meciar said:
Back to the topic at hand... anyone heard any updates on this case? I'd be interested to see what becomes of it
Hi meciar
Until there is a court hearing then it can only be speculation. The following is only what I suspect to be true. I have no personal knowledge of the facts. I suspect that the whole thing is a storm in a teacup.
In the late 1990s there was a transition on small computer networks from Novell based system servers to NT. Initially, the new NT systems were established simply for internal communication purposes (eg, a site might have had 15 Novell systems but the users of each of these systems could not communicate with the users of the other systems, even if they worked in the next room). In order to smooth the way Microsoft provided a tool that automated the process whereby the new NT server could pick up the attributes (user IDs, passwords, security levels, etc,) of the existing Novell system. Each of the users would then fire up their shiney new, Windows based, PC and log in to what appeared to be a new system. All of their application programs would still be there. So, they had a new system that allowed email throughout the site, and possibly even to the outside world. What the users didn't know was that their own data was still being sent to them by the previous Novell servers. In many instances the security of the previous Novell servers was simply to have them installed in a locked room, no electronic security at all.
Eventually, the NT system was allocated an IP address and connected to the internet. What happened was that the NT server still retained supervisor equivalent accounts that resulted from the initial transition from Novell. All that is needed is the IP address and an unauthorised person can log in as a supervisor equivalent without the requirement of a password. The question is, from whom did McKinnon get the IP addresses? It is not about how he did it.
In his interview with Kerry Cassidy at
Project Camelot | Interviews and Reports
he seems to give a typically English response (ie, don't give anybody away). He also seems to give the impression that if the USA is going to continue to pursue him then he will reveal something. He doesn't seem to realise that an officer working at Fort Meade is not going to be intimidated in any way by this. As far as the officer is concerned, his/her colleagues are dying in battle overseas and he/she doesn't give a damn about some the threats of some upstart from England. Also, the threat of McKinnon revealing ?something? would not bother this officer. The important thing is to find out who divulged the IP addresses. Therefore, there is an entrenched situation.
Effectively, all that McKinnon needs to do is realise how important the USA regards the issue. Then he has to do the right thing, namely, give up his teacher/Greek philosopher/mentor or whatever/whoever it was that gave him the IP addresses. There might be more at stake than breaking into a few directories of documents here and there.
Woody
