Sarah Palin's Yahoo Account Hacked

jvmorris I Am The Man Who Was Not There. Premium,MVM join:2001-04-03 Reston, VA	reply to dave Re: Sarah Palin's Yahoo Account Hacked said by dave : . . . It's the equivalent to hiding the key to the bank vault underneath the welcome mat. Your bank still has a welcome mat? My bank's was replaced with a tin cup and a "Will take your money for free" sign crudely labeled on a piece of cardboard. I think that was about a week ago. And they dispensed with the key to the vault entirely. -- Regards, Joseph V. Morris
	to forum · permalink · · 2008-09-24 12:04:51 ·
KodiacZiller join:2008-09-04 73368	reply to dave ZZZZZZZZZZZZZZZZZ I am surprised this thread is still going. Yawn Lesson: Don't use Yahoo or Gmail for sensitive e-mail. If you have to for some reason, encrypt your e-mail with something like PGP, and make your contacts do the same. End of lesson.
	to forum · permalink · · 2008-09-24 10:08:42 ·
dave Premium,MVM join:2000-05-04 not in ohio ·Verizon Online DSL ·Verizon FIOS	reply to SnowyOne said by SnowyOne : Weak passwords & weak password reset answers are in the users domain. Agreed on the passwords. Not agreed on the password-reset answers. You have two choices when asked for your mother's maiden name (etc.) 1) Tell the truth 2) Lie The truth is easier to remember. You can lie and give a 'strong' answer. But then you have to remember it. So, you're in the position of having to remember a second password in case you forget your first password. How stupid is that? The presentation certainly encourages users to tell the truth, and the truth is a bad solution. The problem here is the very existence of password reset answers. It's the equivalent to hiding the key to the bank vault underneath the welcome mat.
	to forum · permalink · · 2008-09-24 09:04:13 ·
SnowyOne Premium join:2003-04-05 Kailua, HI ·RoadRunner Cable ·Clearwire Wireless	reply to dave said by dave : Surely the point to be made is that, if you keep stuff on (say) Yahoo's web server, then it is largely irrelevant how good your grasp of security might be -- it's how good Yahoo's grasp of security might be. Not totally. Weak passwords & weak password reset answers are in the users domain.
	to forum · permalink · · 2008-09-24 08:56:09 ·
dave Premium,MVM join:2000-05-04 not in ohio	reply to MGD Surely the point to be made is that, if you keep stuff on (say) Yahoo's web server, then it is largely irrelevant how good your grasp of security might be -- it's how good Yahoo's grasp of security might be.
	to forum · permalink · · 2008-09-23 07:23:29 ·
MGD Premium,MVM join:2002-07-31 Fort Lauderdale, FL	reply to Steve said by Steve : ..... her actions don't convey any kind of self-styled internet expertise, ..... Agreed, and even if it did, I am not sure it really matters. Having ones Yahoo or Gmail account compromised, appears to cut across all levels of security and technical expertise. Admittedly, the skill level to pull it off is a variable: quote: Security researchers' accounts ransacked in embarrasing hacklash 13th August 2008 On Sunday morning, security consultant Alan Shimel woke to discover that his personal blog, which is frequented by countless peers and reporters, was pointing to a website featuring explicit gay porn. Equally disturbing, he found someone had cracked open his Yahoo! Mail account and aired sensitive documents he filed with the Internal Revenue Service. Oh, and while the miscreants were at it, they sent crude pornographic images to parents on the Little League baseball team Shimel coached. The chief strategy officer for security firm StillSecure, Shimel is one of three high-profile researchers in the security world known to have been attacked by unknown criminals over the past week. A personal Gmail account belonging to Petko D. Petkov, of the GNUCitizen ethical hacking collective, was ransacked and 2GB of its contents made public. And logs believed to come from the home blog of Security-Protocols.com researcher Tom Ferris have also been exposed. ..... .. .... The public attacks are the latest reminder that privacy on the internet is never guaranteed, even for those whose technical skills far surpass those of the average internet denizen. "Personally, I don't keep any personal email on any webserver," said Jeremiah Grossman, CTO of White Hat Security and the only non-victim security researcher willing to be named in this story. .... ref:»www.theregister.co.uk/2008/08/13···argeted/ MGD
	to forum · permalink · · 2008-09-23 00:53:58 ·
SUMware Premium join:2002-05-21	reply to Littlem129 said by Littlem129 : I saw on my local news tonight that the FBI is investigating a University of Tennessee student for hacking into Palin's yahoo account. said by Steve : said by the article : (person being investigated) is the son of Mike Kernell, a Democratic state representative from Memphis. This is gonna be great; grab yer popcorn. This was posted on September 18, 2008 by Just Basics »Proxy used in Palin hack? State rep confirms that son is subject of Palin e-mail chatter
	to forum · permalink · · 2008-09-22 10:52:28 ·
jadinolf I love you Fred Premium join:2005-07-09 Ojai, CA ·DSL EXTREME	reply to Steve said by Steve : said by the article : (person being investigated) is the son of Mike Kernell, a Democratic state representative from Memphis. This is gonna be great; grab yer popcorn. And lawn chair. -- This post printed on 100% recycled bytes
	to forum · permalink · · 2008-09-22 10:19:06 ·
Steve I'm a PC, so shut up Consultant join:2001-03-10 Yorba Linda, CA	reply to Littlem129 said by the article : (person being investigated) is the son of Mike Kernell, a Democratic state representative from Memphis. This is gonna be great; grab yer popcorn.
	to forum · permalink · · 2008-09-22 07:41:10 ·
Littlem129 Premium join:2007-05-13 White Pine, TN ·America Online	reply to SUMware I saw on my local news tonight that the FBI is investigating a University of Tennessee student for hacking into Palin's yahoo account. »www.wbir.com/news/local/story.as···&catid=2
	to forum · permalink · · 2008-09-22 02:28:47 ·
coxta Ultramundane Premium join:2000-07-15 LALALALALALA ·Pacific Bell - SBC 1 edit	reply to ff1324 said by ff1324 : Um....a Yahoo email account isn't a public account. The communications of that account are personal / private. What meets your litmus test of a non-public account? It's public in the sense that it's open to anyone and that Yahoo while it does not own the content can do anything they want with the content and that they could public ally post it if they want to. Read the TOS. As far as I'm concerned, it's just an email account not associated with a governmental person. It's personal. To think that this merits a crime of high treason is ridiculous. It's a simple hack. Too bad it was a presidential candidate. -- I've never been drunk, but often I've been overserved.
	to forum · permalink · · 2008-09-20 15:52:34 ·
marigolds Gainfully employed, finally Premium,MVM join:2002-05-13 Saint Louis, MO	reply to ff1324 Re: Sarah Palin's Yahoo Account Hacked Well, a closed system would be one example. I've seen a few different options in use in government. One is to require access through a vpn. Another is using hardware dongles. Even something as straight forward as having domain logins on issued laptops and require access to be a from a domain computer with the correct credentials (yeah, it can be beat, but it still makes beating it a more complicated matter). The real problem here is not the information being accessed. Since most government records are public, there are only a few information types that would be sensitive enough to be an issue putting out over yahoo. The real issue here is that the records are gone. The email account got hacked, someone wiped the account, and yahoo may or may not have backups (either way, the backups are out of the hands of the State of Alaska and the Governor). Government records have to be available to the public. These records are not and will not be available any time soon, if ever. -- ISCABBS - the oldest and largest BBS on the Internet telnet://bbs.iscabbs.com Professional Geographer Geographic Information Science researcher
	to forum · permalink · · 2008-09-20 10:47:05 ·
ff1324 Everybody Goes Home Premium join:2002-08-24 On Four Day	reply to marigolds said by marigolds : said by ff1324 : Um....a Yahoo email account isn't a public account. The communications of that account are personal / private. What meets your litmus test of a non-public account? An account that cannot be accessed from the internet with a vpn or some other validation of the connecting computer? A closed system? -- What do you want to do to the world, Ronald? Burn it all. See you next year, Ronald.
	to forum · permalink · · 2008-09-20 10:35:57 ·
marigolds Gainfully employed, finally Premium,MVM join:2002-05-13 Saint Louis, MO	reply to ff1324 said by ff1324 : Um....a Yahoo email account isn't a public account. The communications of that account are personal / private. What meets your litmus test of a non-public account? An account that cannot be accessed from the internet with a vpn or some other validation of the connecting computer? -- ISCABBS - the oldest and largest BBS on the Internet telnet://bbs.iscabbs.com Professional Geographer Geographic Information Science researcher
	to forum · permalink · · 2008-09-20 10:22:20 ·
koma3504 Advocate Premium join:2004-06-22 North Richland Hills, TX	reply to SUMware I wonder if Sarah Has read these post on this site?? my two cents the kid did it the kid should be punished. Even a kid has to know that hacking into a V.P. candidate Which is a State Governor A federal employee. Would be agianst the law. Now Not saying we need to sned the kid to prison but something defantly needs to be done to send a message to all the script kiddie hacker's . Perhaps the kid needs more direction in their life. More guidence from the parents and not so much computer time to be doing this kinda thing. -- † Koma † If YOu Don't Think It's Possable!! It's Acually A Reality!!The best way to predict the future is to invent it. Alan Kay!! Ya Don't Know The signal Till Ya Ride It!! Voice Break's There's Trouble!!!!
	to forum · permalink · · 2008-09-20 09:42:28 ·
ff1324 Everybody Goes Home Premium join:2002-08-24 On Four Day	reply to coxta Um....a Yahoo email account isn't a public account. The communications of that account are personal / private. What meets your litmus test of a non-public account?
	to forum · permalink · · 2008-09-20 09:07:06 ·
coxta Ultramundane Premium join:2000-07-15 LALALALALALA ·Pacific Bell - SBC	reply to SUMware There was a recent case, this year, in which a worker hacked into the co-workers computer over 500 times over a period of five months and then sold the information to a reporter. The computer was a company computer and the company had an email server and the co-worker had a yahoo account. This also was a violation of the workplace terms of agreement. The fellow got a six month sentence by the feds. The single charge: "intentionally accessing a protected computer without authorization and thereby obtaining information in furtherance of a tortious act- 1 count). If Palin's hacker gets anything close to this, it will be foul. This is a kid who did it once on a public account and had no monetary interest in the act. Is it wrong? Of course it is, but Palin shouldn't be broadcasting her account information for the world to know. It wasn't a government account. That would be an entirely different matter. Has anyone ever had a public email account like this hacked? Did the feds get called in? Put it into perspective. If it happened to anyone else, it would be a non-event. It's Palin that should be confronted. Bad judgement all around. -- I've never been drunk, but often I've been overserved.
	to forum · permalink · · 2008-09-20 00:54:03 ·


Friday, 04-Dec 11:42:36	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. republican-creole page compression OFF