Michael's Insight

Lime Wire tells Congress its P2P software is safe now [CNET News]

Peer-to-peer file sharing software Lime Wire is in the Congressional oversight spotlight after it was reported earlier this year that details of Marine One, the president's helicopter, were compromised using peer-to-peer file sharing software. As it turns out, a machine that contained the aircraft's plans at a military contractor had a copy of file sharing software installed which managed to open the directory that contained the plans to sharing with any other user seeking the data. One audit of the breach revealed that a system in Tehran, Iran had downloaded the Marine One plans.

In response to the Marine One and other national security breaches that have occurred as a result of peer-to-peer applications, Lime Wire is telling a Congressional investigative committee that their software is "the most secure file sharing software available." The basis for the claim? That the newest version of the software, Lime Wire 5 does not automatically share access to a user's files when installed. Of course, there's nothing to deter a user from sharing those files manually.

When any system contains sensitive national security data, doesn't it seem like simple common sense that the government should downright prohibit the use of peer-to-peer file sharing software?  I, for one, don't feel very comfortable with them seeking the "most secure" version of a genre of applications that are anything but secure by their very nature. Once a copy of P2P software is placed on a system, the slightest mistake can expose critical data to anyone on the Internet that's looking for it.

And a word to the wise -- For regular folks like us, the same issues apply. Sensitive financial and personal information can be exposed to the world with an incorrect sharing setting.  User beware!