ed note: CAUTION - The following thread, dominated by the anonymous poster calling himself "Wally O'Diebold", is --- not surprisingly --- filled with all manners of disinformation and other deceitful nonsense. Nonetheless, it's useful to have Mr. O'Diebold on the record here, even if his comments violate many of our rules against disinfo, misinfo, and sliming other commenters. For now, we are making an exception, and allowing his comments to stay. For now. So proceed with caution and keep in mind he is able to tell you anything from behind his cloak of public anonymity without any accountability. For now. Therefore, take all of it with the exceedingly large grain of salt it deserves.
-- BF

Dear Brad,

Repeating a bunch of misinformation doesn't make it true.

1. Interpreted code is not specifically banned by federal HAVA guidelines. HAVA makes no mention of interpreted code whatsoever. The relevant standards are the FEC standards, and they don't disallow the use of interpreted code either, except where specific other listed conditions also apply.

2. Diebold's equipment was not de-certified in California for use of illegal software patches. All DREs from all vendors were de-certified in California. Most were later re-certified except for the specific case of the Diebold AccuVote-TSx, for which it was ruled that as new equipment the TSx would require addition of a voter-verified paper audit trail (VVPAT) prior to re-certification. The VVPAT requirement actually applies to all new DRE equipment in that state. The first times you made that claim it was ignorance. Now you're just being deceptive.

3. The 20% failure rate in the California volume test that you love to quote so much is a matter of subjective opinion: around 20 incidents were recorded in a test of 10,000 ballots cast, and no votes were mis-recorded or lost in the test. But that's fine, I'll give you the 20 percent. The truth that you conveniently leave out is that two small issues were identified and corrected as a result of the test and a subsequent re-test of the system resulted in a 100% success rate. And for what it's worth, the results of similar volume tests published last week for equipment by Sequoia, Hart-Intercivic and ES&S had much higher failure rates than the 20% you like to toss around: try upwards of 40% for the Hart system, and 60% for the ES&S system. So based on the volume tests you're so fond of referring-to, Diebold's equipment has the lowest error rate of the ones tested to date --- by far. Not that it means much, because the method you're using to calculate "20%" (or 40% or 60%) is bogus anyway. By that method, you could do a test of a single machine and successfully cast 1,000,000,000 ballots on it: but if there's a paper jam on the billionth-and-one ballot you'd conclude there's a 100% failure rate. Whatever.

I get that you don't like Diebold or their equipment. An intelligent and informed person could even make a credible argument against either (although an equally intelligent person could also make a credible counter-argument). But repeating the same bunch of deceptive bullshit to the same handful of true believers over and over again here is just weak. Hey, what do I care? It's your blog and your reputation.

Here's hoping the Los Angeles DA comes to his senses and goes after big Jim March next!

Your pal,
Wally

Whoo-ey you're fast, Brad! You beat us to the punch.

Your story contains many valuable insights. I have linked it and recommended it at the end of our story on this. I hope people spread both stories far and wide.

We have published a letter from Jeb Bush and his crony, Sue Cobb, basically trying to finesse Ion Sancho out of a job.

In addition, we've identified some of the key flaws in the BUSINESS MODEL which allows a limited pool of vendors to blackball a government official.

The Florida advisory vindicates Ion Sancho --- but, ironically, just as this went out he got his threat letter from Jeb.

Spread the word, folks. People of courage are standing up, and are drawing blood, and the latest maneuver is to punish them.

Ion Sancho is being punished.
Steven Heller is being punished.
Lynn Landes is being punished.

If we do not stand together, who will be next?

woops, forgot the link:

http://www.bbvforums.org...messages/1954/19494.html

And as for Wally O'Diebold:

"Interpreted code is not specifically banned by federal HAVA guidelines. HAVA makes no mention of interpreted code "

Yes, it is the FEC guidelines and yes, they do ban interpreted code in the manner in which it is used in the Diebold optical scan machines.

"2. Diebold's equipment was not de-certified in California for use of illegal software patches. "

It was decertified because Diebold repeatedly lied to the secretary of state, about illegal software patches and other things. It's a pattern with Diebold, this business of lying to secretaries of state. And a pattern of corrupt business practices is called... go ahead Wally, you fill in the blanks.

"Here's hoping the Los Angeles DA comes to his senses and goes after big Jim March next! "

Well first there would have to be a crime, or in the case of L.A., a whistleblower to attack in order to get the focus off the real criminals. But okay.

Your pal,
Bev

Dear Bev,

Clearly you misunderstand the FEC guidelines. If interpreted code as it is used in the Diebold machines is forbidden as you suggest, then why has it been repeatedly OKed by federal testing authorities and the NASED committee that issues the certifications? A report from the testing authorities issued just last week - a report, mind you, specifically about the alleged forbidden code - conspicuously fails to disallow it. The obvious conclusion: your interpretation of the FEC standards is different from the interpretation of the people whose job it is to interpret it. And I know you're not technical so I'll explain it here in layman's terms: tough shit for you.

And no, Diebold's machines were not decertified due to illegal software patches. I know that's the story you like to put out there, but it's unadulterated bullshit. All the DREs from all the vendors were decertified at the same time, and none were decertified for "illegal software patches". I assume that Brad's just misinformed on the subject so I'm content to post the correction but otherwise give him a pass. You on the other hand, know better: when you misrepresent what happened, you're just lying.

Theft is a crime, Bev... hence the pickle Heller's got himself into. Maybe you shouldn't have burned your source if you were that worried about his welfare. He's not a whisteblower if he didn't blow any whistle - which he reportedly didn't (and couldn't have, since the stolen material was pretty innocuous if you actually read it). He gave the stolen documents to Jim, who knew they were stolen, and receiving stolen property is also a crime. Of course the DA's not going to go after ol' Jimmy, but the thought does make one kind of giggle.

Too bad you and Jim threw Steve under a bus by outing him and then bragging that he gave Jim (who later gave them to your pal Ian) the stolen goods. I know you've since tried to modify that perception, but unfortunately for Steve, Jim's original story's still out there. Along with your own comments clearly stating that his materials weren't even used in the only "whistleblower" action that's even halfway relevant - which leaves Heller as nothing more than a thief.

Academically yours,
Wally

Wally:

"If interpreted code as it is used in the Diebold machines is forbidden as you suggest, then why has it been repeatedly OKed by federal testing authorities and the NASED committee that issues the certifications?"

Yeah there's the million dollar question. Or is that just the amount of the bribes that got passed around?

"A report from the testing authorities issued just last week - a report, mind you, specifically about the alleged forbidden code - conspicuously fails to disallow it. "

Yeah. And did anyone notice they sent the code TO THE WRONG ITA? Ciber labs tests software --- ie. GEMS, and Wyle labs tests firmware. That is what they are designated to do and allowed to do. In fact, Wyle labs did the original testing where they missed a security defect the size of British Columbia. So why was this latest whitewash report done by Ciber? It's the wrong lab. Find me any reference anywhere that has Ciber doing the ITA testing for firmware. And by the way, I've interviewed Shawn Southworth in person. His credentials are insufficient for this. He even admits that.

"the interpretation of the people whose job it is to interpret it. "

Yes well. These are the people who'd certify a pocket calculator jammed halfway into a banana if you pay them enough [hat tip to Jim March for that analogy], so I'm not impressed with their interpretation.

"And no, Diebold's machines were not decertified due to illegal software patches. "

Read the report. Oh yeah, that's right, the current S.O.S. pulled it off the Web. If Jim March wanders through here, maybe he'll publish a link to a version he saved.

" Theft is a crime, Bev... hence the pickle Heller's got himself into."

Racketeering is a crime too. Oh, and the documents Heller was looking at because he was ordered to look at them --- they were documents where Diebold's own lawyers were planning to lie to the secretary of state --- then actually lied --- then thousands of voters were unable to vote because of the lie. The documents show that Diebold was told that what they were doing was a crime, and showed a budget being prepared for Diebold's criminal defense, and Diebold went ahead and committed fraud anyway.

Steven Heller is a whistleblower. Diebold is the one committing the crimes.

Wally,

Please just shut your mouth and give it a rest. I've already proven every one of your points wrong.

No, Wyle labs didn't even look at it. They test software, not firmware that is what Ciber tests.

I have evidence now Wally that your friends including Urosovich wired money in for some shennanigans....you better hope you have more than a court order.

When we're done, Diebold will so far under you will have to administer CPR. And the federal labs who tested it, were bought & paid by Diebold so really the entire process needs to be reviewed as everyone is aware of how insecure Diebold is.

Doug E.

Bribes? Interesting theory. I trust you have some proof before you go throwing around something like that.

Here's a thought: if certification were as simple as paying off the right person, why do you suppose there are uncertified versions of anything, ever? Why is Sequoia still trying to get a federal certification for its equipment after two years? Why did it take Diebold over a year for the TSx? Why did it take ES&S most of last summer and fall to get it for their AutoMark device? You'd think it would have been easier for all of these companies to simply cut someone a check. As per usual, your bullshit conspiracy theories hold no water.

As for your assertion that they sent the thing to the wrong ITA, that's just nonsense. Voting machine firmware is typically tested for FEC compliance at Wyle Laboratories: in that statement, at least, you are correct. Of course, the recent review by Ciber was not for federal certification purposes - all of the equipment in question was already, and remains today, federally certified. California secretary of state Bruce McPherson asked (specifically) for Ciber labs to perform an additional security audit of one part of the system about which concerns had been raised. Despite how you've spun that on your web site, it has nothing whatsoever to do with federal qualification status and it never brought the federal qualification status of the system into question (you should probably apologize to people for misleading people about that and duplicitously getting their hopes up). Why SoS McPherson asked Ciber to do the review is something you'd have to ask him. Maybe he wanted another set of eyes to look at it, since Wyle Labs already had. Maybe that's the reason he also asked his own VSTAAB to look at it as well. By all available evidence, the man seems extremely diligent to me. Of course, from your perspective it probably just adds one more layer to the conspiracy.

As a side note, I do find it interesting that the list of people who've reviewed this allegedly "secret source code" is literally growing with every passing week. Funny.

It's fascinating that you personally don't agree with the interpretation of the FEC standards by the certification labs and the NASED committee. Unfortunately it's not especially relevant. I'm pretty sure that nobody at either level really gives a rat's ass what Bev Harris' personal interpretation of the standard is. And quite frankly, there's no reason why they should since you clearly don't even understand it.

Jim's calculator in a banana analogy is stupid, but then again I expect no less from a self-professed network administrator who couldn't understand that 192.168.0.2 isn't an address on the internet. Possibly his finest moment ever, and a testament to the technical prowess of the BBV crew as a whole.

You're lying about what the stolen documents say. It's not worth debating further, we can agree to disagree since the audience in this particular venue is just going to believe you without ever reading them anyway. But we both know the truth, and that's good enough for me. And at least we agree that the documents were stolen, which is of course the relevant point.

Diebold's not committing any crimes, you just made that up. And honestly it's a bit hard to take, considering the source.

Best,
Wally

DOUG ELDRITCH #6

Dear Doug,

1. You've "proven" nothing of the sort.

2. You're 100% wrong. Wyle Labs tests firmware and hardware, and Ciber labs tests software. As such Wyle Labs has already reviewed the firmware, and now it's been reviewed by Ciber as well at the specific request of the California secretary of state.

3. Shenanigans? Do tell. I look forward to the story. And I totally mean that, because you make me laugh.

Your BFF,
Wally

>"You're lying about what the stolen documents say. "

If you've read them all, you're either Diebold or Jones Day. That means you either haven't seen them all or you are one of their damage control guys and you're trying to minimize their importance while you blame the whistleblower.

It's really pretty inexplicable, isn't it? Testing labs that recommend, over and over again systems that a chimpanzee can hack. I could teach a pigeon to delete entries in GEMS --- can you possibly explain how Ciber kept recommending GEMS over and over? No one, NO ONE says GEMS is secure.

So why'd they recommend it? And how can anyone take Ciber, or Wyle, or Steve Freeman, or Paul Craft, or any of these clowns seriously when they overlook this stuff over and over?

Now, as for the interpreter: Whatever you want to claim about the "right" interpretation of an interpreter, the reason it was an issue in the first place is that it is a security risk.

When we blew through the security to hack the system in Leon County, the issue with AccuBasic and the function of the interpreter during the election showed that these issues are all too real. You can steal an election with this stuff.

If I don't have any technical prowess, how come I can change the GEMS password of any elections official in America? Because you're right, I don't have any technical prowess. Those of us without technical prowess are particularly shocked when we can defeat the system in 60 seconds or less.

How can anyone defend an ITA that consistently recommends such systems?

Wow Brad!

It's obvious you've really gotten under the skin of the Diebold crooks. They've sent a professional troll to try and obfuscate all the issues and he/she/it is such an arrogant a__hole that anyone reading this jerk's comments will immediately be even more doubtful about the integrity of this company and what this hyperaggressive and defensive troll has to say.

Keep it up Wally! You're great comic relief.

"Why did it take Diebold over a year for the TSx?"

You silly fool they own the ITA company, DID YOU KNOW 100% OF THE MONEY FOR CIBER COMES FROM DIEBOLD? Why do you think the TSX escaped every major testing authority and had backdoors? Was that just an "accident" to steal elections wherever Diebold wants, and to pay whoever it wants to get "selected"?

I'm all over your NEOCON GAME asshole, and I have proof..

It won't be you who is laughing once I'm through Wally, WE will have the last laugh in court.

Howard Ahmanson is so proud of his little operation isn't he, aka Diebold? You neocons are all pathetic, and you're going down as the worst bunch of losers history ever wrought......

>:-D

Doug E.

Hear, hear, Floridiot! You have the most cogent comment in this thread. Dirt simple. No viable argument against it either.

Doug (#6), I, for one, do not want him to "shut" his "mouth".

If I had any doubts that Bev and Brad were onto something, or that Clint Curtis is telling the truth, this person's long, detailed, posts make it clear that they are.

Doug, he says "...You make me laugh", but this is not a person who is "laughing". His darvo-like tactics are transparent. If he were laughing, he wouldn't even be here.

::::::::::::::::::

All my life, when a product was flawed, such as a car, TV, or car tires, the product gets recalled. These machines have failed too many hack tests. Like any faulty product, they need to be taken off the market.

You can't have machines that fail hack tests in our elections. This is in violation of my basic rights as an American citizen (yours, also).

Ad hominum attacks on those who have uncovered these faults only strengthen their position, and leads one towards the conclusion that the flaws were intentional.

................so I, personally, would prefer if he keeps up with his posting. Better to keep this sort of thing in front of you.

:::::::::::::::::::::::::::::::::::::::::::
**'Expose Tom Feeney'**
"SUPPORT CLINT CURTIS!"
__www.clintcurtis.com__
:::::::::::::::::::::::::::::::::::::::::::

Bev and Brad are working hard to uncover some very disturbing anomolies. Calling what they have been reporting "misinformation" isn't the truth, simply because one says it is true.

The bottom line for me: Unaccountable, clearly hack-able, machines have no place in my voting process.

If they are welcome to you, then you're not showing me that you care too much about your right to having your vote counted in a dependable manner.

:::::::::::::::::::::::::::

A general suggestion: Mind the ad hominum nature of your posts, people; if you have a valid point, it only detracts from it; it adds nothing we can use. The only ones who can appreciate it (if even them), are the ones who already agree with you. You lose the undecided/opponent every time, and invalidate your point.

:::::::::::::::::::::::::::::::::::::::::::
**'Expose Tom Feeney'**
"SUPPORT CLINT CURTIS!"
__www.clintcurtis.com__
:::::::::::::::::::::::::::::::::::::::::::

Please pardon me for doing so, Floridiot, but I actually missed your post (#16), and read it after I posted. Beautifully and simply put.

"Nuff said", indeed.

:::::::::::::::::::::::::::::::::::::::::::
**'Expose Tom Feeney'**
"SUPPORT CLINT CURTIS!"
__www.clintcurtis.com__
:::::::::::::::::::::::::::::::::::::::::::

Bob,

This guy is truly hilarious and is being paid by Howard Ahmanson no doubt. A team of investigators is going to be ripping open one of these schools in florida soon enough.....

Lets find out who really has the last laugh Wally, you are an outright liar. You work for Diebold and it is obvious to everyone.

You said something so hilarious and ridiculous no one would believe it: You said these machines are the best on the market and haven't lost ANY real votes.

HAHAHAHAHAHAHAHAHAHAHA!!!! That was the biggest shot to your credibility right there! Dear lord, I am going to see you go under. You are committing perjury if this was a court room. The flaws and crooks in your company stack up to one large conspiracy sham, and the voting vendors, aka Diebold & Sequoia pay alot of the ITA boards fees and also pay for REAL IT experts to sign NDA agreements so they can't expose the flaws.

Now you see it!

You're caught Wally, keep on digging that grave.

Doug E.

After hearing the evidence and argument Wally, I have to agree with Floridiot, Doug E and Bev Harris.

The Berkeley Report supports their assertions, and says:

"Harri Hursti's attack does work: Mr. Hursti's attack on the AV-OS is definitely real. He was indeed able to change the election results by doing nothing more than modifying the contents of a memory card. He needed no passwords, no cryptographic keys, and no access to any other part of the voting system, including the GEMS election management server."

"Successful attacks can only be detected by examining the paper ballots: There would be no way to know that any of these attacks occurred; the canvass procedure would not detect any anomalies, and would just produce incorrect results. The only way to detect and correct the problem would be by recount of the original paper ballots, e.g. during the 1 percent manual recount."

I am not an electronics or software expert, but like most of you, I use the stuff constantly and have had my fair share of crashes, glitches, and lock-ups. I use ATMS and swipe credit cards at the grocery store and service stations--- there is , in short, a common sense element to all of this.

Seems to me sufficient distrust of the electronics in voting machines is there to step back from them until the bugs are worked out. Just because large companies are heavily invested in the product--or local governments--there is no reason to continue their use. If machine makers suffer consumer resistance, they modify their behavior and their products---that is, if it is a true "business".

What we see is a whole series of corporations who behave more like defense contractors and suppliers. They defend themselves like Lockheed and General Electric. It's like "Yes, we know the Osprey has a few problems and , yes we crashed about 6 of them during flight readinessl tests, but ylook---you're gonna lose your investment in our testing program and our tantalizing pricing of the finished product if you end the program now. Are you crazy? Just commit to buying our defective machines--that's all we ask. We promise to deliver ones that really do work as well as we originially specified in --oooh, another two election cycles. Deal?"

Isn't this what folks complain about? Isn't it common sense?

I know I have made an argument that technicians like both Doug and Wally would find beneath consideration. But it is essentially the argument what boils underneath all of this stuff.

There are lots of places in this world that do very well by pen and paper vote-casting. It's worth resorting to it again.

The Berkeley Report says further that:

"Interpreter bugs lead to another, more dangerous family of vulnerabilities: However, there is another category of more serious vulnerabilities we discovered that go well beyond what Mr. Hursti demonstrated, and yet require no more access to the voting system than he had. These vulnerabilities are consequences of bugs - 16 in all - in the implementation of the AccuBasic interpreter for the AV-OS. These bugs would have no effect at all in the absence of deliberate tampering, and would not be discovered by any amount of functionality testing; but they could allow an attacker to completely control the behavior of the AV-OS. An attacker could change vote totals, modify reports, change the names of candidates, change the races being voted on, or insert his own code into the running firmware of the machine."

...

"The bugs are classic, and can only be found by source code review: Finding these bugs was only possible through close study of the source code. All of them are classic security flaws, including buffer overruns, array bounds violations, double-free errors, format string vulnerabilities, and several others. There may, of course, be additional bugs, or kinds of bugs, that we did not find."

Does anyone remember the book The Cuckoo's Egg, by Cliff Stohl?

It is a true story of a case where the NSA, Pentagon, CIA, and many, many other government computer systems were hacked. And I mean HACKED BIG T