snip.
The Archive @the-archive.bsky.social
Jul 7, 06:42 PM

Author: /home/chiefgyk3d chiefgyk3d Replying to @user5674285 It was bad from a legal compliance and general cybersecurity side that Hillary Clinton ran her own email server #Email #Cybersecurity #Networking #HillaryClinton #technology #server

๐ŸŽค Whisper Transcript (en) โฑ 135s

"So why was it bad that Hillary Clinton had a private email server? So let me tell you, as a cybersecurity professional that ran their own email server for many years, why it was really bad that Hillary Clinton did this, both on the legal compliance side, as well as the general overall bad security practices of that server that made every cybersecurity person pull their hair out. Why do you think I'm bald? It started with Hillary. OK, that was just a joke. But seriously, on the legal compliance side of things, whenever you're conducting business for anyone, not just the United States government, you need to conduct that communication through approved government methods. In this case, the government obviously has their own email servers, which can be well secured, audited. And of course, they can be accountable to Freedom of Information Act requests, as well as, you know, all the things that need to be done for archiving business with the United States government so that we have complete transparency to the United States citizenry. Now, on the actual security side of things, this is where it was really bad. She was running on Microsoft Exchange. I know some people out there going to say, so what? A lot of people run on Microsoft Exchange. It wasn't the best solution back then. But even then, it was not using SSL TLS encryption, which allows for secure transport of emails. So it could have been intercepted very easily with the messages that were going to and from her email server without much extra work. That was one of the main concerns there, as well as allegedly the server itself was in a bathroom. Yeah, it was not very well done. It was not very well maintained. It was just a horrible mess of an email server. And even then, friends don't let friends run their own email servers because it is a nightmare to maintain them. I know some of you will say, I don't have any problems. Well, guess what? I ran my own for 10 years. And there's a reason why I eventually decommed it and migrated it to ProtonMail, because it's a pain to actually maintain a lot of that stuff. She had a dedicated IT person to do all this stuff. But on the legal compliance side, as well as the general cybersecurity side, it was not well done. She had the money to buy an SSL TLS cert. And this was before Let's Encrypt, if I recall. So there was no excuse for this. It was just cutting corners in so many ways that just really didn't look good."

โค๏ธ 0 ๐Ÿ” 0 ๐Ÿ’ฌ Discussion
Bluesky โ†—

๐Ÿ’ฌ Discussion

The Archive @the-archive.bsky.social ยท Jul 6, 04:22 AM

Author: /home/chiefgyk3d chiefgyk3d Replying to @user5674285 It was bad from a legal compliance and general cybersecurity side that Hillary Clinton ran her own email server #Email #Cybersecurity #Networking #HillaryClinton #technology #server