IRS Now Says It Has Lost Emails From Six More Accounts Tied To The Investigation Of Its Targeting Of Tax-Exempt Groups
from the evil-or-just-stupid? dept
The IRS recently blamed a "computer crash" for the disappearance of two years of email correspondence involving Lois Lerner, the IRS official at the center of the controversy surrounding the agency's apparent targeting of certain non-profit groups (Tea Party, Occupy, open source).
Apparently, this computer crash also destroyed any backups of the email between Lerner's office and outside government agencies, along with the hard copy backups IRS employees are required to maintain as part of its public records obligations. The latter part of that hasn't been specifically denied, but it's assumed no one's rounding up email printouts at the moment. As is the new Standard Operating Procedure for Grandstanding, a Congressman has demanded the NSA hand over the metadata on the missing Lerner emails.
Now, it appears that Lois Lerner's computer crash was only part of a much larger series of well-timed computer crashes.
The Internal Revenue Service says it can't produce e-mails from six more employees involved in the targeting of conservative groups, according to two Republicans investigating the scandal.The question is still: conspiracy or colossal screwup?
The IRS recently informed Ways and Means chairman Dave Camp and subcommittee chairman Charles Boustany that computer crashes resulted in additional lost e-mails, including from Nikole Flax, the chief of staff to former IRS commissioner Steven Miller, who was fired in the wake of the targeting scandal.
Certainly the fact that emails and accounts directly related to the investigation are missing data from the crucial 2009-2011 period does make it look like the agency's hiding something. But the possibility that this is can be chalked up to regular government ineptitude is never too far away.
As was noted earlier (in the IRS's own documentation no less), the agency uses Microsoft Outlook and Exchange, which would suggest that further backups exist, as does (again) the IRS's own statements. John Hinderaker at Power Line quotes the IRS on its backup processes.
For disaster recovery purposes, the IRS does a daily back-up of its email servers. … Prior to May 2013, these backups were retained on tape for six months, and then for cost efficiency, the back-up tapes were released for re-use. In May of last year, the IRS changed its policy and began storing rather than recycling its backup tapes.This means that older backups no longer exist, at least anything "taped over" prior to the change of policy. One wonders why the agency was allowed to recycle backups when much of what's being backed up is subject to public records laws. But to make the situation even worse, the IRS greatly restricted the number of emails each employee could retain.
Currently, the average individual employee's email box limit is 500 megabytes, which translates to approximately 6,000 emails. … Prior to July 2011, the limit was lower, 150 megabytes or roughly 1,800 emails.As Hinderaker points out, someone in Lerner's position could run through that allotment in just a few days, meaning she would most likely begin archiving them to her own computer, something that could actually destroy emails when it crashed.
But this doesn't excuse the missing email, although it does help explain it. As the IRS's own policies note, archiving email to local storage is not an adequate solution and does not comply with public records regulations. So, Lerner and the six others affected should have had hard copy printouts of every email that could possibly be considered a relevant public record. Apparently, they don't and it's highly unlikely that many IRS officials take this Luddic requirement seriously.
Even with this additional information, the coverup theory isn't completely dispelled. One computer crash nuking vital emails is unfortunate. Six computers all taking out relevant email from a specific time period goes far past coincidental. The fact that the IRS hid this from the investigatory committee for months before finally "revealing" it on page 15 of a 27-page letter lends more credence to those who feel there's been a concerted effort to keep information buried. It also should be noted that the IRS itself has not stepped up and explained how something like this could happen (other than saying "computer crash"). Anything pertaining to the IRS's regrettable backup "solutions" and absurdly tiny email storage has been uncovered by the research of others. So, until the agency has anything further to add, the scale remains perfectly balanced between "malice" and "stupidity."
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: congress, dave camp, destruction, emails, evidence, irs, lois lerner, records
Reader Comments
Subscribe: RSS
View by: Time | Thread
[ link to this | view in chronology ]
Re:
Perhaps the emails came from the NSA and asked the IRS to target the people who were not vocal enough in their support and mentioned they had already caused their enemies to no longer be with us. (God I hope this is wrong.)
Without the emails, it's really impossible to know how bad it is.
[ link to this | view in chronology ]
Re:
- Deciding not to reuse tapes is all very nice, but at $80 a tape and no budget for constant replacements, it ain't happening.
- Every once in a while a user's copy of Outlook - or Outlook Connector - will decide to archive everything older than 90 days. And remove it from the email server. And store it in a hidden directory on the workstation where it's not backed up. The email administrator is not informed in any way. And since we're talking about email several years in the past here, that archive is gone when the workstation is upgraded.
- Every once in a while someone will buy a new phone or tablet, and the person selling it will set up their email on it. And they'll inevitably use the default POP3 protocol rather than IMAP. And so before the customer leaves the store, their new device has downloaded all their email and REMOVED it from the server. Again, the email administrator is not informed in any way. And even if they were, restoring from the previous night's backup is out of the question, since that would wipe out everyone else's email activity since the backup.
- If a user IS using IMAP, and they delete an email the same day they send or receive it, it's gone from the server before the nightly backup.
The solution is archiving software - an email server add-in that backs up each message as it goes through the server rather then waiting for the nightly backup. Such things exist. The cost, combined with the cost of a second server and a second set of backup tapes, will be "taken under advisement" by your manager.
Until after a scandal like this one.
[ link to this | view in chronology ]
Re: Re:
One way to do it would be for the server to simply split off and archive everything that comes in, *before* it gets to the point of being visible on the server where a mail client could see it - just as the server can pull out mail it judges to be spam, before that mail gets to where a client has a chance to see it.
Another way would be for the server to respond to a client's "delete this message from the server" request (whether POP3 or otherwise) by either flagging the message "don't show", or outright archiving it on the server end (and removing it from where the user's account can access it, and ceasing to count it against the user's storage allotment), but not by actually deleting it.
The latter solution wouldn't address the IMAP issue you cite (at least not without opening the server up to a DoS from excessive disk-space consumption), but I think the former would.
Also, I'd think a well-designed backup system would let you restore individual E-mails - or at least individual accounts - rather than only the entire backed-up data set at once...
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
Why not both?
[ link to this | view in chronology ]
Re:
-- Hanlon's Razor
"Sufficiently advanced stupidity is indistinguishable from malice."
-- Clarke's Corollary
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
More corrupt than screwup (my new rap theme)
News outlets are covering for this armature administration and the corrupt entities they agree with, i.e. the IRS targeting non-liberals.
[ link to this | view in chronology ]
Next question:
[ link to this | view in chronology ]
Re: Next question:
See? We fixed the problem.
[ link to this | view in chronology ]
Re: Next question:
[ link to this | view in chronology ]
conservative groups?
C'mon, really? You're not even gonna call bullshit on them pretending the IRS is targeting conservatives when 2 of the 3 groups mentioned are obviously not conservative?
Then again, you are quoting The National Review, a giant WTF all by itself.
[ link to this | view in chronology ]
Re: conservative groups?
[ link to this | view in chronology ]
Re: Re: conservative groups?
[ link to this | view in chronology ]
Deliberate destruction of those E-mails is prima facie obstruction of justice. On the other hand, if it is stupidity, it is the most boneheaded stupidity one can possibly imagine, and the entire IT department of the IRS should be fired immediately for incompetence, losing all pension and benefits.
[ link to this | view in chronology ]
No biannual/annual backups?
Which is sensible, but there should have been long-term retention of selected sets. As a rough (very rough) example, "keep the backups from the 15th of each month for 3 years", "keep the backups from the 15th of Jan, Apr, Jul, Oct for 6 years", "keep the backups from the 15th of Apr and Oct for 10 years". Schemes like this -- and there are many of them, with their advantages and disadvantages -- provide at least partial coverage of time periods increasingly in the past while not requiring a warehouse of tapes.
I also find myself wondering why they didn't interpose a monitoring MTA in between the Exchange server (ugh) and the outside world, with that MTA configured to silently copy EVERYTHING to sufficiently large storage that was itself backed up and which used rotated-by-day files that were never truncated -- only deleted once they were verified to exist on (say) 5 or 9 or 17 backups. This would provide comprehensive coverage of all email traffic and it would insulate against single-tape failures -- which of course become more common as tapes age.
Neither of these is a "solution", per se; they're back-of-the-envelope grade outlines of solutions. But I would think (and hope) that the IRS has personnel who've thought through these issues in detail and engineered workable, tested solutions that achieve compliance with record retention statutes/regulations.
[ link to this | view in chronology ]
Multiple counts of both is more like it.
[ link to this | view in chronology ]
Email
> email box limit is 500 megabytes, which
> translates to approximately 6,000 emails
I work for a federal agency, using Microsoft Exchange, and our inboxes are limited to 300 MB. About every two weeks, I start getting little auto-generated nastygrams from the system that says my inbox is close to full and that I need to do some housecleaning.
I've often thought how ridiculous it is that the limit is so low, considering that a single email attachment these days can easily be half the total storage alotment per user.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
IRS Standards
[ link to this | view in chronology ]
Malware
In particular, one wonders if the IRS came down with a nasty case of Cryptolocker back when that was doing the rounds...
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Puzzled
Presumably, when a computer crashes (realistically, a hard disk crashes) the data is restored from the backups and then resumes being backed-up in the normal cycles. Or was there just a collective shrug of the shoulders after a disk crash?
I am reminded of the scene in "Yes Minister" when he refers to 1967 as a marvellous winter:
[ link to this | view in chronology ]
Simple ... Emails go somewhere
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Translation: "The dog ate my homework."
[ link to this | view in chronology ]
Best Practices
I remember the Bush administration losing a ton of mails when they used their private/for work server shared between republicans. Did that ever get resolved?
Seems the U.S. government could benefit from some pretty widespread best practices utilized by all political parties.
Just a thought, isn't HTML a derivative of the government markup language. They used to know what they were doing.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
analyze this
Next, we'll be analysing email headers and arguing about software and RFC's.
Meanwhile there's been plenty of time to setup two servers running backdates and re-email a parallel construction in secret, edit the logs and wipe the data, presenting the new "parallel data" and logs show harddrive fail (or some such nonsense)
Slap on a "state secrets" stickers, "privacy stickers" and
"NEXT!"
[ link to this | view in chronology ]
This is BS
[ link to this | view in chronology ]
Re: This is BS
You mean like targeting liberal groups?
[ link to this | view in chronology ]
We will get them in the end. A 70 year old being charged with treason is just as good as a 40 year old being charged with treason.
[ link to this | view in chronology ]
Knee jerk reflex or covering for suckitude?
As for covering up a conspiracy, the scandal that's been hyped isn't particularly scandalous. The IRS was denying charitable status to organizations that pretty egregiously did not fall within the guidelines- *shock*. The charge that it was a matter of selective enforcement has mostly fizzled upon finding that groups from across the ideological spectrum were examined. I doubt that there would be much more meat in any emails as far as showing some partisan war on conservatives. What I think might be there is a chain of emails from Lerner or other high ranking officials showing them absolutely adrift in determining what to do about the flood of inappropriate c4 applications.
This is the agency that has been repeatedly taunted by pastors organizing events around defying the ban on religious c3 groups engaging in electioneering. Up until this scandalous crackdown, political operations were routinely organizing as charitable groups with no repercussions. Even in cracking down on political non-profits, the targeting was awfully tentative. The existing behemoths that operated in the recent elections got a pass, and most of the groups that made it on the naughty list were not only explicitly in violation of the tax code, but were relatively amateurish local organizations.
In all, the IRS has absolutely sucked at policing tax-exempt groups and the best motive I can make out for them to stonewall is that they want to hide their incompetence rather than any partisan wrongdoing.
[ link to this | view in chronology ]
I don't think this excuse would fly for anyone, except for a unaccountable government agency being provided with cover from the White House and DOJ.
[ link to this | view in chronology ]
The dog ate my homework.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Re:
It would be more realistic to just say "erm..terrorists did it!"
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
Re: Re: Re:
Have you ever worked at a law firm? (And they keep telling us they're trying to go paperless.. HA!)
[ link to this | view in chronology ]
The most transparent administration in history?
[ link to this | view in chronology ]
[ link to this | view in chronology ]
501(c)4
That being said, there is, if we are being completely honest with these things, a DAM GOOD REASON to investigate any organization with "Tea Party" in it's name, when they are applying for 501(c)4 status. 501(c)4 organizations are social welfare organizations (think your local civics club) that by law are not allowed to spend the majority of their money on political activities. So, if i were an examiner, and having limited time, i'm going to spend most of my time examining the applications of groups with political sounding names, as they may be better classified as a 527 organization.
[ link to this | view in chronology ]
Re: 501(c)4
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Losing heads
They lose it all the time. Anytime the email/video/recording/paper is embarrassing, involves a little business quid pro quo, or wrongdoing is involved.
It's predictable as a clock: Embarrassing that we can't find $1 billion - "Oops, lost our head." Involves a little quid pro quo in the form of a massive bribe - "Oops, lost our head." Agent beat the hell out of, tased, and then executed a man in a wheel chair - "Sorry, lost our head."
There should be a law that any lost items equals an automatic $1 million reduction in budget. What a wonderful thought: That the government would wind up owing us to do their jobs.
[ link to this | view in chronology ]
Technology cannot replace...
[ link to this | view in chronology ]
How come the criminal, thieving IRS
[ link to this | view in chronology ]