Copy Link
Add to Bookmark
Report
Computer Undergroud Digest Vol. 02 Issue 03
****************************************************************************
>C O M P U T E R U N D E R G R O U N D<
>D I G E S T<
*** Volume 2, Issue #2.03 (Sepember 14, 1990) **
****************************************************************************
MODERATORS: Jim Thomas / Gordon Meyer (TK0JUT2@NIU.bitnet)
ARCHIVISTS: Bob Krause / Alex Smith
USENET readers can currently receive CuD as alt.society.cu-digest.
COMPUTER UNDERGROUND DIGEST is an open forum dedicated to sharing
information among computerists and to the presentation and debate of
diverse views. CuD material may be reprinted as long as the source is
cited. It is assumed that non-personal mail to the moderators may be
reprinted, unless otherwise specified. Readers are encouraged to submit
reasoned articles relating to the Computer Underground.
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
DISCLAIMER: The views represented herein do not necessarily represent the
views of the moderators. Contributors assume all responsibility
for assuring that articles submitted do not violate copyright
protections.
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
CONTENTS:
File 1: Moderators' Corner
File 2: Len Rose's experience with the Secret Service
File 3: Tim Wolfson's address, cite list
File 4: A comment on Zod's case
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
----------------------------------------------------------------------
********************************************************************
*** CuD #2.03, File 1 of 4: Moderator's corner ***
********************************************************************
Date: Sepember 14, 1990
From: Moderators
Subject: Moderators' Corner
++++++++++
In this file:
1. BBS AND THE LAW PAPER ADDED TO ARCHIVES
2. GATEWAY TO USENET
++++++++++++++++++
BBS and the Law Paper added to Archives
++++++++++++++++++
We have added a paper by Mike Riddle, a law student, to the CuD archives.
It's entitled: "The Electronic Pamphlet--Computer Bulletin Boards and the
Law." It provides a nice overview of privacy and other issues and is worth
reading.
++++++++++++++++
Gateway to Usenet Newsgroup
++++++++++++++++
A Gateway service is available for people who cannot read or post to the
Usenet newsgroup comp.org.eff.talk.
To subscribe send mail to EFF-REQUEST@NETSYS.COM.
You will receive a copy of every article appearing in the newsgroup.
To post to comp.org.eff.talk send your article to EFFTALK@NETSYS.COM. It
will be gatewayed automatically without modification.
This service has no connection with the Electronic Frontier Foundation.
********************************************************************
>> END OF THIS FILE <<
***************************************************************************
------------------------------
Date: Tue, 11 Sep 90 01:34:49 -0400
From: len@NETSYS.NETSYS.COM
Subject: Len Rose's experience with the Secret Service
********************************************************************
*** CuD #2.03: File 2 of 4: Len Rose's Experience with the S.S. ***
********************************************************************
[Jim Thomas suggested I write something for the digest and I have been
casting around for ideas.. All I really can think about nowadays is my
own situation. I have become quite a bore to my friends I am sure.]
Please excuse any vestiges of self-pity you may detect.
The Day It Happened:
I left my home around eleven am to drive down to Washington DC to meet
with a potential client. After several hours with them , I started the
drive back through the rush hour traffic. It was just a few minutes
after five pm that I pulled into my driveway in Middletown Md. I remember
getting out of the car and noticing that someone was in the back yard.
He was wearing a blue wind breaker and was neatly dressed. We had been
trying to sell a Jeep , and I assumed he was interested in buying the
car. "What can I do for you" I asked.. I remember being slightly pissed
that this person had just been hanging around the back of my home. He
flipped his jacket aside and I saw a badge on his belt and a gun
in a shoulder holster. "Please go into the house" he replied. I was
pretty shaken and asked "What have I done wrong?" .. without answering
the question, he took my arm and sort of marched me into the front door
of my home. Upon entering, two agents pulled me up from the foyer, and
put me against the wall while searching me. Then I remember being shown
the front of a search warrant and then taken into my master bedroom.
The door was shut and I didn't leave the room for more than five hours.
They introduced themselves, and I asked them what this was about. Foley
replied "We will ask the questions" .. "Do you know any of these hackers?"
I was asked about 10 or 15 names, and out of them I said I recognized
one or two from seeing articles here and there but hadn't had any contact
with them. I remember Foley getting angry. "You had better cooperate,
let's try again". I reiterated that I knew none of them. He said "You
are not telling us the truth" ... I told him I had little contact with
hackers and had been away from that scene for quite some time. He then
scoffed and said "You have a hacker handle don't you... What is It?"
I paused, and then replied "Terminus, but I haven't used it or gone by
that in a very long time" He said "Right, like last month..." I thought
about that and then I started to feel sick inside.. I knew that I had
sent Craig Neidorf a copy of login.c which had been modified to perform
certain functions that basically made it a trojan horse. I used that
handle since I didn't want the world to know that Len Rose was sending
someone proprietary source code through mail.. He shoved a photocopy of a
printout under my nose and asked me if I recognized it.. I looked at it
and said, "Yes.. " .. He asked me If I had made the modifications and
placed certain comments within the source. "Yes" again. "But I never used
it" I blurted out.
"We are only interested in the 911 software and Rich Andrews" they said.
[I never had anything to do with 911 software and after an extensive search
of my systems that night by a certain AT&T employee they seemed to agree.]
"Did Rich Andrews send you a copy of the 911 software?" Foley asked me.
I told them no, no one had sent me anything of the sort. I told them
that Rich had found some portion of 911 software on his system and
sent it to Charley Boykin at killer to see if it was serious. Rich had
told me before, and I sort of approved of the idea. I remember Rich
saying that he'd had no response whatsoever..
[I wish he had told me the truth, but that is for him to explain why]
"We want dirt on Rich Andrews.." Special Agent Timothy Foley said.
"We feel he has been less then cooperative.." and "Do you know he is
a convicted felon" I replied "Yes" but he is a good friend and I
know he hasn't done anything wrong. He is not involved with hackers.
Foley asked me about any dealings I had with Rich. I realized then
that lying wouldn't do me any good, so I told them everything I could
remember. What I had to say must not have been good enough, as Foley
kept saying I wasn't going to get anywhere unless I told them all the
truth. It took me a long time to convince them that was all I knew.
During the interrogation, my legal problems in Virginia were brought up,
and I mentioned that I might be acquitted. Jack Lewis said "If you get
off in Virginia, I'll make sure we burn you for this" .. I felt then
that I was completely shut off from reality.
Foley then asked me to tell them anything illegal I had done.
Jack Lewis said "It would be better if you tell us now, because if we
discover anything else later it will be very serious". By this time, I
was scared and I remember telling them that I had copies of AT&T System V
v3.1, System V v3.2 and various other pieces of software which had been
given to me by certain employees of AT&T (without the benefit of a license
agreement). "Where is it" they asked.. I told them that I had a couple
9 track tapes with prominent labels on a tape rack.
I remember asking several times to see my wife, and to go to the bathroom.
Each time I was told I couldn't. If I hadn't been so scared I would have
asked for an attorney, but my mind had shutdown completely. About 6 hours
later I was finally led out of my bedroom and told to sit at the kitchen
table and not to move. Foley and Lewis sat with me and put a sheet of
paper in front of me and told me to write a statement. "What do you want
me to write about" I asked. Foley said "Everything you told us about
Rich Andrews and also everything about the Trojan horse login program."
"Make sure you mention the System V source code"..
So, as they were finishing loading up the moving truck, I sat there and
wrote about two pages of information.
It was about midnight, when they left, but not before handing me a
subpoena to appear before the Grand Jury.
They told me to tell Rich Andrews my main Unix system had crashed, and
not to let him know that the SS had been there. I felt pretty bad about
this because I kept thinking they were going to get him. He must have
called siz or seven times the day after the "raid". I couldn't tell him
anything, since I assumed my line was tapped.
I remember going outside as they were starting to leave and looking into
the back of the moving truck. The way some of the equipment was packed, I
knew it wouldn't survive the trip into Baltimore. I asked for permission
to re-pack several items (CPUs,Hard Disks, and a 9 track drive) and received
it. As I watched my belongings pull away , I remember feeling so helpless,
and confused. It was only then did it sink in that every material possession
that really mattered to me (other than my home), was gone. All I had to
show for it was a sketchy 20 page inventory..
Later, my wife told me what had gone on until I came home. The SS
arrived around 3 pm, and had knocked on the door. She opened the door,
and 5 or 6 agents pushed her back into the foyer. They took her by the
arms and moved her over to a sofa in the living room. They had a female
agent with them, and this person was detailed to stay with her. She was
not allowed to make phone calls, or answer them (until much later in the
evening.) My children were also placed there. My son, who was 4 at the
time refused to submit to their authority (guns didn't scare him) would
get up often and follow agents around. From what my wife recalls, they
were amused at first , then later became less enthusiastic about that.
She wasn't allowed to feed the kids until after I had been released
from the interrogation session. She remembers getting up several times,
to go to the bathroom or to retrieve diapers,etc. and being told to get
back onto the sofa. The female agent even followed her into the bathroom.
The massive search of every nook and cranny of our home encompassed much
more than computer equipment. To this day, I feel there is a direct
link between my previous legal problem in Virginia, and the extent of the
search that day. In fact, the SS had obtained items seized from me by
Virginia and had them in their posession before the raid ever took place.
I remember going down to the SS office a couple days later to
voluntarily answer the subpoena. I set up my equipment for them. Although
they had labled most cables and connectors, there was some confusion.
I remember showing them how to use my systems, and in particular how to
do a recursive directory listing of every file contained within. After a
while, once they made sure they had backups , I was allowed to type a few
commands at a terminal in order to retrieve an ascii text file (a resume).
Later, while being escorted back out to the front of their offices,
I saw a large room filled with stacks of boxes and equipment cases which
had constituted the entire sum of my office and all equipment,software,and
documentation. I was feeling pretty numb, and remember asking the agents
there to please take care of everything, since I hoped to get it back.
In reflection, it seems pretty pitiful.
It was this day that they told me I would be prosecuted, and I remember
driving back from Baltimore feeling betrayed. Even though I had completely
cooperated with them, and had been told I would not be prosecuted. When I
got home, I was crying .. I couldn't handle this anymore. My sister was
there and I remember she gave me three vallium.. I calmed down and in
fact got pretty high from it.
[The following is something the SS allege I did]
Allegedly from a phone booth that night I called Rich Andrews and warned
him to get rid of any source code or software he shouldn't have.. At this
time I was also alleged to have told Rich that I was leaving the country,
and would go to Korea with my wife and kids. [If I did do this, I never
said anything about leaving] .. They apparently had either tapped his line,
or he told them about my call. [I would have been stupid to say this, since
Korea has extradition treaties with the US]
My Arrest:
Several days later, I received a sudden call from Special Agent John Lewis
and he told me to come down and pick up my fax machine. (I had been
pestering them about it so I could fax my resume out to headhunters so I
could find a job)..
[ Ironically, I had been hired a week before by Global Computer Systems,
in New Jersey to work as a contractor at AT&T's 3B2 Hotline in South
Plainfield New Jersey .. I knew that after this AT&T wouldn't have anything
to do with me and in fact was informed so the night of the raid ]
Upon entering the SS office (Feb. 6) around 5 pm, I waited outside in
the waiting room.. I had been doing some house painting and wasn't dressed
very well. Jack Lewis came out and brought me back to one of their offices
He held out his hand (as if to shake it) and instead put hand cuffs on my
hand. He then locked the other to an eyebolt on the desk. He sat down
across from me and told me to empty my pockets.. I complied, and then he
started writing an inventory of my posessions.
Jack Lewis looked up from his writing and said "You fucked us,Len!"
"What do you mean?" I said. "You called Rich Andrews, and warned him to
get rid of anything he shouldn't have,you fucked us!" .. I didn't reply.
He then told me to pull my shoestrings out of my sneakers, and I did..
He called another agent in to witness the contents of his inventory,sealed
the envelope and then told me I was going to jail.. About 15 minutes later
he released the handcuffs from the desk, and put my arms behind my back and
handcuffed them.
I was led into the hallway, while he finished some last minute details..
He was nice enough to let me make a phone call, when I asked him..I promptly
called a friend in Philadelphia. I knew he would know what to do.. Because
my wife didn't speak English well, and would also have been hysterical
I couldn't count on her to be much help.
They drove me over to the Baltimore City Jail,told the bored looking turnkey
at the desk to hold me for the night.
I was pretty hungry but I had missed the evening meal , and despite
repeated pleas to make my "phone call" the jailers ignored me.
The people in the cells next to mine were an interesting lot.
One was in for killing someone, and the other was in for a crack bust..
Someone in the cell block was drugged out, and kept screaming most of
the night.. I didn't sleep much that night, and the with the cold steel
slab they call a bed it wouldn't have been possible anyway. Sometime
around 9 am a jailer appeared and let me out.
I was then turned back over to the SS and they drove me back to the
Federal Building... They put me in another holding cell and I was there
for about 2 hours. A Federal Marshal came and took me to a court room,
where I was charged with a criminal complaint of transporting stolen
property over interstate lines with a value of $5000 or more.
The conditions for my release were fairly simple..
Sign a signature bond placing my home as collateral, and surrender
my passport. Fortunately my wife had come down earlier and Agent Lewis
had told her to get my passport or I wouldn't be released .. She drove
the 120 mile round trip and found it.. She returned, I was brought down
to the courtroom and the magistrate released me.
We retained an attorney that day, and several weeks later they agreed to
drop all charges. I am told this was to give both sides some time to work
out a deal. Against the better judgement of my (then) attorney I offered to
meet with the Assistant U.S. attorney if they would bring someone down from
Bell Labs. My thinking was that surely a Unix hacker would understand the
ramifications of my changes to the login.c source and corroborate my
explanations for the public domain password scanner. They also wanted me
to explain other "sinister" activities , such as why I had an alias for
the Phrack editors, and I knew a Unix person from the labs would know what
I meant when I said it made it easier for people to get to .BITNET sites.
I was a complete fool,and the person from Bell Labs got me in even worse
trouble when he told them I had other "trojan" software on the systems.
He was referring to a public domain implementation of su.c which David Ihnat
(chinet) had written to allow people to share su access without actually
knowing the root password. "But it is public domain software," I cried.
The Bell Labs person turned and told David King (Asst. US Attorney) that
I was lying. He went on to say that there was a considerable amount of
R&D source code on my machines. Things that no one should possess outside of
AT&T, like Korn shell and AwkCC.
My attorney (Mr. Carlos Recio of Deso, and Greenberg - Washington DC) was
furious with me. All he could say was that "I told you so.." and I realized
I had been stupid. I had hoped if I could explain the situation to the govt.
and have someone from AT&T verify what I said was true, then they would
realize I was just a typical Unix freak, who hadn't been involved in anything
more sinister than possibly having things I shouldn't have.
After a few months the best deal Mr. King offered was for me to plead
guilty to 2 felony counts (Computer Fraud) and I would receive a sentence
of 17 months in prison. I refused to take the deal, [ Perhaps I may live
to regret that decision when my trial begins in 91.. ]
In May I was formally charged with 5 felony counts.. The rest is history..
Present Day:
In better times I never lacked for work, and lived in a world where I
spent more on phone bills per month (uucp traffic), than I have earned
in the last four months.
I am sitting here (rather lying, since I cannot get up) by the laptop
computer (on loan to me from a friend) . Lately, I have grown to feel
that without this little laptop and it's modem linking me to the network
I would have been driven mad a long time ago.Reading Usenet news has been
my only solace lately. During the day I spend hours calling around to all
the head hunters asking for work.Since I still have a fax machine,
I am able to fax my resume around. So far, I haven't had much luck in
finding anything at all. Since all this happened , it seems that I have
been blacklisted. A few companies expressed interest, but later called
back and asked me if I was the "LoD hacker" and I told them yes.. They
weren't interested anymore (I cannot blame them).
I guess the Unix Today articles have cost me more than any of the others..
I lost a great contract ($500 a day) with a major bank in Manhattan when
they saw the first article.. In various articles from various newspapers,
I have been called the "Mastermind of the Legion of Doom" and other bizarre
things.
The lies told by the US Attorney in Baltimore in their press release
were printed verbatim by many papers.. The usual propaganda about the
Legion's activities in credit card fraud, breakins and the threat to the
911 system were all discussed in that press release and cast a bad light
on me.
I have had the good fortune to have a friend in Philadelphia who has
loaned me office space in his firm's building. Such an arrangement lends
an air of credibility to Netsys Inc. Too bad I have no clients or contracts.
Since I broke my leg pretty badly (The doctor says I will be in a cast for
six months and maybe some surgery) ,I haven't been able to visit the
"office" but I have an answering machine there and I check my calls daily.
We (my wife and two children) moved to the Philadelphia suburbs in order
to put as much distance as possible from the SS Agent John "Jack" Lewis
who is based in Baltimore.
I realize that the SS have offices in every city, and agents to spare
but it made me feel better knowing that he is in Baltimore and I am here.
Anyway, at this point I am trying to find a few system admin jobs, and
would take any salary they offered me. I am scared about the next few
months since I cannot even get a job as a laborer or a 7-11 clerk since
my leg is screwed.. My wife (who has a liberal arts degree) is looking
for a job in this area.. We hope she can get a job working minimum wage
in some department store or as a waitress.
We have enough money to last another month I guess. Then I am not sure
what we will do, since we haven't any relatives who will take us in.
I have never been un-employed since leaving high school, and It's a
pretty bad feeling. One day , If I survive this, I will never forget
what has happened. I can't help feeling that there is a thin veneer
of freedom and democracy in this country, and agencies like the Secret
Service are really far more powerful than anyone had realized.
I know that my friends within AT&T (E. Krell for one) feel I have
"stolen" from their company. I can only laugh at this attitude since
I have probably done more for AT&T than he has. Those of you who knew
me before can attest to this. While it was "wrong" to possess source code
without a license,I never tried to make money from it. I wrote a Trojan
Horse program, which in all honesty was done to help defend my own systems
from attack (it is currently installed as /bin/login on my equipment).
Any allegations that I installed it on other systems are completely false.
[ in fact, most of the source code was given to me by AT&T employees ]
As far as the public domain password scanner program, well.. I realize
that most of you know this, but items far more powerful can be obtained
from any site that archives comp.sources.unix,and comp.sources.misc ..
I used it as a legitimate security tool when doing security audits on
my own systems and clients. It wasn't very good really, and considering it
was obsolete (System V 3.2 /etc/shadow) anyway, it's usefulness was limited.
Since the SS will be reading this article with interest, I want to
point out that I will fight you to the end. Someday I hope you will
realize you made an honest mistake and will rectify it. Perhaps there
was some justification I am not aware of, but I doubt it. If I have to
go to prison for this, perhaps it will benefit society. Who knows what
what Len Rose would have done if left to continue his criminal pursuits.
I hope to get my equipment, and software back and then re-start my life.
There have been repeated motions to get my equipment back , but the judge
has summarily denied them saying I will commit crimes If I get it back.
I have offered to assist the SS in saving evidence,and to sign any agreement
they choose regarding validity of that evidence.
I may take up begging soon , and ask for help from someone who is rich.
It's going to be winter soon and I don't look forward to being on the
street.
Len
********************************************************************
>> END OF THIS FILE <<
***************************************************************************
------------------------------
Date: Mon, 10 Sep 90 22:24:24 -0400
From: Timothy C Wolfson TTUNIX.BITNET
Subject: Tim Wolfson's address, cite list
********************************************************************
*** CuD #2.03: File 3 of 4: Bibliography of Law Articles ***
********************************************************************
Below is a list of articles published in legal periodicals that may be of
interest to your readers. This list is in no way meant to be all inclusive,
I'm sure I've left out (or not yet discovered) many pertinent pieces.
24 Am. Crim. L. Rev. 623 MAIL AND WIRE FRAUD Winter, 1987
Kimi N. NuraKami 24 AMCRLR 623
PLI Order No. C4-4175 Civil RICO 1986
PREDICATE ACTS OF MAIL FRAUD AND WIRE FRAUD June 1, 1986 Brad D. Brian
141 PLI/Lit 79
63 U. Det. L. Rev. 843
COPYRIGHT--Bootleg Records--Copyright infringement in the form of unauthorized
phonograph recordings, when such records are shipped interstate, does not fall
within the reach of the National Stolen Property Act. Dowling v. United
States, 105 S. Ct. 3127 (1985). Summer, 1986 Kenneth Adamczyk
13 Legal Econ. 44 ELECTRONIC BULLETIN BOARD SYSTEM PROVER BBS
November/December, 1987 Rees W. Morrison 13 LEGEC 44
39 Fed.Com.L.J. 217
An Electronic Soapbox: Computer Bulletin Boards and the First Amendment
October, 1987 Eric C. Jensen 39 FCLJ 217
Public Utilities Fortnightly The March of Events November 9, 1989
NEW MEXICO ELECTRONIC BULLETIN BOARD AVAILABLE AT COMMISSION
124 No. 10 Fortnight 50
PLI Order No. G4-3847
How to Handle Basic Copyright and Trademark Problems A Satellite Program
PATENT AND TRADEMARK OFFICE: PROSECUTING APPLICATIONS FOR TRADEMARK
REGISTRATION, AND INTER PARTES PRACTICE BEFORE THE TRADEMARK TRIAL AND APPEAL
BOARD February 13, 1990 Roberta S. Bren 288 PLI/Pat 135
PLI Order No.G4-3844
Patents, Copyrights, Trademarks, and Literary Property Course Handbook Series
THE LICENSING OF COMPUTER SOFTWARE PROGRAMS January 1, 1990
Gerald E. Lester 287 PLI/Pat 293
PLI Order No. 64-3839 Communications Law 1989
THE MEDIA AND THE COMMUNICATIONS REVOLUTION: AN OVERVIEW OF THE REGULATORY
FRAMEWORK AND DEVELOPING TRENDS November 9,1989 Richard E. Wiley
283 PLI/Pat 327
57 Geo. Wash. L. Rev. 1459
THE FIRST AMENDMENT AND TECHNOLOGICAL CHANGE: THE NEW MEDIA HAVE A MESSAGE
August 1, 1989 M. Ethan Katsh 57 GWLR 1459
75 A.B.A.J. 82 THE FUTURE OF TECHNOLOGY IN LAW FIRMS July, 1989
Jon E. Klemens 75 ABAJ 82
44 Bus. Law. 1081 ELECTRONIC FUND TRANSFERS May, 1989
David B. Goldstein, Edward L. Rubin, Dewey B. Morris,
Charles P. Seibold, Richard P. Kessler, Jr., Richard S. Wyde.
PLI Order No. G4-3831 Protecting Trade Secrets 1989
PROTECTING TRADE SECRETS: LEGAL THEORIES April 1, 1989 Michael J. Hutter
269 PLI/Pat 9
PLI Order No. A4-4255
Law Practice Management for the Solo and Small Office Practitioners
Conquer the Computer It's your ticket to tomorrow and the key to a more
effective and competitive practice April 1, 1989 JAMES A. EIDELMAN
492 PLI/Comm 353
54 W.Educ.L.Rep. 761
COMPUTER VIRUSES: LEGAL AND POLICY ISSUES FACING COLLEGES AND UNIVERSITIES
1989 David R. Johnson, J.D. Thomas P. Olson, J.D.,
David G. Post, Ph.D., J.D. 54 WELR 761
PLI Order No. G4-3821/3 Communications Law 1988
THE MEDIA AND THE COMMUNICATIONS REVOLUTION: AN OVERVIEW OF THE REGULATORY
FRAMEWORK AND DEVELOPING TRENDS November 10, 1988 Richard E. Wiley
262 PLI/Pat 681
XXIX B.C.L.Rev. 803
COPYRIGHTED SOFTWARE: SEPARATING THE PROTECTED EXPRESSION FROM UNPROTECTED
IDEAS, A STARTING POINT September, 1988 J. Dianne Brinson
XXIX BCLR 803
21 J. Marshall L. Rev. 735
COMMUNICATIONS TECHNOLOGY: NEW CHALLENGES TO PRIVACY Summer, 1988
Fred W. Weingarten 21 JMARLR 735
63 N.Y.U.L.Rev. 416
DON'T TOUCH THAT DIAL: RADIO LISTENING UNDER THE ELECTRONIC COMMUNICATIONS
PRIVACY ACT OF 1986 May, 1988 Fred Jay Meyer 63 NYULR 416
14 Legal Econ. 30 ELECTRONIC COMMUNICATIONS A LAWYER'S PRIMER
April, 1988 Carl G. Roberts Rees W. Morrison Greg H. Schlender
14 LEGEC 30
PLI Order No. G4-3804
Telecommunications 1987: Current Developments In Policy and Regulation
AN OVERVIEW OF INTERNATIONAL ISSUES December 10, 1987 P. Michael Nugent
244 PLI/Pat 145
PLI Order No. G4-3804
Telecommunications 1987: Current Developments In Policy and Regulation
REALITY RELEARNED December 10, 1987 Lawrence W. DeMuth, Jr.
244 PLI/Pat 133
24 Am. Crim. L. Rev. 623 MAIL AND WIRE FRAUD Winter, 1987
Kimi N. NuraKami 24 AMCRLR 623
13 Legal Econ. 28 LEGAL TECHNOLOGY: PRESENT AND FUTURE TRENDS
November/December, 1987 Gordon L. Jacobs 13 LEGEC 28
73 A.B.A.J. 50 HOW COMPUTERS MADE US BETTER LAWYERS May 15, 1987
Joshua Stein 73 ABAJ 50
72 Iowa L.Rev. 1015
The National Security Agency and Its Interference with Private Sector Computer
Security May, 1987 Renae Angeroth Franks 72 IALR 1015
27 Va. J. Int'l. L. 575
Statutory Improvements to the Foreign Availability Process for High Technology
National Security Export Controls Spring, 1987 Richard T. Horan, Jr.
42 Bus.Law. 614 COMPUTER LAW February, 1987
Bernard G. Helldorfer, Harold J. Daw, William E. Hirschberg, Darrell K.
Fennell, and Andrew W. Hoffmann 42 BUSLAW 614
67 B.U.L.Rev. 179
WARRANT REQUIREMENT FOR SEARCHES OF COMPUTERIZED INFORMATION January, 1987
C. Ryan Reetz
40 Vand.L.Rev. 1 Free Speech, Copyright, and Fair Use January, 1987
L. Ray Patterson
10 U.Ark.Little Rock L.J. 55
WHAT IS COMPUTER CRIME, AND WHY SHOULD WE CARE? 1987-88
Michael C. Gemignani 10 UARLRLJ 55
13 Rutgers Computer And Tech.L.J. 451
THE ELECTRUNIC COMMUNICATIONS PRIVACY ACT OF 1986: THE CHALLENGE OF APPLYING
AMBIGUOUS STATUTORY LANGUAGE TO INTRICATE TELECOMMUNICATION TECHNOLOGIES
1987 Russell S. Burnside 13 RUCTLJ 451
PLI Order No. G4-3790 Protecting Trade Secrets 1986
LEGAL THEORIES AND RECENT DEVELOPMENTS May 1, 1986 Michael J. Hutter
224 PLI/Pat 11
20 Colum.J.L.Soc.Prob. 89
Teleinformatics, Transborder Data Flows and the Emerging Struggle for
Information: An Introduction to the Arrival of the New Information Age 1986
ANTHONY PAUL MILLER
Judicature Articles August-September 1989
TECHNOLOGY IN APPELLATE COURTS: THE NINTH CIRCUIT'S EXPERIENCE WITH ELECTRONIC
MAIL Stephen L. Wasby 73 JUDICATURE 90
Judicature Focus August-September, 1988
TECHNOLOGY COMES TO THE COURTS Paul Nejelski 72 JUDICATURE 136
38 Cath.U.L.Rev. 401
THE FIRST AMENDMENT INVALIDITY OF FCC OWNERSHIP REGULATIONS Winter, 1989
Jonathan W. Emord 38 CATHULR 401
38 Cath.U.L.Rev. 299
RED LIONS, TIGERS AND BEARS; BROADCAST CONTENT REGULATION AND THE FIRST
AMENDMENT Winter, 1989 Charles D. Ferris Terrence J. Leahy
38 CATHULR 299
38 Cath.U.L.Rev. 471
THE DIVERSITY PRINCIPLE AND THE MFJ INFORMATION SERVICES RESTRICTION: APPLYING
TIME-WORN FIRST AMENDMENT ASSUMPTIONS TO NEW TECHNOLOGIES Winter, 1989
Richard A. Hindman 38 CATHULR 471
57 Geo. Wash. L. Rev. 1459
THE FIRST AMENDMENT AND TECHNOLOGICAL CHANGE: THE NEW MEDIA HAVE A MESSAGE
August 1, 1989 M. Ethan Katsh 57 GWLR 1459
57 Geo. Wash. L. Rev. 1495
ON UNDERSTANDING THE FIRST AMENDMENT STATUS OF CABLE: SOME OBSTACLES IN THE WAY
August 1, 1989 Jerome A. Barron 57 GWLR 1495
38 Emory L.J. 715
THE ILLEGITIMACY OF THE PUBLIC INTEREST STANDARD AT THE FCC July 1, 1989
William T. Mayton 38 EMORYLJ 715
PLI Order No. G4-3826/1
Cable Television Law 1989: Dealing with the New Challenges
TELEPHONE COMPANY ENTRY INTO VIDEO PROGRAMMING March 1, 1989 Frank W. Lloyd
266 PLI/Pat 9
87 Mich.L.Rev. 499
FREE SPEECH AND THE 'ACID BATH': AN EVALUATION AND CRITIQUE OF JUDGE RICHARD
POSNER'S ECONOMIC INTERPRETATION OF THE FIRST AMENDMENT November, 1988
Peter J. Hammer 87 MILR 499
86 Mich.L.Rev. 1269 QUESTIONING BROADCAST REGULATION May, 1988
Jonathan Weinberg 86 MILR 1269
1988 Duke L.J. 329 CABLE TELEVISION AND THE FREEDOM OF EXPRESSION
April/June, 1988 Daniel Brenner 1988 DUKELJ 329
VI Yale L. Pol'y Rev. 449
Ad Hoc Access: The Regulation of Editorial Advertising on Television and Radio
1988 Rhonda Brown VI YLLPR 449
39 Hastings L.J. 165
The TRAC to Fairness: Teletext and the Political Broadcasting Regulations
November, 1987 GAIL A. FLESHER 39 HSTLJ 165
21 U.Mich.J.L.Ref. 137
THE RIGHT TO SPEAK, THE RIGHT TO HEAR, AND THE RIGHT NOT TO HEAR: THE
TECHNOLOGICAL RESOLUTION TO THE CABLE/PORNOGRAPHY DEBATE Fall/Winter, 1987-88
Michael I. Meyerson 21 UMIJLR 137
8 Cardozo L.Rev. 317
AN EXCESS OF ACCESS: THE CABLE COMMUNICATIONS POLICY ACT OF 1984 AND FIRST
AMENDMENT PROTECTION OF EDITORIAL DISCRETION December, 1986 Adam R. Spilka
8 CDZLR 317
75 Geo.L.J. 361 A Press Privilege for the Worst of Times
October, 1986 David Joseph Onorato
35 Emory L.J. 563
CABLE LEASED ACCESS AND THE CONFLICT AMONG FIRST AMENDMENT RIGHTS AND FIRST
AMENDMENT VALUES Summer, 1986 William E. Lee
XX Suffolk U.L.Rev. 1 FREE SPEECH IN AN ECONOMIC PERSPECTIVE
Spring, 1986 Richard A. Posner
33 U. Kan. L. Rev. 305
INDEPENDENT BUT INADEQUATE: STATE CONSTITUTIONS AND PROTECTION OF FREEDOM OF
EXPRESSION Winter, 1985 Todd F. Simon
58 S.Cal.L.Rev. 1351 CONTROLLING THE CONTENT OF PRINT AND BROADCAST
September, 1985 MATTHEW L. SPITZER
22 Harv.J.Legis. 503
TELEPHONE PORNOGRAPHY: FIRST AMENDMENT CONSTRAINTS ON SHIELDING CHILDREN FROM
DIAL-A-PORN Summer, 1985 JOHN C. CLEARY
133 U. Pa. L. Rev. 661
A PROPOSED MODEL OF THE SOVEREIGN/PROPRIETARY DISTINCTION March, 1985
Teresa Gillen
98 Harv.L.Rev. 747
INFORMATION TECHNOLOGY AND THE STRUCTURE OF SECURITIES REGULATION
February, 1985 Donald C. Langevoort
98 Harv.L.Rev. 205
Leading Cases of the 1983 Term--Constitutional Law: Freedom of Speech, Press,
and Association--Restrictions on Public Broadcasters' Rights to Editorialize
November, 1984 98 HVLR 205
38 U.Miami L.Rev. 769
A Common Law for the Ages of Intellectual Property Septemer, 1984
DAN ROSEN
25 Harv. Int'l L.J. 299
The British Telecommunications Decision: Toward a New Telecommunications Policy
in the Common Market March, 1984 Slida A. Wall
8 Nova L.J. 631
Communications Revolutions and Legal Revolutions: The New Media and the Future
of Law March, 1984 M. Ethan Katsh
82 Mich.L.Rev. 981 FREE SPEECH AND HIGH TECH February, 1984
Francis Dummer Fisher 82 MILR 981
XIII Fordham Urb.L.J. 801
ELECTRONIC PUBLISHING: FIRST AMENDMENT ISSUES IN THE TWENTY-FIRST CENTURY
1984 Lynn Becker
97 Harv.L.Rev. 584
SAFEGUARDING THE FIRST AMENDMENT IN THE TELECOMMUNICATIONS ERA TECHNOLOGIES OF
FREEDOM. By Ithiel de Sola Pool. Cambridge, Massachusetts: Belknap Press
of Harvard University Press. 1983. Pp. 299. $20. December, 1983
Mario L. Baeza
36 Vand.L.Rev. 985
Global Governance of Global Networks: A Survey of Transborder Data Flow in
Transition May, 1983 Anne W. Branscomb 36 VNLR 985
38 Cath.U.L.Rev. 365
INFORMATION AS PROPERTY: DO RUCKELSHAUS AND CARPENTER SIGNAL A CHANGING
DIRECTION IN INTELLECTUAL PROPERTY LAW? Winter, 1989 Pamela Samuelson
38 CATHULR 365
47 U.Pitt.L.Rev. 1185
ALLOCATING OWNERSHIP RIGHTS IN COMPUTER-GENERATED WORKS Summer, 1986
Pamela Samuelson
47 U. Pitt. L. Rev. 1131
THE UNCERTAIN CASE FOR SPECIAL LEGISLATION PROTECTING COMPUTER SOFTWARE
Summer, 1986 Leo J. Raskind
32 Wayne L.Rev. 1191
PROPOSED JUDICIAL GUIDELINES FOR DECIDING SOFTWARE INFRINGEMENT ACTIONS
Spring, 1986 SUSAN L. MASHOUR
16 Rutgers Computer and Tech.L.J. 323
DIGITAL MEDIA AND THE CHANGING FACE OF INTELLECTUAL PROPERTY LAW
Winter, 1990 Pamela Samuelson
_____________________________________________________________________
| Tim Wolfson | Internet: tcwst@unix.cis.pitt.edu |
| Pitt Law | CCNet : tcwst@CISUNX |
| PGH, PA 15260 | UUCP : tcwst@cisunx.uucp |
| (412) 486-0182 | Bitnet : TCWST@PITTVMS.BITNET |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
********************************************************************
>> END OF THIS FILE <<
***************************************************************************
------------------------------
Date: September
From: Entity
Subject: A comment on Zod's case
********************************************************************
*** CuD #2.03: File 4 of 4: A Comment on the Zod Case ***
********************************************************************
I hope to present you with some of the details regarding Zod's bust so
that your readers can be more familiar with the case. Sometime around
late October 1989 or so, Zod set up a multi user chat system on a US Air
Force system. The program he was using was Hans Kornedor's chat program ,
which many of you may recognize as the chat program used on the ALTOS
german hacker chat systems. In any case, Zod modified this program,
making superficial changes and labelled it TDON chat.
What he did was infiltrate a US Air Force UNIX system at Andrews Air Force
Base. Because of the extremely lax security on the system, he was easily
able to gain super user privileges and set up an SUID shell in one of the
directories. He then changed the password on an unused account (Foster.
Password was TDON) and set his TDON chat system up. He then went onto
places such as TCHH (Germany), ALTGER (Germany) and QSD (France) and
started spreading the news of this great new chat. Thankfully, not many
people paid any attention to Zod (who is world reknown to be a class "A"
bozo.) Very few people called and of those who did, it was mostly
american users on telenet, although there were a few european callers as
well. I was actually invited to the system by an up and coming VAX/VMS
hacker who used the alias 'Corrupt' (he was part of the group HiJiNx!). I
knew him from meetings on the various european chat systems as well as him
being on the Corrupt Computing Canada BBS System in Toronto, Canada. Last
I heard, he was busted as well, although I am not sure of on what charges.
The chat itself was up for maybe a week -- a week and a half at best. At
this point you are probably wondering who would be suicidal enough to set
up a hacker chat system on a US Air Force system, right? Well, there's
more to Zod's stupidity than just that. In addition to setting up the
chat, Zod decided that he would be smart and in the .login script for the
foster account he added in the TEE command to log everything to a file.
For those unfamiliar with UNIX, the tee command basically takes the input
coming into the user's TTY, and makes a copy of it into a specified file.
Zod had this input go into a directory with the filename the same as the
user's process ID. I guess Zod's intention was to at a later time peruse
these files for useful information, but what he ended up doing was handing
us all to the authorities on a silver platter.
Now one of the modifications that Zod had made to the chat program was to
add in a shell escape. I never did figure out what the escape sequence
was (not that I ever looked very hard), but I noticed that if I lifted my
phone up, (thereby sending garbage over the modem) and put it back down, I
would automatically be plopped into the shell! It was here that I
discovered all the craziness that Zod had set up. You can imagine my
surprise when I looked at some of the files in my directory and discovered
that this chat system had been set up on a military unix machine! It was
then that I found all the TEE'd files, the source code to his TDON chat,
and the SUID root shell. Again for those unfamiliar with unix, an SUID
root shell basically allows a user to run this file and gain superuser
privileges by temporarily changing their User ID to that of root
(superuser). Those familiar with hacking unix's will agree that it is
never a good idea to leave such a file around on a system since it can be
easily detected if not hidden properly. Not only was this file NOT
hidden, it was put in plain view of the system administrator! If my
memory serves correctly, it was put into the /tmp directory under a very
obvious filename!
Of course, the biggest problem with this particular set up was the TEE'd
log files that zod had created. Those files had some very far reaching
consequences as I shall describe in just a minute. Because of Zod's
generosity in logging all chat sessions, Air Force Security staff had no
reason to do any additional logging of information. What the security
staff did was first of all change the password on the foster/tdon account
and then made backups of all the chat session files. These were then
compiled into a huge document (looks to be about 800-900 pages) and was
edited to take out overlapping chat processes. I have managed to acquire
this document through a friend of mine who was recently charged for
infiltrating several systems. Part of the evidence was that document
submitted by the Andrews Air Force base.
For the benefit of those people who called this chat and who gave out
incriminating evidence, I will just briefly list their names. You guys
should realize that your particular sessions were logged and are included
as part of the evidence. I would not be surprised if a further
investigation stemming from Zod's bust were to be carried out. The people
who should be watching their tails are: Sam Brown, Hunter, Phreakenstein,
Outlaw, Corrupt and Jetscream. These are obviously not the only people
who were logged, but they do represent those who passed out accounts and
passwords and other incriminating information on the chat, as well as
having spent the most amount of time on there.
So how does this lead up to Zod's arrest? Well, I'm not positive. On the
Air Force machine, zod was dumb enough to leave his name plastered all
over the chat including on the logon screen. Of course this cannot be
used solely as evidence enough to convict, but it sure as hell points in
his direction. Zod was also not a very careful person -- this is of
course obvious from him having set up the Air Force Chat, but in addition,
he left behind a lot of clues. He wasn't a very competent hacker and never
cleaned up after himself. I assume it wasn't very difficult to track him
down from his blatant misuse of the City University system in Washington.
It is my understanding that Corrupt and others were busted indirectly
because of him. Perhaps someone closer to the source can confirm this.
In any case, what all this goes to show you is how the stupidity of one
individual can lead to the problems of so many others. By setting up a
hacker chat system on the Andrews Air Force base system, he committed a
great mistake. By then inviting so many hackers from the international
hack scene, he committed a greater sin. But for actually logging all this
information and never deleting it, he committed the ultimate crime. This
kid is a royal pain in the posterior and a serious threat to all hackers.
- Entity/CCCAN! (Corrupt Computing Canada)
********************************************************************
------------------------------
**END OF CuD #2.03**
********************************************************************
! 
