You're confusing the criminal justice system with real justice.

These days you don't have to have harmed anyone or anything to go to jail, especially when it comes to government computer systems. Looking at the wrong things or even looking at the right things in the wrong way is enough. Say "hello" to the DMCA.

Government these days is all about making people afraid and to do that you have to show a threat, so you cast the net wide, make the charges sound fierce and then you can easily convict people who weren't really much of a threat.

Of course there are people who behave unethically and do a lot of damage. Stealing passwords to empty other peoples' bank accounts is a no-no and should be punished. Emptying other people's bank accounts when you have the title "manager" seems to be ok, though.

Icon: don't worry, he's an investment banker...

that the mere fact of serving your prison term is what reforms you. Therefore if you have time to serve and haven't served it, then by definition you aren't reformed. But once you have served your time you are, again by definition, reformed.

That's a crazy argument.

It's not the actual time itself that reforms you, in my opinion it's more likely to be the fact that you have been sentenced to xx years in prison that does the reforming.

Once you actually go to prison, my understanding of the stats is that you are more likely to come out a hardened, repeat offender, than you are to come out as a reformed person.

Well this is obvious. They're being nice to him up until the day he goes to prison so he doesn't screw their system. When he goes to jail, they'll say "We need to hire a temp to fill your position for, say, 4 years with time off for good behaviour. So could we pretty please have all the passwords. All of them. Yep. All. Please. Yeah, you can have your job back when you get out. Sure. Just write them all here. kthxbye"

"...the site.....doesn't collect sensitive user data, and all user passwords are encrypted, so they can't be viewed by employees..."

Well, maybe that's the way it was *intended* to work. When the guy looking after the admin side has a history of using malicious software added to machines to, er, collect sensitive data and capture user passwords in clear, who knows?

This Calacanis bloke. He's not large, of avian appearance, covered in black and white feathers, long necked and able to run very fast by any chance?

After all, whole nations reelect hardened criminals as the chief of their executive with the "background check" open to anyone who can open a newspaper. This can lead to interesting discussions but no hard conclusions. Thus Shrug.

"For most of that time, serial entrepreneur and Mahalo CEO Jason Calacanis was in the dark because no one at the company had bothered to Google the employee"

I expect they used Maholo rather than Google and it turned up 0 hits.

I have seen big banks hire people with no background check, no interview, no vetting process whatsoever - and then place them in a room with all the bank's computers, give them the root password, and expect everything to be tickety-boo.

Mind you, with the number of top banking figures without formal banking qualifications, it would seem they do the same thing when it comes to hiring their CEOs. Banks, it would seem, do not take security or competency as seriously as we hope they would.

Maybe it really IS time to start keeping your money under the mattress...

If I read correctly, the subject used someone else's money to pay for a domain registration and used someone else's property without their permission (botnet.)

Assuming he made a reasonable amount of money that allowed him to drink the occasional beer and live a comfortable life, the above immediately disqualifies him for a position of trust.

You don't have to be trustworthy to do lots of jobs at a bank because there are people whose job it is to look over your shoulder. Positions of trust are different and those who violate trust are violating social compacts that allow our society to function quickly and smoothly. Having to worry about violations of trust slows us immensely.

People who work in the networked economy are aware of that. The employer knows that and is merely being disingenuous.

The subject in question should sell used automobiles for the rest of his natural life. That would place him in a social position where the public would understand how to interact with him on a day to day basis. There are plenty of people like him in the world. What is special about him because he knows "all about computers" as the clueless express it.

Since when did Googling someone constitute a background check? What other services will the oompa-loompas be providing? Can we expect short, orange trench-coat-and-fedora'd PIs? Surrealist corporate espionage?

I was one of the first hackers, I'd guess, since I started in 1972. I ended my unauthorized journeys in cyberspace sometime during the mid-80s. If some of the people I worked for knew I could crack their systems easily (although "security" was a misnomer then), would they ever have hired me to do anything? Then again, when I was a teenager and in my early 20s, driving too fast was nothing to brag about. Now it tends to be a felony. There are lines being drawn here, and most people can't begin to envision the consequences. Maybe we should start going to church again. That way we could spend one day in Purgatory and sin the other six in the old-fashioned way.

--Glenn

The worst I have ever done at my past employer was running for 2 years a Quake 1 server.

How to become a System Administrator:

Option 1: Spend about $100,000 in schooling, spend another $10,000 in certifications, hope to find a company looking for a new admin...

Option 2: Drop out of school, become script kiddie, build a botnet, steal money, wait for some company to throw you a six digit salary job...

What a backward ass system.