UPDATE: They’ve pulled the offending part of the signup form down now, but not before it was saved for posterity fairly widely we’re told. And no, please don’t post all 4,920 names here, that would really clutter up this thread.
Up next, we would assume, will be a carefully-worded statement about how the Gardner campaign takes your privacy seriously, your credit card information is secure if you donated online, really, we swear…
And if we can toot our own horn for a moment–we’re not Colorado’s most widely read and discussed political website for nothing. About 30 minutes after this post went up, the Gardner campaign made the change. If you follow Colorado politics, no matter your political affiliation, then you follow Colorado Pols.
—–
Republican Cory Gardner is easily the Colorado king of the self-inflicted wound among all candidates running for office in 2010. It seems that hardly a week goes by without another major gaffe committed by his campaign. Sometimes (today for example) nary a day goes by before another screwup emerges.
And here’s the afternoon edition: want to know who’s on CD-4 candidate Cory Gardner’s email list? We’re going to take a wild stab in the dark and guess that he doesn’t want you to know with any kind of specificity, but we were surprised to discover a short while ago that we can give you a number: 4,920.
And because Gardner’s campaign website is apparently about as safe as an offshore oil rig, we can give you names, too:
That’s the signup page for Gardner’s website. If you click on the “title” drop-down field on this page, you do get the expected selections of “Mr.,” “Ms.,” etc.–and somewhere around 4,920 first and last names. These are presumably the full contents of Gardner’s email database, information which–in terms of numbers as well as the names themselves–his opponents are glad to have. It’s not like a simple list of names represents an identity theft threat or anything, any more than a phone book does, but it’s just so marvelously stupid. Counterproductive, too–voter file match, anyone?
We could assume that it is safe to do other things, like making a donation, through Gardner’s website, but really, who wants to make that assumption after seeing this screw-up online? In fact, we’re going to go out on a limb here and guess that there aren’t going to be a lot of people entering any information on his website any time soon after this word gets out.
And yes, this is your cue: should probably go ahead and fix that.
You must be logged in to post a comment.
BY: QuBase
IN: Weekend Open Thread
BY: 2Jung2Die
IN: Weekend Open Thread
BY: notaskinnycook
IN: Weekend Open Thread
BY: The realist
IN: Weekend Open Thread
BY: kwtree
IN: Weekend Open Thread
BY: JohnNorthofDenver
IN: Weekend Open Thread
BY: JohnInDenver
IN: Weekend Open Thread
BY: 2Jung2Die
IN: Weekend Open Thread
BY: SSG_Dan
IN: Weekend Open Thread
BY: JohnInDenver
IN: Weekend Open Thread
Subscribe to our monthly newsletter to stay in the loop with regular updates!
Don’t diss Photoshopoff and Jane “is anybody recording me?” Norton.
This is an election year.
I demand a run off.
Voters might be able to trust the change, but they probably shouldn’t trust Cory with any personal info.
Not that I’m troubled by that, but what a dumbfuck.
Tip: alphabetized by first name, that will help you scroll through them.
I wonder how many people copied that list of names before they were outed.
I imagine that a a simple ctrl+s will save the page.
The cached version is still available via teh google.
Other pages have the same popup menu and are still live.
Cory Gardner’s campaign’s top source for information on how to fix their screw ups.
We’re just here to help.
I just wish I could figure out how to copy and paste 4,000+ names but I have a feeling plenty of folks friendly to other campaigns have already done it for me.
Copy and paste into a text editor.
Do some editing and find-and-replace work to remove the html code (mostly option tags).
Import to a spreadsheet.
Have a beer (it’s been a long day).
I’m going for a bottle of red wine in about 3 hours.
somewhere
Paste into spreadsheet.
Convert “text to columns.”
Choose delimited text, use the greater than sign (>) as your first delimiter.
Repeat, using less than (<) as your delimiter.
Repeat using “space” as a delimiter.
Now you’ve got everything in the spreadsheet, all extraneous html is gone AND you can now sort by last name!
I’d like to be a fly on the wall of that phone call telling Gardner of the mistake.
Staff: “Umm, sir..uh..well…umm…”
Gardner: “Hurry up, I’m eating my ice cream.”
Staff: “Well, you see, it’s like this…um”
Gardner: “Ice cream is MELTING!”
Staff: “Our website went bananas and our opponents have our email names and can match them to the voterfile and save money by not mailing to them and push poll them…”
Gardner’s eyes darken, ice cream falls to the floor.
_________
Who knows, maybe it went something like that.
However, except for donors of under $20 and the fact that it might be a little more current, how is this any more dangerous than what can be downloaded from the SOS website?
The SOS spreadsheets even have the donors’ addresses and employment information.
That’s not the point. The point is that assholes like me have an email list of Gardner’s supporters and are forwarding it to anybody we can think of.
Oh and the other point is that it doesn’t exactly inspire confidence in a guy that can’t keep his supporter list private and can’t spell his own damned name. Bad day to be Cory.
Nobody’s supporter list is private.
but it is seldom so public, either.
I download the SOS stuff all the time. Sometimes I like to break out contributions to local candidates by zip code.
Maybe that’s just my inner geekness.
But “View Source” and copy and paste is kind of geeky too.
has saved my ass more than once. I’d prefer we not mock that.
There’s more than 4,000 people on that list — a good percentage are not going to be donors.
It’s not available from the SOS. It’s only available from the FEC if the aggregate amount give by a donor is over $200 per calendar year.
I have a hard time thinking of Gardner as a federal candidate (let alone a congressman).
It is such a stupid mistake that it throws doubt on Cory’s ability to walk across the street without someone holding his hand. And yes, someone else created the website – but what does it say that he hired the dumbest web designer on the planet?
Dpes anyone know how you even accomplish such a blunder? I’ve created sites with those kind of drop-down menus, and it’s simple to type in Mr., Mrs., Miss, Ms., and Dr. You really have to go out of your way to mess things up like the Cory Gardner people did.
Probably in PHP.
But God only knows why you’d do that, unless he copied and pasted a query that was used elsewhere and then forgot to edit it.
Cory proves it.
That’s Adobe Business Catalyst. Bob Beauprez’s son in law has a successful business rebranding the software and having pa’ convince congressional candidates that it’s something really groundbreaking that they developed themselves.
There’s some ASP as well, but it’s CiviCRM. Unless he hacked Adobe Business Catalyst to say CiviCRM in the HTTP headers.
I’ve seen some good stuff written in PHP. But it also lets babbling morons throw something together.
I kind of like PHP. I’ve done some complicated things with it. Like any other language, it’s all about the design of the app and testing against the design.
Then again, I started with FORTRAN II. If you screwed up, you had to punch whole new cards. (And we had to buy our own cards)
http://en.wikipedia.org/wiki/I…
http://james-iry.blogspot.com/…
I used to be Perl geek until I discovered I couldn’t figure out statements I had written just 10 minutes before. It’s definitely a write-only language.
I still have to maintain some old Perl stuff. Every time I do, I’s like, “WTF was I thinking here?”
I’m still a Perl programmer. I can understand what I wrote (it’s not that different from any other C++-ish language), provided it isn’t a complex regular expression with no comments. 🙂
Now, Apple mini-assembler, that was hard to comprehend more than 10 minutes after I wrote it, especially once I’d gone through and hand-optimized it.
tweaking the order of instructions to not stall the instruction cache – fun times. I once got a 10% increase in the frame rate (for a game) by moving around 5 lines.
Apple 6502 mini-assembler programming wasn’t about cache – there wasn’t one (nor any comments, nor named address targets…). It was about ordering your calculations so that you didn’t have to do an explicit compare, did a minimal number of conditional branches, had variables pre-loaded into the appropriate register as part of some other operation, didn’t overload the (shared) 256-byte stack…
Once you got done doing that to your code, it seldom resembled anything that a human would associate with logical program flow, and it was impossible to follow if you set it down for any period of time.
It was challenging, but I don’t miss it.
… the 6502 CPU had one accumulator (A) and two registers (X and Y), each of which had different functions you could perform from them?
Want to look at an indirect indexed memory space? Better have your index in Y. But don’t expect to do all the math you need to get the right index in the Y register – math is mostly for the accumulator. 🙁
I’ll stick to Perl, thanks.
I started with the 8088 – and back then how cool it was to have 16-bits (sort-of) and 10M on the hard drive.
but reading the article makes me feel like I know more.
Real programmers use hot wires to clock and bit change.
Lived in obscure assembler languages for many years. Including wondering around in machine language wasteland looking for bits. And, during test doing the hot wires. Quality control and test engineers always turn white then green and tend to disappear during that phase of troubleshooting.
Easy to do… the web designer is really fairly uncomfortable with SQL, so they copied their first SELECT statement from some web tutorial, and then copied the rest from that one. Forgot to make an edit. One of the most common mistakes out there, actually.
So… why didn’t someone take a look at the web site before it went live?
But maybe some of her descendants are working on Gardner’s website.
thinkrootshq.com
thinkrootshq – I hope you build websites for every Repuboican out there. You da man!
That’s what thinkrootshq.com says on its site. What they leave out: Neither will your supporters!
No way. Are you making that up?
http://thinkrootshq.com/partners
how many guys are in the room, doesn’t it?
You’re on a roll, man.
Whatever happened to that statement? Does the Gardner campaign want us to wonder whether credit card info is secure?