funsec mailing list archives

Re: Holy Crap: Using a Command Prompt is 'SuspiciousBehavior'

From: quispiam lepidus <quispiam.lepidus () gmail com>
Date: Wed, 15 Apr 2009 20:12:36 +1000

On Wed, Apr 15, 2009 at 1:47 PM, Larry Seltzer <larry () larryseltzer com> wrote:

I read the whole warrant and I think Paul has a point. The point about
using 2 operating systems is strange and irrelevant, but there's a lot
more in there than just accusing him of being technically sophisticated.
And while there's definitely the accusation in there of evidence of
crimes, I'm still not sure what he's accused of. Is it the outing
incident? Is it the accusation that he hacked into the BC grading system
to fix grades? Is it his "cache of approximately 200+ illegally
downloaded movies as well as music from the internet"? That he "jail
breaks" cell phones ("possibly stolen ones")?

I suppose the lines about how sophisticated he is (the guy's name is
Riccardo F. Calixte) are in there to tell the Judge that he's capable of
the mass-e-mailing.

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.pcmag.com/securitywatch/
Contributing Editor, PC Magazine
larry.seltzer () ziffdavisenterprise com


I wondered the same thing. The EFF appear to be alluding to the fact
he's being charged for the gay profile + emailing to campus mailing
list of said profile.

I don't get how they think someone who's capable of changing grades
would leave behind all of the evidence he did. They also stated he
worked for the IT dept. Surely he'd be aware of the type of logging
enabled on the campus network?

Maybe the room mate in question is behind it all, they had a falling
out, he accessed the accused PC, and did the rest himself. It'd
explain all of the logs left behind ;)

I love how the cop talks about his experience in the warrant
application :) Also the justification on what they should take (people
write down passwords you know!), "anything that can be used to store
computer data, CPU's, scanners, books, yada yada". The central
processing unit isn't somewhere i'd usually store data, especially
when my pc is turned off. Scanner? Please. Books? Better take all the
pens and paper in the house too.

It reminds me of when a certain skiddie got busted a few years ago,
and they took his alarm clock (non digital!).

Anyways, I'll be interested to see how this one plays out.
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul Ferguson (Apr 14)
- Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul M. Moriarty (Apr 14)
  - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul Ferguson (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul M. Moriarty (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul Ferguson (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul M. Moriarty (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul Ferguson (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'SuspiciousBehavior' Larry Seltzer (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'SuspiciousBehavior' Paul Ferguson (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is 'SuspiciousBehavior' quispiam lepidus (Apr 15)
    - Re: Holy Crap: Using a Command Prompt is'SuspiciousBehavior' Larry Seltzer (Apr 15)
    - Re: Holy Crap: Using a Command Prompt is 'SuspiciousBehavior' Andre' M. DiMino (Apr 15)
    - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Richard Golodner (Apr 14)
    - Re: Holy Crap: Using a Command Prompt is'Suspicious Behavior' Larry Seltzer (Apr 15)
    - Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Paul Vixie (Apr 14)
- Re: Holy Crap: Using a Command Prompt is 'Suspicious Behavior' Art Green (Apr 15)