Raila given the server

[RV Pundit]

• Tweet

Let's not hear of open the server https://nation.africa/kenya/news/politics/supreme-court-orders-iebc-to-allow-raila-odinga-access-to-election-results-servers-3931164

[audacityofhope]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

[Dear Mami]

This is what I wanted. I'm glad. At least now we'll know the truth. If Ruto won, I'll move on, even if Baba doesn't. Let truth prevail.

[RV Heavy Hitter!]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

I doubt Kenya has qualified cybersecurity experts; he may have to look around the globe. In such a task, you need at minimum CISSP, CISA officials with 10 years of experience ranging from Computer Forensic Analyst, Cyber Forensic Analyst, Network Forensic examiner, Fraud analyst, Cryptologic Forensic Examiner, Computer Hacking Forensic Investigator, and many more titles under RVHH's belt. Also, his advisor should tell him to find experts who can audit all the Defense-In-Depth nature covering logical and physical security. It is sad that they can see government people trying to mess with the perimeter and IEBC stuff if they audit the physical side. Further, I wouldn't be surprised to find the government's script kiddies or full-blow black and gray-hat hackers once they go to the logical side of the equation. For instance, IDS/IPS, encryption, firewall, Vlans, access, etc. Complete audits based on what is in the public domain may incriminate Azimio, especially if the IT staff supervising them are Smartmatic IT people!

[Kim Jong-Un's Pajama Pants]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

I like to add that they had no problem pouring out the entrails of the server for the uncontested rerun, even though nobody ordered them to.  A small, but revelatory detail.  If they were consistent by not opening it the second time, it would be easier to sell the generally unconvincing lie that they were concerned about security.  By contrast, they remain in defiance of the first order to this moment.

That aside, I can't make head or tail of why they want to access the server in this case.  What are they trying to find?  Hacking is an ill-understood term and conjures up all manner of unhelpful things, and paranoia.  Hacking most often involves perfectly "authorized" access carrying activities that on the surface are authorized and leave no useful scent depending on a lot of variables.  I feel that this is a wild goose chase in this particular case.  But again, without really knowing what they want, I might of course be wrong.

[KenyanPlato]

Raila is on wild goose chase.,he should stick to the paper and leave technology alone. he has no team to help him unravel any manipulation that requires people trusted with controls to give up those controls to bad actors

[RV Pundit]

Let's see what they find in the server...of course nothing

[audacityofhope]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

I like to add that they had no problem pouring out the entrails of the server for the uncontested rerun, even though nobody ordered them to.  A small, but revelatory detail.  If they were consistent by not opening it the second time, it would be easier to sell the generally unconvincing lie that they were concerned about security.  By contrast, they remain in defiance of the first order to this moment.

That aside, I can't make head or tail of why they want to access the server in this case.  What are they trying to find?  Hacking is an ill-understood term and conjures up all manner of unhelpful things, and paranoia.  Hacking most often involves perfectly "authorized" access carrying activities that on the surface are authorized and leave no useful scent depending on a lot of variables.  I feel that this is a wild goose chase in this particular case.  But again, without really knowing what they want, I might of course be wrong.

Woyee, Surely Termie, you can't be that clueless: one thing they would want to do is find out who accessed the server. Apparently a lot of roles in IEBC were gazetted. So No. 1 is there anybody who accessed the server that was not gazetted to do so? No.2 Were there any server write-access intrusions from outside the network locations that were gazetted? Deal with that before going onto finding what was changed. The 3 IEBC staff, were they authorized ICT staff to have the access they are alleged to have had?

[Nowayhaha]

People tend to forget the so called server of 2017 was basically what IEBC was using for transmission of provisional tallied results.
IEBC relied heavily on the provisional results unlike these time on verified results to announce Uhuru as winner.
What they hope to get this time around from the serve only they know how it will help them. If the form 34A are the same as physicall Form 34 A. Then thats it.

.

[audacityofhope]

Raila is on wild goose chase.,he should stick to the paper and leave technology alone. he has no team to help him unravel any manipulation that requires people trusted with controls to give up those controls to bad actors

Njamba you are another one. What lead to the 2017 presidential election being annulled was the 'process' - more specifically problems were detected with the transmission of results. This was a technical thing. we have renegades like Chirchir roaming free and it is okay to let them do as they please? Remember the parties are putting their case to non-technical people (Judges) who have decided that the standard of proof need only be: The balance of probabilities. This is a lower standard than in a criminal case which requires 'beyond reasonable doubt'. This is a low hanging fruit

[RV Pundit]

I doubt they were that many direct users like in 2017 which was basic file server.Smartmatic results management was more sophisticated.Most users access the server via VPN tunnels after using their fingerprints.That is on kiems kit front...the POS.I think CRO logged into the web portal and uploaded form 34Bs possibly using just normal email & password.The rest of access will be IEBC and smartmatic systems administrators. So the tall stories about server fails by simple reason that pos needed to use their fingerprints to log in, VPN tunnel opened, and they uploaded...each device had their unique identifiers..we're georeferenced..each form had QR code.

[Kim Jong-Un's Pajama Pants]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

I like to add that they had no problem pouring out the entrails of the server for the uncontested rerun, even though nobody ordered them to.  A small, but revelatory detail.  If they were consistent by not opening it the second time, it would be easier to sell the generally unconvincing lie that they were concerned about security.  By contrast, they remain in defiance of the first order to this moment.

That aside, I can't make head or tail of why they want to access the server in this case.  What are they trying to find?  Hacking is an ill-understood term and conjures up all manner of unhelpful things, and paranoia.  Hacking most often involves perfectly "authorized" access carrying activities that on the surface are authorized and leave no useful scent depending on a lot of variables.  I feel that this is a wild goose chase in this particular case.  But again, without really knowing what they want, I might of course be wrong.

Woyee, Surely Termie, you can't be that clueless: one thing they would want to do is find out who accessed the server. Apparently a lot of roles in IEBC were gazetted. So No. 1 is there anybody who accessed the server that was not gazetted to do so? No.2 Were there any server write-access intrusions from outside the network locations that were gazetted? Deal with that before going onto finding what was changed.

I confess cluelessness .  Let's suppose there was illegal access and it's exposed.  Maybe some admin login from an unauthorized location.  The files, as far as I can tell still reflect the physical forms(my assumption and I could be wrong).  So the remedy would be to ensure better enforcement of those roles in the next election.  How does that help this case? 

[Dear Mami]

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

[RV Pundit]

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to s

Moses ledama sunkuli of iebc says they verified original against online.. perfect match...only one mathematical error in kilifi.Raila has presented forged 2017 logs and more ominous forged online form 34A...instead of agent carbon copies..he was entitled to four copies...and could also take pictures of original in the phone .Let hear tomorrow the evidence...but Raila relying on hacking using githongo crap, forgeries of form 34 and finally cheroro iebc split

[Nowayhaha]

Which kind of verification was Azimio doing at the Bomas if this is the case. Unlike in 2017 where they could cast doubt using this tactic.  These time around Chebukati took time and ensured all Form 34A were verified at Bomas.

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

[Kim Jong-Un's Pajama Pants]

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

If you put it that way, then it becomes interesting.  If true, then it would leave a few people with serious legal liability.  So basically they want to audit the process from polling station to the server.  Then they have to prove that the files on the server are not identical to the ones sent by KIEMS kit.  I don't know the workings of KIEMS, but if they retain a copy(it seems logical) of the file they send, then this can be determined.

[Dear Mami]

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

Termie, please answer me because I have a legit question here based on what you said with my zero IT knowhow. Not interested in hearing testimony from IEBC, UDA, or Azimio; I'm already well aware what each party is claiming in this case. I want to know if the Azimio allegations as I've described them here are TRACABLE in/on the server. The Server, I fairly presume, is not IEBC/UDA/Azimio. Is it tracable or not? Iyo tu. Story zingine sina haja, I know them all. 

[Dear Mami]

Oh, sorry! You already replied 

[Dear Mami]

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

If you put it that way, then it becomes interesting.  If true, then it would leave a few people with serious legal liability.  So basically they want to audit the process from polling station to the server.  Then they have to prove that the files on the server are not identical to the ones sent by KIEMS kit.  I don't know the workings of KIEMS, but if they retain a copy(it seems logical) of the file they send, then this can be determined.

Thanks! That's 90% of the case and is literally the only thing I'm interested in finding out. 

[RV Heavy Hitter!]

Which kind of verification was Azimio doing at the Bomas if this is the case. Unlike in 2017 where they could cast doubt using this tactic.  These time around Chebukati took time and ensured all Form 34A were verified at Bomas.

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

Chebukati wanted his commission NOT to be demolished like Kivuitu and Isaac Hassan's; that is why he ticked all the boxes. Even with Chebukati's honest work, the cabal is manufacturing things along the way to soil his commission because of the humiliating defeat. I hope they will learn to be honest, have a tested plan, campaign aggressively, and, most importantly, avoid going into bouts with a meticulous calculator like Ruto. Against all odds, WSR kneecapped them wide open [Thrilla in Manila rope a dope of politics!]