Categories
Political

Inspector General’s Report On Clinton’s Email Greatly Exaggerated By Media Outlets

The Office of Inspector General (OIG) released its anticipated report on the State Department’s handling of email and cybersecurity. The report covers Hillary Clinton’s use of a private email server, but also includes an examination of other State employees use of email, including Colin Powell’s use of a private email service.

Almost immediately, the media was full of headlines such as “State Department report slams Clinton email use” from CNN, “State Dept. inspector general report sharply criticizes Clinton’s email practices” from the Washington Post, and “IG: Clinton didn’t want emails ‘accessible'”, from The Hill.

Lost in the hyperbole is the fact that the OIG report was meticulous and thorough, but also dispassionate, just like any other OIG report I’ve read. There was no direct criticism of Clinton, sharp or otherwise. The OIG was examining the State Department’s practices, not specifically investigating Clinton’s actions.

Reading the various media stories on the report, I found other misrepresentations. For instance, The Hill claims that Clinton didn’t want her email to be “accessible”. In actuality, what the report stated was that Clinton didn’t want her personal emails being accessible:

In November 2010, Secretary Clinton and her Deputy Chief of Staff for Operations discussed the fact that Secretary Clinton’s emails to Department employees were not being received. The Deputy Chief of Staff emailed the Secretary that “we should talk about putting you on state email or releasing your email address to the department so you are not going to spam.” In response, the Secretary wrote, “Let’s get separate address or device but I don’t want any risk of the personal being accessible.”

The Washington Post article stated:

The inspector general, in a long awaited review obtained Wednesday by The Washington Post in advance of its publication, found that Clinton’s use of private email for public business was “not an appropriate method” of preserving documents and that her practices failed to comply with department policies meant to ensure that federal record laws are followed.

First of all, a lot of people and organizations got a copy of the report, WaPo. You’re not special.

Secondly, Clinton did take action to preserve her emails, as the report notes. On Page 66 of the report, Janice Jacobs, the State Departments Transparency Coordinator, specifically addressed Clinton’s handling of the emails:

In addition the Department had already received Secretary Clinton’s emails and undertook to release 30,000 of them to the public. The National Archives and Records Administration concluded that our efforts with respect to Secretary Clinton and her senior staff mitigated past problems, as has a federal district court in a suit brought under the Federal Records Act. As you note in your report, you concur with this conclusion. (emph. added)

The State Department, the OIG, and NARA all concurred that Clinton’s actions in turning over the emails she had, in addition to others the State Department was able to discover, did mitigate not following proper procedures (i.e. printing out each email and filing it). It’s true that in the beginning of Clinton’s tenure as Secretary of State, during the first two months transition period, some emails were lost. However, there was no indication that an attempt was made to deliberately hide these emails from a salivating public: it’s technology; stuff happens.

Lastly, I can almost hear the calls of “criminal Hillary” from a certain party who shall go nameless. Note, though, as the report mentions, there were no administrative penalties in place—either about the use of a private email server, or not following the established procedures for preserving emails—at the time Clinton served as Secretary of State. Moreover, there is no indication that she was even aware of the requirements.

Although the Department is aware of the failure to print and file, the FAM contains no explicit penalties for lack of compliance, and the Department has never proposed discipline against an employee for failure to comply. OIG identified one email exchange occurring shortly before Secretary Clinton joined the Department that demonstrated a reluctance to communicate the requirement to incoming staff. In the exchange, records officials within the Bureau of Administration wondered whether there was an electronic method that could be used to capture the Secretary’s emails because they were “not comfortable” advising the new administration to print and file email records.

State Department personnel were discouraged from using their private email, but not explicitly forbidden from doing so. As quoted in the CNN story—the one where Clinton was purportedly “slammed’ by the OIG—the State Department spokesman concurred:

State Department spokesman Mark Toner briefed reporters Wednesday: “While not necessarily encouraged, there was no prohibition on using personal email. The only requirement is that — and the regulations do state this, that these records need to be preserved.”

To repeat what I wrote earlier, the OIG report was focused on the State Department’s procedures in place for emails; it’s not specifically focused on Clinton. It may be more titillating to say that the OIG is “slamming” Clinton, or that the OIG report was “sharply critical of Clinton”…but it’s also inaccurate, and misleading.

Categories
Technology

The Getting-Smarter SmartThings Home Hub

When last we left our intrepid, if challenged, SmartThings home hub, it was not having the best of times.

CNet picked up my previous story, and expanded on it in an article titled Samsung’s smart home push hits disconnect. In addition, researchers exposed what they considered to be serious security flaws with the hub.

Multiple issues exist in SmartThings’ framework, the researchers say, but most pressing are the privileges given to apps, many of which they don’t need to function. A smart lock might only need the ability to lock itself remotely, for instance, but the SmartThings API bundles that command with the unlock command, which an attacker can leverage to carry out a physical attack. Another over-granting of permissions involves the way in which SmartApps connect to physical devices. When a user downloads a SmartApp, it asks for specific permissions to perform its intended purpose. After being installed, SmartThings then lists all the devices that could be used with that app because of its ability to sync with those permissions. But it also gives the app more access than it needs.

In response, SmartThings CEO Alex Hawkinson apologized in the SmartThings community forum, promising improvements. He also posts a weekly update (the latest) about what improvements have been pushed out that week. In addition, the company recently hired Amazon’s former director of engineering, Robert Parker, to oversee the improvements.

As a result, SmartThing users have been seeing an improvement in the hub. We’re no longer seeing the “red bar of death” that used to be so common in the Android app. In addition, performance has improved, including better detection of presence, as well as quicker response to actions. Scheduled events actually run on schedule, after months of erratic behavior.

Hawkinson also responded to the security concerns:

A research report entitled “Security Analysis of Emerging Smart Home Applications” was released this morning by a team from the University of Michigan and Microsoft Research. The report discloses hypothetical vulnerabilities in the SmartThings platform and demonstrates how, under certain circumstances, they could be exploited. Over the past several weeks, we have been working with this research team and have already implemented a number of updates to further protect against the potential vulnerabilities disclosed in the report. It is important to note that none of the vulnerabilities described have affected any of our customers thanks to the SmartApp approval processes that we have in place.

The system has stabilized enough that some of us are tentatively moving back into the world of the Smart Home Monitor—the golden child of the SmartThings network, responsible for security. It is this application that had the most faulty behavior, with frequent false alarms, and not being able to manually arm or disarm the system.

I turned on SHM last week for the first time in over two months. Unfortunately, I also had a false alarm at exactly 5:04 AM last Thursday, when one of my monitors detected movement where there was none. However, I do believe this is more the monitor (I’ve had some issues with SmartThings own motion sensors in the past)—perhaps reacting to a spider, or air flow eddies—and not the application or the hub. I’ve switched to a different motion sensor (the Fibaro Motion Sensor), and so far no additional false alarms.

We can now easily arm and disarm the SHM security system. When the security alert did go off, all the appropriate lights and alarms were triggered, and notifications sent. In addition, when I dismissed the alert, the alarms were immediately silenced, though I had to turn off all the lights manually.

There are still issues with the SmartThings Hub. The biggest concern is that most of the activity related to the Hub occurs within the cloud rather than locally. This means that if we lose internet connectivity—something that happens daily for me during the hottest part of the day in the summer—automatic actions that should still function, don’t.

We also still don’t have Rule Machine, the extremely popular community-developed application, and no idea if it will ever return.

Still, I’ll take the improvements we’ve received, and the promise of more.

I’m moving the SmartThings Hub from “hold on buying” to, “OK, you can give it a try, but don’t go crazy buying devices just yet”.

Categories
Political

Inspector General’s Report On Clinton’s Email Greatly Exaggerated By Media Outlets

The Office of Inspector General (OIG) released its anticipated report on the State Department’s handling of email and cybersecurity. The report covers Hillary Clinton’s use of a private email server, but also includes an examination of other State employees use of email, including Colin Powell’s use of a private email service.

Almost immediately, the media was full of headlines such as “State Department report slams Clinton email use” from CNN, “State Dept. inspector general report sharply criticizes Clinton’s email practices” from the Washington Post, and “IG: Clinton didn’t want emails ‘accessible'”, from The Hill.

Lost in the hyperbole is the fact that the OIG report was meticulous and thorough, but also dispassionate, just like any other OIG report I’ve read. There was no direct criticism of Clinton, sharp or otherwise. The OIG was examining the State Department’s practices, not specifically investigating Clinton’s actions.

Categories
Technology Writing

Learning Node, 2nd Edition is now live

Learning Node 2nd cover

Learning Node, 2nd Edition is now in production and should be hitting the streets within a few weeks. We had a bit of excitement when Node 6.0 was rolled out, just as we entered production. However, this edition of the book was specifically designed to accommodate Node’s rather energetic release schedule, and the book survived with only minimal changes.

In this edition, I focused heavily on the Node core API, rather than third-party modules. I figured the book audience either consists of front-end developers working with JavaScript in the browser, or server-side developers who have worked with other tools. In either case, the audience wants to know how to work with Node…not this module or that. Node, itself.

My one trip into the fanciful was the chapter on Node in other environments. In this chapter, I had a chance to introduce the reader to Microsoft’s new ChakraCore for Node, as well as using Node with Arduino and Raspberry Pi, and with the Internet of Things (IoT). I figured by Chapter 12, we all deserved a special treat.

The book’s Table of Contents:

Preface
1. The Node Environment
2. Node Building Blocks: the Global Objects, Events, and Node’s Asynchronous Nature
3. Basics of Node Modules and Npm
4. Interactive Node with REPL and More on the Console
5. Node and the Web
6. Node and the Local System
7. Networking, Sockets, and Security
8. Child Processes
9. Node and ES6
10. Full-stack Node Development
11. Node in Development and Production
12. Node in New Environments

A more detailed TOC is available at O’Reilly.

I had a good crew at O’Reilly on the book, and an exceptionally good tech reviewer in Ethan Brown.

Categories
Political

2016 Election: Why I’m Supporting Clinton

When I voted in the Missouri Presidential Primary, my choice was Hillary Clinton.

I have watched this woman fight the good fight for decades. When Bill Clinton was elected President and appointed her the chair of the task force to create a plan for reforming health care, I was delighted. Not only did we hope to finally bring about health care reform, but we saw a First Lady given a position commensurate with her capabilities. No more flowers and china…real work.

She served as chair on the committee that devised the plan. She testified for days in Congress in support of the plan. She traveled around the country talking about healthcare reform. She worked tirelessly on a plan that would have, among other things, instituted a mandate that employers provide healthcare insurance for their employees, that no one could be denied coverage, and lower-income people would not have to pay a dime.

I also watched as Republican vilified the plan, with a little help from the insurance companies. But what was harder to watch was the Democrats, with their incessant demands to have their own plans considered instead. President Clinton’s Democratic support fragmented to the point that we lost our first, best effort at healthcare reform. Democratic Senator Patrick Monyihan went so far as to declare there was no health care crises, as he pushed his own agenda.  Representative McDermott and Senator Wellstone pushed a single-payer plan that hadn’t a chance in hell of succeeding, with only 4 additional Senators and 90 House Members in support—including an independent by the name of Bernie Sanders.

Thank goodness President Obama didn’t have as many difficulties with the Democratic Congress as Clinton had, or we’d still be debating that we don’t have a health care crises, we have a health insurance crises.

I have health insurance for the first time in years because of the Affordable Care Act. It may not be perfect, it may not be the ideal, but when you’ve sweated over the fact of being financially ruined because you get sick, well, perfection is in the eye of the beholder.

Hillary Clinton has promised to continue support for the Affordable Care Act, and improve on it, as she can, and as Congress allows. It’s a realistic promise that builds on what we have. It takes into consideration the very real makeup of Congress that will exist in 2017: a House still controlled by  a rabid bunch of extremist Republicans, and possibly, only possibly, a Democratic controlled Senate.

More importantly, she sees the ACA as a stake in the ground in which to tie new reform to, rather than just dig everything up, and start over.

What Clinton promised on healthcare is what she can, as President, accomplish. There’s no fireworks, no talk of revolution—none of the sexy populism and grandiose schemes that seem to be the byword of this election. It would be so easy to promise the moon, along with everyone else, and then backtrack later by claiming Congress is too difficult and the Republicans have too much control. No, she’s quietly confirmed what she knows she can deliver: no more, no less.

In none of the issues listed at the Clinton web site, do we see promises that can’t be met. She doesn’t talk about “working towards” goals, she talks about actual, real-world efforts that we can see, and judge, ahead of time, and also hold her accountable for. That’s not glamorous, but it is gutsy.

She isn’t promising to free half the prison population, because she knows most prisons are state prisons and a President has no control over them. But Clinton can work to reduce the reliance on  mandatory minimum sentences. She can also work with the Justice Department to ensure equal protection for all under our country’s judicial systems—just like Obama is doing now in places like Ferguson, MO.

Clinton isn’t promising to eliminate all student debt; doing so would take an act of Congress. Instead, she wants to work towards refinancing existing loans so former students have more favorable terms; and that no one ever pays more than 10 percent of their income. She’s not promising free college for all, but easier access to tuition assistance by expanding on the existing Pell Grant system. Free college tuition for all, even if it were a good idea, would not only take an act of Congress, but would also require support from the leadership in all of the states.

Considering that Republican governors have been cutting state funds to colleges in almost all states they control, I doubt that we’ll see them gladly accept the fact that they have to provide even more funds.

Clinton supports the President’s DREAM Act, and she’ll work towards immigration reform. She promises to help families as much as a President can. No magic wand approach, here. No mention of walls, either.

No President has the capability of breaking up the banks, but Clinton has promised to strictly enforce rules against them. And work to strengthen the existing rules, and close loopholes—all actions an Executive can take if Congress resists any other effort.

Clinton won’t ban all fracking, because no President can ban all fracking.  Only an act of Congress can enforce a fracking ban.

But Clinton has promised to phase out fracking on public land, as well as more strictly enforce safety and environmental regulations. The important thing to remember, though, is we can’t  phase out fracking by dumping us back into a dependency on coal and coal mining. We don’t have an infrastructure in place where we can immediately replace non-renewable energy sources with renewable ones. It’s a complex problem with a lot of dependencies, none of which easily fits into a sound bite. But then, I’m not sure that voting for someone because of their sound bites is representative of good governance.

I have no doubts, though, that Clinton will honor the Paris Agreement, work to have Congress ratify it, and even expand on it, if possible. And that she’ll be a fervent proponent for both solar and wind energy.

Hillary Clinton is also capable of holding her own under pressure and attack. We’ve seen the Republicans mount a campaign to tear Clinton down that exceeds any other in modern history. The only person they’ve gone after more virulently is Obama. He’s only been the target for eight years—she’s been a target for decades.

Case in point is the infamous emails. Clinton establishes her own professionally maintained email server rather than use a popular email service like AOL (Colin Powell’s favorite), and next thing we know, according to our Republican friends, the fate of the country is undermined.

Partisan hyperbole aside, Clinton scrupulously maintained a set of her emails from when she was Secretary of State, turning them over when requested, and asking for all of the emails to be published so that people could see she had nothing to hide. No other person in the White House Administration has had every email they’ve ever received or sent be scrutinized with the level that Clinton’s emails have been scrutinized. They have passed through the Intelligence Community filter, and when consider the agencies involved, it’s almost unbelievable that any of them managed to survive relatively intact. Since the last of the emails have been delivered, we now know, for a fact, that none were classified at the time they were sent or received. We also know that emails Powell received in his private email have also suffered the same retro-classification, symptomatic more of inter-agency squabbling than a real threat to national security.

Yet here is the Republican National Committee, now suing the State Department for even more, trying to get emails from people connected to Hillary Clinton, many in private organizations; all in a desperate attempt to keep the manufactured scandal alive. It would be funny if it didn’t cost tax payers millions of dollars.

Thankfully, most of us see this for the desperate and despicable act it is. Clinton will survive it, as she’s survived so many of these contrived controversies. She survived the emails, she survived the Benghazi never-ending committees, which Republicans foolishly admitted were created to undermine her Presidential candidacy.

There are even those who would hold Clinton accountable for the actions of her husband when he was President, as if she’s nothing more than a faint echo of him. You’d think we’d be beyond considering women to be nothing more than appendages of their mates, but evidently not when it suits certain agendas.

Bluntly, in my opinion, Hillary Clinton will be a better President than Bill. She’s more experienced now than he was when he got the job. She’s also more open to hearing new ideas, more aware of all the factors in play that can cause havoc. As practical as she is, she’s also more idealistic—a little more empathetic to what’s happening to the average person.

I’ve also seen Clinton exercise her considerable intellect, her shrewdness, and her team-building skills in support of the United States and our current, much loved President, Barrack Obama. Team building doesn’t factor into our discussions about being a good President, but it’s an essential element. FDR managed to pull positive results out of disaster because he was able to swear in the majority of his cabinet the very day he was inaugurated. He had the complete backing, not only of Congress, but also most state governments. To hit the ground running, he knew he had to have a good team in place.

Over the years, Clinton has helped raise funds for Democratic candidates in Congress and down ballot races. She knows, as President, she can’t hope to bring about change all on her own. She needs a solid team behind her.

(We all need more Democrats in Congress if we hope to save this country—something we seem to forget every odd year election. We even need some independents. Among those who have received campaign funds directly from Clinton’s PAC is none other than Bernie Sanders, in his Senatorial race.)

The most recent attack against Clinton is that she’s not publishing transcripts for all her speeches given when she was a private citizen—something that’s never been asked of any Presidential candidate. Why do people want the transcripts? So they can cherry pick through the text, taking bits and pieces out of context in order to misrepresent who she is and what she believes. They did the same thing with her emails.

This isn’t transparency…this is fresh fodder for the  anti-Clinton machine, necessary because no matter how much she’s been bashed, she’s survived. The only difference now is that she’s being bashed from the left—an act that has caused deep fissures among those who have long fought in solidarity.

I don’t fault those on the left who don’t support Clinton because they believe Bernie Sanders has a better plan for the country. We each have our own interests and beliefs. I do, however, fault those on the left who repeat the GOP talking points, because they’re so obsessed over Sanders winning that they’ll burn anything in his path—and that includes the future of the country, because they’ll toss this next election to the GOP rather than work with the rest of us to keep what would be a complete disaster from happening.

Bernie or Bust is a shout from the privileged class, because they’re not a minority, or gay, or poor, or a woman who demands the freedom of choice, or Muslim, or an immigrant. They can call for a revolution, safe in the knowledge that they have nothing to lose.

The rest of us live in the real world. We know what’s at stake. I don’t believe Bernie Sanders has a chance for the nomination, but if he were to get it, I would support him.

I feel confident, though, that the Democratic nominee will be Hillary Clinton. She’s our best choice, as President, and our best chance at winning the election. She’ll be a good leader, building on what Obama started, but also adding her own personal touch, and achievements.

We’ll progress under a President Hillary Clinton presidency, and isn’t that what being a progressive is all about?

Ms. Squirrel is hiding in tree, until this is all over.