Security guru being pestered by the FBI for logs...
By Dan Ilett
Published: 29 November 2004 10:35 GMT
The creator of the famous hacking tool Nmap is being hounded by the FBI for copies of web server log data from his Web site Insecure.org.
Fyodor, as he is known, is a well known figure in the security world, specifically for his work with Nmap. In his blog, Fyodor said that the authorities were asking him for details but failing to give reasons of what they were up to.
His message said: "FBI agents from all over the country have contacted me demanding Web server log data from Insecure.Org. They don't give me reasons, but they generally seem to be investigating a specific attacker whom they think may have visited the Nmap page at a certain time."
The open-source network mapping program was designed to help security experts scan networks, services and applications. But some hackers have used the tool for malicious purposes, which Fyordor indicated he was unhappy with.
"One can argue whether helping the FBI is good or bad. Remember that they might be going after spammers, cyberextortionists, DDoS kiddies, etc. In this, I wish them the best. Nmap was designed to help security - the criminals and spammers put my work to shame!"
Fyodor said he thought the FBI wanted access to his Web logs to investigate malicious hackers. "They don't give me reasons, but they generally seem to be investigating a specific attacker who they think may have visited the Nmap page at a certain time. So far, I have never given them anything. In some cases, they asked too late and data had already been purged through our data retention policy. In other cases, they failed to serve the subpoena properly. Sometimes they try asking without a subpoena and give up when I demand one."
The security expert added that he would like to protect his privacy when dealing with the FBI. "I'll try to fight anything too broad (like if they ask for weblogs for a whole month). Protecting your privacy is important to me, but Nmap users should be savvy enough to know that all of your network activity leave [sic] traces. I'm not the only one who gets these subpoenas - large ISPs and web mail providers receive them daily."
In October, FBI agents seized servers in the UK from news company Indymedia. Agents served a subpoena to Indymedia's hosting company in the US, Rackspace, to hand over the computers beforehand.
British and US governments have failed to provide an explanation for the action and why the FBI was allowed to operate in London.
Dan Ilett writes for ZDNet UK.
I think the fbi should say thank you to you. for ...
Anonymous
My goodnes, this is scary stuff. I thought the Ges...
Paul Weegar
Get an NDA signed with the FBI for all other mater...
Ashish Majithia
A Data Privacy expert is required for a large banking client in Canary Wharf. The successful candidate will have experience with the following: - ...
Log test results and report against. Experience of test tool usage for test metrics, scripting, defect tracking and reporting. Test tool ...
By applying for this job you accept the T&C's, Privacy The extranet is web based and uses SharePoint as a collaboration tool, while working in ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Tim Ferguson Exclusive: Former MySQL boss Marten Mickos talks open source Why Microsoft could become one of the "biggest friends of open source" and why Oracle getting its hands on MySQL could be "one of the biggest open source coups ever"...
Naked CIO Naked CIO: Cloud computing more expensive than we thought? Smart IT leaders will examine the impact of how they pay for tech