Quantcast
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

For Jim March (at his request)

Discussion in 'Legal' started by Derek Zeanah, Nov 17, 2004.

Thread Status:
Not open for further replies.
  1. Derek Zeanah

    Derek Zeanah System Administrator Staff Member

    Joined:
    Dec 20, 2002
    Messages:
    8,257
    Location:
    Statesboro, GA
    Jim's thrown together a little demo showing how vulnerable these Diebold voting machines are. It's a big file, so it's being hosted in a manner that many here likely aren't familiar with.

    Here are the details:
    • This uses an application called "Bittorrent," which many haven't heard of, but which apparently is responsible for two thirds of the bandwidth used on the Internet today.
    • This works by distributing the load between uploaders and downloaders. Basically, everyone who downloads also uploads. This means that the more people that use the system, the greater the performance.
    • Things really speed up if you're willing to leave the application up and running after your download is complete.
    Want to get a copy of the (160 megabyte) file? Here's what you do:
    1. Make sure yoy have a bittorrent client installed. The original client is easy to use and works well, but there's a much more full-featured client available for those who might want to host their own files. Both are free and open-source.
    2. If you're running a firewall, you should allow incoming connections on port 6881 (though this is configurable with the better clients). If'n you don't share, the system notices and your downloads can suffer.
    3. Click on the attached file, or point your broswer here and click on the GEMSDEMO.AVI link.
    4. Wait for the download to finish, and remember to leave your client running once the download is complete. In order to not cause a THR slowdown I've capped the max upload speed -- I really need people to help mirror this thing by leaving the application running.
    That's it. Let me know if there are problems.
     

    Attached Files:

  2. Derek Zeanah

    Derek Zeanah System Administrator Staff Member

    Joined:
    Dec 20, 2002
    Messages:
    8,257
    Location:
    Statesboro, GA
    Oh - if a bunch of people complain about the distribution method, and you happen to have gobs of bandwidth available, please feel free to host it so it's available via http or ftp and post a link here. ;)

    As-is, I think this method will work well.
     
  3. Jim March

    Jim March Member

    Joined:
    Dec 24, 2002
    Messages:
    8,732
    Location:
    SF Bay Area
    Well I have Azureus running just fine...downloading, too, if slow on dialup :).

    How fast is it for people with good connections? The guy who uploaded it to the temp space took about 20 minutes on a cable modem.

    Can y'all lemme know what you think of the file itself? It's my first time as a "director" :D. Didn't do THAT could but at least I'm more truthful than Mikey Moore :neener:.
     
  4. Tag

    Tag Member

    Joined:
    Mar 16, 2003
    Messages:
    599
    Location:
    Marquette, Michigan
    Hey jim, I'm getting it off the Campus Wireless network now and it's flying, about 40/40 and climbing steadily.

    I'd say an hour or so tops.
     
  5. GoLambo

    GoLambo Member

    Joined:
    Nov 7, 2003
    Messages:
    37
    Location:
    Mesa Arizona
    Thanks, i'll check it out. It probably helps that it's in a format I use all the time, everyone should be using BT. :)
     
  6. Third_Rail

    Third_Rail Member

    Joined:
    Jan 10, 2004
    Messages:
    4,981
    52 down, 10 up. Not too bad already! I can't wait to see how good it'll run once a few more people have it going.
     
  7. stv

    stv Member

    Joined:
    Nov 18, 2003
    Messages:
    407
    Location:
    SF CA
    70 down/30 up here. :)
     
  8. Derek Zeanah

    Derek Zeanah System Administrator Staff Member

    Joined:
    Dec 20, 2002
    Messages:
    8,257
    Location:
    Statesboro, GA
    Thanks for seeding, guys. With 4 seeds (what we have now) we're seeing an average of 112/113 kB/s up/downloading. That's better than my 1.1 Mb (that's bit, versus byte for the stat listed previously) can do on its own. And all without affecting THR.

    Now, if we had 10 seeds I bet we'd see some sweet download speeds. :)
     
  9. cordex

    cordex Member

    Joined:
    Dec 23, 2002
    Messages:
    2,714
    Location:
    Indiana
    Derek,
    I downloaded this and am letting it continue to upload. Is there anything else I have to do to "seed" it?
     
  10. Third_Rail

    Third_Rail Member

    Joined:
    Jan 10, 2004
    Messages:
    4,981
    Wow. This is creepy stuff! :uhoh:
     
  11. Jim March

    Jim March Member

    Joined:
    Dec 24, 2002
    Messages:
    8,732
    Location:
    SF Bay Area
    Yup!

    NOW do you see why we want to do recounts of counties that are using this crap?

    Here's something Bev Harris just posted to Blackboxvoting.org:

    -----------------
    BREAKING -- TUESDAY NOV 16 2004: Volusia County election records just got put on lockdown -- Dueling lawyers, election officials gnashing teeth, Votergate.tv film crew catching it all. Poll tape discrepancies, stonewalling; Scroll down for full story.

    (scrolling...)

    TUESDAY NOV 16 2004: Volusia County on lockdown

    County election records just got put on lockdown

    Dueling lawyers, election officials gnashing teeth, Votergate.tv film crew catching it all.

    Here's what happened so far:

    Friday Black Box Voting investigators Andy Stephenson and Kathleen Wynne popped in to ask for some records. They were rebuffed by an elections official named Denise. Bev Harris called on the cell phone from investigations in downstate Florida, and told Volusia County Elections Supervisor Deanie Lowe that Black Box Voting would be in to pick up the Nov. 2 Freedom of Information request, or would file for a hand recount. "No, Bev, please don't do that!" Lowe exclaimed. But this is the way it has to be, folks. Black Box Voting didn't back down.

    Monday Bev, Andy and Kathleen came in with a film crew and asked for the FOIA request. Deanie Lowe gave it over with a smile, but Harris noticed that one item, the polling place tapes, were not copies of the real ones, but instead were new printouts, done on Nov. 15, and not signed by anyone.

    Harris asked to see the real ones, and they said for "privacy" reasons they can't make copies of the signed ones. She insisted on at least viewing them (although refusing to give copies of the signatures is not legally defensible, according to Berkeley elections attorney, Lowell Finley). They said the real ones were in the County Elections warehouse. It was quittin' time and an arrangment was made to come back this morning to review them.

    Lana Hires, a Volusia County employee who gained some notoriety in an election 2000 Diebold memo, where she asked for an explanation of minus 16,022 votes for Gore, so she wouldn't have to stand there "looking dumb" when the auditor came in, was particularly unhappy about seeing the Black Box Voting investigators in the office. She vigorously shook her head when Deanie Lowe suggested going to the warehouse.

    Kathleen Wynne and Bev Harris showed up at the warehouse at 8:15 Tuesday morning, Nov. 16. There was Lana Hires looking especially gruff, yet surprised. She ordered them out. Well, they couldn't see why because there she was, with a couple other people, handling the original poll tapes. You know, the ones with the signatures on them. Harris and Wynne stepped out and Volusia County officials promptly shut the door.

    There was a trash bag on the porch outside the door. Harris looked into it and what do you know, but there were poll tapes in there. They came out and glared at Harris and Wynne, who drove away a small bit, and then videotaped the license plates of the two vehicles marked 'City Council' member. Others came out to glare and soon all doors were slammed.

    So, Harris and Wynne went and parked behind a bus to see what they would do next. They pulled out some large pylons, which blocked the door. Harris decided to go look at the garbage some more while Wynne videotaped. A man who identified himself as "Pete" came out and Harris immediately wrote a public records request for the contents of the garbage bag, which also contained ballots -- real ones, but not filled out.

    A brief tug of war occurred, tearing the garbage bag open. Harris and Wynne then looked through it, as Pete looked on. He was quite friendly.

    Black Box Voting collected various poll tapes and other information and asked if they could copy it, for the public records request. "You won't be going anywhere," said Pete. "The deputy is on his way."

    Yes, not one but two police cars came up and then two county elections officials, and everyone stood around discussing the merits of the "black bag" public records request.

    The police finally let Harris and Wynne go, about the time the Votergate.tv film crew arrived, and everyone trooped off to the elections office. There, the plot thickened.

    Black Box Voting began to compare the special printouts given in the FOIA request with the signed polling tapes from election night. Lo and behold, some were missing. By this time, Black Box Voting investigator Andy Stephenson had joined the group at Volusia County. Some polling place tapes didn't match. In fact, in one location, precinct 215, an African-American precinct, the votes were off by hundreds, in favor of George W. Bush and other Republicans.

    Hmm. Which was right? The polling tape Volusia gave to Black Box Voting, specially printed on Nov. 15, without signatures, or the ones with signatures, printed on Nov. 2, with up to 8 signatures per tape?

    Well, then it became even more interesting. A Volusia employee boxed up some items from an office containing Lana Hires' desk, which appeared to contain -- you guessed it -- polling place tapes. The employee took them to the back of the building and disappeared.

    Then, Ellen B., a voting integrity advocate from Broward County, Florida, and Susan, from Volusia, decided now would be a good time to go through the trash at the elections office. Lo and behold, they found all kinds of memos and some polling place tapes, fresh from Volusia elections office.

    So, Black Box Voting compared these with the Nov. 2 signed ones and the "special' ones from Nov. 15 given, unsigned, finding several of the MISSING poll tapes. There they were: In the garbage.

    So, Wynne went to the car and got the polling place tapes she had pulled from the warehouse garbage. My my my. There were not only discrepancies, but a polling place tape that was signed by six officials.

    This was a bit disturbing, since the employees there had said that bag was destined for the shredder.

    By now, a county lawyer had appeared on the scene, suddenly threatening to charge Black Box Voting extra for the time spent looking at the real stuff Volusia had withheld earlier. Other lawyers appeared, phoned, people had meetings, Lana glowered at everyone, and someone shut the door in the office holding the GEMS server.

    Black Box Voting investigator Andy Stephenson then went to get the Diebold "GEMS" central server locked down. He also got the memory cards locked down and secured, much to the dismay of Lana. They were scattered around unsecured in any way before that.

    Everyone agreed to convene tomorrow morning, to further audit, discuss the hand count that Black Box Voting will require of Volusia County, and of course, it is time to talk about contesting the election in Volusia.
    -----------------

    Jim again. Lemme 'splain about Volusia County FL (uses Diebold optical scan, same as back in 2000):

    In 2000, somebody really did try a pro-Bush hack. And it wasn't Diebold, because it was a spectacularly incompetent hack: they took a precinct's worth of PCMCIA memory card voting data, copied it (probably in a standard laptop) and hacked the copy so that it produced 4000-something votes for Bush and 16,022 negative votes for Gore. Yes, you read that right: negative votes. From a precinct with about 950ish voters. Late on election night, Gore was set to concede when somebody at Volusia caught this, did a hand-correction, that was reported up the Democrat food chain and somebody told Gore.

    We had sketchy details on this going back to election night 2000...somebody at CBS news caught wind. The perpetrator(s?) were never caught. They most likely worked for the county elections division in at least a mid-level position. Then in mid-03, when we got ahold of the Diebold tech support internal mailing lists there was a pretty thorough deconstruction of what went on, and they were as puzzled by some of it as anybody else. Which is one reason I think Diebold (or rather, back then it was Global, same staff though) wasn't the dirty party, the other being that if they wanted to hack, they've have done so *competently*.

    So we *knew* there could be vote-hackers running around off-leash down there, and they may have learned how to do a better job - Visual Basic scripts can simply *rape* an MS-Access runtime edition like on a GEMS box, and they're taught at community college adult ed classes...you see all the stuff I showed in that video? Well all of that can be done with about 10k - 20k tops worth of VB Script TEXT FILES controlling the Access runtime edition. Set to kick off automatically in the dead 'o night with nobody around.

    SOME sort of excrement has hit a rotary air movement device...there's now ballot lockdowns, lawyers, all kinds of crap going on and if I know Bev she's wading right into the thick.

    Heh. Grab some popcorn folks, this one's gonna be good :).
     
  12. Jim March

    Jim March Member

    Joined:
    Dec 24, 2002
    Messages:
    8,732
    Location:
    SF Bay Area
    Arright. Next step: somebody go post this on DU! NOT as a link to here; re-create the instructions and access address post to start the bittorrent process and don't tell 'em who did the file, just that somebody did a 15 minute video record of the GEMS hack, with audio commentary, using a full-screen 800x600 screen capture utility in a 158meg file.

    Then EMail me (or PM) the DU address where it's at. EMail: jmarch@prodigy.net

    Post here if you're going to be the one to do it (read: you ain't been thrown off DU yet...)

    I wanna see how the lefties react to this puppy.

    Thanks!
     
  13. Third_Rail

    Third_Rail Member

    Joined:
    Jan 10, 2004
    Messages:
    4,981
    About to.


    EDIT: New members aren't allowed to post yet. Nice.
     
  14. Derek Zeanah

    Derek Zeanah System Administrator Staff Member

    Joined:
    Dec 20, 2002
    Messages:
    8,257
    Location:
    Statesboro, GA
    To seed, just leave the client open.

    To post at DU: simply save the .torrent file listed above and upload it at DU -- it references the file and server name so that'll do it.

    Or: post a link to http://66.80.73.52:6969 and they can click the download link themselves (though someone good will link that address to THR -- no a huge deal IMO -- we're all on the side of fair elections).

    OR: create your own damn torrent. ;)
     
  15. Third_Rail

    Third_Rail Member

    Joined:
    Jan 10, 2004
    Messages:
    4,981
    I just opened the torrent for seeding, I'm capping my upload at 150k though.

    Enjoy the boost in about an hour!
     
  16. erik the bold

    erik the bold Member

    Joined:
    Aug 17, 2004
    Messages:
    325
    Location:
    Middle of the Mitten, Somewhere' Nort of Hell
    Currently getting connection time-outs using Azureus. What's up with that?
     
  17. Third_Rail

    Third_Rail Member

    Joined:
    Jan 10, 2004
    Messages:
    4,981
    If you're using a router/NAT/firewall, make sure port 6881 is open.
     
  18. erik the bold

    erik the bold Member

    Joined:
    Aug 17, 2004
    Messages:
    325
    Location:
    Middle of the Mitten, Somewhere' Nort of Hell
    According to the set-up wizard, this port checks ok. Any way to check this?
     
  19. The Undertoad

    The Undertoad Member

    Joined:
    Sep 27, 2003
    Messages:
    410
    Location:
    VA
    Using Bittornado, an older version, DL at 100KB/s on my apartment's crappy DSL, not uploading to anyone yet... I'll seed for a while when I'm done though. :)
     
  20. The Undertoad

    The Undertoad Member

    Joined:
    Sep 27, 2003
    Messages:
    410
    Location:
    VA
    Holy cow. I'm about 3/4 done with the video and this is crazy. Someone needs to post this to torrent sites such as suprnova.org. I'd do it myself but I have to run to campus for a few hours to do some work. I plan on spreading the tracker around when I get back...
     
  21. roo_ster

    roo_ster Member

    Joined:
    Oct 2, 2003
    Messages:
    2,980
    Location:
    USA
    Derek:

    Just what sort of security and/or encryption is included with Bittorrent?

    I have no problem sharing bandwidth, but I am awfully squirelly about allowing incoming connections to the machine at home...especially PtP.

    BTW, the home box is Fedora Core 3. I don't think work would appreciate this sort of thing installed & using their bandwidth. I would hope they would have choked off the possibility at the proxy servers.
     
  22. The Undertoad

    The Undertoad Member

    Joined:
    Sep 27, 2003
    Messages:
    410
    Location:
    VA
    Jim - I posted this to a (largely liberal) international blog just now... I probably should have asked first but I was all worked up. I didn't think you would mind given your request to see it on DU, but if you do, lemme know and I'll kill the entry ASAP. :) Hopefully we'll see some more seeders from that.
     
  23. Jim March

    Jim March Member

    Joined:
    Dec 24, 2002
    Messages:
    8,732
    Location:
    SF Bay Area
    No sweat, Andrew, leave it as is. I was just concerned about DU because of their history with us.

    Jfruser: when you set up the Bittorrent client, make sure you point it to a SUB-directory that's got nothing in it or underneath it that you care about in security terms. Either your "scratch download directory", or go one step further and create a new sub-dir just for bittorrenting (hey, new word!).

    That's the only security issue I'd worry about.
     
  24. sigmaman

    sigmaman member

    Joined:
    Oct 22, 2004
    Messages:
    199
    ill download it when i go to sleep and then ill do unlimited upload so we get a boost
    stupid question what is DU?
     
  25. EvilOmega

    EvilOmega Member

    Joined:
    Mar 14, 2004
    Messages:
    115
    Location:
    Ohio
    DU
    1. Democratic Underground- liberal forum
    2. Liberal psychopaths wining

    I'm using ABC and getting 280 to 310
     
Thread Status:
Not open for further replies.

Share This Page