The Uncivil Service (Chapter 4)

By gferren, New West Unfiltered 1-11-08

Chapter 4 Things I have Learned & Case Related Emails, Excerpts from Sworn EEO Investigation (ROI) Testimony

U.S. Courts Failing to Protect Citizens Who Blow the Whistle on Government, Appeals Court Scorecard: US Gov't 70, Whistleblowers 0…In a report by the founder of Integrity International, a program of AMHS Inc, a non-profit that assists whistleblowers, Donald R. Soeken, Ph.D., says that of the 70 whistleblowers that appealed lower court decisions before the Federal Circuit Court of Appeals in Washington between 1994 and 2001, all 70 were denied their claims and sent packing.

NEWS Montana/Dakotas BLM Miles City District Date May 11, 1998, Contact: Marilyn Krause, (406) 233-2381 For Immediate Release Work Continues on BLM Travel Management Plan Miles City - The second of a series of meetings to develop guidelines for a travel management plan for the BLM - Miles City District is scheduled for Monday, May 18 at the Holiday Inn Express in Miles City….
[I was posting info on the (draft) travel plan to my personal web site at the time and writing letters to the Miles City Star to encourage the public to read the drafts and to participate in the plan meetings.]

Date: 05/04/1999 5:06 pm Sender: webmaster@nms.oig.doi.gov To: hotline@nms.oig.doi.gov bcc: Wedonna Morris Priority:Normal Subject:Hotline E-mail submission E000049
Reference Number E000049 Subject: Abuse of Authority and Waste of Government Funds/Larry Hamilton and Janet Singer
Position: State Director and Deputy State Director for Support Services
Office: BLM/Montana State Office
Description: Larry Hamilton has abused his authority by giving an Involuntary Directed Reassignment to Glenn Ferren, formerly the system administrator for the Eastern Zone Support Services Staff in Miles City, MT. Mr. Hamilton directed the reassignment of Mr. Ferren on the recommendation, and on the behalf of Ms. Singer, his immediate subordinate. Mr. Ferren gave testimony in an EEO case in November 1998. This testimony was critical of BLM management in Montana, and of Ms. Singer in particular. Within a couple of weeks, Mr. Ferren was given an involuntary detail to Billings, MT. Subsequently, Ms. Singer ordered an Administrative Inquiry on the IRM functions of the Staff in Miles City. The team reported to Ms. Singer, and she decided to permanently transfer Ferren to Billings. This decision had no merit. The IRM support function in Miles City is now degraded to the point that IRM staff from other offices are being ferried to Miles City to help with the backlog of work. There is talk of contracting out IRM support locally. There are several points that support the validity of my allegation.
First, the Administrative Inquiry was organized ostensibly to provide Ms. Singer with a recommendation on effectiveness of the Miles City Staff's IRM function. Miles City, however, was the only office so investigated although at least two other offices in the state have the same functions but were not investigated as to their efficiency and effectiveness.
Second, the Administrative Inquiry team incurred travel and per diem expenses which are a waste of government funds. The report of the Administrative Inquiry team disregarded any positive information given them by employees they interviewed, and emphasized the negative information about Mr. Ferren. The team also diminished information concerning the continuing need for Ferren's IRM support in Miles City. Two of the team members had apparent conflicts of interest in performing their functions. One is an EEO specialist from Idaho, with limited IRM skills, but who is an acquaintance of Ms. Singer. The other is a manager from another office in Montana, who himself is subject to an EEO complaint which is under Ms. Singer's administrative supervision. It is apparent, especially in view of the IRM situation that exists now, that the whole effort of the team was to legitimize Ms. Singer's decision to retaliate against Mr. Ferren. Mr. Ferren is one of the best in his field, and his technical reputation is widespread.
Third, Mr. Ferren is now underutilized in Billings, and has limited and meaningless tasks to perform in view of his qualifications, especially his on-hands, specific knowledge of the problems in Miles City. Yet he is not one of the IRM specialists helping with the backlog of work, and other problems. This is also a waste of a valuable resource. In addition, the expense of travel and per diem for IRM specialists to come to Miles City to catch up on the workload which may not have developed if Ferren had remained, is a waste of government funds. Likewise, any contracting out of the IRM services will be a waste of government funds.
In conclusion, Ms. Singer has abused her authority (with the concurrence of Montana State Director, Larry Hamilton) in having Mr. Ferren involuntarily reassigned, based on the report from the Administrative Inquiry. There simply wasn't a legitimate management reason for this move, as is now proved by the IRM problems that currently exist. The bias of the Administrative Inquiry team was foregone by Ms. Singer, which is also an abuse of authority, and it incurred the expenditure of government funds, which is at least waste of those funds. Ms. Singer's refusal to allow Mr. Ferren to help resolve the IRM problems in Miles City is an abuse of authority. Ms. Singer's solution to the problem involves even more expenditure of government funds, and is a waste. Mr. Hamilton abused his authority in supporting Ms. Singer, considering he had full knowledge of the circumstances.
The real solution is to return Mr. Ferren to Miles City. If he is a problem employee, then appropriate personnel measures should be taken, incrementally, as is required by law. The misrepresentations in the Administrative Inquiry report, and the need for Ms. Singer to retaliate against an employee, are not sufficient and legitimate reasons for Mr. Ferren's move.
Finally, it should be noted that Mr. Ferren's case is not unique. The involuntary directed reassignment, justified as a legitimate management perogative, has become a tradition in Montana, under the management of Mr. Hamilton and Ms. Singer. In just my limited knowledge, Mr. Ferren is the fifth white male employee in two years who have been moved by this method, or who have resigned or taken another position when threatened with such a move.
Mr. Ferren's case cries for management attention at the highest level, but, just as important, the abuse of authority which has become traditional needs to stop.
Name: David D. Swogger E-Mail: dswogger@mt.blm.gov

A good summation of the case: US Federal District Court Billings Montana CV 01-104-BLG-RWA
Read the Motion request summary judgement for Plaintiff 5/2004 18pgs at…
[http://gferren.150m.com/blmcourt_May04.html]
"…Ferren & Edmonds realized that Singer's agenda was reprisal and improper gender discrimination. Both resisted Singer's agenda and communicated their objections to Singer. Singer retaliated against both Plaintiff Ferren and Edmonds…"

From: Janet Singer To: ILMMTC20.ILMMTD20 (tmurphy) Date: Fri, Oct 30, 1998 7:03 am Subject: web page - Forwarded - Reply
This is very distressing. I don't know how much longer I can continue to hope that the Support Services Staff works this out. They don't seem to be making any forward progress--just going backwards. I'd be happy to talk to Janet, Tammy, and Glenn if you'd like. All of us are spending too much time with folks who can't/won't work with others. I think it's time to lay out some real clear expectations and to act if they aren't met. Let me know. Thanks. Janet
>>>Tim Murphy 10/29 5:14 pm >>>
Janet,
Tammy has been a good positive member. The latest issue is my request to place FO employee desk phone numbers (name, title, tel #) on the home page so customers can call the range Con, Biologist, PE etc direct when their issue is in a particular arena. Glenn is not supportive. I see it as not his business and will work through it at the appropriate time with Janet E.
The matter was discussed and a consensus reached at the web committee meeting regarding the FO employee telephones. Janet can make the call for Zone support folks. Tammy was just fine with assisting with the posting of MCFO numbers, but may now feel caught in the middle given Glenn's position, and in the shake out the committee is loosing a good productive member. This is my thinking on the why. I normally would ask an employee, on or off the MCFO staff, why they feel a need to leave a team. In this case I will go to Janet E direct to make the inquiry and to request that Tammy remain as we need her skills and abilities. TM CC: ilmmtc20.ilmmtd20 (aseidlit)

From: Janet Edmonds To: gferren Subject: Security - Forwarded Message: Please don't send a GW message to Janet or Aden, etc. after you read the attached. You need to know that even if you are in the right - these folks want a piece of us and everytime you send a GW directly, you put yourself closer to being written up for insubordination from any of these people. I don't ever want to be in a position where they make me write you up for conduct. We are now both in a place where they are going to watch everything we do. I only want to ask you this once - and that is that you no longer let anyone use the computer in your office unless they are an employee or have been signed up as an official volunteer. Also, no one except employees or authorized volunteers will be in your…

Date: 12/15 9:40am From: Janet Singer To: tjwatts, tmurphy Date: 12/23/1998 1:15pm Subject: IRM Support for Miles City "Tammy/Tim, I'd like to clarify where we're at on providing IRM support to your FO. As you know, Glenn is on leave until 1/4 and effective 1/4 will be working on my immediate staff in the SO. We recognized, in making the decision to effect this detail, that it would leave you in the "lurch" for IRM support. Obviously, there is more to do than Tammy can accomplish in the average 12 hour day!!…I am concerned that the staff is trying to help themselves…if the problem can be resolved, or if there's an alternative, we'll ask you to "cope" for a week…We are planning to have someone in Miles City the week of 1/4 to assist in resolving all outstanding problems, including things that aren't of a critical nature, e.g., adding/removing software, relocating machines, etc…." CC: jedmonds, MSO IRM staff
From: Robin (robin stoebe) To: jsinger Subject: computer support coordination Date: s/b 12/23/98 appears as 12/17/1998 Reply - Reply - Forwarded - Reply - Reply You are right on track. I don't support "whatever the user wants" philosophy when what they need is available with existing hw or sw. However, when the requirement is something unusual, we (IRM) need to try to accommodate. The user & FM is the appropriate forum to discuss this.
Janet Singer 12/23/98 12:34pm…I've finally gotten through all of these and think I understand what's going on. This is bordering on a policy issue of when IRM will provide support, to what hw/sw, etc. I understand what Chuck is saying about getting the impression that PC's won't be supported. We haven't told them that, but we have tried to encourage everyone toward Unix so that we have only one operating system to support state-wide. Of course, that's not worked because there are some applications that won't work on unix. So, the impression may have been given that we wouldn't support anything except unix. That's not the case. The decision about what software goes on PC's is a decision that the user and FO manager have to make, not IRM or the Zoned Support Staff. If someone needs a particular package to do their job, then they should have it. If we've got concerns, think they can do it with something easier, think the software is inappropriate for whatever reason, etc., then we have to raise those issues with the user and FO Manager. But, again, the final decision (unless the software is illegal for some reason) is the FMs. Our job is to assist in that process, be sure folks don't lose data in the process, that the best use is made of the space on the machine, etc. I've talked with Kevin and think I have a pretty good handle on what the problems you've run into with folks are, so I'm going to compose a message to you, run it by Tim and then, if he buys off, I'll ask you to share with everyone. Maybe we can clarify these things before they get out of hand. I'll start putting something together now. Thanks for sharing the info. Janet
Tammy Watts 12/23 11:17am Again, in support of the MSO IRM and MCFO IRM, I don't know where this ventured from. In talking with Kevin Brooks they take care of all PC's and I know Glenn did. Thanks again and have a Merry Christmas
From: Charles Laakso To: tjwatts Date: 12/23/1998 10:42am Subject: computer software coordination
Hi Tammy, I am sorry about the confusion. We were under the impression that because we had let Glenn know before we did anything that we had done the right thing. We just didn't know things had changed after we started making the changes. We had the feeling from all the IRM staff (especially the MSO) that not only weren't PCs supported, any PC use was being discouraged and if we wanted to use PCs for anything it would be up to us to keep them running. I guess that is not so now and as users we will be assisted with our computer needs. Again I want to say I'm sorry for any confusion and problems this might have caused. Chuck
From: Janet Singer To: tjwatts Date: 12/23/1998 Subject: computer support coordination Reply - Reply - Forwarded - Reply - Reply - Reply
I know you're doing your best and that the "hand" you've been dealt isn't making it easy!! You haven't caused me any problems, though. Don't feel that way at all! You remember Marv Lenoue don't you? He always said "there are no problems, only opportunities"!! I just want us (zoned support services staffs) to provide services to support the accomplishment of the Bureau's mission -- not to function as traffic cops who put up road blocks to folks getting their jobs done. One of my favorite analogies is that sometimes Admin. people, because they feel they lack power/control, use the "book" to hit people over the head with, rather than to help them do their jobs legally….I don't want you, though, stressing out over any of this, ok?…if you get too many questions, you can always tell the individual to "call Janet Singer". (No one ever does, but it might get them off your back) So, really, don't let this mess up your holiday. We'll have someone out there week after next and they'll stay as long or come back as many times as we need in order to get things caught up and to provide you with whatever help you need. Hang in there!! Merry Christmas!!!! Janet
[Tammy sends Janet Singer's IRM support message to all MCFO employees]
From: Tammy Watts To: MT MCFO ALL Date: 12/24/1998 9:30am Subject: IRM support for Miles City
Hi, I'd like to clarify where we're at regarding IRM support. Glenn is on leave until January 4 and effective January 4 will be working on the DSD Support Services immediate staff in the SO. I understand that there is a backlog of requests for support that needs to be caught up. I've also heard that some folks, feeling frustrated, have begun to try to make their own changes to PCs, e.g., loading or moving software, etc. I am concerned not that folks are trying to help themselves, rather that if they aren't totally familiar with the processes involved, they could lose data that we might not be able to restore. So, what I'd like to ask is this:
Before anyone makes any changes or if anyone has a problem with which they need assistance, they contact me. If the problem is "serious", e.g., a person can't do his/her job because of a problem with hardware or software, I will attempt to resolve the problem immediately or will contact the SO helpdesk for assistance. If the problem can't be resolved otherwise and there are no other alternatives, e.g., individual moving to a different machine for a few days, we'll get someone out from MSO to assist. However, if the problem can be resolved, or if there's an alternative, we'll ask you to "cope" for a week….We are planning to have someone from the SO IRM Team in Miles City the week of January 4 to assist in resolving all outstanding problems, including things that aren't of a critical nature, e.g., adding/removing software, relocating machines, etc. CC: jedmonds, jsinger
From: Janet Singer To: tjwatts Date: 12/24/1998 10:14am Subject: IRM Support for Miles City - Reply
Sounds good, Tammy. Let me know if there are problems I can help with. I'll be here most of the time through the holidays, so don't hesitate to call. If I'm not here, I'll be at home (406-248-2898). Don't hesitate to call me there. Merry Christmas!!!! Janet
[Janet Edmonds, MCFO Admin officer, reacts to Singer/Watts emails]
From: Janet Singer To: jedmonds, tmurphy Date: 12/24/1998 10:58am Subject: IRM Support for Miles City - reply - reply - reply - reply
Janet, when I designate someone acting, I designate someone who I trust and who is competent to handle the job. My staff (as yours) is excellent and deserves my trust and support when they make a decision. Otherwise, no one would ever be willing to act for me and I would never truely be off. Or, if they were stuck acting, no one would ever really act, they'd just call me when something needed to be done. I think we need to discuss this in person. E-mail just isn't the same as talking. When you get back from leave, let's try to get together. If you aren't planning on being in the SO for a while, I'll come back to MC. Thanks. Have a happy holiday. Janet
Janet Edmonds 12/24/10:45am My concern is - is that whether I'm on leave or not, this is something I need to be involved in, it affects my job, as an AO and a supervisor. Please understand how you would receive this information if we were in each other's positions.
Janet Singer 12/24 10:38am Janet, if you have a problem with the message, it's my fault. I'm the one that asked that it be sent out for reasons that I'll be happy to discuss with you. I also didn't think we should be calling you all the time with issues because you are on leave. I appreciate your willingness to make yourself available…Please feel free to call me if you would like to discuss…Janet
Janet Edmonds 12/24 10:32am I know that I have been on leave, however, this is clearly something that I should have been involved in. I left my home number and I have been checking my voice mail messages. I would appreciate any further actions or items that go to all employees that concern me or my staff, be discussed with me first. I'm sure you would appreciate the same consideration…
From: Janet Singer To: tjwatts Date: 12/24/1998 11:29am Subject: IRM Support for Miles City - Reply - reply - reply
Tammy, I'm really sorry. I'll be discussing this with Janet, you can be sure. I did let her know that the push to put out the memo was mine. She felt I should have called her at home and that I would have expected my staff to do it for me. I told her that wasn't the case--that I trust my staff to act for me when I'm gone. I don't that this is an issue about you. I think it's about Janet and me and control and all sorts of things. So, I hope you put it out of your mind and enjoy your holidays. If you'd like to talk, I'll be here until about noon and then I'll be heading home and I don't mind at all if you call me there, ok? (406-248-2898). Take care and thanks for the kind words!! We will turn this into an opportunity!! Janet
Tammy Watts 12/24 11:23am I received Janet E. message. I guess that pretty much slap me in the face. I tried to explain that it was mainly my fault that any of this happened cause of some of the things that were going on. I apologized again. Ya know it just hasn't been a great couple of days. I feel like I've done nothing right so far. O'well enough of that. I think that little saying you repeated something like "no problems just opportunities" well that probably is out the door again. I wish others looked at things like you. Anyways, have a Merry Christmas. I think I'll give God some talking to tonight. Thanks again.
From: Janet Singer To: dfriez, sminkoff, phougham, csandau Date: 12/24/1998 11:32am Subject: computer support coordination - Reply - Forwarded - forwarded
Well, now I've got another problem. I hadn't been sending these to you because I didn't think you'd be interested, but the actions I've taken have apparently led to a problem with Janet and me. So, several messages will follow--all related to the last few. Janet

Marilyn Krause, public affairs specialist MCFO - excerpts from transcript, sworn statement under oath, EEO discrimination investigation - 4/20/1999 11:30am (pgs 521 - 540) Q: Who is your present supervisor? A: Tim Murphy Q: Are you aware of any situations where Mr. Ferren's children were using his computer? A: Yes, several times. I didn't think it was fair. So, on October 22nd, 1998, I went over to the library and Glenn's son and friend of his were eating pizza there in Glenn's office and using the computer and it looked like they were on the Internet. I know Glenn was in Billings that day. So I called Tim and left a message on his voice mail what I had seen. Then Tim went over. Q: Did you receive an E-mail on March 2nd 1999 from Mr. Ferren titled Up Front and Honest? A: Yes Q: Did you have any conversations with other employees about this E-mail…? A: I did send a message to Janet Singer, and I expressed some concern for employee safety. Q: I have no further questions for you. Do you have anything else you would like to add? A: Glenn had developed a web page for the Miles City District and there was some material on there that I didn't feel was inappropriate -- I mean, that I felt was inappropriate, excuse me. Glenn put a link to the travel management plan on his personal home page. I didn't think that was appropriate. And there was jokes and that kind of thing that I didn't think were appropriate. Q: Did you ever feel like your own E-mail was read by someone else, have you ever felt that? A: I don't have any way of knowing. But let me just say this, I wouldn't put anything on mine that I wouldn't want published in the, you know, local paper. Q: Concerning the link to the travel management material…A: In my mind, not that we were keeping the material secret, it's just that it wasn't a finished product. When we're ready to share it with the world, we'll put out some kind of explanation that leads people to know what they are reading and in what context rather than just having those draft guidelines. It would have been the summer of '98 that I noticed the stuff was on there. The other thing that he did is wrote letters to the editor and give the web site address. And I know -- I think Tim had a concern that that information …it needed to be put into some kind of context. And I'd have to look back in my file back at some of his letters so that I could give you the exact web site address. Okay. It's on his personal web site, and you could access it either through the BLM Intranet page or from, you know, God and every one in the outside world by typing in the appropriate web site. (Sworn statement concluded at 11:55am)

Park Richard - MSO Computer Specialist/Systems Admin
[From notes: had anger mgmt issues: 1995, verbally attacked Butte FO comp specialist (Greg Pedersen) complained to acting SD (Lonnie) re: Pedersen's performance, 1997 verbally attacked me at IRM meeting at LDO when I suggested our workload would increase with Windows platforms, in 1998 verbally attacked MSO comp spec Norma Smith at Phoenix TC in a public forum; Park kept the install default setup email accounts passwords for both user and maintenance accounts, and could access any email account with these default passwords; Park had no direct contact by phone for support purposes - MSO mgmt supported this; MSO IRM staff joked about having a "park free day" (PFD), whenever Richard was on leave, vacation, or in training.]
From: Glenn Ferren To: kridl@hotmail.com, CC: gpederse@excite.com Subject: Re: Monday!! Date: 2/23/1999 08:59:05
…Park and Asko were staying on their side of the room pretty much, Alice called Park an assh**** last week. It's kinda funny to sit on the one side of the room and listen to the gals (alice, norma, stacy) talk about how they get left out of things, etc. Stoebe seems to be oblivious to it all. Take care, talk to you later.
K ridl wrote… I am very careful what I put in email to you on a gov account. I feel fine with hotmail and yahoo pretty much out of the gov/mso domain and management. Kevin said today was a "park free" day, and he was pretty happy about that. You said you paid a $5000 retainer to your lawyer, Wow I would have to take out a loan too!!! Interesting though, you have to pay $$ upfront and the Gov. uses the solicitors office. Not too fair. I think their pockets are a little deeper than ours. Do you usually check your yahoo box? I am very hesitant to use your gov. mail box, the walls (boxes) have ears. Take care, later Lynne.
Park_Richard at mt.blm.gov on 05/28/99 08:22:37am Subject: FSRM (from: richre@exabyte.com)…Memo 3: Company Policy - Start with a cage containing five monkeys. In the cage, hang a banana on a string and put a set of stairs under it. Before long, a monkey will go to the stairs and start to climb towards the banana. As soon as he touches the stairs, spray all of the monkeys with cold water. After a while, another monkey makes an attempt with the same result - all the monkeys are sprayed with cold water. Pretty soon, when any monkey tries to climb the stairs, the other monkeys will try to prevent it. Now, turn off the cold water. Remove one monkey from the cage and replace it with a new one. The new monkey sees the banana and wants to climb the stairs. To his horror, all the other monkeys attack him. After another attempt and attack, he knows that if he tries to climb the stairs, he will have the crap kicked out of him. Next, remove another of the original five monkeys and replace it with a new one. The newcomer goes to the stairs and is attacked. The previous newcomer takes part in the punishment with enthusiasm. Again, replace a third original monkey with a new one. The new one makes it to the stairs and is attacked as well. Two of the four monkeys that beat him have no idea why they were not permitted to climb the stairs, or why they are participating in the beating of the newest monkey. After replacing the fourth and fifth original monkeys, all the monkeys which have been sprayed with cold water have been replaced. Nevertheless, no monkey ever again approaches the stairs. Why not? Because that's the way it's always been around here. And that's how company policy begins.
[from printout…mt0003:/u/prichard/notesr4/official.mail]
-rw-------- 1 prichard mt6 3372 Mar 24 16:25 mtbfo.id, -rw-------- 1 prichard mt6 3387 Mar 24 16:52 mtmcfo.id, etc etc [(files used to access Lotus notes email, user and special user email accounts, kept in a subdirectory of Park Richard's (home) directory- Notes ID files, default logins/passwords)]
From: Park Richard To: Districts, Kevin Date: 3/17/1998 12:34pm Subject: BDO followup on AIX 4.2.1 upgrade Attached is the updated procedures. The major changes were to the MUP procedure. Now included is a shutdown, configuration and startup procedure for Informix. Also there is mention of an AutoCAD and arc startup script. Other changes are minor. All in all it went pretty well. We did a better job than in Miles City due to additional experience. Glen had to do a lot of catch up that I'm hoping Greg, Steve, and Lynne won't have to do. Sorry Glen. …
From: Glenn Ferren To: Greg Pedersen Date: 08/02/99 03:27pm Subject: Re: Notes remote Yes, it was good to get together with ya'll…we have a much better relationship (FO comp specs) than FO comp specs will ever have with MSO, I guess. If I didn't have hard feelings about Stoebe being pretty much useless to us and me esp. (can you say lack of support or minus balls!), I would have made the bbq, just a weird thing we Arkies have about eating someone's food when we don't think very highly of 'em. Drank lots of strawberry margaritas this weekend and saw American Pie …From: Greg Pedersen To: Glenn Ferren 08/02/99 03:15pm re: Notes remote I feel a revolt coming on again, much the same as when they first deployed the AIX boxes. If I get a NT server, I WILL BE THE SA, period. If all I want to do is user support, MSO would be the place, not the brightest of lights over there! We all had fun just being together and that is why we came in… Glenn Ferren To: Greg Pedersen 08/02/99 03:11pm re: Notes remote Well, you noticed Park, Asko, and Kevin were conspicuously absent all last week, while we did grunt work and they attended to more "important" matters. If they hadn't had our/your help - they'd still be hooking up terminals. And like I told people when they asked about the network - that it might be up Friday or even Monday, turned out to be Monday before they got the routes back. I mentioned to Park about 5pm Thurs that his DNS server was not resolving fqdn's to ip, he assured me it was ok, but by 5:30 he and Asko had figured out what I'd already said about the dns machine. Anyway, I was glad to get out of here Thurs and wishing I was somewhere else today. Same old s***, different day. *the FO comp spec position will eventually evolve to a hand holder at the FO level, while admin stuff is done by the state office Greg Pedersen To: Glenn Ferren 08/02/99 02:59pm re: Notes remote Thanks guy. You missed a hell of a day Friday. Lynne is soooo mad today!!! (Asko said a no-no Friday, something about not needing our help at all). Still mad as hell….. L8r, Pete Glenn Ferren To: Greg Pedersen 08/02/99 02:56pm re: Notes
Glenn Ferren 10/8 2:25pm This is easier ? than installing tripwire, to find out who's on your system ;) Wouldn't it have been just as easy to let me do the cd-rom drive addressing (I may change the scsi address anyway). Look at it this way, when my users call…you have a valid excuse for letting us (MC IRM staff) do our jobs.
Park Richard 10/8 1:46pm I found that prichard was locked out of the MUP at MC Minerals and I needed the SCSI address information to set up the CD-ROM drive just purchased for the Minerals office. Lbrppls is a test user in NIS that I was able to use to get that information.
Glenn Ferren 10/8 11:02am lbrppls pts/0 mt0094.mtso.mt.b Oct 07 09:08 - 09:09 (00:00) lbrppls:fqGaC6jlHkkqY:32187:32067::/home/lbrppls:/usr/bin/ksh

From: Park Richard To: Robin Stoebe 01/25/2000 10:14am Subject: notes on hacker activity
December 30th 1999 before 09:45. Attempted a remote login to mt0094 to test the shutdown command and noted that a remote login session, called telnet, would not start. 09:45 I walked to mt0094 and logged in locally. I discovered that the /etc/inetd.conf file had been changed incorrectly on Dec 28 at 1200. I made a copy of that file and then updated it to correct it so people could login remotely. Also I desired to see who may have changed the file so I could let them know that their changes were incorrect. I entered the "last" command which accesses the /var/adm/wtmp file to see a history of who had logged in. I noted that Glenn Ferren has a session that didn't span one minute at 14:28 on December 29th, 1999. I was surprised to note that the /var/adm/wtmp file had been set to zero bytes on Dec 29, 1999 at 14:28. I also noted that he was the only person logged in to mt0094 at the time that /var/adm/wtmp had been zeroed out. At that point I then looked at the /var/adm/sulog, that records any su command usage, to see who was root when the /var/adm/wtmp was zeroed. Again, I was surprised to see that /var/adm/sulog had been zeroed out and that it recorded me on 12/30/1999 as the first person to use the su command.
Thinking that one of our system adminstrators had needed to zero these logs to make room on the hard disk I asked Corrine Wilson, the only other authorized SA (System Administrator) that was here on December 29, 1999 if she had done that. She replied that she had not.
I was then suspicious of Glenn Ferren, who is a user on mt0094 and has an excellent knowledge of system administration. I also realized that if Glen was "hacking" on mt0094 he could track me and my movements on that machine. In fact he did, as I found out later. In light of his "watching" I accessed mt0003, a computer that has the hard disk that contained his "home" directory which has a file called /u/gferren/.sh_history that would record every command he entered from a command line. Specifically I was looking for instances of the "su" command. I noted that /u/gferren/.sh_history had been zeroed out as well toward the end of the day on Dec 29, 1999. At that point I made a mental note to alert Robin Stoebe, my supervisor on Monday January 3, 2000 about my suspicions. Monday January 3, 2000. Before 14:32 Sent email to Robin Stoebe and then met with him to tell him what I had found. Attempted a remote login to mt0075 to set up a print queue and noted that a remote login session, called telnet, would not start. I walked to mt0075 and logged in locally. Just like on mt0094 I discovered that the /etc/inetd.conf file had been changed incorrectly. And that it was modified on December 28, 1999 at 17:16. I made a copy of that file and then updated it to correct it so people could login remotely. I entered the "last" command which accesses the /var/adm/wtmp to see a history of who had logged in. I noted that Glenn Ferren was logged in from 17:18 - 17:22 on December 28, 1999. However, I noticed that the /var/adm/wtmp file had been set to zero bytes on December 28, 1999 at 17:18. I also noted that Glen was the only person logged in to mt0075 at that time and that his login time was the same as the time that /var/adm/wtmp had been zeroed out. At that point I then looked at the /var/adm/sulog, that records and su command usage, to see who was root when the /var/adm/wtmp was zeroed. I noted that /var/adm/sulog had been zeroed out and that it recorded me on 01/03/2000 14:32 as the first person to use the su command. Realizing that I had a serious problem on my hands I started a program on mt0003 that copied Glen's /u/gferren/.sh_history file every minute, if there was a difference in size from the previous copy.
January 5th, 2000 About 07:57. Showed Asko Virtanen the evidence I had gathered that Glen may have been hacking into mt0094 and mt0075. Technical note about /var/adm/wtmp. This file is written to whenever a user logs in or logs out of a machine. If the file is zeroed out, then whoever is logged in at the time it is zeroed will have a starting login time at the time it is zeroed.

From: Glenn Ferren To: avirtane Date: 8/31/1998 9:13am Subject: Internet Use Policy Can you send me a copy of the past and current documents (WO) and MT on Internet use policy. Thanks. [(never received a reply to this request GF)]
From: Asko Virtanen To: ILMMTC20.ILMMTD20(gferren) Date: Friday, November 20, 1998 1:41 pm Subject: MT public web server - Reply - Reply - Reply Here's the funny hacker story. Kid hacks www and leaves web page with picture (attached). Takes care to rm -rf /var/log, but leaves behind /root/.bash_history containing his last 100 commands, including the ipaddress from where he ftp'd the picture. Law enforcement got a subpoena for his account. Great fun! I've also attached the .bash_history file. Please do not pass this around, but let me know if you see anything useful in it.
Asko Virtanen 01/11/99 02:51pm To: Greg Pedersen Subject: Re:FOIA Say: "There is no email archive. Any email that has been deleted from Groupwise exists only on system level backup tapes which can not be searched for any particular message because of GW encryption. The tapes are intended for disaster recovery and can be used to restore the complete system. But, this cannot be done for our production system because of the loss of all current email and files when an older system backup is restored. It is only theoretically possible to procure a new server, configure it like the existing, use a backup tape to restore to a particular time, and hope the message can be located. We estimate this direct reimbursible cost to be more than $xx,xxx. Besides, there is no guarantee that any particular message even exists on any tape at all because a backup is only a "snapshot" at some particular time and tapes are recycled on a schedule."
Greg Pedersen To: Asko Virtanen Subject: Re: FOIA OK, so what do you want me to say to the Boss?
Subject: FOIA I just had a FOIA request to on Gwise email messages. What is our stance on retrieving email off Gwise? I would like to tell my boss the same thing you are telling Jsinger. Thanks, Pete
From:Asko Virtanen 08/23/99 12:03pm To: Glenn Ferren Subject:Re:New Gateway …Nope.
Glenn Ferren 8/23/99 11:04am To: Asko Virtanen Subject: New Gateway I need one of the new NT boxes. Should I just pick a box, any box? [(never did get an NT machine while on detail/directed reassignment to MSO in 1999)]
From: Asko Virtanen 10/13/99 02:05pm To: Glenn Ferren Subject: Re: web server reports Use this url to access the Netscape Enterprise Server…You have been given permission to su - to root…The root pw is the same as on mt0006. Ask me if'n ya don't know.

Sworn statement of Asko Virtanen Transcript of Proceedings EEO Investigation of a Complaint of Discrimination April 21st 1999 (excerpts) pgs 560 - 590, 9:10am - 9:50am
Q:And who is your current supervisor? A: Robin Stoebe Q: What does your job as a computer specialist in the Montana State Office entail? A: I am the security officer for computer systems. I serve as the configuration manager. I also have some system administration duties and fire walls and web servers. Q: Did he ever call you or send you any email about the policy of the Montana State office on children using computers? A: Yes. I could not find any such policy. And I don't know if I wrote that in email or talked to him on the phone or so forth. He was apparently looking for some policy, and I couldn't find it. Q: So then in terms of those general policies, would it be ok for children to use parents' computers? A: Not my field, but I would say no. Q: Would you have relayed that message to Mr. Ferren? A: I don't recall if I did or not. Q: Were there ever any concerns about the State office having access to the Miles City Field office computer system? A: Yes, but they were non-technical concerns. Q: What do you mean by that? A: When the computer systems were deployed, the State Office here gave an option to each of the field offices to manage the computer systems on their own or allow access, supervisory level access by the State Office. Of the four field offices, one, Mr. Ferren's office, elected to go along without support. Now, that's a valid decision, because that is exactly the same decision the State office made about centralized support from the bureau offices in Denver. So, if we look at it from the perspective of, well, we shut Denver out, and we're doing our own on our systems, we gave that exact same option to field offices. Now, with that policy in place, fully accepted by us, we didn't see any reason to change that. Technically there was no reason. With that policy in place, Mr. Ferren operated his computer systems without giving us the master passwords, okay. There were some occasional concerns about backup when he was not available and so forth, but pretty well he had it covered. Our lead system administrator is able to access all of the field office computers, Mr. Park Richard. Q: Then Mr. Richard could also have accessed the computers in the Miles City Field office? A: No That was part of the initial decision, that he would not have supervisory, or system manager/root access, only the normal user level access to those. He would have system usage access vs system maintenance access. Q: Didn't it seem somewhat strange? A: Not strange at all, because Glenn was very competent, and he was able to administer the systems. And I believe that jumping in and actually doing something and taking responsibility for it is the correct way to manage the systems. So, I commended Glenn. I commended Glenn for taking the responsibility. There has never been a question of technical competency here at all. He took the responsibility and ran with it, and the systems worked well. Q: Did anybody from the Miles City Field office ever talk to you about the possibility of Mr. Ferren reading their email? A: I never found Glenn implicated in any way in reading email. Q: How about the issue of the Intranet instead of the Internet, Intranet policy, what you would put on an Intranet ? A: I don't believe there is any policy anywhere in the state. I don't believe it's been addressed at all. Q: Could you please explain to us a conversation you may have had with Mr. Ferren about him having found some of the employees of the Montana State Office passwords? A: Glenn mentioned that we had some weak passwords on our system. From my perspective, he's doing system administration work and checking the security of the system. Now we have to understand that Mr. Ferren does not need a user's password for any purpose. In fact, he can do exactly the same things with or without any user's password; it doesn't matter. There really wasn't any followup to this revelation. I heard back that I guess this conversation had gotten out, and somebody determined that he had everybody's passwords. Well, that wasn't true. No, he didn't have everybody's passwords. Q: Where did he get the program to check passwords? A: On the Internet, actually, we use a lot of programs from the Internet. We download all kinds of programs from the Internet. So, nothing unusual about that. The blanket statement we don't use stuff from the Internet is incorrect. It's another tool in the system administrator's tool kit. What we've got here is an experiment in systems administration. Now, to run this program takes extraordinary effort. It's not something that anybody can just run. Q: Would he have any reason to run those programs in other than his own jurisdiction? A: He couldn't run it only in his jurisdiction, because all the passwords are stored centrally in one file, all offices. Q: If he can tell you that he's found out people's passwords, but you are unsure how he got them? A: It doesn't matter. He doesn't need them. Q: Then what's he doing with them? A: He is doing system administration. Q: Then what does he do with them once he finds out? A: He tells me. Q: And what do you do with that information? A: I say it's unimportant. Q: Is that what you told Mr. Ferren A: Heck no. We went on to a different subject. We were just talking shop. It really isn't a big issue. I believe it was just experimenting and learning about the system. Q: Is that the same thing as having the keys to someone's house to having their password? A: If you give me a master key to all of the locks in your house, and then you found that I had a copy of your key, would you be upset? Q: But Mr Ferren wouldn't have a master key to everybody's house. A: Yes, he does. Through the NIS master, yes. That's the log-in server. He was looking for the security of the passwords in the system. That sort of effort is extraordinary, far beyond what is expected, but it is also something that a very good system administrator might consider at one time during his administering of the system. And I believe it just shows some initiative. It was just something that he had accomplished and he told me about it. I am trying to make this very, very clear that this was not a security issue at all. (sworn statement concluded at 9:50am)

From: Robert A Mitchell To: gferren Date: 10/1/1998 7:13am Subject: Web Page - Reply I'll type slow so you'll understand : DO NOT MOVE ANY FILES TO THE WEB SERVER! THESE ARE NOT YOUR FILES - LEAVE THEM ALONE! (gferren) I've moved a copy of the graphics files from /blm.share/staff/web/graphics to the graphics directory on the web server. I'd like to keep the working content on this end down to around 5MB…keep the graphics small and that should be no problem. Let me know what you need saved on this end.
From: Glenn Ferren To: ramitche Date 10/1/1998 7:56am Subject: Web page - Reply - reply And I'll reply in terms you can understand. Comply with my system admin related directives or (ALL) your access to this system will be terminated. Reply to this msg that you understand and will comply or I will terminate your access effective COB today.
From: Lynn Galassini To: rstobe Date: 3/11/1999 Subject: Recommendation for membership on the BIWG Bureauwide Intranet Guidelines Team This is what I came up with…Robert A. Mitchell, MT, Soil Scientist/Hydrologist…and by the way, the BIWG website is still in the development stage.

Sworn statement of Robert Mitchell, Transcript of Proceedings, EEO Investigation of a Complaint of Discrimination, April 20th, 1999, 1:40pm
Q:What is your current position? A: Soil scientist, hydrologist. Q: Once the web page was up and running, you didn't have any more contact with him (Mr Ferren)? A: No, that was probably where I guess the real problems started. --I guess it started out as he placed a page upon that mouse that he filled out, his page, without consulting me, and it was of a nature that information should not have been made available for public consumption quite yet…it was still in the process of developing. And I brought this up to Tim Murphy, and he, too, felt it shouldn't be up quite yet. At that time, I guess Glenn felt that what I was doing was wrong in bringing that up, and he had his own form of reprisal in that I had a large number of graphic files on the computer…there was quite a number of them, and he told me they needed to be moved to the state office web server. I guess what he was concerned about was the space issue on the computer. And that may have some merit, but in the computer world, space is cheap, and it would not have been a problem to buy an extra hard drive and make more space available. But probably during that same time, he locked me out of my computers, until 8 o'clock, I could not access my computer. I guess these were part of that same effort for Glenn wanted me to move these graphic files to the state office server. His reasoning was we did not have the space required to keep them at this level. I guess there's probably three (email) messages relating to that. I was passing a lot of these messages on to Tim Murphy. I could use the computer during working hours, usually 8 to 5… State Office IRM staff could not get into this computer system, so they could not remove those locks if I had requested them. Q: Who is your immediate supervisor? A: Todd Christensen A: I guess the reason I know this, I was the system administrator for Soil Conservation Service's Unix system before I came here…I did file a grievance against Glenn Ferren for locking me out of the computer. Q: And was that grievance then settled? A: It helped define what my duties were…Q: So how is the computer system now that Mr. Ferren is not here, do you see any difference in the computer system? A: No… Q: Are you aware of a policy here about children using computers, children of employees using computers? Do you recall -- do you have a copy of that memo? A: No, I don't. (Sworn statement concluded at 2:10pm)

[* The investigator also asked Robert about the miles city "intranet" site…Robert being the "web coordinator" could not differentiate between an Internet web site, an Intranet web site, and a Netscape browser startup page…which is neither of the first two…Google the definitions. Miles City never had an onsite web server for either Internet or Intranet web sites.]

From: Glenn Ferren To: aseidlit Date: 12/16/1998 9:02am Subject: Unauthorized use of government property - reply I appreciate your concern(s), feel free to bring them directly to me, anytime. As was the case previously, and under my duties as Local Network Security Officer, this access was performed with my knowledge and guidance. This use was authorized by my authority as local security officer. Upon issuance of clarifying documentation of Internet Use Policy as directed by WO and MSO, MCFO Internet Use Policy will be modified if necessary to exclude access and use of MCFO computer equipment and Internet access from MCFO employee family members.
Aden Seidlitz 12/4/1998 3:40pm I was in the library at approximately 11:00am this morning and observed a young man using one of the computers in Glenn's office. Glenn was not in the office, so I approached the young man and I asked who he was. I also observed that he was on the Internet. He replied that he was Glenn's cousin. I searched briefly for Glenn and notified Jerry French of what I had observed. Jerry replied that I needed to bring this up with you Janet. I returned to Glenn's office, and neither Glenn nor the young man was present. I know this has come up before and I did not expect to see it again. Janet, please ensure that it doesn't happen again. CC: jedmonds
From: Glenn Ferren To: pdandrea Date: 10/1/1998 2:51pm Subject: IM No. 98-94 Question is…What is a Web Coordinator?? 98-94 Doesn't really define the "web coordinator"…the definitions given: Mgmt --doesn't fit web coordinator, Technical (network/systems administration) --NADA, External Affairs -- no luck, Content Specialists (resources) -- not exactly; "provides information to web coordinators to:" So what/where is the definition for web coordinator based on ? Kinda sounds like it'd be someone who works with a local web team to assist with development and "coordinate" the flow or production of web page content by interaction with the (4) groups mentioned above. CC: jedmonds, rstoebe

Sworn statement of Pam Dandrea excerpts Transcript of Proceedings EEO Investigation April 21st, 1999 11:00 am Q: What is your position title? A: Bureau Records Disposition Specialist Q:What kind of questions would those be? A: Well, I'm also the web master for Montana Dakotas…voted into that position…in 1996. I believe the first time he asked me something about that -- IM9894…where did we come up with the description of what we said were duties of a web master…I sent a message to the rest of the bureau internet work group…nobody responded back to me, so I never really did get anything there…there's not really a description…Robert Mitchell, who by that time had been designated as their web master or web contact in the miles city field office…
[(gf - that would be …"web coordinator" not web master which was Pam's job)]
Since robert had actually been the person designated as the "web master"…the Bureau doesn't really have any standards on Intranet…we did not yet have any kinds of standards for Internet…Robert Mitchell would ask me questions about is it appropriate for me to have access to these files and not allow other people to be changing files…And I said, well, certainly now that you are the web master for the Miles City district, you know, those file privileges are up to you, not me. (sworn statement concluded at 11:15am)

USDOI Office of the Solicitor reply to appeal of denied FOIA request for WO IM98-94 (Bureau Internet Website Responsibilities) dated March 13, 2006, signed by Darrell R. Strayhorn FOIA Appeals Officer, DOI - "IM 98-94 outlines the responsibilities of the individuals who maintain the BLM's Internet website…Nor does it set standards to be followed by Agency personnel in deciding whether to proceed against or take action affecting members of the public."
[One could assume from this reply that IM 98-94 does not set standards for material that may be posted to those BLM websites, postings that would affect members of the public, which the Internet website serves. Keep in mind that there is a difference between an Internal website (non-public, Intranet, employee) and an Internet (public) website. Strayhorn's reply says "Internet website".]
[Hamilton signed off on the decision on formal grievance 11/2/99 (the grievance of a 2 day suspension pushed by Singer)]

My Letter to Larry Hamilton…My name is Glenn Ferren, MCFO Computer Specialist, Systems Administrator until 12/21/98. I have a wife and (4) teenage children that live in Miles City. I started in government service as a summer-hire clerk-typist with the Army Corps of Engineers in Anchorage, AK in 1986. Being a single parent with my at that time (3) and (5) year old sons. I came to Miles City in 1991 as a computer assistant and progressed from that point to my current title and grade. On December 21, 1998 I was relieved of my duties at the MCFO (for allowing my boys to run a web browser and search the Internet for things like information on car/truck models and car stereo equip, etc.) At that time I was detailed to MSO for (60) days and have subsequently been given an extended detail of (60) days more. Ms Singer has indicated that she will process an assignment to MSO, directing me to this office. Since the punishment doesn't seem to fit the "crime" and since Ms Singer has a direct conflict of interest due to her involvement in a recent EEO action where I made a statement addressing the collaborative efforts of herself, Tim Murphy, and Aden Seidlitz to exclude and circumvent and hinder my supervisor at MCFO from performing the duties of her position and participating in Field Office Management activities and projects, I'd like for you to remove Ms Singer from this current situation and look into my case with the hope that I can be restored to my position at MCFO. What appears to be a "policy" of the Montana/Dakotas BLM, this "detail'ing" of Field Office personnel to MSO, is viewed as a management weapon of intimidation, reprisal, and harrassment and more importantly is viewed by employees as a direct attack on the employees family. The majority of us work to support our family, to be sentenced to working hundreds of miles from home and being allowed weekend visits is much like being in jail. In order to respond to the management/employee concerns as related in the 1998 employee survey, standard "policy" or procedure as it were, such as "detail'ing" should cease. I appreciate your assistance with this matter. My work record and awards, the comments of my peers and the majority of my internal customers concerning my level of service and commitment do not substantiate the actions being taken against me. If this matter is not resolved, if it continues to the civil arena and beyond, in the end it will only reflect badly upon Montana/Dakotas management and BLM in general.
[Larry Hamilton's verbal response to me was that he supported Janet Singer unconditionally…and added that "IRM is not the tail that wags the dog"…whatever the hell that was supposed to mean (gf)]

MSPB, Glenn Ferren v Department of the Interior, DE-1221-99-0274-W-1, Declaration of Larry Hamilton, 8/11/1999 (excerpt)
5. When Ms Singer found it necessary to request a team review of the IRM program at BLM's Miles City Field Office, no past or present policy in the BLM Montana/Dakotas region required her to consult with the BLM employee who was Glenn D Ferren's immediate supervisor in Miles City; and
6. No past or present policy in the BLM Montana/Dakotas region prohibited Ms Singer from circumventing Mr Ferren's immediate supervisor in Miles City and unilaterally deciding to request a team review of the IRM program at BLM's Miles City Field Office. Executed this 11th day of August 1999. Larry Hamilton State Director BLM Montana/Dakotas Region
[Larry Hamilton was selected for a position at NIFC, after outstanding public land professional for 1999, Lester Rosenkrance would not bow to pressure to promote unqualified female candidates to positions that he believed would create safety hazards. Rosenkrance resigned rather than accept a "directed reassignment" in 2000.]

From: Fred Wambolt To: gfrench, jedmonds Date: 2/17/1999 Subject: Computer Security Hi Janet & Jerry. This past week (2/8/99 - 2/12/99) several employees came into work and find their computers were logged into under their name….Also, one employee was left a message that said " I really need to log out so some low life can't send nastygrams or love letters under my name?" This needs to be corrected ASAP. Thanks fw

From: Tim Murphy To: gferren Date: 8/14/1998 Subject: MCFO web pages Glenn, very good observations and comments. I appreciate the test you ran on downloading graphics just as a public viewer would. Your input will help the page get better as we go along. Thanks ! TM
From: Tim Murphy To: jsinger Date: 10/23/1998 Subject: web page meeting Janet, This will give you the jist of what is going on. Now Robert has begun to reply with sarcasm. Through the informal grievance process, we'll make sure both men understand how we expect professionals to deal with each other. However, although it obvious that Glenn is threatened by Robert's web page efforts and feels Robert wants to be a system administrator, Robert intends on remaining a top soil scientist…TM
AWARD USDOI - BLM In Appreciation 7/30/1998 signed Tim Murphy
(attached card reads) July 30, 98 Glenn, your expertise and efforts ahead of the physical move ensured information access and communications continued without interruption. I appreciate your support. Tim Murphy

MCDO IRM Staff Policies and Duties October 1, 1997 author: Glenn Ferren
MCDO IRM consists of the following (3) specialists: Glenn Ferren, Tammy Watts, and Jerry French, supervised by Janet Edmonds, ADM Administration. The extended MCDO IRM consists of peer support to the MCDO IRM staff in their respective specialties from the MT Dakotas District IRM staffs and the MSO IRM staff. Our mission is to support and maintain to the best of our abilities IRM systems now in place and those yet to be installed.
MCDO IRM staff and duties: Glenn Ferren AIX Unix administration…system level hardware and software maintenance PC administration…system level hardware and software maintenance Liaison…poc for problem submittal to MSO/CSC helpdesk Specifications…hardware and software procurement, all IRM related Internet…MC poc to MSO web server Satellite…system level hardware and software maintenance POC…BLM network systems/communications; local level Tammy Watts AIX Unix software user support (Wordperfect, GroupWise, Applix, Informix) PC software support user support (dBase, Lotus) Liaison…poc for problem submittal to MSO/CSC helpdesk AIX…printers and tape backup support Jerry French AIX Unix GIS/ARC lead and software support Liaison…poc for problem submittal to MSO/CSC helpdesk PC software..Autocadd support.
Policy statement: To administer system security on the AIX operating system and devices and to administer system security on the DOS/Windows 95/ Windows NT operating system through the application of user and group permissions to files and directories, access to system level tools, use of passwords and logins. To supervise and maintain all software installs and hardware moves…both PC and AIX platforms…providing functioning and essential systems. No one outside MCDO IRM will be sanctioned to install or remove software/hardware or make system configuration changes to Bureau equipment without concurrence from MCDO IRM and without appropriate skill level (professional/technical)..as determined by MCDO IRM..for such actions. To maintain a hardware and software inventory.

Asko Virtanen [(sent out the following Policy letter)]
AIX Security Policy and Standard Operating Procedure September 27, 1996
DW conducted an ALMRS/Modernization Site Readiness Review in Montana during April, 1996. AIX Security Issue 2 required MT to conduct background investigations for individuals with super-user (root) privileges. We feel that these expensive investigations are unnecessary, and that a better alternative is to limit the number of root users to those positions which have duties which already require background investigations, such as, the system administrators and security officer. The following policy will be implemented October ##, 1996.
1. Only individuals who have been properly cleared, and are in a position which requires system administration duties, shall have knowledge of the root password to any AIX server or workstation. 2. A system of assigning specific system and user support tasks to non-cleared individuals will be implemented. This system shall not require the use or knowledge of the root password, and shall be secure from tampering. The system will also log all actions, errors, and attempts to use unauthorized functions. 3. Only properly cleared individuals shall be allowed to maintain the security software and assign permissions to non-cleared individuals. 4. Unauthorized use of the root password or deliberate subversion of this policy must be reported as a security incident (375 DM 19.11B). The Standard Operating Procedure (SOP) for this security system is attached.

Sworn statement EEO Investigation of Discrimination Timothy M Murphy (excerpt)A: …that is that root access, that is access to our system here was not shared by Glenn to anyone but a very close group of IRM specialists…I found this out when he was gone at one time and called the state office to fix the system that can be done remotely, and was told, well, we don't have root access to the miles city office…(more rambling on about "intranet" page showing general ignorance of Internet/Intranet/browser infrastructures and components…the web browser startup page…its "inappropriate and offensive links", used it for months and never noticed anything offensive until someone showed him the "inappropriate" stuff)…I then had an all employee meeting…I apologize, because if you were offended…I was aware that at least a few people knew of the existence of this Intranet site and were either unwilling or unable to talk to me about it…I used the analogy to an inappropriate poster on a wall, you know, that posting something of that nature on the intranet site is just a virtual analogy to posting it on the wall, and what we do, we tear it down. Q: Do you have those policies in writing, the being escorted in the building and then the computer policy? A: We've updated. I do have an updated policy. And I don't have any -- I do not have a copy of what was existing. Since my arrival here, I noticed that we needed to improve building security. All the buildings are wide open…just the room you are in is surrounded by six doors…all are open all day. So I would bring it to the management team and wasn't getting a tremendous amount of support. And our issue in Bosnia…I utilized that as a means to implement a security policy. Q: On all your exterior entrances, is there a note or something that says you must sign in with the receptionist to enter this building. A: There was not at that time. …And we used progressive discipline in this office…I had talked with the former supervisor at some length about Larry Rau, and had never heard any concerns of the like. I insist that my supervisors use progressive discipline, that there is a discussion, it's a serious discussion so there's no question the employee knows what the rules are, chance to debate, chance to talk, but at the end of the discussion, here's what the rules are and ask for compliance. And Larry did say he understood…And since that time there have been no infractions, if there were, there are several options, including written counseling and written warning, and then there can be leave without pay and so forth. [I set Larry up with an excess PC with modem and browser for Internet use from home - and for the kids homework] …my impression is that Mr Ferren diligently guarded and perhaps overzealously guarded the security of the system. Q: Were you aware that Mr Ferren was involved in giving a statement during Janet Edmonds' complaint? At the end of '98 A: No, I -- I know she had a complaint that actually involved me….And with Glenn's departure, that control has been lifted… Q: It was entitled "Up Front and Honest" Did you receive an email message from him? A: I really don't know who wrote in and who didn't, and really don't care….Glenn had been rude and disinterested in employee difficulties routinely…Difficult to contact…and we had several instances where procurement for IRM, for automated systems, whether it be scanners or computers, that procurement order was changed by Glenn…when that 9 gigabyte hard drive was installed, I think they called it a server all but 2 or 3 gigabytes was blocked. An IRM specialist does not make decisions of who should be blocked from the system, does not make decisions on what portions of someone's hard drive should be blocked, does not make decisions of whether they should return calls for assistance. Those [End of article]