← Back to context

Comment by slantedview

9 years ago

One of the commenters on the Krebs post makes a remarkable point [1]:

"It gets better. Do a dig mx clintonemail.com. You’ll see that the machine’s incoming email was filtered by mxlogic.net, a spam filtering service that works by received all your emails, filtering out the spam, and forwarding you the rest.

This is because the hosting provider, Platte River Network, sold a package along with the hosting. The package included spam filtering and full-disk off-site backup (since then seized by the FBI).

So every email received by Clinton was going through many unsecured places, including a spam filtering queue, a backup appliance and an off-site backup server. Which has already been documented."

http://krebsonsecurity.com/2016/05/did-the-clinton-email-ser...

9 comments

slantedview

Reply
themgt  9 years ago

Haha yeah I've actually seen her supporters claim the MX filtering meant it was "secure"! facepalm

wrong_variable  9 years ago

oh my god, this is depressing sad.

She could have hired a team of machine learning grad students to build her a personalized spam filter.

but she went with the cheapest option.

this is going to keep me upset for a while.

  • salgernon  9 years ago

    "She" did nothing of the sort. She told someone she wanted her email available. They said, ok, we'll just host it ourselves. "Whatever, I want my daily suduko and make sure I stop getting those damn linked-in spams". "Ok boss".

    Seriously, how could anyone really believe she specc'd this out herself? Her staff probably threw it together as a MVP with the full intention of revisiting the implementation "really soon".

    And then they lost interest.

  • tempestn  9 years ago

    > She could have hired a team of machine learning grad students to build her a personalized spam filter.

    Or instead of reinventing the wheel, installed an existing spam detection product like SpamAssassin on the email server.

    • blhack  9 years ago

      Or, truly the craziest of possible scenarios: simply followed the instructions given to her by the people administering her access to the government's IT infrastructure.

      1 reply →