The American (USA) 2016 presidential elections thread?

[Katman]

....because of the 33,000 emails she allegedly deleted in violation of a congressional subpoena.

Maybe she was smart enough to get rid of them before the subpoena was issued.

[husaberg]

Maybe she was smart enough to get rid of them before the subpoena was issued.

Maybe really..is that the best you can do.
being smart doesnt make her guilty of anything though does it.
Its interesting you infer she is guilty yet everyone, else even when they plead guilty and confess could still be innocent in your eyes.
Also rather interesting that despite Trumps rather long standing highly dubious record or not telling the truth, you chose to focus your sole attention on her.
It must be because that despite 40 odd years in the spotlight there has only been a few scandals involving her.
Yet trump has a new one that comes to light almost every day.

[Katman]

.....you chose to focus your sole attention on her.

Really?

You clearly haven't been paying enough attention.

[TheDemonLord]

Going on and on about the security of her own server use is rather stupid as i have aready said its an important issue

It's not JUST security, Audit policy, Backup Policy - these are all rather important things.

One thing you missed however is its perfectly acceptable to have a private email account for private emails.

I've never said anything to the contrary.

As i clearly stated the members of the trump administration were it seems also sending state department emails over their own private email accounts so for you to say its different is naive in its extreme.

It really isn't. Firstly - you've not provided any definitive evidence about the Trump administration using private emails, but furthermore:

Private Emails =/= having a Private server.

If someone were to use a Gmail address (as an example), which is a private email address - Google are generally one of the leading authorities when it comes to IT Security - Many of their senior members are also contributors to the IETF - in short, whilst it's bad and shouldn't be done it's leaps and bounds more secure than having your own privately managed server.

To give you an idea - I had to implement the Security standard that we use at my company - and I used the CIS document as a reference: https://www.cisecurity.org/wp-conten...ark_v2.2.0.pdf That's 700+ pages of configuration settings just for the Windows OS, not the Networking gear, Not the Mail Platform - just Windows.

With a public mail offering (such as Outlook, Gmail etc.) they strictly conform to the various standards, with a private server - there is no way to be certain.

Because its the exact same problem.

It really isn't - it's worse by orders of Magnitude.

As i clearly stated any official state department emails are still able to be tracked at the state department end. Are you suggesting this is not true?
Note saying she would be fired if it was a private company is rather stupid because it was not in the state department rules to do so.

Email security is one of the things I'm actually quite experienced in - I'll give a brief run down:

When you send an email, it passes through various servers as an example:

Outlook on your Local PC > Your outbound SMTP server > Outbound Mail filter > Recipient Inbound Mail filter > Recipient Mail store > Recipient Mailbox.

At each stage, each server writes a header which looks something like this:

recieved from (server name) by (server name); Time and date stamp

This gives you the trail of the email. There can be additional things - for example if the email has been scanned by SpamAssassin (or derived mail scanner) there will be a log for the score and any rules that were tripped. There may also be an SPF check result in the header and if the sender uses DKIM signing of emails.

The administer of a mail system will typically look at the headers to determine where a Mail has come from, if it was delayed and why etc. etc. BUT! The only control the Administrator has is over the records that have been written by the mail system that they manage.

Things get extra complicated when you use a vanity domain (such as user@kiwibiker.co.nz) as by default the Email protocol doesn't define any security or checking on the sender address (unless you use SPF or DMARC/DKIM) I could send an email proporting to be from admin@kiwibiker.co.nz, with spoofed headers and it would appear to you as completely legit.

Spoofing the IP addresses is a little trickier (especially if you want to have the session recorded as being from a specific IP address) but not completely impossible (especially if the discussion is regarding 'professional' hackers, as opposed to Script Kiddies).

The long and short of it, is that there is little to no authentication or verification done during an email transaction which makes it rather easy to spoof and manipulate and since this can all be done BEFORE the email reaches the Government servers: No - It's not true, hence my statement that the Article (and the defence) was Horseshit.

What is rather interesting about this whole debacle is the IT security never apparently realised her emails were not going to the state department official email address in the first place.
How is it possible that so many official emails were routed to the outside without anyone in IT ever even noticing or raising concerns?

I've managed multiple email systems (some with up to 100,000 users) - the only time I've ever "realised" something was amiss was when I was asked to look. To give you a sense of Scale - on one platform alone (just over 2000 domains) in a 24 hour period has a total over about 30,000 emails - do you think an Admin has time to look that closely? And that is a relatively small mail platform - and nowhere near the size and scale of what the US Government must have.

Furthermore - ya ever heard of the phrase "Biting the hand that feeds">

[Banditbandit]

By the way, if you want to be taken seriously, don't post links to Fox and Friends. Or Infowars. They cater to fuckwits.

That's got quite interesting really - Fox News is coming out against Trump - it is interesting to see what the crazy Right are saying about him.

Like this ..

https://www.thewrap.com/11-times-fox...ticized-trump/

I like this one - Fox News calls Trump 'disgusting' ..

https://www.independent.co.uk/news/w...-a8450746.html

Neil Cavuto is really harsh on him ...

https://www.businessinsider.com.au/f...17-6?r=US&IR=T

Cavuto to Trump: 'How Can You Drain the Swamp If You Keep Muddying the Waters?

http://insider.foxnews.com/2018/05/0...d-bannon-polls

Fox News host rips Trump: You're the president, why don't you act like it? (Cavuto again)

http://thehill.com/homenews/news/361...ou-act-like-it

[jasonu]

[QUOTE=Banditbandit;1131104604]Fox news

[husaberg]

Private Emails =/= having a Private server.

AS I have pointed out they members of the trump administration were sending what should have been secure government emails on their own accounts
I don't know why it is you three times now have ignored this and tried to down play it as being totally different.

The long and short of it, is that there is little to no authentication or verification done during an email transaction which makes it rather easy to spoof and manipulate and since this can all be done BEFORE the email reaches the Government servers: No - It's not true, hence my statement that the Article (and the defence) was Horseshit.



I've managed multiple email systems (some with up to 100,000 users) - the only time I've ever "realised" something was amiss was when I was asked to look. To give you a sense of Scale - on one platform alone (just over 2000 domains) in a 24 hour period has a total over about 30,000 emails - do you think an Admin has time to look that closely? And that is a relatively small mail platform - and nowhere near the size and scale of what the US Government must have.

Furthermore - ya ever heard of the phrase "Biting the hand that feeds">

All the rest while interesting is not at all what transpired all of Hillary emails were going not to some disguised proxy but to an email addressed simply as clintonemail.com.
now to suggest that the US state departments IT department could somehow not notice that 50000-1000000+ emails were being addressed and going to a outside address is rather simplistic.
Hillary although secretary of state never had or ever used a state.gov email account.
It turns out she never even used a desktop PC all her correspondence was on a blackberry. Scary.

[yokel]

So that's why Trump singles out CNN as fake news.



A little more on the "Deep State".

[yokel]

Yep, the supervisor signed it on the 8th of july and he was born the following month. As I said, an obvious american fake.
Actually I can't be bothered with this. If anything, you will be even further entrenched in your belief, as you will be convinced that someone is still trying to pull the wool over your eyes.
Sadly, they already have and there is nothing that could be done, said or shown that would change your mind.

No you muppet, they used the USA date format.
Does that mean this document is a fake??
Guess would need to know who runs this hospital.

[TheDemonLord]

AS I have pointed out they members of the trump administration were sending what should have been secure government emails on their own accounts
I don't know why it is you three times now have ignored this and tried to down play it as being totally different.

I've ignored it because as I've pointed out - this is rather relevant to what I do for a day job - and whilst private (but secure) cloud services is bad - a private Server is much Much MUCH worse.

To put in context - if someone happened to be using a personal address for Emailing in general, whilst they could be fired on the spot - they would most likely be given a wrap across the knuckles and told not to do it again.

Someone taking the time to build a server, install and configure an MTA on it With the sole purpose, intentional or otherwise, of bypassing current IT security Policy would be kicked out of the door in a second.

All the rest while interesting is not at all what transpired all of Hillary emails were going not to some disguised proxy but to an email addressed simply as clintonemail.com.

You are using the word Proxy, I don't think you are using it correctly. You are talking about an inbound email - which, with the exception of SPF and DKIM/DMARC - there is no authentication or verification done on Email.

This ties back to your point about the audit log of email sent TO the official accounts of other officials as being sufficient - it really isn't.

now to suggest that the US state departments IT department could somehow not notice that 50000-1000000+ emails were being addressed and going to a outside address is rather realistic.

Fixed.

(based on over a decade worth of experience administering Mail systems)

Hillary although secretary of state never had or ever used a state.gov email account.
It turns out she never even used a desktop PC all her correspondence was on a blackberry. Scary.

Although I don't know the US Government IT setup - I'd posit a series of educated guesses - it's probably Microsoft, backed by AD and with an Exchange server. I'd be very surprised if she didn't automatically have a domain email account.

Blackberries are interesting because they don't support Activesync - you need to use the very homosexual BES - which does require a server to run... BUT! BES is a bit of middleware - it's backed by something like an Exchange server (or other compatible Mail platform) - which again, makes me skeptical that she didn't have an official email address.

[yokel]

I've ignored it because as I've pointed out - this is rather relevant to what I do for a day job - and whilst private (but secure) cloud services is bad - a private Server is much Much MUCH worse.

To put in context - if someone happened to be using a personal address for Emailing in general, whilst they could be fired on the spot - they would most likely be given a wrap across the knuckles and told not to do it again.

Someone taking the time to build a server, install and configure an MTA on it With the sole purpose, intentional or otherwise, of bypassing current IT security Policy would be kicked out of the door in a second.



You are using the word Proxy, I don't think you are using it correctly. You are talking about an inbound email - which, with the exception of SPF and DKIM/DMARC - there is no authentication or verification done on Email.

This ties back to your point about the audit log of email sent TO the official accounts of other officials as being sufficient - it really isn't.



Fixed.

(based on over a decade worth of experience administering Mail systems)



Although I don't know the US Government IT setup - I'd posit a series of educated guesses - it's probably Microsoft, backed by AD and with an Exchange server. I'd be very surprised if she didn't automatically have a domain email account.

Blackberries are interesting because they don't support Activesync - you need to use the very homosexual BES - which does require a server to run... BUT! BES is a bit of middleware - it's backed by something like an Exchange server (or other compatible Mail platform) - which again, makes me skeptical that she didn't have an official email address.

The NSA/military has it all. https://youtu.be/y8cp1KvZKPo?t=8m44s
The internet is almost god like, it's watching and tracking everything you do, this is why the Shadow Government and their media are panicking.

[husaberg]

I've ignored it because as I've pointed out - this is rather relevant to what I do for a day job - and whilst private (but secure) cloud services is bad - a private Server is much Much MUCH worse.

To put in context - if someone happened to be using a personal address for Emailing in general, whilst they could be fired on the spot - they would most likely be given a wrap across the knuckles and told not to do it again.

Someone taking the time to build a server, install and configure an MTA on it With the sole purpose, intentional or otherwise, of bypassing current IT security Policy would be kicked out of the door in a second.



You are using the word Proxy, I don't think you are using it correctly. You are talking about an inbound email - which, with the exception of SPF and DKIM/DMARC - there is no authentication or verification done on Email.

This ties back to your point about the audit log of email sent TO the official accounts of other officials as being sufficient - it really isn't.



Fixed.

(based on over a decade worth of experience administering Mail systems)



Although I don't know the US Government IT setup - I'd posit a series of educated guesses - it's probably Microsoft, backed by AD and with an Exchange server. I'd be very surprised if she didn't automatically have a domain email account.

Blackberries are interesting because they don't support Activesync - you need to use the very homosexual BES - which does require a server to run... BUT! BES is a bit of middleware - it's backed by something like an Exchange server (or other compatible Mail platform) - which again, makes me skeptical that she didn't have an official email address.

You ignore it as it doesnt suit your agenda, same way as Katman does with all sorts of his conspiracies.
I will give you a hint all official American goverment emails addresses are state .govt no one has any different one, its the same here in NZ.
All goverment departments have a email address .govt.nz all local body employees here are govt.nz
Lets be very clear, she never once had a state.gov email address, anyone sending her an email would instantly see this.
I even posted what her email address was.
So what top level international goverment or state department did you work for again?
100,00's of state department emails from thousands of people and no one noticed, you are just being stupid.
Your opinion about the mater counts for little, you dont seem to fathom, that normal people take the opinion of the FBI over yours when it comes to both legal maters and criminal wrong doing.
You don't even take on board that she was 3 times cleared on criminal charges.

[Katman]

I will give you a hint all officcial american goverment emails are .govt no one has any different its the same here in NZ.
Lets be very clear she never once had a .gov email address anyone sending her an email would instantly see this.
I even posted what her emai address was.
So what top level international goverment or state department did you work for again?
100,000 of thousands of stat departement emails and no one noticed you are just being stupid.
Your opinion Aabout the mater counts for little, you dont seem to fathom that normal people take the opinion of the FBI over yours when it comes to both legal maters and criminLal wrong doing.
You don't even take on board that she was 3 times cleared on criminal chargess

For fuck's sake, what language is that?

[Katman]

You ignore it as it doesnt suit your agenda, same way as Katman does with all sorts of his conspiracies.
I will give you a hint all official American goverment emails addresses are state .govt no one has any different one, its the same here in NZ.
All goverment departments have a email address .govt.nz all local body employees here are govt.nz
Lets be very clear, she never once had a state.gov email address, anyone sending her an email would instantly see this.
I even posted what her email address was.
So what top level international goverment or state department did you work for again?
100,00's of state department emails from thousands of people and no one noticed, you are just being stupid.
Your opinion about the mater counts for little, you dont seem to fathom, that normal people take the opinion of the FBI over yours when it comes to both legal maters and criminal wrong doing.
You don't even take on board that she was 3 times cleared on criminal charges.

Your edited version is no better.

Pillock.

[yokel]

Your edited version is no better.

Pillock.

What about that Russian collusion conspiracy theory??
Haha.

Here's a conspiracy fact on the sinking of the Lusitania.