Posted by: Michael Morisy
Network security, Wikileaks
Following up on our piece explaining how to access certain Marine Corps’ password-protected materials, we received another e-mailed response to a few of our questions which shed a little on the situation. In addition, in a surprisingly transparent move, password protection was completely removed from many of the documents. We should note, however, that while the e-mail below states no documents from after 2005 were available, we found one (unclassified) manual from October 2007.
The e-mail in full below.
1. Is this a security hole in the Marine Corp’s Intranet?
A: The Marine Corps networks are secure and fully support our warfighting and business requirements. The site noted is accessible because it is an alias or archived website, which takes snapshots of websites over time. This archive does not display any material after 2005. The Marine Corps information assurance posture includes routine monitoring of websites for accurate content and security settings.2. Are any of these documents sensitive?
A: No.3. Is the Marine Corp’s Intranet maintained by a contractor?
A: The Marine Corps Enterprise Network supports Marines around the globe and consists of a number of networks. We are currently using a Continuity of Services Contract as we transition from the Navy Marine Corps Intranet to the Next Generation Enterprise Network.4. What software does it use?
A: The Marine Corps uses commercially available software and information assurance products that are widely used across the Federal government.