When you put the sheer number of webservers they are running in perspective with 500k cyberattacks in a year, it means they are only getting about 3 attacks per day per webserver.
With all the possible points of entry, and inconsistent OS usage, I don't think it's surprising that a few backdoors were found.
Re:Isn't the shuttle comms system isolated? (Score:2)
CTRL+ALT+DEL
Re:Murder? (Score:2)
Sitting out in from of you wife's lover's house waiting for him to come home and then running him down in the driveway is murder.
Getting loaded and driving through a 7-11 at 2am and killing a bunch of people is manslaughter (or at least, that's my story and I'm sticking to it!)
Here's just a thought. (Score:2)
Now, since I'm sure that statement is over simplified, why not make sure systems can't be traced back to the internet.
Somehow I doubt this ACTUALLY happened. Why would NASA have its shuttle monitoring systems networked in a way that an outside connection could be made to them? even if it meant getting into one system, then another, then another, and finially whatever this article is claiming they interfered with.....how many people know how those systems are networked?
---
Isn't the shuttle comms system isolated? (Score:3)
The word CRACKER is dumb. (Score:2)
Look: I know that a lot of people are on a fool's quest to preserve the ancient meaning of the word 'hacker', but the word cracker is a terrible substitute. I honestly thought that a Saltine had wedged itself into the shuttle's computers.
The mass media has changed the meaning of the word hacker into something negative. What's the big problem with that? Words have changed meaning throughout history. 'Awful' used to mean about the same thing as 'awesome', and 'gay' used to mean 'happy', but they really aren't used that way anymore. The world has moved on.
The Hacker Dictionary can deny this fact all it wants and claim that the negative meaning is deprecated, but the truth of the matter is, most of the English speaking world thinks of hackers as guys who break into NASA. And everybody understands what "hacker" means when used in an article like this. Give it up.
Re:Involuntary Manslaughter (Score:2)
I wish this concept was taught to more people. When in the court, the judge (and whichever side is more conservatively interpreting the laws) hammer the jury with admonitions that they are ONLY supposed to decide whether the person violated the law or not, and are not supposed to judge the law itself. The jury rarely gets instruction from lawyers that they are also responsible to judge the law itself.
I think it's also part of the lawyer's game, that if they think they'll get a more favorable ruling through strict interpretation of the law (by technicalities, for instance), that they'll try to get a trial by judge instead of jury, since the judge is honor-bound to pay more attention to the laws than to the ethics.
Is This Real? (Score:3)
You would think that the astronauts would be notified if there were sudden anomalies with their vital signs. At least an inquiry as to their status and a mention of the bad readings would be expected. I wonder if this is not just more PR designed to encourage stricter computer crime legislation and get NASA more funding for IT security.
Re:Involuntary Manslaughter (Score:2)
I was under the impression it had to be a felony.
Re:Involuntary Manslaughter (Score:3)
Interestingly enough, there is a group that proclaims a phone number, 1-800-TEL-JURY which prescribes the same thing. One important point made: if a jury believes the law to be unjust or unjustly applied, they can reach a not guilty verdict even if they believe without a doubt that the person in question committed the act.
Of course, juries are often instructed otherwise by judges and lawyers, and since they are often uneducated and rarely if ever legally educated, they are apt to listen. And for people with 1-800-TEL-JURY signs to be outside the courthouse has been counted as jury tampering in the past, and invalidated their rulings.
Re:interesting... (Score:2)
He's correcting their grammar, nothing more..
Hemos might also have started a Holy war with his correction, but the trolls and instigators have yet to notice, so we'll see..
Re:Murder? (Score:2)
Re:interesting... (Score:2)
Once a word, such as hackers, has made it's way into the lexicon so deeply, you can't reverse it.
Take politically correct words, which have social stigma attached to the incorrect words. How many of us take the time to say Native American instead of Indian? Or African-American instead of black? Why should John Q. Public or Jane P. Media take the time to care about hacker vs. cracker? Especially when everyone knows what a hacker is, right?
And cracker already has two definitions, does it need more? It's already a slang term for a white redneck, as well as a tasty high-carb treat.
---
come next christmas... (Score:3)
Reuters Version (Score:3)
Involuntary Manslaughter (Score:2)
My guess, being a careful student of Law & Order and NYPD Blue (which makes me a legal expert, you know), is that he/she would be charged with Involuntary Manslaughter. The cracker didn't mean to kill the astronauts, but his actions caused their deaths. For it to be Murder the cracker would to have had the intention of killing the astronauts.
Shouldn't have brought him (Score:5)
Where's that Inanimate Carbon Rod when you need it?
Re:Murder? (Score:4)
Also, your question about why these systems were connected to the internet: first, you don't know that for sure, it may have been a dialup or even someone overriding the actual satellite link up. Second, its becoming more & more clear that everything is going to be on the internet soon enough. As we move to a fully "wired" and interconnected world, issues like this are going to become more & more serious. I have no doubt that pretty soon we will have to deal with the legal question of whether a cracker can be judged as a murdered.
Microsoft revealed as the bad guys (Score:2)
I just watched the panorama programme. The NASA incident was a fairly small item near the end. Most of the show was about how easy it is to break into Microsoft programs. They interviewed Cult of the Dead Cow, had a demo of Back Orifice, interviewed the guy who runs AntiOnline, and had someone from a British computer security company say that things will remain bad while Microsoft is driven by features, not security.
On the whole it was not as bad as some of the stuff that gets broadcast.
JSC Background (Score:2)
I think a bit of a background perspective would help a lot in considering the "truth" to this story.
Let's make our first assumption in that the center being discussed in Johnson Space Center, home of Mission Control. JSC has become one of the more network security aware centers within the NASA environment in recent years. That's not to say there aren't problems. JSC is one of the few that is at least aware of a network security clue train and occasionally buys a ticket and takes a ride. When they'll actually begin buying monthly passes is another question.
JSC confronts many of the same technical vulnerability issues other research institutions face. This means that much of JSC is ultimately vulnerable (hint to Joe Scriptkiddy - taking a NASA engineer's under-administered Linux test box is neither proof of any real skill, nor is it particularly enlightening to NASA officials). JSC is aware of this and treats Mission Control with extra precautions. Truly mission critical hardware is not going to be manipulated directly by Internet traffic. That's not to say that a network attack of some kind can't have some effect on a mission. And here's a key point. Even a minor effect provides a politician with plenty of fuel to fan the fires of hysteria. And don't expect it all from our elected officials. NASA is ran by politicians.
NASA (and ultimately JSC) network vulnerability is due to more than technical issues. There's a cultural clash within the security framework internal to JSC, NASA, and very likely many other Governmental institutions. Network security policy is being formed by old-guard "physical security" personnel. Network security is a fast-changing and alien environment to many of these officials. The technical targets shift at a rapid rate, and new ways of thinking often challenge old standbys (IE: debunking security through obscurity). Unfortunately, many physical security concepts do not transfer well to the new network security environment. There are occasional flashes of insight... and many more attempts to cling to the old, better-known environment.
One example of this is the penchant for prosecution. Its amazing to watch an organization bemoan a lack of funding to support security administration of an environment, then light up at the opportunity to pull production equipment offline and spend untold amounts of money and man hours to track down a script kiddy for defacing a minor internal web site. Spending funding on preventing the incident in the first place seems to get lost somewhere in the upper echelons.
So if today's mission control is safe from Joe Scriptkiddy, where'd this incident come from? 1997. In my experience, the mid 90's were way before the network security clue train - there wasn't even tracks laid down. It wasn't until the end of the decade that network security began to show up as a serious issue and positive steps were being made to do something about the situation. 1997? History.
So sure, NASA could use some improvement of their network security environment. And they certainly could use the funding. But to say there's lives on the line - that's political kindling to pass legislation and cook up some National Infrastructure Protection Center funding.
Useless? (Score:2)
For one thing, how did the cracker manage to penetrate NASA's communications system in the first place? I imagine they aren't stupid enough to give it any connection to the Internet - in fact, I'd hope all connections to and from the shuttle, and any computers and networks vital to the shuttle missions, are sealed from the 'net by an airwall. This would mean the cracker somehow found another way in, got past (hopefully) some sort of security...I don't know. I don't give this story much credibility. I wonder if perhaps NASA's just trying to cover up Yet Another Systems Failure.
My $0.02 Cdn, so it's not worth that much...
Re:interesting... (Score:2)
They should change the name from cracker. (Score:2)
those astronauts are morons (Score:2)
Re:They should change the name from cracker. (Score:2)
Cletus the slack jawed yokel? (Score:2)
interesting... (Score:2)