Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Physical security of the Clinton e-mail sever
And Still I Persist… ^ | March 10, 2015 | Bruce F. Webster

Posted on 03/10/2015 9:00:22 PM PDT by 2ndDivisionVet

I’ve raised in prior posts (here and here) the issue of physical security of the clintonemail.com e-mal server, which is why were it was located and how it was set up matters. Last night, Mitch LaKind — who has experience setting up secure military e-mail servers — wrote me about the detailed issues surrounding Clinton’s approach. I’ll let him speak for himself (emphasis mine, though):

As a former contractor to the Air Force, I personally managed the Microsoft Exchange servers that were installed at Thule Air Base. My experience with Microsoft Exchange goes back to 1997, when the earliest versions were just being introduced. . . . So, I have a bit of knowledge myself when it comes to email.

Anyway, the point I wanted to make, and perhaps if you feel that it is noteworthy you can share my info to those that can get it out into the public eye, is about the Network that the email server was running on.

The US gov’t, and more specifically the DoD and State Department run the NIPRNet (non-classified Network) and SIPRNet (classified Network up to SECRET). Having a server, regardless of location would have to be on a network that met the rating for which classified material would be traveling over it.

It would be impossible for the Secretary of State to be effective at her job if she didn’t correspond about topics that had classified material. We don’t have to argue about whether or not she was effective .

So, if for example Clinton only dealt with SECRET materials and they were sent or received in her email, all of the equipment (routers, switches, etc.) would have to be rated for that SIPRNet connection. Also, the space in which the equipment and servers and client computers resided in would also have to meet the specifications for SECRET material. This would include various forms of physical access to the space in the form of secure cards, biometrics, etc. No space rated for SECRET opens with a key from the local hardware store.

That being said, if the room and equipment was rated for SECRET, it would leave a huge paper trail as all the equipment and effort to make the space secure would require procurement and assignment of goods and services. This would mean that the federal government was not only aware of the remote server, but also complicit.

Even a NIPRNet connection would have similar logistics behind it, because of the very nature the connection would have been some type of point to point to the server.

The biggest issue I see here would be is if the server was connected to the public Internet and it resided in a non-DoD-approved space.

Yeah, I’ll say. Other have been pointing this out, and I’ve touched upon it, but Mitch really gets to the heart of a key issue: either the Clinton server room — wherever that was — was SECRET-level secure, and the government was involved in setting it up, or it wasn’t, and that end of the communications link was at risk.

Neither answer looks good for HRC.


TOPICS: Breaking News; Crime/Corruption; Foreign Affairs; Government; News/Current Events; Technical; US: Colorado; US: New York
KEYWORDS: abedin; clinton; computersecurity; email; emails; englewood; hdr; hdy; hillary; hillaryclinton; hillarycriminalprobe; hillaryemailpresser; hillaryemails; hillaryemailserver; humaabedin; internap; internet; manhattan; mxlogic; nationalsecurity; nyc; server; tech
Navigation: use the links below to view more comments.
first previous 1-20 ... 41-6061-8081-100 ... 141-160 next last
To: 2ndDivisionVet

I’ve done IT at various levels and still do websites and database code. There are mannnny security issues beyond the ones mentioned above.

Who was Hillary’s IT guy? Did he have a security clearance? What software did he use and was it maintained and patched at all times? Why is clintonemail.com pingable even now? What hardware was used and how robust? Was there backup power? A failover server? Was the email database replicated? What was the backup media? What routers were used and what version? Was the upchain service provider secure? Has anyone checked for packet sniffers? Were the emails encrypted?

The list goes far beyond even this.


61 posted on 03/11/2015 12:34:03 AM PDT by DaxtonBrown (http://www.futurnamics.com/reid.php)
[ Post Reply | Private Reply | To 1 | View Replies]

To: 2ndDivisionVet

Maybe she procured equipment, goods and services through private sources?

Was it revealed this was in fact a fedgov supported installation?


62 posted on 03/11/2015 12:44:44 AM PDT by dragnet2 (Diversion and evasion are tools of deceit)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Herosmith
Ok I pinged clintonemail.com and got an IP of 208.91.197.27. Then I went to http://www.iplocation.net/ and plugged in the IP and got very interesting results.

According to domaintools.com, that server is located on Tortola, in the British Virgin Islands.

But, lest you get too excited, domaintools.com claims there are 1,187,342 websites at that address. Moreover, for $11,873, domaintools will sell you the full the list! LOL! E.g., try pinging wesi.com and see what IP it goes to.

Obviously, it's been reconfigured. The last thing the Hildebeest needs is a million hackers slowing down her Netflix while trying to hack into her server. Let Confluence Networks or whoever deal with that!

63 posted on 03/11/2015 12:52:10 AM PDT by cynwoody
[ Post Reply | Private Reply | To 9 | View Replies]

To: SpaceBar
In Hillary’s presser she said the secret service were there guarding the server so it’s secure. So a guy standing there in the room with a glock is supposed to guard against hackers? Because that is precisely what she implied.

I like the way she suddenly bolted from the room as questions started to fly.

Maybe these guys were from an SS data security snoop squad or contractors. But it still begs the question, how could they not know what Clinton is doing? And what specific system of security was she using?

64 posted on 03/11/2015 12:55:54 AM PDT by dragnet2 (Diversion and evasion are tools of deceit)
[ Post Reply | Private Reply | To 11 | View Replies]

To: Herosmith

Meaningless trivia just for fun:

Englewood NJ [as opposed to CO] is the town that Libyan dictator Qadaffi attempted to stay at but was refused by the town mayor, etc, back in 2009.


65 posted on 03/11/2015 12:57:02 AM PDT by piasa (Attitude adjustments offered here free of charge)
[ Post Reply | Private Reply | To 45 | View Replies]

To: cynwoody

you need to ping mail.clintonemail.com

that information is not old


66 posted on 03/11/2015 1:04:18 AM PDT by Herosmith ("Hindsight alone is not wisdom, And second-guessing is not a strategy." - GWB)
[ Post Reply | Private Reply | To 63 | View Replies]

To: MacMattico

I think he may be in error due to what I found.


67 posted on 03/11/2015 1:06:12 AM PDT by Herosmith ("Hindsight alone is not wisdom, And second-guessing is not a strategy." - GWB)
[ Post Reply | Private Reply | To 59 | View Replies]

To: Herosmith
9781 S MERIDIAN BLVD, STE 400 ENGLEWOOD, CO 80112-5936 (720) 895-5744

Call the number yet?

68 posted on 03/11/2015 1:06:31 AM PDT by dragnet2 (Diversion and evasion are tools of deceit)
[ Post Reply | Private Reply | To 45 | View Replies]

To: dragnet2

See post 51.


69 posted on 03/11/2015 1:07:33 AM PDT by Herosmith ("Hindsight alone is not wisdom, And second-guessing is not a strategy." - GWB)
[ Post Reply | Private Reply | To 68 | View Replies]

To: DB

I agree...


70 posted on 03/11/2015 1:07:49 AM PDT by dragnet2 (Diversion and evasion are tools of deceit)
[ Post Reply | Private Reply | To 60 | View Replies]

To: Herosmith
May have found server location...

Your link states:

Which IP numbers does clintonemail.com use?

CLINTONEMAIL.COM uses the IP number 208.91.197.27 only which also WESTERNLAWN.COM, SHANKHASSICKFARM.COM, MAIL.USOPENSHOP.ORG and more than a million other use.

And indeed WESTERNLAWN.COM resolves to 208.91.197.27, as does clintonemail.com.

Where the server now is, is irrelevant.

Obviously, it needs to be someplace other than where it used to be, or else the Clintons' Netflix would be negatively impacted by all the hacker traffic. DNS is reconfigurable.

71 posted on 03/11/2015 1:12:50 AM PDT by cynwoody
[ Post Reply | Private Reply | To 45 | View Replies]

To: cynwoody

Read post 51.


72 posted on 03/11/2015 1:22:14 AM PDT by Herosmith ("Hindsight alone is not wisdom, And second-guessing is not a strategy." - GWB)
[ Post Reply | Private Reply | To 71 | View Replies]

To: Herosmith
that information is not old

That's the point.

The old location would have been where the server really was, guarded by those Glock-bearing, navy-blue Surban-riding dudes, who might have wondered in retrospect why that hard drive was so active.

Nowadays, that box needs to be somewhere else, or else the hacker traffic to 15 Old House Ln, Chappaqua, NY 10514 would overwhelm and impinge on the Hildebeest's Netflix experience, in stark violation of Net Neutrality!


73 posted on 03/11/2015 1:26:32 AM PDT by cynwoody
[ Post Reply | Private Reply | To 66 | View Replies]

To: 2ndDivisionVet

The physical security is irrelevant if the machine was on a network, public or private, and even with Level 1 encryption.


74 posted on 03/11/2015 1:29:27 AM PDT by Rummyfan (Let us now try liberty)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Robert A. Cook, PE
The most shocking thing about this whole Megillah... Hillary takes yoga!
75 posted on 03/11/2015 1:31:00 AM PDT by Rummyfan (Let us now try liberty)
[ Post Reply | Private Reply | To 2 | View Replies]

To: SpaceBar
In Hillary’s presser she said the secret service were there guarding the server so it’s secure. So a guy standing there in the room with a glock is supposed to guard against hackers? Because that is precisely what she implied.

It's laughable I know.

76 posted on 03/11/2015 1:33:14 AM PDT by Rummyfan (Let us now try liberty)
[ Post Reply | Private Reply | To 11 | View Replies]

To: jonascord
If she was a republican, her main worry would be that the hangman would drop her so far that her head would be torn off.

Indeed.

If you look at some of the lib sites, these retards are actually asking "What's the big deal?"

So many retards out there who forgive a 'D' anything. After all, she's working for the good of the people, you know. It's not like she's an evil Republican or, God forbid, a right-wing conservative Tea Party'er!

77 posted on 03/11/2015 1:37:24 AM PDT by Rummyfan (Let us now try liberty)
[ Post Reply | Private Reply | To 16 | View Replies]

To: Rummyfan

The yoga bit is nothing...What she REALLY doesn’t want us to find out is that she read Fifty Shades of Grey.


78 posted on 03/11/2015 1:41:36 AM PDT by MaskedMan
[ Post Reply | Private Reply | To 75 | View Replies]

To: cynwoody

Nice house for someone that was broke when they bought it.

Imagine what they would have if they had money.


79 posted on 03/11/2015 1:43:52 AM PDT by Fresh Wind (Falcon 105)
[ Post Reply | Private Reply | To 73 | View Replies]

To: Herosmith
Read post 51.

Well, now, that's interesting.

A quick nmap reveals an open port 443 ...

Surfing there brings up a browser warning page about SSL security, something about the certificate claiming to be for mail.clintonemail.com but not being able to prove it (IOW, probably self-signed).

If I blow past the warning, I see the following login page:


80 posted on 03/11/2015 1:47:46 AM PDT by cynwoody
[ Post Reply | Private Reply | To 72 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-20 ... 41-6061-8081-100 ... 141-160 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson