Raila given the server

[RV Pundit]

Server belong to IEBC/Smartmatic - and if they were to do monkey games - they would have the wherewhitall to clean up - and so you wont find anything incriminating. This just desperation.

The best defence against hacking in this process was simple - make videos of pronouncement by the PO via whatsapp, get picture of the original, & have it whatsapped, get the four carbon copies as original delivered to you physically, get picture of the pinned one in classroom. CONFRONT CHEBUKATI with this - and he has NO DEFENCE.

Otherwise server - Smartmatic have remote and backdoor access - and will clean up their mess way before any System Audit arrive. It's their server and systems. It's them to determine what get logged and the level of details.  What do you think they've been doing two weeks btw election and now - clean up any mess that might be incriminating! Make sure all everything ticks the boxes.

The Server, I fairly presume, is not IEBC/UDA/Azimio. Is it tracable or not? Iyo tu. Story zingine sina haja, I know them all. 

[audacityofhope]

Termie, Azimio are claiming some of the forms sent on election night by KIEMS are not what's on the portal. That's they were intercepted and replaced. That in their case, the physical forms are not what was done on election night but replacements whose copies were later uploaded onto the portal to look like they came from the KIEMS/polling stations. They claim it happened only on some forms and the changes were small figures. Is that not tracable in the server? Personally, this is the ONLY thing I want to see. If it never happened, then I'll be satisfied. I think this is also what the court wants to see.

If you put it that way, then it becomes interesting.  If true, then it would leave a few people with serious legal liability.  So basically they want to audit the process from polling station to the server.  Then they have to prove that the files on the server are not identical to the ones sent by KIEMS kit.  I don't know the workings of KIEMS, but if they retain a copy(it seems logical) of the file they send, then this can be determined.

Thanks! That's 90% of the case and is literally the only thing I'm interested in finding out. 

Nothing in life merits being overly complicated.

[audacityofhope]

Server belong to IEBC/Smartmatic - and if they were to do monkey games - they would have the wherewhitall to clean up - and so you wont find anything incriminating. This just desperation.

The best defence against hacking in this process was simple - make videos of pronouncement by the PO via whatsapp, get picture of the original, & have it whatsapped, get the four carbon copies as original delivered to you physically, get picture of the pinned one in classroom. CONFRONT CHEBUKATI with this - and he has NO DEFENCE.

Otherwise server - Smartmatic have remote and backdoor access - and will clean up their mess way before any System Audit arrive. It's their server and systems. It's them to determine what get logged and the level of details.  What do you think they've been doing two weeks btw election and now - clean up any mess that might be incriminating! Make sure all everything ticks the boxes.

The Server, I fairly presume, is not IEBC/UDA/Azimio. Is it tracable or not? Iyo tu. Story zingine sina haja, I know them all. 

Bull crap. Your problem pundit is that you give us links that you youself do not read:

Let's not hear of open the server https://nation.africa/kenya/news/politics/supreme-court-orders-iebc-to-allow-raila-odinga-access-to-election-results-servers-3931164

This will be first & foremost a Forensic undertaking. In the snippet from your link you can see double mention is made of the technology system security policy.  A computer policy will lay out how often the system backups are made. If IEBC religiously followed the policies, then system backups must be produced for inspection at moments notice. Saying they did make them or that they were deleted will not fly. You cant clean up a backup unless you anticipate exactly what you want to hide. Backups are compressed & in machine language. They need to be restored to be read.

The IEBC was also ordered to provide them with copies of its technology system security policy comprising but not limited to password policy, password matrix and owners of system administration password(s).

They will also be given information on the system users and levels of access, workflow chats for identification, tallying, transmission and posting of portals.

Still on technology, IEBC will provide its technology system security policy comprising any application programming interface (API) that had been integrated and the list of human interface and controls for such intervention. However, the provision is subject to any security related issues.

[RV Pundit]

I have 20yrs exp in these stuff - and those are just SOPS. The smoking gun you need if it existed has already been cleaned up. What would have helped Raila was proper voter protection using agents. If this server was held by someone independent of IEBC/Smartmatic then you'd be sitting pretty - but IEBC and Smartmatic have been with server for two weeks. Even today - as they pretend to prepare access - they probably went through everything - made sure nothing illegal was in there - everything was upto standard - because IEBC Tech Staff are going to get fired if Raila find a mistake. Smartmatic also did the same...remotely logged in...made sure they were no liabilities. Then tomorrow Raila is given the server to play with

2017 he got luckly because IEBC was slow to allow access. But now they knew 5yrs ago these kinds of questions will arise - and they are ready for Raila.

Raila evidence is Githongo bullcrap - backed by Njoroge con-game - and finally the laughable logs that Nyanganya has.

Bull crap. Your problem pundit is that you give us links that you youself do not read:

[GeeMail]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

I like to add that they had no problem pouring out the entrails of the server for the uncontested rerun, even though nobody ordered them to.  A small, but revelatory detail.  If they were consistent by not opening it the second time, it would be easier to sell the generally unconvincing lie that they were concerned about security.  By contrast, they remain in defiance of the first order to this moment.

That aside, I can't make head or tail of why they want to access the server in this case.  What are they trying to find?  Hacking is an ill-understood term and conjures up all manner of unhelpful things, and paranoia.  Hacking most often involves perfectly "authorized" access carrying activities that on the surface are authorized and leave no useful scent depending on a lot of variables.  I feel that this is a wild goose chase in this particular case.  But again, without really knowing what they want, I might of course be wrong.

This is the most reasoned argument one can make in this case. Chebukati claims all form 34As are in the portal but theft can be hidden in plain sight. If false 34As were created and uploaded, he will claim Maina Kiai ruling to uphold them. But few people pay attention to the fact that East Africa Data Handlers showed Chebukati PA Kwanusu accessed the server and did many things around 27 times. Kwanusu is not gazetted to have access but the assumption is that being Chebukati's PA grants him access. How about Chebukati's wife, hairdresser, secretary, advocate, cousin and uncle? Hacking will not appear if authorized users make "legal" edits and changes in the server.

[RV Pundit]

Which law says someone should be gazetted to have access to any system. Chebukati can delegate any clerical work to his staff. You dont expect Chebukati to generate the excels and all that IT stuff. What you should be telling us is whether PA did something illegal - otherwise if he was assisting chebukati - that was his job.

This is the most reasoned argument one can make in this case. Chebukati claims all form 34As are in the portal but theft can be hidden in plain sight. If false 34As were created and uploaded, he will claim Maina Kiai ruling to uphold them. But few people pay attention to the fact that East Africa Data Handlers showed Chebukati PA Kwanusu accessed the server and did many things around 27 times. Kwanusu is not gazetted to have access but the assumption is that being Chebukati's PA grants him access. How about Chebukati's wife, hairdresser, secretary, advocate, cousin and uncle? Hacking will not appear if authorized users make "legal" edits and changes in the server.

[GeeMail]

https://www.iebc.or.ke/news/?IEBC_Gazettes_Returning_Officers

IEBC gazetted ROs for a reason. Access to servers is critical in IEBC business. You cannot allow anybody to access, delete and do funny things on server because they are Chebukati hairdresser or driver. It has to be controlled and gazetted.

[RV Pundit]

Nonsense. In 2017 my sister worked as ICT something for IEBC. IEBC is not Chebukati. Chebukati can and does delegate to IEBC - his PA is IEBC staffer - ICT clerks - ICT managers - to generate and access the database. You cannot restrict access of IEBC system to internal IEBC staff. That would be crazy.

What was gazetted are the ROS. Chebukati as presidential RO will delegate everything he wants to IEBC staff except declaration and final signing staff. The same for const RO. You dont expect Chebukati to download 46,000 forms - and tabulate them all by himself. Jinga wewe.

Chebukati gave many IEBC staff jobs to do - as Presidential RO - he gave the rogue commissioners jobs like managing the choir, refreshments, announcing the results, smilling at cameras - others were to log in to systems, download the forms, compare with physical forms, name it, enter into excel, format, do the maths.

And this main contention - Che-error group says rightly that Chebukati is not IEBC - but they assume wrongly that IEBC is commissioners.

Nope IEBC is the entire body - right from clerks to Chebukati PA. Even now in Supreme Court - each judge has 20 people working for them - maybe 10 lawyers - researchers - 10 admin/clerical staff - then they have Registar (who is CEO of the Judiciary) - also assisting in executing orders.

https://www.iebc.or.ke/news/?IEBC_Gazettes_Returning_Officers

IEBC gazetted ROs for a reason. Access to servers is critical in IEBC business. You cannot allow anybody to access, delete and do funny things on server because they are Chebukati hairdresser or driver. It has to be controlled and gazetted.

[Kim Jong-Un's Pajama Pants]

In 2017 they refused. And because the govt was on the side of refusing, they disobeyed a court order
Then and now, this one fact about servers has not changed: Any Access onto a server always leaves foot prints.

UDA need not hold their breath, they will be "Smoked out" & Baba better spend his money well - even if he does not have it - to pull in a very qualified system forensic security expert.

I like to add that they had no problem pouring out the entrails of the server for the uncontested rerun, even though nobody ordered them to.  A small, but revelatory detail.  If they were consistent by not opening it the second time, it would be easier to sell the generally unconvincing lie that they were concerned about security.  By contrast, they remain in defiance of the first order to this moment.

That aside, I can't make head or tail of why they want to access the server in this case.  What are they trying to find?  Hacking is an ill-understood term and conjures up all manner of unhelpful things, and paranoia.  Hacking most often involves perfectly "authorized" access carrying activities that on the surface are authorized and leave no useful scent depending on a lot of variables.  I feel that this is a wild goose chase in this particular case.  But again, without really knowing what they want, I might of course be wrong.

This is the most reasoned argument one can make in this case. Chebukati claims all form 34As are in the portal but theft can be hidden in plain sight. If false 34As were created and uploaded, he will claim Maina Kiai ruling to uphold them. But few people pay attention to the fact that East Africa Data Handlers showed Chebukati PA Kwanusu accessed the server and did many things around 27 times. Kwanusu is not gazetted to have access but the assumption is that being Chebukati's PA grants him access. How about Chebukati's wife, hairdresser, secretary, advocate, cousin and uncle? Hacking will not appear if authorized users make "legal" edits and changes in the server.

From where I am sitting, the one thing that would scream system compromised, because of Dear Mama's scenario, is if the files on the server and KIEMS kit are not identical.  Not knowing much else about the system, I like to hope that guys like Chebukati(and any other normal users) cannot just change whatever they want, whenever they want, on any IEBC system.

[RV Pundit]

In 2017 A - they were digital plus scanned forms. Digital entries you can easily change. This IEBC discountinued - although it made the process very fast...now we are slow but sure.
Now these are images. Not easy to change. Even in PDF - you'd have to OCR.
Or totally replace with new images.
KIEMS kit had many security features - all these were demonstrated twice to satisfication of everyone - that KIEMS kit would not relay any fake form. PO had to log in with their fingerpints. They were many checks done before the forms could be submitted.
The digital copy itself is send to THREE SERVERS - one at CONST - one at BOMAS - and the Portal (web server)
CRO had access to documents of his const outside the portal. Chebukati the same - he had his own server. The portal was for everyone else.
To make any change - you need to cascade the changes on all the three servers.
Again if you change the form in the server - you need to cascade the changes in the physical forms.

From where I am sitting, the one thing that would scream system compromised, because of Dear Mama's scenario, is if the files on the server and KIEMS kit are not identical.  Not knowing much else about the system, I like to hope that guys like Chebukati(and any other normal users) cannot just change whatever they want, whenever they want, on any IEBC system.

[Kim Jong-Un's Pajama Pants]

In 2017 A - they were digital plus scanned forms. Digital entries you can easily change. This IEBC discountinued - although it made the process very fast...now we are slow but sure.
Now these are images. Not easy to change. Even in PDF - you'd have to OCR.
Or totally replace with new images.
KIEMS kit had many security features - all these were demonstrated twice to satisfication of everyone - that KIEMS kit would not relay any fake form. PO had to log in with their fingerpints. They were many checks done before the forms could be submitted.
The digital copy itself is send to THREE SERVERS - one at CONST - one at BOMAS - and the Portal (web server)
CRO had access to documents of his const outside the portal. Chebukati the same - he had his own server. The portal was for everyone else.
To make any change - you need to cascade the changes on all the three servers.
Again if you change the form in the server - you need to cascade the changes in the physical forms.

From where I am sitting, the one thing that would scream system compromised, because of Dear Mama's scenario, is if the files on the server and KIEMS kit are not identical.  Not knowing much else about the system, I like to hope that guys like Chebukati(and any other normal users) cannot just change whatever they want, whenever they want, on any IEBC system.

Which is the point I make.  If the files(whatever the format) are not identical we can know right away something is wrong.  If the changes are somehow cascaded to make them identical, then we don't know whether or not something wrong happened merely by comparing files.  Depending on that actual design and implementation, that could be the end of it.  Dear Mami's scenario(really Azimio's, she is just relaying it) assumes that physical forms have also been replaced.

[Dear Mami]

In 2017 A - they were digital plus scanned forms. Digital entries you can easily change. This IEBC discountinued - although it made the process very fast...now we are slow but sure.
Now these are images. Not easy to change. Even in PDF - you'd have to OCR.
Or totally replace with new images.
KIEMS kit had many security features - all these were demonstrated twice to satisfication of everyone - that KIEMS kit would not relay any fake form. PO had to log in with their fingerpints. They were many checks done before the forms could be submitted.
The digital copy itself is send to THREE SERVERS - one at CONST - one at BOMAS - and the Portal (web server)
CRO had access to documents of his const outside the portal. Chebukati the same - he had his own server. The portal was for everyone else.
To make any change - you need to cascade the changes on all the three servers.
Again if you change the form in the server - you need to cascade the changes in the physical forms.

From where I am sitting, the one thing that would scream system compromised, because of Dear Mama's scenario, is if the files on the server and KIEMS kit are not identical.  Not knowing much else about the system, I like to hope that guys like Chebukati(and any other normal users) cannot just change whatever they want, whenever they want, on any IEBC system.

Which is the point I make.  If the files(whatever the format) are not identical we can know right away something is wrong.  If the changes are somehow cascaded to make them identical, then we don't know whether or not something wrong happened merely by comparing files.  Depending on that actual design and implementation, that could be the end of it.  Dear Mami's scenario(really Azimio's, she is just relaying it) assumes that physical forms have also been replaced.

Azimio are claiming that the KIEMS were made to first send to one thing/place/app, stuff would happen to them, then from this second stop, they would be dumped ont the Tallying centers/portal etc. In other words, they were not coming directly to the tallying center/portal but there was some kind of program mediating between KIEMS and the destinations they were supposed to be sent to. They're saying that this was done illegally/secretly. That's why the debate about PDFs started, because they wouldn't have the same identifying info on them (like which KIEMS sent them, from where and when). The suggestion was that they were converted to PDFs for precisely this. Is this something they could hide by 'cleaning up' as Pundit says?

[RV Pundit]

You just need to read replying affidavits from IEBC to know such nonsense are improbable.That iebc would deliberately work to make one candidate pork. Is iebc run by UDA.The ICT manager is a Luo..there many Azimio tribes in IEBC so any such conspiracies would be outed. Did rigging happen.. mostly yes if PO and agents collude they did it before submitting to form 34A...but imagine someone intercept form 34A online then intercepts the original then sync changes is madness

[Kim Jong-Un's Pajama Pants]

In 2017 A - they were digital plus scanned forms. Digital entries you can easily change. This IEBC discountinued - although it made the process very fast...now we are slow but sure.
Now these are images. Not easy to change. Even in PDF - you'd have to OCR.
Or totally replace with new images.
KIEMS kit had many security features - all these were demonstrated twice to satisfication of everyone - that KIEMS kit would not relay any fake form. PO had to log in with their fingerpints. They were many checks done before the forms could be submitted.
The digital copy itself is send to THREE SERVERS - one at CONST - one at BOMAS - and the Portal (web server)
CRO had access to documents of his const outside the portal. Chebukati the same - he had his own server. The portal was for everyone else.
To make any change - you need to cascade the changes on all the three servers.
Again if you change the form in the server - you need to cascade the changes in the physical forms.

From where I am sitting, the one thing that would scream system compromised, because of Dear Mama's scenario, is if the files on the server and KIEMS kit are not identical.  Not knowing much else about the system, I like to hope that guys like Chebukati(and any other normal users) cannot just change whatever they want, whenever they want, on any IEBC system.

Which is the point I make.  If the files(whatever the format) are not identical we can know right away something is wrong.  If the changes are somehow cascaded to make them identical, then we don't know whether or not something wrong happened merely by comparing files.  Depending on that actual design and implementation, that could be the end of it.  Dear Mami's scenario(really Azimio's, she is just relaying it) assumes that physical forms have also been replaced.

Azimio are claiming that the KIEMS were made to first send to one thing/place/app, stuff would happen to them, then from this second stop, they would be dumped ont the Tallying centers/portal etc. In other words, they were not coming directly to the tallying center/portal but there was some kind of program mediating between KIEMS and the destinations they were supposed to be sent to. They're saying that this was done illegally/secretly. That's why the debate about PDFs started, because they wouldn't have the same identifying info on them (like which KIEMS sent them, from where and when). The suggestion was that they were converted to PDFs for precisely this. Is this something they could hide by 'cleaning up' as Pundit says?

[RV Pundit]

That wild goose chase was rejected by the court. Whatever one wants to proof - the paper trail is more than sufficient/

request touching on access to all the Kiems kits and servers for all constituency tallying centres.

[Dear Mami]

Then the thread is falsely titled. If they don't examine what came from the KIEMS, which is the whole dispute, then what's the point? Some of us just want third-party assurance that we have the docs scanned and sent by KIEMS on election night. If that's not available, then there's nothing we're waiting for. Thread gave false hope.

[RV Pundit]

If you want to full postmorteum of the election - it cannot be done in a week - the constitution doesnt envisage full audit being done - to help the loser deal with acceptance of their loss and closure - in 14 days of hearing and determing this case.

The constitution in fact doesnt anticipate the nullification of the election except where IEBC totally mess up that evidence is very apparent - if you have to go fishing for evidence - then clearly you cannot be helped.

What you want is full audit of IEBC, full recount, full retallying - and those things take time. All IEBC kits would have to be brought back to Nairobi - 46,000 of them, 46,000 ballot boxes - and then scrutiny - this would take weeks.

Then the thread is falsely titled. If they don't examine what came from the KIEMS, which is the whole dispute, then what's the point? Some of us just want third-party assurance that we have the docs scanned and sent by KIEMS on election night. If that's not available, then there's nothing we're waiting for. Thread gave false hope.

[GeeMail]

Nonsense. In 2017 my sister worked as ICT something for IEBC. IEBC is not Chebukati. Chebukati can and does delegate to IEBC - his PA is IEBC staffer - ICT clerks - ICT managers - to generate and access the database. You cannot restrict access of IEBC system to internal IEBC staff. That would be crazy.

What was gazetted are the ROS. Chebukati as presidential RO will delegate everything he wants to IEBC staff except declaration and final signing staff. The same for const RO. You dont expect Chebukati to download 46,000 forms - and tabulate them all by himself. Jinga wewe.

Chebukati gave many IEBC staff jobs to do - as Presidential RO - he gave the rogue commissioners jobs like managing the choir, refreshments, announcing the results, smilling at cameras - others were to log in to systems, download the forms, compare with physical forms, name it, enter into excel, format, do the maths.

And this main contention - Che-error group says rightly that Chebukati is not IEBC - but they assume wrongly that IEBC is commissioners.

Nope IEBC is the entire body - right from clerks to Chebukati PA. Even now in Supreme Court - each judge has 20 people working for them - maybe 10 lawyers - researchers - 10 admin/clerical staff - then they have Registar (who is CEO of the Judiciary) - also assisting in executing orders.

https://www.iebc.or.ke/news/?IEBC_Gazettes_Returning_Officers

IEBC gazetted ROs for a reason. Access to servers is critical in IEBC business. You cannot allow anybody to access, delete and do funny things on server because they are Chebukati hairdresser or driver. It has to be controlled and gazetted.

Can Chebukati sweeper and lawyer make edits on server because they work for Chebukati? You don't know what your saying.

[RV Pundit]

I know - in fact I have since seen read IEBC affidavit - that confirm PA was given access to server - after Chebukati authorized him - and his job was to continously download the data - for the commissioners to read out.

Remember this election - Presidential one - the boss was Chebukati - he was one to hire people to help him in Bomas - including fellow commissioners, IEBC staff and all that.

The idea that someone need to be gazetted to be granted server access is pretty dumb. Chebukati authorized many IEBC staff to have requisite access to help him - because he cannot do the job alone.

Can Chebukati sweeper and lawyer make edits on server because they work for Chebukati? You don't know what your saying.

[GeeMail]

I know - in fact I have since seen read IEBC affidavit - that confirm PA was given access to server - after Chebukati authorized him - and his job was to continously download the data - for the commissioners to read out.

Remember this election - Presidential one - the boss was Chebukati - he was one to hire people to help him in Bomas - including fellow commissioners, IEBC staff and all that.

The idea that someone need to be gazetted to be granted server access is pretty dumb. Chebukati authorized many IEBC staff to have requisite access to help him - because he cannot do the job alone.

Can Chebukati sweeper and lawyer make edits on server because they work for Chebukati? You don't know what your saying.

Is it possible Chebukati also gave Venezuelans and the 56 Karen group access? Sound like you are making confessions. That is what Murgor is speaking right now.