Blue Coat Denies Its Devices Helping Syrian Gov't 73
First time accepted submitter drmemnoch writes with a follow-up to a report last week that Internet proxy / filtering / logging devices made by Sunnyvale, CA based Blue Coat Systems have been used by the Syrian government to monitor and censor Syrian's Internet usage. drmemnoch notes that "Sales to restricted countries can often occur through 3rd party resellers. Blue Coat has yet to provide any information other than denial." Specifically, the company denies direct sales, but in the linked ZDnet report kept mum on how third-party resellers might be involved. I requested comment from the company about how their products might have ended up in Syria; Steve Schick of Blue Coat has responded to that request with a more detailed denial (included below) of the company's involvement, and says that there is "no firm evidence" in the logs leaked by Telecomix that Syria has any Blue Coat equipment at all; dissection of that response is invited.
Schick writes: "Blue Coat does not sell to Syria and neither do we provide any kind of technical support, professional services or software maintenance. To our knowledge, we do not have any customers in Syria.U.S. companies are prohibited from selling to Syria. In addition, we do not allow any of our resellers, regardless of their location in the world, to sell to an embargoed country, such as Syria.
We have seen logs posted that are allegedly from a Blue Coat appliance in use in Syria. From these logs, we see no firm evidence that would determine there is Blue Coat equipment in Syria; in fact, it appears that these logs came from an appliance in a country where there are no trade restrictions. In addition, the log files appear to have come from a third party server that was storing log files uploaded from one of our appliances. The allegation that an organization penetrated one of our appliances through a security hole is flatly not true. There are no known vulnerabilities of our appliance that would allow such an action."
Re: (Score:2)
Apart from going out of business, precisely what do you propose they do? Seriously, once they sell their items to another company, they don't have any control over where they end up.
It remains to be seen if they truly are free of involvement here, but I wouldn't be surprised if it wasn't done by an authorized retailer.
Re: (Score:2)
You misunderstand his complaint. He thinks that there is no place for equipment or software that filters the internet at all, whether it is voluntary or not.
Re: (Score:2)
Ah, clearly I did.
Re: (Score:1)
I interviewed at that company, once. What they told me turned me off so much (privacy and spying issues) that I walked away from a pretty firm job offer.
DPI this and filter that and MITM ssl attacks.
NO THANKS.
They try to explain it as 'helping' but as Jon Stewart says, you are not helping AT ALL.
I had to say no to the job offer. I can't help bad people 'win' like that.
The whole premise is anti-freedom. Sickened me so much.
Re: (Score:2)
Wait, you interviewed there and you didnt even understand their core business? You do know that filtering is basically what they do right?
Do you start your interviews off by asking, "so....what is your company called, what do you do, and why am I here"?
Its like getting pissed off at Microsoft because you discovered mid-interview that theyre responsible for Windows.
Re: (Score:2)
First time accepted submitter what? (Score:2)
Seriously, what's the deal with that "first time accepted submitter" thing? What does it bring to the story? Why do we care?
Re: (Score:1)
Re: (Score:2)
Yes, it's the litmus test. Lick the paper strip, if it turns blue, you can post. If it turns red, you can't post. There's a well known correlation between your body's acidity and your intelligence, not to mention your relevancy. /sarcasm
Sorry, couldn't resist. Litmus test, LMAO!!
Re: (Score:3)
There's a well known correlation between your body's acidity and your intelligence, not to mention your relevancy.
I've submitted several times, and never been accepted, but I'm not bitter.
Re: (Score:1)
Exactly. Blue = base = bitter taste. If you're not bitter, that would mean you're acidic = red = sour.
Re: (Score:2)
It's a few extra words in the summary. Get over it. It sure isn't worth so much bitching.
Re: (Score:2)
Agreed. Is this a new policy? How does one get "accepted" to be a submitter? Is there a litmus test? Geek knowledge? Will we have to provide you with our real names ala Google + ?
Just sayin!
Common sense tells me that a "First time accepted submitter" is someone who's submitted articles before, but it never got accepted, and this article is the first time that one of this persons submissions has been accept.
Re: (Score:2)
Re: (Score:1)
Freshly reincarnated submitter Roland Piquepaille writes...
Re: (Score:3)
I resent that...
Re: (Score:2)
Actually, you resemble that . . .
Re: (Score:3)
http://www.zdnet.com/blog/btl/rest-in-peace-roland-piquepaille/11430 [zdnet.com]
Re: (Score:2)
I've been here for over 10 years, and I've never seen any of these complaints of submitter favoritism. Not once that I can recall. Maybe there's some insider-y meta-forum I don't know about.
But this "first time submitter" thing craps on my face every single day now.
Re: (Score:2)
I've been here for over 10 years, and I've never seen any of these complaints of submitter favoritism. Not once that I can recall. Maybe there's some insider-y meta-forum I don't know about.
No, they've out right in the open. I don't know how you've missed them.
Heck, I think even I've complained about it, particularly when Daniel Eran Dilger managed to get his largely fictional Pro-Apple stories (see: Roughly Drafted Magazine) published once or twice a week.
(FYI: While I'm not a big fan of Apple, if your stories have actual facts in them, I'm not against Slashdot publishing them.)
Re: (Score:2)
Really (Score:1)
Re: (Score:2)
Look, we've got the purchase order to prove it! (Score:4, Funny)
See, right here, we sold this equipment to "Totally Not a Front Company for Syria's Government, Inc" in some town called Syria, which I think was in Texas or somewhere.
They did pay a lot for the shipping, though.
Re: (Score:1)
"I'm not a witch, I'm not a witch!"
"But you are dressed as one!"
"They dressed me like this! And this isn't my nose, it's a false one!"
"Did you dress her like this?"
"No! No, no no, no, no! Yes. A bit! A bit."
Re: (Score:1)
The town I live in (in the US) has the same name as a town in Syria.
Comment removed (Score:3)
Re: (Score:1)
What's missing here? (Score:1)
Tim, you implied that the vendor's denial was half-assed mumble-wamble, but the response you produced seem pretty categorical.
What are you trying to get at? Is there more to the background you have failed to note? Cuz, as it is, it appears you're grasping the straws to smear the outfit.
Re: (Score:1)
Not trying to smear, and it seems like a pretty clear denial to me as well.
There are two things in the answer that I'd like to see (preferrably) non Blue Coat employees address, though:
1) "The allegation that an organization penetrated one of our appliances through a security hole is flatly not true. There are no known vulnerabilities of our appliance that would allow such an action" Is that the case? I don't know enough about it, but I'm sure there are people who do.
2) "it appears that these logs came from
Re: (Score:1)
Not sure how they could stop it... (Score:2)
Our great shame (Score:1)
Re: (Score:2)
As an American Patriot, I am not sure its going to be that way for long (and may have already slipped from that position). America needs to do better than it is, for our own sake.
Re: (Score:1)
Blue Coat does not intercept IM's (Score:2)
"The evidence we have collected proves that there is a ban on secured authentications for communication tools, such as MSN, Yahoo Messenger, or the Facebook Chat. Syrian people who use these services should be aware that local authorities already stoled their passwords and that all their communications are being intercepted."
And as someone who has been implementing & supporting Proxy solutions for top 500 level companies in Latin America (yea, including Blue Coat &
Analysis (Score:2)
Re: (Score:2)
Thats really not accurate, there are many companies who use this type of thing, and that really doesnt qualify as oppression. As it is the company's network, they are perfectly free to mandate what comes in and out of it.
Re: (Score:2)
IBM sold what was considered a computer in those days to the Nazis, then the Nazis used them to tabulate their kills. Not the same type of computer that you typed your comment in on, but the same basic function; input, compute, output.
Also, many other companies also sold to the Nazis during the WWII period including Standard Oil (Chevron, Amoco, and later BP) and AT&T and many others.
Also, I hope you don't like Volkswagons, Porsches, Audis, Bentleys, Bugattis, Lamborghinis, SEATs, kodas or Scanias.
Re: (Score:2)
Don't forget Siemens, and Mitsubishi built Japanese fighters...
Re: (Score:2)
Hitler kept a picture of Henry Ford on his desk; and it wasn't because he liked his cars.
Software is just software (Score:2)
What's next, giving the author of nmap the 3rd degree because someone did something bad with it?
BlueCoat Knew - Syria's Devices Called Home (Score:3)
"It would appear that all of Syria’s BlueCoat hardware calls home to update its ability to filter and monitor new objects that it has not encountered. Equally importantly, the Syrian logs are filled with queries related to BlueCoat systems, such as ‘bluecoat data collector,’ something that a general home user would have little interest in."
http://b.averysmallbird.com/entries/bluecoat-and-syria-indicators-and-culpability [averysmallbird.com]
There is currently a BlueCoat appliance located in Syria at 82.137.200.42; if the company needs any more of the dozen or so identified addresses of their hardware, I or Telecomix would be happy to oblige.
If you have a user.... (Score:2)
If you have a user behind this proxy willing to run Netalyzr [berkeley.edu] and send us the results link either direct to netalyzr-help@icsi.berkeley.edu or to you, I'd be very interested in seeing if we can see the BlueCoat proxy in our Netalyzr testing.
Real easy way for Bluecoat to do it's best (Score:1)
Bluecoat is not just a box, it's a service. If Bluecoat is serious about not wanting to be used by Syria they should blackhole Syria's IP ranges. No this can't shut off the service as the syrians could use a proxy server outside their IP ranges but it would show that Bluecoat has made an effort...
Re: (Score:2)
its not just bluecoat. there are 50 companies (well, not that many but close) in the bay area, alone, who are so into DPI and other invasions of privacy and tell this to one audience as a 'security tool' and all the while selling it to the owners of the country/company as a spy tool.
I won't name names (they have lawyers; I don't) but any networking company worth anything beyond home unmanaged switches DOES have or PLANS to have DPI and sell it to many bad folks.
10 or 15 years ago, switching was hot. befor
Re: (Score:1)
No argument here, I install & maintain Bluecoats & other security related solutions for a living. Fortunately for my consience, my clients are a lot less oppressive/dangereous that the SG.
What about OS tools? (Score:2)
Sure, using IT infra in this ways is purely evil. And no, companies should not provide any tools for oppressive regimes.
But when will see the first complaints that Open Source tools allow governments to do largely the same things?
I'm nos saying that OS is bad, but is there anyway that OS projects can ensure that their products are used for oppressive means? /jussi