digg

Facebook Connect Join Digg About
See the original image at pcworld.com

Congressional Documents Leaked on P2P Service

pcworld.com However, a statement issued yesterday by the Ethics Committee said the leak was not caused by an intrusion of the House or the committee's information systems. Rather, a preliminary investigation showed the document was leaked by a junior staffer who had installed P2P software on a personal computer on which the document was stored.

Who dugg this? Made popular 28 days ago

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

45 Comments

show profanity settings
expand all
  • Ninh, on 11/01/2009, -1/+50Cracks me up every time I read that congress has an ethics committee.
  • hpodity, on 11/02/2009, -2/+29I'm sorry... Why are any congressional documents confidential, why shouldn't the citizen be given full disclosure over who is being investigated and for what?
  • invar9, on 11/02/2009, -0/+20I like how abc news call it "cyber-hacking" http://abcnews.go.com/Politics/wireStory?id=895380 ... even though there was no hacking involved... just stupidity....
  • Lefts, on 11/02/2009, -2/+12The same reason you don't tell people who are being tapped that they're being tapped.
  • blorc, on 11/02/2009, -1/+11Kind of like McDonald's selling salads?
  • DeathfireD, on 11/02/2009, -0/+7He or she probably had the document in my documents, which happens to be one of the most common places P2P programs use as the default share directory.
  • eljitto, on 11/01/2009, -2/+8There's no way this is completely hyped up.
  • Bisquick, on 11/02/2009, -0/+6That's my representative, you'd think the representative from Silicon Valley would know better.
  • DennisOhlson, on 11/02/2009, -1/+7Good. They should be more open with things. What are they afraid of public scrutiny?
  • invar9, on 11/02/2009, -0/+5LOL.... that makes it even funnier... you are right.
  • inactive, on 11/02/2009, -2/+7Configuration->Select shared folders->My Documents [uncheck]
  • MorpheousMarty, on 11/02/2009, -0/+4Innocent until proven guilty. I would like to know too, but in all fairness, just because someone is accused of something, and there is enough evidence to investigate them, doesn't mean they are guilty and should have their names dragged through the mud. All that said, if so many of them weren't guilty of stuff, maybe I wouldn't be so interested in what they were being investigated for.
  • biggestprick, on 11/02/2009, -2/+6The Network Admins that run the government's network should be fired. It's only common sense that you restrict employees form installing any kind of software on their workstations that is not approved.
  • TheyCMeTrollin, on 11/02/2009, -0/+4cyber-hacking sounds SCARY!
  • strictnein, on 11/02/2009, -1/+5Firewall?
  • Roobix, on 11/02/2009, -0/+3I think one "junior staffer who had installed P2P software" is now looking for looking for some career restructuring.
  • nmanguy, on 11/02/2009, -0/+3I don't think this is what they meant when they said there would be more transparency in our government...
  • inigomntoya, on 11/02/2009, -1/+4I agree - what is the problem with this being public information anyway? Are we relying on the element of surprise in taking down Congressmen?
  • metaphlex, on 11/02/2009, -2/+4So i keep seeing this, but the thing i haven't figured out is if it was purposefully leaked or not. Did he have p2p set up to share any documents on his computer? If so, then sure, government needs to find a way to atleast educate people about p2p sharing. If it was purposefully leaked through p2p, then what does the government think it's going to do? create a massive database of every single sensitive document and then download every single document on p2p and search for a match?
  • TheyCMeTrollin, on 11/02/2009, -1/+3no, not like that at all actually
  • cigawoot, on 11/02/2009, -0/+2Then why was the document on the personal computer? I'm less concerned with the contents of the document and more concerned with how it was leaked.

    Also keep in mind that the list was only people they were investigating, there might have been zero wrongdoing on their part. You know, guilty until proven innocent, that sort of stuff.
  • inactive, on 11/02/2009, -2/+3Maybe it's kind of like the obese chick ordering a grilled chicken sandwhich because it's healthier than the breaded one, but then puts gobs of barbecue sauce on top to totally cancel out whatever health benefits she wanted in the first place.
  • HonoredMule, on 11/02/2009, -0/+1It's what "one junior staffer" meant.
  • PopcornDave, on 11/02/2009, -0/+1Zoe never misses a chance to step up to a microphone. Her statement just seems like a prelude to a new bill to prevent "cyber-hacking" whether it exists or not.
  • cigawoot, on 11/02/2009, -0/+11) A young punk installs P2P software on a government computer.
    2) A classified document leaks to the internetz as a result.
    3) Instead of putting blame properly on lack of security enforcement, they instead blame the P2P software.

    A combination of a HTTP proxy and a lockdown on both incoming and outgoing traffic would alleviate this. Combine this with strong local security (Windows and Active Directory makes this stupid easy) and leaks like this can be prevented. Only your proxy would be able to communicate on port 80, so outgoing connections would be stopped, even on port 80. A firewall blocking ALL traffic, and the only traffic being permitted being accessible via a HTTP proxy. This also allows for an easier method of auditing web traffic.

    What I find is that people call this hacking. Its not hacking. The P2P software was doing exactly what it was designed to do, and supposed to do, and what it advertises itself as doing. P2P software in this case isn't the problem, its lax security.

    Pretty sure that staffer got fired, and frankly deserved it. Pretty sure they violated a slew of security regulations.
  • moskrin, on 11/02/2009, -0/+1Don't forget the extra bacon
  • TsuruchiBrian, on 11/02/2009, -0/+1"a preliminary investigation showed the document was leaked by a junior staffer who had installed P2P software on a personal computer on which the document was stored."

    Former Alaska Senator Ted Stevens counts as a "junior staffer" now?
  • pagno, on 11/02/2009, -0/+1No, thats irony, although a lesser state.
  • hpodity, on 11/02/2009, -1/+2lol oh yeah... congressmen have access to the internet too. d'oh
  • nofreedom4theUS, on 11/02/2009, -0/+1Here's the document...
    http://digg.com/politics/List_of_politicians_under ...
  • nerdzero, on 11/02/2009, -0/+1Well, according to the article, he was using a personal computer, not a government computer. Regardless, I for one am glad he did it whether it was by accident or intentional. My representative is on that list!

    What concerns me the most about this whole thing is that these are the same guys that will be voting on Net Neutrality legislation.
  • HonoredMule, on 11/02/2009, -0/+1Yeah, cyber-hacking is way more scary than physical hacking. I'm really just misunderstood, and I can only physically hack one person at a time anyway.

    - Jason
  • nmanguy, on 11/02/2009, -0/+1Actually, it's not like that at all. Some people prefer the taste of Aspartame to High Fructose Corn Syrup used in normal drinks. Me, I prefer pure cane sugar (duh), Sucralose, or even Maltitol and Ace K to the taste of Aspartame and HFCS.
  • Ouze, on 11/02/2009, -2/+2these guys need Windows 7 and Applocker
  • starlon2, on 11/02/2009, -2/+2Silly rabbit, p2p is for kids.
  • pagno, on 11/02/2009, -1/+1"...looking for looking for some career restructuring."

    One would think being fired would be all the looking you needed.
  • ugacrew, on 11/02/2009, -6/+6What the hell is someone doing having the ability to install P2P software on a government network. What sysadmin let this through? A sysadmin isn't doing their job allowing crap like that to begin with. They should have something installed that blocks net traffic temporarily when a program is running or detected as an installation in a system's registry. Silly government.
  • ohplease, on 11/02/2009, -2/+1Firewalls in general still let traffic through on certain ports and don't do as thorough a job of protocol analysis as a proxy does. For instance, if you had TCP port 80 outbound on your firewall, I could set my P2P client to use port 80, as any TCP traffic will just move on through, whether it's HTTP traffic or not. That doesn't happen with a proxy.

  • Rememberthe0511, on 11/02/2009, -2/+1Awesome. Dugg down by the MPAA, RIAA, Microsoft and the government.
  • WELLDOITLIVE, on 11/02/2009, -2/+1yes
  • inactive, on 11/02/2009, -2/+0yes they need unlocker

    http://research.yale.edu/bioimagesuite/forum/index ...
  • orthodoxDrew, on 11/02/2009, -3/+1dumbass
  • MastaQ, on 11/02/2009, -6/+1Or like the obese chick who orders 3 heart clogging burgers and a Diet Coke.
  • Rememberthe0511, on 11/02/2009, -8/+1I recall hearing about spyware that the Chinese made that once installed on a US government computer would auto send all documents made by that computer to their own computer. Once those files get passed around sooner or later they end up in normal P2P.

    Why in the world am I smarter then everyone in government?
  • ohplease, on 11/02/2009, -8/+1Install a proxy you idiots.

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.