federal 'fix' knocks ca.gov for a loop | networkworld.com community
federal 'fix' knocks ca.gov for a loop | networkworld.com community
tuesday, november 13, 2007
homeresearch centers+ securityanti-virus / spyware / spamcompliance & regulationfirewalls / vpn / intrusionnacservicescisco security watchmicrosoft security watch+ lans & wansbroadband servicesethernet switchesmetro ethernetmplsrouters+ voip & convergenceip pbxsipunified communicationsvoip services+ network managementapplication managementdesktop managementitilpatch management+ wireless & mobilepdassecuritywifiwimax+ softwareapplicationscollaborationjavaworld.comlinuxworld.commessagingmiddlewaresaassoawindows+ data centerdesktopsnassansserversstorage mgmt.utility computingvirtualization+ small business networkingbroadbandcollaborationequipmentmobilenetworkssecuritystoragecisco subnetmicrosoft subnet
events
it buyer's guides
careers
nw subscription
nw idemand
about us
site resources
news
newsletters
tests / buyer's guides
community
opinions
blogs
podcasts
chats
encyclopedia
this week in print
white papers
executive guides
special reports
salary calculator
webcasts
rss feeds
video library
linuxworld.com
javaworld.com
demo.com
partner sites
-on demand security
-procurve solutions
-procurve products
-networking solutions
special issues
new data center
soa and the adaptive data center
new
into the virtualization realm
salary survey
2007 salary survey report
guide to
data center automation new
sponsored links
see your link here.
buzzblog
networkworld.com > community > network world blogs > paul mcnamara's blog
navigation
log in
post
register
recent posts
search community / blogs:
federal 'fix' knocks ca.gov for a loop
submitted by paul mcnamara on wed, 10/03/2007 - 2:43pm.
even the government shudders when someone says they're from the government and they're here to help.
case in point: a hacker's diversion of traffic from a california county government web site to a porn purveyor spiraled into it chaos yesterday after a countermeasure applied from washington essentially "deleted the ca.gov domain."
order was restored only after seven hours of frenzied coast-to-coast communications and a "forced propagation" of ca.gov network systems, according to jim hanacek, public information officer for the california department of technology services.
"we don't for sure have the whole picture, but as we understand it, there was some event at the transportation authority of marin county where their site got hacked," hanacek told me this afternoon. traffic was being redirected from that site to one featuring pornography.
a department within the u.s. general services administration in washington oversees and polices the .gov domain.
"the federal government saw this incorrect use of ca.gov and they made a change at a much more global level than probably was necessary and it started taking down all of our ca.gov domain," says hanacek. "that impacted web access and e-mail services."
a network world reader whose brother works for a california state agency forwarded me an e-mail alert that his brother received: "the department of technology services (dts) has notified us that the federal government inadvertently deleted the ca.gov domain. as the evening progresses you may experience an impact in your ability to access some web sites and exchange e-mail. dts is working with their federal counterparts to restore service as quickly as possible but service may not be restored until tomorrow morning."
the change from washington was made around noontime yesterday on the west coast ... and things quickly got worse.
"unfortunately there was no prior notification, they just made the change and sent us an e-mail to one of our administrators who wouldn't be a normal contact," hanacek says. "once that person saw the e-mail and started looking we determined how serious this could be and we opened our emergency operations center. unfortunately that was about 3 in the afternoon and folks back east were already going home, so it took us some time to get hold of the right people in the general services administration to get this address reinstated."
those corrections began between 4 and 5 p.m. pdt but didn't restore full normalcy until about 7:30 p.m.
hanacek indicated that california's it people will be having a chat with their washington counterparts: "we'll certainly be discussing how we should be notified of a change of this magnitude."
welcome regulars and passersby. here are a few more recent buzzblog items. and, if you'd like to receive buzzblog via e-mail newsletter, here's where to sign up.
this year's "25 geekiest 25th anniversaries."
a burning question: what's up with all the fires?
verizon fios installation sparks ... nothing?
mit tries to put the prank back in "hacking."
a defense against photoshop funny business.
how much does the computer store owe this pc buyer?
the next 5 items that google might buy from nasa.
'hello, you have reached my iphone.'
rove resigning to spend more time with his iphone.
when a cell phone goes through the washer.
paul mcnamara's blog
reply
delicious
digg
reddit
furl
facebook
google
yahoo
permalink
read more about:security
i love how states always submitted by juan (not verified) on wed, 10/03/2007 - 9:11pm.
i love how states always seek to blame the fed when things go wrong :)
seems they hold a large piece of the problem here.
they failed to secure their systems and were unaware of the porn redirect. gsa was notified of the abuse and like all registrar's notified the technical and administrative contact.
ca.gov says they contacted the wrong employee but wait a min. the reason you have technical and administrative points of contact is so that the registrar can contact the right people, right? is that not the purpose?
so ca.gov failed to update thier own records, gsa got no reply and took the prescribed action. delete. its a government domain that forbids porn.
hash perhaps but i bet ca.gov will take action to keep their records up to date and increase their security program.
report as spam
reply
exactly! that's why porn on submitted by anonymous (not verified) on thu, 10/04/2007 - 10:28am.
exactly! that's why porn on the internet should cause the whole .com to be deleted!!!!!!
report as spam
reply
urm. submitted by peter (not verified) on wed, 10/03/2007 - 9:23pm.
urm. porn on a .gov domain will get you deleted if and when you fail to take action to correct it.
the blame resides with those responsible for ca.gov. they failed to keep their domain records up to date and as a result, the wrong employee was being notified to fix the problem.
had they kept their poc's up to date, they would have been notified of the hack as well as the pending domain deletion.
just like a government org, they try to spin themselves out of responsibility....
report as spam
reply
this was something.something.ca.gov that got hijacked submitted by billstewart on wed, 10/03/2007 - 10:23pm.
sure, the individual machine that got hijacked probably should have been taken down until they could clean it up, though even that's not necessarily true depending on whether there were critical functions that could still be accessed even though other parts were scribbled. but that doesn't mean that somebody should take down the dns for the entire state government without extensive discussions first
and yes, the state and counties should keep their whois data and the emails that it points to up to date - that is the kind of thing it's for. but the feds who decided to shut down the whole state because of one machine were also seriously irresponsible. also, i couldn't tell from the article, which said the admin who received the mail "wasn't the normal contact", whether the fed sent mail to the listed contact or not, and whether it was the listed contact for the whole state, or the county, or the county transport agency where the problem actually was.
report as spam
reply
few things to remember:
the submitted by anonymous (not verified) on thu, 10/04/2007 - 10:32am.
few things to remember:
the state of california is one of the larger governments bodies *in the world*.
the people who had thier machine hacked were part of a county government (marin, where yuppies came from). county govt's are semi-autotonomous from state govt entities.
instead of taking the dns record out for the server/organization in quesiton, the feds blew out the dns record for the entire *.ca.gov. basiclly using a shotgun to kill an ant.
the change had the potential to affect every organization in the state (yes, you wouldn't have even been able to e-mail arnie to complain!). for some agencies, this effect was even a public saftey issue.. (its still summer..fire season.. do we really want our dept of forestry not to be able to e-mail? highway patrol?
it is a wake-up call though to ensure that emergency contact lists are kept up to date.. including ones that go outside a single organization (or even government body!)
report as spam
reply
just remember you're wrong *if*... submitted by kerry smith (not verified) on sun, 11/04/2007 - 8:02pm.
if there's a disaster in a liberal state, and the republican federal government either hesitates to take action (nola), or in the case of *.ca.gov takes drastic, overreaching action...
it's the liberal area's fault. don't bother with nuancey definitions like a little server in marin or something.something -- it's yer own damn fault! even (especially) if it isn't... because nothing works better after a screwup of great magnitude than misdirecting the blame.
here in the internet age, much business is conducted online. for the federal government to take down the entire *.ca.gov without calling to discuss, to negotiate, without *speaking* to the humans using that many-tiered domain on the other side of the country -- that's just plain stupid.
it means they didn't understand the ramifications of deleting the entire domain. the person who made that decision shouldn't have been in charge of making that kind of decision. if they had understood what they were about to do, they wouldn't have done it. period.
as a unix sysadmin, i can tell you, it's a simple matter to delete a *subdomain* of a domain such as marin.ca.gov. it is also a minor effort to change the nameservers of that subdomain, such that it is no longer hijacked. really.
report as spam
reply
politics submitted by mwkingsandiego on thu, 10/04/2007 - 10:26am.
well, the article doesn't clearly tell us if in fact the whois info was correctly up to date, or if the feds didn't contact the person(s) named. but still, i doubt that the records for a county department and the state of california would be out of date in such a way, and that the feds couldn't think of anyone in calif to call when their email went unanswered.
for those of you who believe in the warren commission report, no doubt the answer is in a whois registration. for those of us who don't subscribe to the lone gunman theory - this is two political bodies, approaching an election year, although i thought w and the governator were on good terms untill the healthcare for children debacle last month... or, it's two massively large, budget-challenged groups of civil servants... hummm
report as spam
reply
this is why lots o gov is moving to other tlds submitted by anonymous (not verified) on thu, 10/04/2007 - 8:53pm.
this is one reason why so much government (especially at muni and state levels) is moving to non gov tlds. i had to promote such a solution to avoid a similar situation at a state level. there are other issues and other responsibilities, but at least you don't have someone who is in no way responsible or beholden to you turning the lights off because of a bit of porn..... we are worse prudes than the victorians, and instead of pulling the plug uncle should have asked whether or not the porn was the authorized content of the county, as porn is a major industry in the valley after all.... that is unless you, like felix, can't describe it but know it when you see it......
report as spam
reply
congrats feds submitted by eliena andres (not verified) on thu, 10/04/2007 - 11:21pm.
feds are doing really gr8 job shutting down websites and irritating ppl with their wise knowledge... i don't understand why feds are so irresponsible this much...
eliena andrews
report as spam
reply
government i.t. security procedures? submitted by steven ashley (not verified) on fri, 10/05/2007 - 6:36pm.
i really have to wonder what the government i.t. security procedures are, after this latest gaff. isn't the first rule of administrating anything in i.t., before making a change, make a backup copy in case you screw up whatever your changing. and the second rule, know how to restore from your backup.
the fed employee evidently did not know one of those rules since the reason it took 7 hours to recover, because it happened at the end of a work day, it took that long to find someone who knew how to recover from the error.
last week, in response to news of chinese hackers had broken into defense department computers, i said:
the u.s. government needs to wakeup the severity of the security problems we are currently having and be made aware just how terrible they could get. then government needs to get serious in mandating information security protocols on sensitive material both public and private.
until they do, i know i'm going to sleep a little less secure at night, how about you?
how much worse to these accidents need to get, than taking down all the government websites of the countries largest state, and no, i'm still not sleeping very well.
report as spam
reply
12next ›last »
comment viewing options
flat list - collapsedflat list - expandedthreaded list - collapsedthreaded list - expanded
date - newest firstdate - oldest first
10 comments per page30 comments per page50 comments per page70 comments per page90 comments per page150 comments per page200 comments per page250 comments per page300 comments per page
select your preferred way to display the comments and click "save settings" to activate your changes.
click here
click here
about buzzblog
when not blogging, i am a network world news editor and write the 'net buzz column.
contact me.buzzblog archive.
advertisement:
research centers:
applications-standards | applications vendor solutions | crm / erp | databases | directories | grid computing | .net | rfid | soap | web services | xml | convergence regulatory |convergence standards | video | voip | acceleration | gigabit ethernet | lan standards | management test | nac | identity management | patch management | microsoft security | privacy | security standards | viruses & worms | web security | backup-recovery | data center | desktop management | grid | server blades | servers desktops | telework | handhelds & pdas | home networking | online games | infiniband | storage virtualization | virtualization | vendor news | bankruptcy | earnings | lawsuits | layoffs | standards | start ups | vendor markets | education | financial | healthcare | hipaa | manufacturing | retail | service providers | pdas & handhelds | wireless standards | wireless switches | all company profiles | cisco subnet | microsoft subnet | download library
| cell phone scan
about network world, inc. | advertise | careers | contact us | terms of service/privacy | reprints and links | partnerships | press room | subscribe to nw
copyright, 1994-2007 network world, inc. all rights reserved.
idg network:
cio
computerworld cso
demo
gamepro
games.net
idgconnect.com
idg world expo
infoworld
javaworld.com
linuxworld.com
macuser
macworld
pc world
playlistmag.com
Acceuil
suivante
federal 'fix' knocks ca.gov for a loop | networkworld.com community DriverAgent.com Fix Your Driver Problems Instantly with Driver Agent Cafe Hayek: Just Fix It Fix for securityd hogging RAM when reauthorizing apps' Keychain ... VCOM: V Communications. Security, Web, OS Management, Partitioning ... What To Fix Gallery 2.2.3 Security Fix Release Gallery The Simple Dollar » 31 Days To Fix Your Finances: A Wrapup Dura Fix Aluminum Welding Aluminum Brazing Aluminum Soldering ... Fixit Guide Series - DIY Mac & iPod Repair Pierre Fix-Masseau affiches sur AllPosters.fr Nail Fungus Onychomycosis - Fix My Fungus Oral Fixation Mints / Get Your Fix Fix for COM Surrogate Has Stopped Working Error in Vista :: the ... adaptive path » 8 quick ways to fix your search engine Solar shield could be quick fix for global warming - earth - 05 ... Free Registry Fix 3.9 for Windows Video Coldplay - Fix You - coldplay, fix, you, clip ... FIX: Update to enable DirectX Video Acceleration (DXVA) of Windows ... You receive an access violation error and the system may appear to ... GRC CIH Virus Recovery How to Fix CGI - majordojo serious fix 4.1 Why Blog Post Frequency Does Not Matter Anymore Marketing Profs ... FOSSwire » Fix a Frozen System with the Magic SysRq Keys Windows Vista Team Blog : Partners helping fix Vista Software ... Objet Publicitaire : Magnet Magic fix - ALB01.com Indonesia's three divas fix the nation's finances International ... Rob Galbraith DPI: EOS-1D Mark III sub-mirror fix announced in USA ... KompoZer - Easy web authoring Mr. Fix It (2006) macosxhints.com - Twenty steps to help diagnose and fix system issues ca-fix program description. Fix your Exposé keys - WOW Insider IndieHIG » Blog Archive » Fix the Leopard Folders (FTLF or FTFLF) Blogger Buzz: A Layout Solution M·A·C Cosmetics Studio Fix Powder Plus Foundation The Right Way To Fix Inaccurate Wikipedia Articles The Daily Fix - WSJ.com The Art of Colin Fix Berkshire Computer Repairs And Servicing - 1-Fix Computer Services OpenBSD 3.4 errata Rob Galbraith DPI: Canon EOS-1D Mark III autofocus fix may be two ... The Hotfix - Vista SP1, XP SP3, IE8, Home Server, and more! - Home Tricia Fix Originals. Florida born fashion designer Opinion Fix public education Seattle Times Newspaper Can Architects Fix Construction’s “Busted Budgets”? News ... Macrovision: Updating the Macrovision SECDRV.SYS Driver Apple Releases Fix For iMacs That Freeze Up -- Apple ... PINBALL: Pinball Repair Guides. Collector buys pinball, arcade ... How to Fix a Scratched CD - wikiHow Fix290 Simple "ntldr is missing" fix with boot floppy, CD-R, or USB flash [Profil de Fix] OverBlog - Le blog des blogs We Can Fix That with Data A race to fix a 30-year-old 'solution' csmonitor.com Eye Fix Photos: Photo Restoration and Retouching FIX définition FIX The new urgency to fix online privacy Perspectives CNET News.com Finding a Fix À propos de votre fix « Le Blogue d’Ironica