Scanlyze

The Online Journal of Insight, Satire, Desire, Wit and Observation

DNC and Hillary Clinton’s email servers controversy update

Is there a smoking gun proving that the GRU, Russian Army General Staff Intelligence, hacked the DNC email? And what about Hillary’s illegal server at home?

A smoking gun would be we traced this connection back to GRU Headquarters *and* could prove that *only* they got into the DNC and/or HC’s illegal basement server. Or if there was human intelligence to confirm. That still doesn’t rule out an inside whistleblower such as Seth Rich or a Snowden type at State. Let’s ask Brian Pagliano about that possibility, for instance. He took the fifth before Congress.

What we have heard suggested so far is, we saw a connection from a compromised machine in Germany which we think was used last year by a group we think is associated with GRU, and some linguistic patterns in messages which indicate a Russian speaker may have written them.

The first is suggestive but not proof. If a machine was open for years, it might have more than one group using it. If you will run SNORT and ACID, you will see people/things scanning you for weakness every day, all the time. Lingustic patterns proves pretty much nothing. Also “A Russian speaker did it” is a lot different than “GRU did it and was the source of the leaks.”

The other side of it is that if Fancy Bear and Cozy Bear are in fact GRU assets, and they did hack the DNC email, and we have only Crowdstrike (a private company employed by the DNC)’s word on this, it doesn’t prove that GRU was the source of the leaks.

What about Hillary Clinton’s illegal homebrew basement server?

Michael Lazar Lehel, a Romanian who has been in US custody since April 2016, claimed he had hacked Hillary’s illegal mail server:

Lehel was convicted of hacking email of a number of prominent figures including two former Presidents and a number of other officials and former officials, including Clinton crony Sid Blumenthal. Lehel was the first source of the information that Clinton had an illegal offsite server, but that doesn’t prove he actually got in. He might have just read the header on some of Clinton’s exchanges with Blumenthal, for instance.

Lehel said Clinton’s server was, “like an open orchid on the Internet” and that “it was easy … easy for me, for everybody.”

Mike Hayden former CIA Director and former NSA director said, “I would lose all respect for a whole bunch of foreign intelligence agencies if they weren’t sitting back, paging through the emails,” with regards to Clinton’s server.

Clinton reportedly had warnings from staff at State that there was evidence that her home server had been breached and it was temporarily shut down due to this.

Some analysis I have read suggests that TLS was incorrectly configured when the server was set up. That plus the really secret and hard to guess what it is name of “clintonemail.com” plus the geographic location in Chappaqua, New York in Clinton’s basement, plus that they left a server configuration program (CPANEL?) open to the outside world, was basically sending out an invitation to every bad actor in the world, of “House party at Hillary’s! Secret clandestine stuff free for the taking.”

My suspicion is that GRU probably hacked Clinton’s server and the DNC and probably so did at least a half dozen other state actors plus God knows how many private individuals.

Copyright © 2016 Henry Edward Hardy

scanlyze1

13 December, 2016 - Posted by | computer, email, forensics, Hillary Clinton, scanlyze | , , , , , , , , , ,

2 Comments »

  1. Another thing which impresses me is the extraordinary incompetence of the people who set up and ran Clinton’s illegal email server.

    I would absolutely have refused to set it up if I was in the place of Pagliano and would most likely have gone to the IG to blow the whistle and failing that, to someone like Wyden on the Intelligence Committee with security clearance to receive the information about what was happening.

    But, if I wasn’t a person of good character, still. TLS would have been set up correctly so that all connections would be encrypted. The disks would be fully encrypted with an old clean copy of Trucrypt. All critical system programs would be on nonvolitile media so they could not be changed easily. And a remote server would monitor via Tripwire to make sure nothing changged which should not change, such as log files suddenly getting smaller. And all email would have been encrypted with PGP and private keys stored offline so that even if the server was breached or a mail was intercepted, there would be an additional layer of encryption to break.

    The incompetence of Clinton and her staff and cronies is matched only by their mendacity.

    Comment by scanlyze | 13 December, 2016 | Reply

  2. The way I originally wrote this confounded the two issues of DNC and Clinton’s home email. The two issues are related as an attacker getting into one had a roadmap to compromise the other. But I have done a slight rewite to try to separate the two now in the post.

    Comment by scanlyze | 14 December, 2016 | Reply


Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

« Previous | Next »

%d bloggers like this: