Not often do we break news on Dvorak News but today we do. Hillary Clinton used a spam filtering service MxLogic to filter her spam and viruses. What this means is – employees at MxLogic, now owned by McAfee – had full access to all her classified state department email in unencrypted form.
Here’s the MX records for clintonemail.com.
clintonemail.com. 7200 IN MX 10 clintonemail.com.inbound10.mxlogicmx.net.
clintonemail.com. 7200 IN MX 10 clintonemail.com.inbound10.mxlogic.net.
I’m Marc Perkel – I’m an email expert and I run a competing spam filtering service Junk Email Filter. (yes – I’m jealous) So I know how email system work. Email from the Internet is routed by DNS records called MX records what are used to look up where to deliver email destined for a recipient. When someone uses a Spam Filtering service they point their MX records to that service and all email for that domain goes to the spam filtering service first – they clean it – and forward the good email on to the recipient server which is secret to the world.
Internet —–> MxLogic ——> Hillary’s Server
What this means is that when Obama or anyone in the State Department emailed Hillary, the email went to MxLogic. It was then decrypted, checked for spam and viruses, and then reencrypted and sent over the open internet to Hillary’s server. While it was at MxLogic it could be read, tapped, archived, or forwarded to anyone in the world without anyone knowing.
This system has serious security implications. Email to McAfee’s servers might be encrypted and email out of McAfee might be encrypted, but while it’s at McAfee any employee who has access to the filtering system can tap and read any email going to that domain. So – for example – if I’m a Russian spy, ISIS, North Korea, or Fox News, or a 14 year old hacker, all I have to do is bribe someone at McAfee or hack their work login, and they get to read all the email of the Secretary of State. WooHoo!
And – this is one of many reasons they have a rule at the State Department that you have to use their servers.
For what it’s worth I was imagining that I was the email security tech at the State Department and I’m aware that Hillary isn’t playing by the rules. What do I do? If I confront her about it do I get fired? Or does the State Department even have email security? How does this get past the tech guys.
So if I’m in the job I’m thinking that I would require VPN tunnels with SSL down the tunnel. Might even wrap the SSL inside an SSH tunnel creating 3 layers. Might even require PGP keys on top of that. I mean – I have the ability to do that – so why not the State Department?
But – maybe she’s super stealth? While the Russians are trying to hack her state department account, which doesn’t exists, no one would ever think she’s stupid enough to have her email on a private server in her home. Security through obscurity. And that is assuming that she’s telling the truth about that.
Although we don’t know what IP address Clinton’s real email is on. It’s interesting to note IP addresses in the DNS for the clintonemail.com domain. Most host names like www.clintonemail.com all map to some holding page of no importance. However that host mail.clintonemail.com maps to a different IP address 188.8.131.52, which is in a data center in the New York area, Internap.com. Interesting that her “home server” resolves to a data center. Seems worth investigating to me. mail.presidentclinton.com resolves to the same IP address and also uses MxLogic.
So I thought, what if she has web mail? And sure enough – I GOT A LOGIN PROMPT! https://mail.clintonemail.com And I have verified by the SSL certificate that this is indeed the clintonemail.com server – still online! Click here and type in mail.clintonemail.com
I already tried hillary2016 for the password and that didn’t work. But I’m looking at this and thinking WTF!
Is Hillary’s server secure? It get’s a B rating here. Only supports weak protocols. Uses only SHA1. TLS 1.0.
Another SSL testing site. https://www.whynopadlock.com/check.php – type in mail.clintonemail.com. In contrast type in mail.junkemailfilter.com. My server passes – Hillary’s doesn’t.
Shouldn’t the Secretary of State of the United States of America use a server that isn’t weak?
What email went through this system that could have been tapped? Emails about Libya, Syria, Egypt, Israel, Putin, ISIS, the Bin Laded raid, and Chelsea’s wedding guest list! OMG!
I have been a Clinton supporter. Here’s a pic with me and Hillary in 1992.
If she’s the candidate I would still vote for her in the general election over any Republican. But in the primary – I still dream of Elizabeth Warren, but I’ll settle for Biden. And isn’t that just a little sad.
And – for those of you who make this argument, “Republicans did it too! (Therefore Hillary should get away with it.)” My response – “Are you F…ing kidding me!”
The bottom line – none of this would have happened if she had just played by the rules.