StarDestroyer.Net BBS

LiveScience.com wrote: Students Charged With Computer Trespass
By Michael Rubinkam
Associated Press
posted: 10 August 2005
02:40 pm ET


KUTZTOWN, Pa. (AP) -- They're being called the Kutztown 13 -- a group of high schoolers charged with felonies for bypassing security with school-issued laptops, downloading forbidden Internet goodies and using monitoring software to spy on district administrators.

The students, their families and outraged supporters say authorities are overreacting, punishing the kids not for any heinous behavior -- no malicious acts are alleged -- but rather because they outsmarted the district's technology workers.

The Kutztown Area School District begs to differ. It says it reported the students to police only after detentions, suspensions and other punishments failed to deter them from breaking school rules governing computer usage.

In Pennsylvania alone, more than a dozen school districts have reported student misuse of computers to police, and in some cases students have been expelled, according to Jeffrey Tucker, a lawyer for the district.

The students "fully knew it was wrong and they kept doing it,'' Tucker said. "Parents thought we should reward them for being creative. We don't accept that.''

A hearing is set for Aug. 24 in Berks County juvenile court, where the 13 have been charged with computer trespass, an offense state law defines as altering computer data, programs or software without permission.

The youths could face a wide range of sanctions, including juvenile detention, probation and community service.

As school districts across the nation struggle to keep networks secure from mischievous students who are often more adept at computers than their elders, technology professionals say the case offers multiple lessons.

School districts often don't secure their computer networks well and students need to be better taught right from wrong on such networks, said Internet expert Jean Armour Polly, author of "Net-mom's Internet Kids & Family Yellow Pages.''

"The kids basically stumbled through an open rabbit hole and found Wonderland,'' Polly, a library technology administrator, said of the Kutztown 13.

The trouble began last fall after the district issued some 600 Apple iBook laptops to every student at the high school about 50 miles northwest of Philadelphia. The computers were loaded with a filtering program that limited Internet access. They also had software that let administrators see what students were viewing on their screens.

But those barriers proved easily surmountable: The administrative password that allowed students to reconfigure computers and obtain unrestricted Internet access was easy to obtain. A shortened version of the school's street address, the password was taped to the backs of the computers.

The password got passed around and students began downloading such forbidden programs as the popular iChat instant-messaging tool.

At least one student viewed pornography. Some students also turned off the remote monitoring function and turned the tables on their elders-- using it to view administrators' own computer screens.

The administrative password on some laptops was subsequently changed but some students got hold of that one, too, and decrypted it with a password-cracking program they found on the Internet.

"This does not surprise me at all,'' said Pradeep Khosla, dean of Carnegie Mellon University's engineering department and director of the school's cybersecurity program.

IT staff at schools are often poorly trained, making it easy for students with even modest computer skills to get around security, he said.

Fifteen-year-old John Shrawder, one of the Kutztown 13, complained that the charges don't fit the offense. He fears a felony conviction could hurt his college and job prospects.

"There are a lot of adults who go 10 miles over the speed limit or don't come to a complete stop at a stop sign. They know it's not right, but they expect a fine'' not a felony offense, he said.

Shrawder's uncle, James Shrawder, has set up a Web site that tells the students' side of the story.

"As parents, we don't want our kid breaking in to the Defense Department or stealing credit card numbers,'' said the elder Shrawder, a businessman. "But downloading iChat and chatting with their friends? They are not hurting anybody. They're just curious.''

The site, www.cutusabreak.org, has been visited tens of thousands of times and sells T-shirts and bumper stickers, including one that says: "Arrest me, I know the password!''

The district isn't backing down, however.

It points out that students and parents were required to sign a code of conduct and acceptable use policy, which contained warnings of legal action.

The 13 students charged violated that policy, said Kutztown Police Chief Theodore Cole, insisting the school district had exhausted all options short of expulsion before seeking the charges. Cole said, however, that there is no evidence the students attacked or disabled the school's computer network, altered grades or did anything else that could be deemed malicious.

An association of professional computer educators, The International Society for Technology in Education, believes in a less restrictive approach to computer usage. The more security barriers a district puts in place, the more students will be tempted to break them down, it believes.

"No matter how many ways you can think to protect something, the truth is that someone can hack their way around it,'' said Leslie Conery, the society's deputy CEO. "The gauntlet is thrown down if you have tighter control.''

GrandMasterTerwynn wrote:I know the school's IT people were pretty stupid for taping the administrator passwords to the backs of their computers, but I feel the students willfully and flagrantly broke the rules in this case, and deserve what's coming to them.

Arthur_Tuxedo wrote:

GrandMasterTerwynn wrote:I know the school's IT people were pretty stupid for taping the administrator passwords to the backs of their computers, but I feel the students willfully and flagrantly broke the rules in this case, and deserve what's coming to them.

One of the foundations of any fair justice system is that the punishment is supposed to fit the crime. Charging a bunch of high school kids with felonies for getting around inept security to chat and look at dirty pictures is a severe abuse of that system. Just because someone "broke the rules" does not justify any and all punishment.

The Kutztown Area School District begs to differ. It says it reported the students to police only after detentions, suspensions and other punishments failed to deter them from breaking school rules governing computer usage.

computer trespass, an offense state law defines as altering computer data, programs or software without permission.

GrandMasterTerwynn wrote:

Arthur_Tuxedo wrote:

GrandMasterTerwynn wrote:I know the school's IT people were pretty stupid for taping the administrator passwords to the backs of their computers, but I feel the students willfully and flagrantly broke the rules in this case, and deserve what's coming to them.

One of the foundations of any fair justice system is that the punishment is supposed to fit the crime. Charging a bunch of high school kids with felonies for getting around inept security to chat and look at dirty pictures is a severe abuse of that system. Just because someone "broke the rules" does not justify any and all punishment.

It states in the article that the school had exhausted their own internal discipline methods to no avail.

The Kutztown Area School District begs to differ. It says it reported the students to police only after detentions, suspensions and other punishments failed to deter them from breaking school rules governing computer usage.

The article also states that the students were required to sign a code of conduct/acceptable use policy that contined warnings of legal action.

And the charge does apparently fit the crime:

computer trespass, an offense state law defines as altering computer data, programs or software without permission.

So this doesn't look like a case of the punishment being excessive.

Wicked Pilot wrote:Who ever said that today's kids were stupid? I'd like to see my parent's generation pull shit like that.

Fifteen-year-old John Shrawder, one of the Kutztown 13, complained that the charges don't fit the offense. He fears a felony conviction could hurt his college and job prospects.

"There are a lot of adults who go 10 miles over the speed limit or don't come to a complete stop at a stop sign. They know it's not right, but they expect a fine'' not a felony offense, he said.

SCRawl wrote:I'm not sure if I'm quite in your parent's generation -- I'm 33 -- but when I was a lad of this age group (14, IIRC) I pulled a similar scam.

GrandMasterTerwynn wrote:

Arthur_Tuxedo wrote:

GrandMasterTerwynn wrote:I know the school's IT people were pretty stupid for taping the administrator passwords to the backs of their computers, but I feel the students willfully and flagrantly broke the rules in this case, and deserve what's coming to them.

One of the foundations of any fair justice system is that the punishment is supposed to fit the crime. Charging a bunch of high school kids with felonies for getting around inept security to chat and look at dirty pictures is a severe abuse of that system. Just because someone "broke the rules" does not justify any and all punishment.

It states in the article that the school had exhausted their own internal discipline methods to no avail.

What we want:

1) To get the word out!

The information we have received indicates that out of the ~300 boys in grades 9 - 12, 80-100 were involved with the "unauthorized access" and 1 out of every 20 boys in grades 9 to 11 was charged with a felony. This reflects a terrible system failure. The administration needs to admit their responsibility in the breakdown of security and discipline during the rollout of this experimental laptop program.

2) We want the system fixed!

• Start with a competent, and proven disciplinarian.

• Fix the security lapse on the laptops.

• Educate the kids on what criminal charges are all about. They don’t know, and don’t tell us that ignorance is no excuse; it is the schools responsibility to educate.

• Make it a policy that the parents must be pulled in and involved and proof of such to be in the file before the administration can take their computer related problems to the courts in the future. Come on this is an experimental program.

3) Make it policy that there is a back up plan other than felony charges for the kids who can not handle the temptations that laptops bring into their lives.

Other schools and most parents know that the suspension of computer privileges is the most effective way to influence behavior. In short, do not force all kids to have to use the computers in order to get their education. There are at least 2 instances of the kids wanting to turn in the laptops and they were forced to take them back. They were eventually charged. This is wrong.

Chmee wrote:This is one of my concerns about the file-sharing generation, their concept that it's not what's legal that matters, but what you can get away with.

Darth Wong wrote:

Chmee wrote:This is one of my concerns about the file-sharing generation, their concept that it's not what's legal that matters, but what you can get away with.

Yeah, they should be more like the yuppie generation, which popularized turnkey divorce and the frivolous lawsuit.

Chmee wrote:This is one of my concerns about the file-sharing generation, their concept that it's not what's legal that matters, but what you can get away with.

GrandMasterTerwynn wrote:

Arthur_Tuxedo wrote:One of the foundations of any fair justice system is that the punishment is supposed to fit the crime. Charging a bunch of high school kids with felonies for getting around inept security to chat and look at dirty pictures is a severe abuse of that system. Just because someone "broke the rules" does not justify any and all punishment.

It states in the article that the school had exhausted their own internal discipline methods to no avail.

The article wrote: The Kutztown Area School District begs to differ. It says it reported the students to police only after detentions, suspensions and other punishments failed to deter them from breaking school rules governing computer usage.

The article also states that the students were required to sign a code of conduct/acceptable use policy that contined warnings of legal action.

And the charge does apparently fit the crime:

computer trespass, an offense state law defines as altering computer data, programs or software without permission.

So this doesn't look like a case of the punishment being excessive.

Arthur_Tuxedo wrote: So what? The fact that underage kids signed something that says they can be legally prosecuted doesn't mean that the district should always prosecute for any of the listed offenses.

DrkHelmet wrote:
Possibly, but before I answer, I still need to know what the statute of limitations on computer tampering is.

Kamakazie Sith wrote:

DrkHelmet wrote:
Possibly, but before I answer, I still need to know what the statute of limitations on computer tampering is.

Since it's a felony I'd imagine it being four years from the date it was reported to law enforcement.

Arthur_Tuxedo wrote: You're trying to refute a criticism of an over-zealous application of a law by quoting the law.

Charging a person with a felony for installing chat programs and looking at dirty pictures when they weren't supposed to is ridiculous and excessive. The wording of the law doesn't change that, the number of times they were warned doesn't change that, and the fact that they signed a contract doesn't change that. The punishment does not fit the crime. Period.

They're being called the Kutztown 13 -- a group of high schoolers charged with felonies for bypassing security with school-issued laptops, downloading forbidden Internet goodies and using monitoring software to spy on district administrators

DrkHelmet wrote:

Kamakazie Sith wrote:

DrkHelmet wrote:
Possibly, but before I answer, I still need to know what the statute of limitations on computer tampering is.

Since it's a felony I'd imagine it being four years from the date it was reported to law enforcement.

And if it was never reported?