Sanders campaign staffers were wrong. No ifs, ands, or buts. Sanders is running a campaign of being an honest broker, a man of integrity, and a man of strong ethics and morals. This is damaging to all the above, and it's the reason his supporters are in panic mode trying to explain it away any which way they can.

It's not going to work.

and rec'd.

St Bernie told a few fibs. Some cracks appear in his perfection.

would be proud of you. To once again mock Bernie Sanders' honesty (St Bernie), a huge plus for him, is pathetic on your part. To bad honesty isn't contagious.

1) "St. Bernie" is aimed at his blind supporters at DU, not at Sanders himself.
2) Take a look at the OP and recognize exactly what Sanders knew at the time of the debate. If you watched the opening 30 minutes of the debate, you know quite well that he was not completely honest about what happened and how it happened.

I strongly suggest you back way off of the insults.

So when you wrote, "St Bernie told a few lies", you were saying that his blind supporters were the ones lying?? And then you also expect me to reach the same conclusion as you pertaining to the first 30 minutes?? If this is how you educate...??

The leader has agreed to an independent audit, he has apologized and after the audit report is given then we can see if Sanders has responded properly, I am thinking he responded properly.

where he speculated or implied that the Clinton campaign had his voter lists, and that would be part of the audit into his campaign's scandal.

Seems like a typical grasping politician to me - welcome to the Major Leagues!

another campaign tactics. Looks like the Sanders campaign workers was trying to gain knowledge of a successful campaign.

Sanders delayed for 3 days while refusing to submit to the DNC's request for an independent audit. The cut off was because the Sanders campaign would not cooperate.

After they were forced to give in, they got their data back. Meanwhile, who knows what they copied, destroyed, or studied that belonged to the Clinton campaign.

Crooks and liars!

because some has to justify their actions. All of the "defenses" should be reserved for court rooms.

I truly admire the way you are trying to prevent the continued smearing of both candidates and trying to let the independent audit continue.

I have let it go that way as well.

There is no sense in burning calories on something no one will truly ever know anything about until the audit is done.

We need to save our ammo for after that. Just kidding.

Peace brother. Merry Christmas.

... Washington Monthly, by someone with a lot of experience with NGP VAN,
an interview with Josh Uretsky himself,
audit logs from NGP VAN, vetted by news organizations,
a story from the AP,
the transcript of the debate,
and finally, yes, an article by a DNC member.

All of them are pointing in the same direction.

NGP VAN is the company that took down the firewall, they are hardly neutral in this.

Josh Uretsky would be biased in favor of Sanders.

Yes, Uretsky's bias would in favor of Sanders, NGP VAN and the DNC have different biases. What we are missing is any sort of independent account of what happened. You can not deny that lack of independent sources just because a few people with stakes in the game are saying things that fit your world view.

I don't see how that benefits either campaign since no one is denying it.

Clearly Sanders thought Uretsky was culpable. So what more needs to be proven?
[hr][font color="blue"][center]You have to play the game to find out why you're playing the game. -Existenz[/center][/font][hr]

An independent account of who had access to the data and what other data may have been compromised. An independent account of how the DNC responded when they were previously notified of security holes.

There are lots of unanswered questions and we need a full independent investigation to get those answers.

The MOST that your suspicions would net you is that the DNC or the vendor were negligent. How does that translate into anything positive for anyone?

Everyone would nod their heads and mutter that something ought to be done about that and nothing substantial would change.
[hr][font color="blue"][center]You have to play the game to find out why you're playing the game. -Existenz[/center][/font][hr]

They made the choice to handle this in the media rather than internally, they can't expect us to ignore the fact that they failed to safeguard their network.

...and started smearing the Sanders campaign (remember, they had taken immediate action on this and acknowledged it -- no attempt to cover anything up), not to mention denying them access to their data in clear breach of their contract -- at that point, she lost any moral high ground she might otherwise have had in this matter.

The reason a suit was brought, was to restore access to the data. And although DWS did restore access to the data rather than go before a judge for a ruling, the Sanders campaign has not withdrawn the suit.

The suit alleges damages due to breach of contract (withdrawing access from the data), and it also lists the terms of the contract that require the DNC and their vendor to maintain reasonable standards of data protection. If initial stories are true, then I would say the vendor was negligent -- BUT we don't know yet if those stories are true. In order to find out if there was a pattern of this sort of thing, the audit logs need to be examined so that it is all out in the open: any access by one campaign of data by another campaign, whether intentional or not. I should think each of the campaigns would want to know that.

considering every story is saying the same thing, including stuff told by a once trusted Sanders staffer, I think the OP is right on. There hasn't been an independent account of what happened with Bill Cosby over the years but I'd bet hard currency you believe all those women over Bill any day. Right?

I certainly don't trust Cosby and I personally believe he is guilty, but my personal beliefs about him are irrelevant. I would not support prosecution of anyone without an investigation.

(And yes, I realize that this independent investigation is not necessarily a criminal prosecution. That does not mean I have to trust the DNC however.)

will do literally anything to keep the power. The People will have a hard fight against the corruption of the big money that some worship so highly.

We do know that the DNC is working for Clinton.

The AP is in the tank for Clinton?
The debate transcript is biased?

Clinton in the WH. I think that should be a concern for Democrats that recognize that money in politics is not good.

One person fired, two suspended, and the cleaning of Sanders house ain't done yet. Keep pointing fingers as people are getting fired and suspended.

I felt I had to straighten out the record.

I was disappointed that Bernie Sanders himself suggested his campaign may have gotten the data accidentally, or that Clinton's campaign might have his data, without any evidence, before honorably apologizing. I can only guess that his version of events is what his staffers told him. Weaver and Devine are not serving him well in their all-encompassing defensiveness.

First, please stop calling them "data logs" because they are not. What everyone keeps calling "data logs" is a human created document that is, at best, an executive summary of a certain chain of events, they are not computer-generated event logs like a transaction log from an SQL database or an application event log generated from a Windows PC. Data logs would be meaningless to most people, unless you are an IT professional and have experience in the system they come from, they are nothing but gibberish. I would want the raw, system-generated, logs to be analyzed by an independent auditing firm by an actual IT professional with experience with VoteBuilder, before I am willing to commit to what did and did not happen. To be fair, log information is often very limited and sometimes downright ambiguous about events. I know, I've been looking at log files from all kinds of systems and applications for over 20 years and rarely are all the answers in them.

Second, you first state that the Sanders campaign couldn't have got the information on accident, which I agree with and actually so does the Sanders campaign, then say later on that the Clinton campaign could have in The 2008 event, cannot have it both ways.

Lastly, your explanation is right on some points (no data was removed or saved in folders, other than within the VoteBuilder software itself). Guessing, if not downright arguemenative, in other places.

Leave what actually happened to whatever independent firm examines the records.
To head off any flamming, I am not saying that things could not have been handled better on the Sanders side.

I am saying that mistakes are not a conspiracy.
That the DNC acted unprofessional and violated their contract.
That the Clinton campaign knew, by the time they went screaming to the press, that no actual data, voter list, had been removed from the VoteBuilder system. They inflamed the situation with information they knew was not true.

Whatever else did or did not happen will come from an independent auditing firm in three near future.

Addressing a few of your points:

1. I agree that it looks like the publicly available logs were made human-readable by editing or automatic generation. However, are you suggesting that they've been manipulated or are otherwise false? For example, when it says

"Saved list "Turnout 30-69.99" into "Data Team" folder"

are you suggesting that someone did not save a list with that name into that folder?

2. Why can't it be true that the Sanders campaign accessed the data purposely, as has been reported by multiple news sources, and that whatever event may or may not have happened in 2008 was unintentional. The Sanders lawsuit, which seems to be the primary source of the 2008 event, says flat-out that it was "unintentional".

3. If Sanders supporters and the Sanders campaign are allowed to make sweeping statements about what they did or didn't do, who notified NGP VAN and who didn't, why do I have to wait until there's an independent investigation? That hardly seems fair.

4. The story was in the press and blowing up long before the Clinton campaign issued any press releases. I remember the first few articles I read said that the Clinton campaign declined to comment. To say that the Clinton campaign ran screaming to the press is an exaggeration. Further, as the Atkins article says, you can glean very valuable information without being able to store the saved lists.

5. While you caution me to wait for an independent investigation, you conclusively claim that "no actual data, voter list, had been removed from the VoteBuilder system." How do you know that? I actually believe it myself, but why doesn't this fall into the category of things that need to wait for an independent investigation? Finally, just because the Sanders staffers were foiled in their attempts to save data by their limited permissions, that doesn't mean they didn't have the intent to use the data, had the glitch not been discovered.

...about the publicly available log entries, that clearly are cleaned up for human consumption. I personally think they are real log entries and I have no problem with cleaning and abbreviating the format to make it clear for humans to see the information for themselves.

However, another common way to mislead in situations like this is to withhold information. If all you want to know about is this particular incident, then you limit your examination of the log to that 24-hour period. Voila! You have only one breach, and it shows dubious activity by the Sanders campaign, which was already known. But still, I am fine with showing this information. It is factual.

Okay. So if, as the Sanders campaign alleges, this has happened more than once, and the company appears to be somewhat lackadaisical in their response to such incidents, then it will be useful to examine all of the logs to see if there have been other transgressions, whether intentional or not, by any of the campaigns over the past few months.

Looking at it myself, it's clear there has been some editing to make it more understandable.

1. I'm not saying that anything was manipulated or false. I have no way of determining such a conjecture since I have never seen the source data used to create that file. I am saying two things only:
- that what people refer to as a 'data log' is no such thing.
- that data logs are rarely complete records of events and information they do happen to contain can be ambiguous or confusing and rarely give enough information to tell a complete story.

2. I have no opinion on the validity of the 2008 incident, as I have not seen enough details yet but you stated that access to this information is always on purpose, in direct contention to the possibility of "unintentional". You point was that all access to information is on purpose. My opinion, a guess, is that they used the word as a diplomatic way of approaching the issue or as a subtle dig.

3. Then he clear it is an opinion, not a vetting of facts.

4. You only make my point here. I stated they made statements to the press at a point when they knew that no data, no voter lists, could have been "stolen" or removed from VoteBuilder. In fact the Clinton data steward would have known that from the beginning.

5. I know that these things are not taken because NGP VAN said they were not in their release on their own website:

"On Wednesday morning, there was a release of VAN code. Unfortunately, it contained a bug. For a brief window, the voter data that is always searchable across campaigns in VoteBuilder included client scores it should not have, on a specific part of the VAN system. So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign."
http://blog.ngpvan.com/news/data-security-and-privacy

You stated:
"Finally, just because the Sanders staffers were foiled in their attempts to save data by their limited permissions, that doesn't mean they didn't have the intent to use the data, had the glitch not been discovered."
Is not supported by any Sanders campaign statements and public statements by the former Sanders data steward, already in the public domain.
I would assume that, given his knowledge and experience with VoteBuilder, and the way he created accounts and named files and folders, he was hardly being sneaky or employing the least amount of spycraft, to cover his tracks. Not sure what his intentions were with the information but his collection process was as subtle as a house fire.

It's all emotionally based.

Why hasn't NGP VAN been fired? Because you can't just change horses mid-stream like that? And they do a lot more than just top tier campaigns? And as any company will tell you, there are always glitches in the system.

Firewall does not mean what so many seem to think it means.

There's a whole lot more but those two just kill me right from the start.

Every single piece of so called facts and information comes directly from
Clinton's DNC. They can and have delivered only what they want you to know.

This data breach was nothing more than a hit piece on Sanders with an entrapment component.

they wouldn't be so eager to put this behind them.

just saying. common sense.

I don't want to argue, but I'll wait for the independent audit, thank you.

But I disagree with the characterization of what I wrote as a smear. I've provided sources and links. It's the claims that I'm arguing against are unsupported by facts, from what I can tell.

and a clear demonstration of what happened except one item.

Sanders campaign delayed two days after a request for an audit before compiling; and they only gave in when the DNC cut them off.

No one knows what they saved, studied, copied, or destroyed in those two days.

If they had not been cut off, they would never have fessed up. Meanwhile, one has to wonder if there is OTHER EVIDENCE of wrong-doing besides this breech that would be discovered by an audit? If you are willing to cheat and lie about one thing, then can you be trusted to follow the rules in other ways?

Exactly what was the reason for the delay?????

the problem was discovered that Bernie finally learned -- from Debbie Wasserman who called him personally. But his staffers had known for 24 hours without telling him.

wonder why Hillary is reluctant to accept an independent audit?

lolol if they had real dirt on Bernie, Hillary wouldn't be so eager to put this little problem behind them.

sorry, your sources must be a little off.

But that wouldn't tell the story you want to tell.

If everything, absolutely everything BlueCheese says is 100% accurate, did it make sense for DWS to go to the press instead of handle this in house given the damage it has caused BOTH CANDIDATES?

Who knows? Maybe, maybe not. Should he consider dropping out? I don't know, but I'll bet many folks have their own strong opinions.

I hope they're not trying to pass that off as an actual log file. It's not even cherry picking relevant lines from a log file. That is laughably human created. I look forward to the real access and command logs being released. Then we'll actually learn something.

It's very likely an edited version that was meant to be human readable. But are you suggesting that they made it up?

Or at least the lines from the log files that these were created from. If the average person can read them is irrelevant when showing proof, security and IT people will be able to understand them.


One thing that makes me suspicious of what they did show was with the time stamps. They took them all the way out to the second but didn't bother to fill in the second they happened on most of the lines. I wouldn't think much of it from a human log but they did set the seconds on a few lines to make them look more like legitimate logs. Why? Either present them as actual logs or present them as human sentences in a timeline.


To most people that would appear irrelevant, but I parse log files all the time. They don't work like that at all. And when showing proof of impropriety through logs, no one I know in IT would half ass that kind of work. Especially on something high profile. The work of showing proof is meticulous in the field for something like this. After all, our reputations are on the line.


I'm not stating anything they posted is untrue, just that it is surprisingly sloppy from what is presented.


Finally, a local save on the server won't give them remote access to the logs alone. The "logs" show only one actual download. It showed an export on "Sanders committee SQs". Was the file created from that search even Hillary related? Why are there no other exports in the logs? Why are there no logs of opening the files (they could be copied and pasted remotely that way)? Are there any ftp or scp logs for the server (where files could have been transferred off the server, assuming they had that level of access)? Either these logs are incomplete, the impropriety has been vastly overstated, or the hosting company was not properly logging everything.


I'm glad all of this is going to an independent audit regardless of culpability. There are a lot of questions that need answered from a security standpoint on this whole thing. If nothing else an independent security company will point out all the flaws in the system that need corrected.

Getting involved in campaign field activities is key to understanding how things work. If more people here had been activists who had used or been exposed to the VAN software, there would not be so much speculation. Most of it is just plain ignorant.

Yelling about who runs the company is silly, too. If you work on enough campaigns, you start to run into the same people. They are all Democrats, but they are hired to work for various campaigns. They might work for a big city mayoral race this year, and for a Congressional campaign next year. They have varying levels of expertise, but they are paid workers. They do this for a living, people! Get used to it! I know a few people who do this work. One is a friend of my two older children. He has worked for campaigns all over the Midwest. Now he works for a pac in DC. There are times that they go home after a campaign and wonder how they could have worked for someone they did not like or believe in. It happens.

... are frankly embarrassing for a party that prides itself on being reality-based. This is stuff we usually see from the Republicans.

The idea that this whole episode could be taken as anything negative against Clinton-- when it was her data that was improperly accessed-- is mind-boggling.

And now it appears from multiple media reports that despite Sanders' apology, his campaign (including him personally) are still making unfounded accusations that Clinton's campaign somehow got ahold of their data. The apology is now ringing rather insincerely.

I can only imagine Sanders is being misled by his top aides-- Devine and Weaver in particular, who seem to have become such true believers that they're now more Catholic than the Pope, so to say. I'm guessing that as a presidential candidate and current U.S. senator, Sanders doesn't have the time to investigate what happened himself, and has to rely on their version of events.