Feeds

The Rozzers don't know what they're on about

It's techie versus bobby

  • alert
  • submit to reddit

Internet Security Threat Report 2014

[We criticised the police for their inability to trace emails. A Chief Inspector took issue with us. And our readers took issue with him.]

Readers' Letters: It's a biggy
Email is the British Jerry Springer
UK police no idea about the Net
Even the government thinks UK police are Web-stupid



Hi,



Just read the mail you got from Chief Inspector R M Crorie where he stated:

And what is wrong with "good policing" if she DID conceal the originating IP address (probably allocated dynamically - and do you have any idea how difficult it is to get any information out of an ISP or to get a warrant to force them?)

First of all, she was in a cybercafe (apparently), which generally have a leased line. Leased lines generally have static IPs. In fact, if somebody had told the police where to look in the headers to get the IP address, and then did a reverse lookup on it, it would probably resolve to something like townname.cyberia.net or somesuch.

In fact, the IP address probably wouldn't be required, because mail headers or so full of information that it would probably have the resolved name in it anyway. SMTP is clever like that. The Police evidently are not.

Secondly, as somebody who has worked for a few ISPs, I take exception to the Chief Inspector claiming that it is difficult to get information out of us. I have in the past helped several Police forces track down and arrest a whole host of people using the Internet to commit crime (think children/sex, ex-husbands scaring ex-wifes, bomb threats, etc.).

Unfortunately there are a few laws under the Data Protection Act which state that we have to protect our customers information - in other words you need to have a 'release' from the Police (not a warrant). This kind of helps us make sure that some random Police officer doesn't demand the address of the bloke who has been net-sexing his missus and then goes and beats him up. If the Chief Inspector is advising that we should start breaking the law, then perhaps I should be writing to my MP rather than you.

All an ISP requires is the appropriate documentation signed by a senior officer and most, if not all, ISPs will be happy to help. If the Chief Inspector (or indeed any officer or policeman reading this) need to find out how all this works, I would suggest that they contact the Manchester Obscene Publications Unit, who know this procedure inside out, and whom I have had the pleasure of assisting on several occasions back when I was working for Telinco as a sysadmin/security officer/scapegoat.

Paul Robinson



Let's see, I have an IP address that's dynamically allocated; let's pick one at random within the .co.uk TLD... Let's say 193.115.134.130



So, I run up Sam Spade (because I'm too sodding lazy to use a DOS or UNIX command line to do the same thing) and search for the owner of the IP. Turns out that belongs to CYBERZONE-LTD and it's assigned to www.cyberzone.co.uk (obviously not an actual dynamic IP, but I haven't much time to waste showing up the police for the network boneheads they appear to be).

One more mouse click in Sam Spade (personal version 1.14 for whatever that's worth - I find it faster than the Web version most of the time) shows me that CYBERZONE.CO.UK is registered by goodgem@uk.psi.com so we go look up UK.PSI.COM and find they are owned by PSI.COM in Herndon, VA, USA. Well, police budgets being what they are, a transatlantic call is out of the question, so let's look closer to home. Going to the Cyberzone Web page, we find them in Croydon, and the entire sordid story of their location, how to reach them by phone, fax, or email, and who's in charge, is right there on the "contact" link.

Took me, oh, 15 minutes, while answering the Hell Desk phone and wiping users' files off the server. Surely Cheshire's Finest could do that much? After all, they managed to find www.theregister.co.uk didn't they?

Rich Tietjens ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
Facebook's Zuckerberg in EBOLA VIRUS FIGHT: Billionaire battles bug
US Centers for Disease Control and Prevention contacted as site supremo coughs up
Space exploration is just so lame. NEW APPS are mankind's future
We feel obliged to point out the headline statement is total, utter cobblers
Down-under record: Australian gets $140k for pussy
'Tiffany' closes deal - 'it's more common to offer your wife', says agent
Internet finally ready to replace answering machine cassette tape
It's a simple message and I'm leaving out the whistles and bells
FedEx helps deliver THOUSANDS of spam messages DIRECT to its Blighty customers
Don't worry Wilson, I'll do all the paddling. You just hang on
The iPAD launch BEFORE it happened: SPECULATIVE GUFF ahead of actual event
Nerve-shattering run-up to the pre-planned known event
Win a year’s supply of chocolate (no tech knowledge required)
Over £200 worth of the good stuff up for grabs
STONER SHEEP get the MUNCHIES after feasting on £4k worth of cannabis plants
Baaaaaa! Fanny's Farm's woolly flock is high, maaaaaan
Swiss wildlife park serves up furry residents to visitors
'It's ecological' says spokesman, now how would you like your Bambi done?
Red Bull does NOT give you wings, $13.5m lawsuit says so
Website letting consumers claim $10 cash back crashes after stampede
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.