Slashdot Mirror
Judge Thinks Delete Should Mean Delete
leighton writes: "According to The New York Times (free registration required, for those who care about such things), a prominent judge recently wrote an article saying that the delete key should actually delete things, not just hide them away where lawyers and skilled computer geeks can get at them years later. Specifically, he proposes that a statute of limitations be imposed upon electronic messages--that, for example, an obnoxious email you send today could be held against you for six months and six months only." This is an astonishingly insightful idea - since electronic communication has changed the lifespan of casual conversations from ephemeral to permanent, it's possible for the law to change its standards to restore that ephemerality. The judge's original paper is linked off of The Green Bag.
everyone has the ability to delete things via a file shredder, but microsloth and every other OS doesn't want that functionality in the software. Lawyers and the Fed's, I'm sure, are horrified at the idea that someone in the judicial branch of the government would want such a law that would protect the citizens. Imagine.. They couldn't scan the hard drives of employee's computers when they suspect that there was a donut conspiriacy. Business owners couldn't pull up all that deleted email from the ex-employee, etc....
Me? If it's senistive I shred the file - and then it was encrypted to begin with. but then my swap area isnt encrypted, and how about the temp file my word processor used.....
I'd love the law, but the feds will not allow it.
Do not look at laser with remaining good eye.
--
Sheesh, evil *and* a jerk. -- Jade
--
Big Brother is watching you, your honor. He is watching us all, and he is preparing to incarcerate me for what I just typed. I'm not afraid, though; I win either way, either as a martyr or a hero.
"Ancillary does not mean you get to rule the world." --U.S. Circuit Judge Harry Edwards, speaking to the FCC's lawyer
There's always "pgp -w"
Every now and then I fill my available disk with several big huge files, the only purpose of which is to soak up all of the available disk. Then I PGP -W the enormous tempfiles into oblivion, effectively cleaning out the leftover data fragments in the should-be-empty sectors.
never ask a question you don't want to know the answer to
IANAL, but last time I checked, info gleaned from the trash was admissable under certain conditions.
Marco...that was Portugese.
What? That's a terrible idea! The stupid should not be protected from the law.
Go Kathryn Thurber!
What about hate speech - even one instance?
What about criminals conspiring to break the law - their emails to each other are inadmissable after 6 months?
Now admittedly the judge deals with both of these examples by saying glibly that there should be no statute of limitations on being a "jerk" or having a "pattern" of illegal communications.
I think that a law to have a "statute of limitations" on things said in emails would have to be so narrowly drafted as to be unenforceable.
Oh, btw, IANAL if it isn't obvious already!
There are a million programs out there that will wipe files and overwrite with zeros 'X' number of times. Somebody should tell him about that. If delete really deleted files, think about all the SU 's (thats 'stupid users') that would need an incremental backup of thier PC every 10 minutes.
"I am a warrior, and information is my weapon..."
When I post something, it pretty much becomes a matter of public record- it is out there, out of my control. The only proof of the date and time I posted it is as ephemeral as the text that I posted. And both can be easily changed by someone leaving no indication that the text has been changed.
Realistically, I don't think we should be held (legally) liable for those things that we post unless it has some sort of secure, verifable, signing mechanism- there is no way to tell who is really posting a message, or what has happened to it after it has left the author's system.
Delete = gone is nice- We have that option when it comes to shredders and incinerators for our paper correspondence, I think the concept has to be a bit more fleshed out to be truely applicable to the digital medium.
I think that even IF there was an innitiative to really 'DELETE' something when it was supoosed to be, it really wouldn;t happen anyway. Data manipulation these days, especially by law enforcement isn't exactly -by-the-book- .. IMHO
....move along....nothing to see here....
How hard is it to double-click the recycle bin? Look at where all those files are. I pressed delete!
http://partner s.n ytimes.com/2000/10/05/technology/06CYBERLAW.html
Seriously, why won't they rethink keyboards and actually have both a Trash and Delete key?
Are you telling me the entire legal industry (police, courts etc) will just ignore evidence of crimes just because its 6 months and one day old?
Laughable, just laughable. This will not take off in any country in the world, ever.
In the past, I've worked for a number of police organisations as a consultant. A very common question is "Can you find out if he's deletedf anything incriminating?", to which the answeer is usually yes.
What usually happens is that the evidence is for far worse crimes than they were originally accused. For example, someone brought in for drunk driving may have a lot of large drugs deals hidden away somewhere. Or evidence of conspiracy with communist agents (One for the secret service)
So what should the police do if they find incriminating evidence like this when looking for something, if they then find that its 6 months out of date? Say "Oh sorry Mr. Evil. We thought you might be guilty, but it turns out that that was last year, so you're probably a decent law abiding citizen now"?
And the space bar.
Ñ'
...that all keys should mean what they say. "Hmm...I think I'll order a TAB." -- Homer
--
Wooden armaments to battle your imaginary foes!
What is the judge worried about, anyway -- his wife finding his online porn stash, or e-mails to his mistress? Just use decent encryption and utilities like PGP, and you'll be fine.
This judge really sounds paranoid. What he needs is a secure delete program, an operating system which doesn't store remnants of temp files everywhere, and an sledgehammer to "obfuscate" his disk when he gets a new PC.
---------///----------
All generalizations are false.
--
I like to watch.
And what determines how old is old, anyway? The headers? Does this mean my forged e-mail headers are now legally admittable evidence that my offensive letter is seven months old?
I hope this receives more careful thought than other bad recent computer laws, such as the DMCA.
John
John
Like anything, the solutions isn't as obvious as those non technical people would like it to be.
"Science is about ego as much as it is about discovery and truth " - I said it, so sue me.
If someone sends something obnoxious via US mail, can that be held against them for more than six months? If so, having a different set of rules for e-mail is wrong. People should be held accountable for their actions.
As for the "delete" key, anyone who works in sensitive information knows how to fully delete something. A lot of times (in fact most of the times) a normal Windows or whatever user would prefer that their data isn't permanantly lost when they accidentally hit the delete key. There's a reason that stupid "recycle bin" (or the original Trash Can from Mac) ever became popular-- people screw up.
For the past few years, I've been careful to use my work email only for work. Besides the fact its hard enough to manage my personal email without getting it mixed up with work, I don't want to give my employers a tool to screw me with. I don't want to try to explain myself to Mike Wallace and the 60 Minutes cameras over a dumb email I might have sent years earlier. But further back I used work email like a madman, and I seriously doubt my old employer has backup tapes of all their email going back to '94. Their backup system was poor and we'd lose data over a file server crash, routinely. However when I worked at a government installation, I'm sure whatever I wrote will probably outlive me in a archive somewhere.
This is what happens when people in high regard and with incredible responsibility finally realize what the implications of this technology are on their lives. This guy Gets It(tm). He knows that when he is writing a friendly email to another judge it can easily be used against him as bias/prejudice/reason for appeal. /.'s DB sure does.
There are two ways of looking at this. This could be good (for those who do not mean any harm). Or this could be really bad. This means that people can now get away with death threats and such (it can't be used as evidence against them) if they don't get caught within 6 months.
I think the length should be 1 year. That way people should REALLY think hard before they write that flame for alt.your-fav-group.your-fav-fetish
There should be a road sign, everything you loggon to the net - "Beware, anything you say can and will be used against you in a court of law, now go have fun!" Hell, I don't remeber what I said posted last week, by
Cd
This
If you encrypt all your emails, and keep your private key in a safe location (like in the memory banks of a smart card), it doesn't matter if someone can recover the bytes of a deleted message. If it's encrypted, then it will be unreadable.
This is just one of the numerous advantages to encrypting. We just need to start getting everyone to do it all the time!
"Save the whales, feed the hungry, free the mallocs" -- author unknown
This judge is just as clueless as the rest. Why should Delete on a file work differently from delete on text?, and if I delete some text by mistake I really want to be able to get it back, same with files.
He does raise a interesting point. Why can't we safely delete unwanted files and not have them come bite us later on?e d is their property. They have the 'right' to examine it and do with it as they please. ;)
Well, actually, we can. There are several companies out there that provide software and hardware-based data encryption solutions. If privacy and sigil are so paramount to us, we can use any of these to insure our deleted items stay deleted. For example, among these encryption packages, pgp.com has several useful utilities that will 'shred' your free diskspace, to prevent data recovey on Windows environments. A simple google search also yelds rought 34k matches for filesystem encryption under linux and other OSes.
Bear in mind that although you have the right to privacy, when you're working for someone, the fine print often says that anything you write/save/delete/is_on_hard_drive_of_computer_us
I doubt there will be any mainstream OSes with built-in file and filesystem encryption enbled by default, since it would make many people unconfortable. God help us all
"We'll need 2000 crickets, 4 cans of Easy Cheese, and the fluid from 18 glowsticks for this plan to work...." - ph0n1c
after reading the article, it seems that the judge only addresses part of the problem (if it is to be considered a problem). As stated above, he suggested that there be some kind of wait period after which deleted digital information can't be used in court. The article says this would be analagous to the information being consigned to the trash, are documents recovered from the trash/dump/wastepaper basket admissible?
Also, when something is deleted, what happens to it? I'm not terribly familiar with the inner workings of any OS (I'm a hardware person), but where does the information go? I mean, does it stay on the harddrive and is simply not referenced until you write over it? Once you write over the information can it be recovered? If I delete 2 GB of mp3's from my harddrive, I am told I now have 2 more GB of free space. Does that mean that the information is gone and unrecoverable without special tools, or it's just hidden and I should be able to get it back, or it's completely gone and the bits have been wiped? Or, are the bits not gone until they are overwritten?
Is there a way to change how an operating system or file system deletes files? Could a program or subroutine be made to go through and fill all dereferenced HD space with 0's or something? Or would the information still be recoverable from under those 0's somehow?
I don't know if suggesting legislation for this would be the best course of action. Especially if there isn't a way of telling when files are deleted. Even if there is a way to tell, what's to stop the people who can recover deleted information from changing the flag that says when a file was deleted (if such a flag exists)? If the only people who can retrieve deleted information are 'experts' and these 'experts' are employed by people with lots of money who are trying to find dirt on someone else...ok, I'm probably being too paranoid never mind.
::sigh:: one of these days I'll contribute something other than more questions.
Moller
So, send an encrypted email to a litigious enemy, and a copy of it to his boss and all his friends saying, "You're creepy, you eat dead cockroaches, and you smell like spoiled milk." Wait until six months and one day later to release the key to decrypt it. Scot-free! Mua-ha-ha-ha!
A truly excellent pizza parlor is a delight unto the heavens. Treasure the sauce and the toppings!
I bet that Bill Gates thinks so as well. If delete actually deleted things instead of sending them to the trash bin, I don't think the prosecutors in the Microsoft anti-trust could have got their hands on those emails they used against Microsoft.
If people are too bloody stupid to work out how to delete things properly, or use strong encryption to prevent invasion of privacy, then they deserve everything they get.
</Flamebait>
Discuss.
Actually, I believe you can make a case for this argument with some sensible provisos. Once such that immediately springs to mind is that the information so obtained (regardless of age) should have been obtained both Legally and Ethically (leaving open the argument that Carnivore, Echelon, UK's RIP etc fail at least 1 of those tests).
Personally, I'm in favour of providing technological solutions to technological problems, rather than wrapping-around a legal "hack". In An Ideal World, the technology would transparently handle secure deletion and/or copy-protection (for email) for you, thus negating the need to involve the blood-sucking fraternity in the first place.
<Slashdot-Flamebait>
If this statute of limitations had been in force, the DoJ's case against Microsoft would have been severely weakened (didn't they refer to years-old email from billg spouting anti-competitive tactics? or was that a previous lawsuit?)
</Slashdot-Flamebait>
--
I'd rather have a bottle in front of me than a frontal lobotomy
Most often than not the judiciary seems bent on proving people are on the wrong and must be punished. This is one rare insight on their part, not to take emails and comments on the net very seroiusly . Imagine if they just thought we at Slash should be punished for our oh-not-so-propah comments. They do realise that net users aren't actually all that serious as the money seems to portray. We are all having fun and the money just came by and the fun became even more fun. Am I right?
There's always sufficient, but not always at the right place nor for the right folks.
If Delete really deletes, does "home" bring me home? im sure it saves me tons of money in fuel. And when reading books I'd prefer to press page up and down instead of all that fiddling with pages myself. So if i need to go home from work i just do: "Home" "Enter" tada!! bunny
"We will give her back her....OLD NOSE!!!" - spaceballs
OK, it's easy enough to overwrite the bytes with
^@s, but this prolly won't deter the real spooks.
Due to slight inaccuracies with disk head positioning, their is still magnetisation that can be recovered from the edges of the little area that holds the byte (bit?). This is recoverable
relatively easily from magtape, but I wouldn't be
surprised if the same technique now also applies to high density hard disks.
In other words, if the judge wants to protect us all against this, that'd be pretty difficult to
achieve tecnically.
Aha! This is cool, but then is there a way to have the computer pick it's own salt and key each time it is booted for that encryption? that way you cant be hauled into court to reveal the passkey to access that encryption? adding random events into that system will make it almost truely un-crackable and therefore un-litigatable..
that would be really cool.
Do not look at laser with remaining good eye.
- Liability from something in the email. "Here is a copy of my windows Cd, here is how you install it..."
- Evidence from the email. "Hey Sal, if that guy doesn't pay that 5 large tonight, break both kneecaps this time."
In a case (either civil or criminal) it usually takes more than six months to discover the crime/wrongful act and get to discovering the email. If that was a law, a good lawyer would just delay for 6 months and claim that the emails are not admissible anymore.Fight Spammers!
This sould mean: delete my Windows permanently... :(
Sorry Windows not responding
Isn't amazing how can I be OT and TROLL in the same comment ?
Just another coder...
Besides, putting aside all "paranoia" about our government for a moment, there is something to be said for being responsible for one's actions. Taking a moment to think about what you do and say is never a bad thing. Despite the protections we enjoy, our past can come back to haunt us sometimes. Better be sure what you are doing is important enough to justify that happening.
God forbid we should take responsibility for what we actually said!
Let's reduce the statute of limitations on murder to a few months, because it might have been done in the heat of the moment, and everyone f's up every now and then.
+5:offtopic,but anti-American
The Delete key queues files for deletion. The recycle bin actually deletes the file and (if you have privacy utilities installed) wipes it.
Seriously, why won't they rethink keyboards and actually have both a Trash and Delete key?
I think there's a (Shift+Delete? Ctrl+Delete?) key shortcut that does this.
<O
( \
XPlay Tetris On Drugs!
Will I retire or break 10K?
Right click on a file you want to delete in KDE2 and select the "Shred" option.
Watch the resulting progressmeter. Pretty neat, huh?
If you don't have KDE2, try out wipe.
IMO would be for the law to recognize that digital information (in this case, email) is inherently insecure and modifiable, and therefore should not be considered valid as evidence of anything under any circumstances. Think about this. Do you remember email messages you wrote or read six months ago? Probably not. Especially if you read/write a large volume of email. If someone were to fabricate a message that appeared to have been created/sent a long time ago, the person who apparently authored the message may not be able to remember and therefore refute the evidence. Essentially, you could fabricate evidence that is nearly irrefutable because neither the author nor recipient could remember well enough to testify that it is/isn't what they wrote/read. Just my $1/50.
this is a left handed sig
Here is a word to all you incompetent criminals, tough luck. Creep says, "That letter with the char marks on it should be thrown out!". Judge says, "Bullshit."
This is a seperate issue from unreasonable searches like Carnivore. We should not let one bad decision force us into even less reasonable laws. Reasonable searches should not be impeeded.
Are you telling me the entire legal industry (police, courts etc) will just ignore evidence of crimes just because its 6 months and one day old?
No, the courts will.
<O
( \
XPlay Tetris On Drugs!
Will I retire or break 10K?
Any items left in your Inbox or any other server-based mail folders are deleted if they are over 60 days old. Plus there is a "policy" that states that the emails are "no longer valid" after 60 days.
The reasoning behind this, I was told, was so that the company could not be sued or have other legal action taken against them for an email written more than two months ago.
Sure makes completing really large projects difficult, though. I can only remember things for 8 weeks!
I don't seriously see this happening in government though. Does the judge mean to apply this to Criminal cases? Civil ones?
(Note: There are no x's in my email address.)
So would that mean that DeCSS in an email wouldnt be illegal after six months? t=0 illegal t=6 legal mmmm
-- Cheer, Cheer, The Red and the White.
he's not talking about posting of stories to public forums. read the article and then the paper. he's overwhelmingly talking about items contained on our personal HDDs: email, notes, papers, spreadsheets...ie personal stuff.
the expectation of his paper is to raise the idea of "when does something you deleted die?" his fear is that it doesn't. ever.
but as a general question: what makes email i delete any different that voice tapes i erase, which later can be recovered? are we going to excuse Nixon now? where do we draw the distinction between media types?
/* Half alive and half dead too, work is for suckers and the sucker is you. - "Half-life" by Local H*/
Eventually, the governing power will become too corrupt for its own good, and will start passing intolerable laws. Then we will have to rise up against them. But right now, the governing power has not been given the tools to smite us down. We are free, for now.
"Ancillary does not mean you get to rule the world." --U.S. Circuit Judge Harry Edwards, speaking to the FCC's lawyer
Ok, after reading through the proposal, it just seems that the guy was confused with what the delete key means. So because it doesn't do what he thinks it should do, he wants everyone to go change how applications implement the delete key. Last time I checked, the delete key is just a key on the keyboard and it can do whatever the applications programmer wants it to do. If I write a program that uses the delete key to bring up a menu, that's perfectly fine and I see no problems in doing such a thing. By no means should the key that happens to be labeled delete have only one function. That would severely undermine the usefulness of computers if each key could only do what it's told.
It seems to me that the real problem is that people are just uneducated of what the delete key really does when the user "delete's" a file. There are programs out there that will really delete files completely for you, so the option is still there. There is no reason why everyone should make the default behavior one way or another, let the user decide by educating the user of his or her options.
"Should there be a statute of limitations on being a jerk?" he asked. "Maybe the answer is no. I thought I would toss [the idea] out."
andRecognizing that anyone is entitled to make a mistake or to think a less than perfect thought,
I get the feeling this judge personally offended someone via email then that someone found out about it later on. Clue to judge... a person will always be a jerk until they change their attitude.
<CONSIPRACY MODE=ON>
:-)
This is just a trick to show that all criminals use Linux because their boxes don't crash and incriminating material never vanishes...thus Linux must be the evil tool of criminals and hackers (oops, I mean crackers). It must and shall be eradicated!
</CONSIPRACY MODE=OFF>
Ahhh...the great dumpster continuum. Many a free computer will be found there. -- sowth (748135)
I think that's a good point, actually. I wish people would pay more attention to how easy it is to fake emails, dates, and generally everything on a computer. It provides plenty of reason to simply deny anyone using computer evidence in a court of law. It's too easy to fake dates. Without some form of agreed-upon date and time stamping mechanism, it will always be so. I know that if I were ever taken to court on the basis of electronic communications, I would simply pull out my programming tools and fake emails from the judge and jury in the courtroom saying all sorts of uncomplimentary things. What we need as a digital society is some sort of central clock, with a public-key encrypted stamp on it so that it can be verified as a genuine date from the real clock. It would have to be completely open, not under the aegis of anyone like the FBI or NSA.
One day I feel I'm ahead of the wheel / the next it's rolling over me / I can get back on / I can get back on
I noticed the other say that Gnome Terminal has an option for "Secure Keyboard." How does this fancy little option play into a more "secure" delete key?
I honestly don't know that much about that the secure-keyboard option even does, I'd assume throw a small crypto on things somewhere in between the I/O of the ps2 port and the terminal.
from their own ignorance?
As soon as they pass a law to 'make delete mean delete' someone will demand that they have their files/emails be recoverable. I agree with the spirit of the judge, but realistically, the problem has never been the software. It's the user. Don't try and make the software idiot proof (insert your own idiot cliché here). But teach the helpless ignorant bastards how to zero fill their own drive and the reproductions of their actions.
What about archiving? Does this mean that when I delete my e-mail it is gone forever? I would assume that. If that's the case, the mail would have to be removed from the archives as well in order to make it completely gone. Would this mean that "legally" sysadmins couldn't make backup archives of e-mail and user space too? This would imply that a MORE redundant raid system is the only legal backup...no more tapes.
Create several large files (to fill up the HD within epsilon), overwrite them several times with random data, and "delete" them.
Epsilon?
For example, I should not be allowed to make my own public mirror of slashdot, completely disregarding Taco and all the poster. Neither should google. I could make a script that would collect the data "randomly" (with a surprising accuracy), but that should not be a concern.
Ignoring privacy should be a crime, not a business model.
Save your wrists today - switch to Dvorak
The judge quite clearly states, "perhaps six months for an isolated message." Isolated, not part of a larger, longer investigation.
And a little further on:
"If, to the contrary, there was an objective continuation of the challenged conduct, or a continuing pattern of wrongful acts, the cyber statute of limitations would be tolled as any other."
Just as people can get shredders to destroy their paper correspondance, there are some softwares that you can get which make your deleting much more permanent. What it does is hash and scramble the content of your file several times before finally deleting it. So while there might still be some way to retrieve the file chances are that what you can read from it has no sense at all.
:o)
Now for e-mail it's another story but I'm pretty sure that the same process could be implemented in a mail client. Anybody looking for a cool project to do?
"When I was a little kid my mother told me not to stare into the sun...
"If liberty means anything at all, it means the right to tell people what they do not want to hear"
Do we have any copies of the first electronic communications from 30 years ago? No. Why? The media broke down. Ya, do we have books from thousands of years ago? Oh hellz yeah
If there's a statute of limitations on electronic communications, is that implying that email is illegal in some way? ^^;;
--
Peace,
Lord Omlette
ICQ# 77863057
[o]_O
"Never put anything on a computer that you woulnd't want to see printed on the front page on the New York Times."
- Covert Charlie
From a practical standpoint, it is incredibly simple to forge a timestamp. If this document is about to "expire", I could just update the timestamp (touch for instance).
The only practical way I could think of in the 30 seconds I devoted to making this work is through a trusted third party that stores timestamps in a secure manner, and can be used as a reference. But don't expect people to have a third party stamping mail for them. I certainly wouldn't trust this 'generally trusted' party.
-----------------------------------
Date: 04-05-2000
Original message:
FsCK ALL YOU YOU
-----------------------------------
for some among us, including myself, to say that technology should result in shorter copyrights--acknowledging the quick obsolesence of digital media (e.g. 8 bit game ROMs, C-64 software) while simultaneously demanding new rights against discovery because a particular medium (e.g. email) happens to be digital.
While different in scale, this idea sounds to me a bit like a law that would disallow introduction into evidence of a written plan for a murder, because the defendant had attempted to burn it. And if it was burned, it should stay burned.
While the idea is massively flawed (wait six months and you get out scot free?) it has some interesting overtones. Possibly what is more interesting about it is information that has become part of the public domain by dint of the way the information is passed.
For example, an email message will never really disappear, even if the reciever and sender both delete it. The email server is backed up, and you probably have the stuff backed up on a separate computer in your office that you don't even know about.
So unlike the old days of a letter only likely having two parties, anything you send electronically is almost by definition in the public domain.
Interestingly enough, the mail has always been very protected. ...the whole "its a federal crime to open someone else's mail". At some point there will be a higher emphasis placed on protection of email.
I think what the judge is speaking about is not email used in the commission of a crime, but mail NOT used in a crime; email used instead in strictly the expression of ideas. And those ideas may become out of favor.
Again, history is replete with examples of this, just think of the blacklisting of folks who took an interest in socialism during the 40 and 50s. McCarthy used everything he could find against them, including old notes and roll call lists.
In my opinion, what he is speaking to is not something that is strictly found in electronic communication, but of all forms of communication.
My sense is he fears what we now refer to as "thought crimes", and while I think the spriti of what he is saying is great, there isn't much we can do legislatively, except for making some kind of admonitions against using old information without the author's permission. Unfortunately the folks most likely to punish us with that already have ways around any law like that: The fourth estate can always use first amendment protections to take illegally gained email and publish it (though some of the tobacco stuff has been interesting on this); and the government has the power of the subpoena. So basically, its a great core idea, but not a practical solution.
A sig?!? I don't think so.....
oh, no! I said something funny and got modded down... if only I could delete it... damn, this delete key doesn't work.
How many e-mails were used during the Microsoft vs DOJ trials? How much information was gleamed from dated sources that really did help the prosecution. Remember, with corporations, discovering and prosecuting a crime are rarely speedy things.
If something stated in an electronic message contains enough wrong doing to prosecute the sender... why should we invalidate this due to time.
Is there a statute of limitations placed on real letters and internal memos? If not, then why should we pose additional restrictions on electronic messages.
As far as delete is concerned... the function of the delete key is not the hardwares fault... it simply a scancode of numeric value that is sent upon keypress. The interpretation of that scancode is left to your operating system. Sooo... if you don't like the operating system... you may need something that better suites your needs.
"You should always go to other people's funerals; otherwise, they won't come to yours." -- Yogi Berra
He wishes he was the language police and since he's a judge, he thinks he knows everything.
The meaning of words changes over time. In the context of computers, the word "delete" has a very specific meaning.
This comment from the bench speaks much more about the madness of our current judicial system than it does about computers or programming.
I understand what the judge is envisioning, and I have to say that I agree with it and I disagree with it. (I love duality...)
/.), those records should be available for as long as the administrator of the site sees fit.
I don't like it because it is possible that a crime could be commited where the only evidence is in a digitally signed email sitting on some guys harddrive. If a statue of limitations is passed on the admission of emails (or other digital documents) into a court of law, that effectively changes the statue of limitations for crimes to 6 months if the only evidence is an electronic message. For instance, murder has no statue of limitation, but if the only evidence is an email... well then the statue of limitations suddenly becomes 6 months. I don't know if I like that idea.
There are also aspects of this idea I like. I like the idea that correspondence not meant for public consumption will not be legally admissable after six months. We all have said things in private that were stupid and that we regret later on.
Either way, I think that this should only apply to personal correspondence. If someone posts to some type of public forum (such as
We have to be responsible for the things we say in public.
What a bad idea when it comes to businesses who make thier living online. There's no real boundry set here for the ideas - just the other day, it became 'legal' here in the US for an electronic signature to become a legally binding contract. This includes web forms, faxes, and yes, email. Now, if email becomes 'null and void' after a 6 month period, then what the heck... it kinda makes that worthless!
However, this gets into another debate - why should there be a difference between something you write in a magazine in the real world (or any other pen and paper medium) and email? You are held responsible in the real world for your actions, and I really do believe you should be held responsible for the crap you do on the Internet. Why should it be different?
Davis Ray Sickmon, Jr - looking for something to read? Check out my three free novels at MidnightRyder.org
I didn't say that I'm already a martyr or a hero, I said that I'm taking action which might lead to one of those. Take off those blinders and read the post without alternating glances with your gilded, titanium bound copy of "Kernel Hacking, 5th Edition."
"Ancillary does not mean you get to rule the world." --U.S. Circuit Judge Harry Edwards, speaking to the FCC's lawyer
I have a program called eraser that does a guttman (sp?) wipe of any files you don't want read. it does 35 wipes of any file you want of hd free space. Nothing that I know can recover that. And if I wanted I could make it do as many wipes as I like. (Let's see the feds recover that file I ran 255 wipes on)
First, a point of clarification. It doesn't look as though e-mail that one actually sends qualifies as "deleted." It sounds like this proposal covers the draft that you wrote before you sent it (the one in which you referred to your boss as "that pompous windbag") which currently might be used against you if it was found on your computer (even though you removed the phrase in question from the version you sent).
On a related note, it would be great if deletion were just as simple as emptying the trash bin in Windows every now and again. However, a lot of incriminating data can be found in the nooks and crannies of file formats like MS Word (yes, I know this wouldn't be a problem if we all used Linux or BSD but we don't). Your non-incriminating copy of a file might still contain a buffer full of incriminating text that you had carefully erased.
My personal opinion on this sort of thing is that it really depends on the nature of the crime. If one actually hurts someone, deleted information relating to that should be fair game. However, if the act of deletion makes the data harmless then it should be ignored. For example, if I write an e-mail message to a co-worker that could be construed as sexual harassment, but I cancel before sending it, it would be unfair to use the leftover draft of the unsent message to demonstrate a pattern of harassment. Similarly, if I write a letter in MS Word and delete a paragraph about how the recipient and I should kill my husband, but I delete the paragraph before I print and mail the letter, the file recovered from my hard drive should not be used as evidence of conspiracy to commit murder. The key question seems to be does deleting the data effectively reverse the intent behind creating the data? If it does then one shouldn't be held accountable for it, but if not then it should be fair game.
And, of course, "I did not have a first post with that web site."
hymie
I dissent.
1) This is a recipe for disaster, where one can spend even more money litigating the virtual ephemerality than one spends on discovery. (We already spend more money on discovery than we do in preparing trial materials on the merits.) Still further, we can defeat this by simply replacing archives with "deletions," knowing that we can recover the data if we want it, but defeat discovery by claiming it was "deleted." Rather than create legal fictions in lieu of reality, why not simply put on those who intend to destroy things the burden if doing it well?
2) Even if it were practical, why are we treating discarded information differently from other non-discarded information? Why should we be permitted to go into the deep archives of a building to find smoking gun memoranda long thought destroyed, but not into the interstices of a hard disk?
3) It would be one thing to say, "no, we won't permit discovery." It is another thing to create some special-purpose exception to an exemption to a rule, knowing the rule to be filled with unanticipated consequences.
But the real problem I have with this proposal is more fundamental -- the proposal has the effect of concealing the truth without any other clear benefit.
It rewards a guy who meant to conceal some truth, probably reliable evidence in view of the effort, by concealing it after he screwed up in trying to destroy it.
There exist a host of rules (materiality, hearsay, best evidence, the exclusion rule for profits of an illegal search) during legal proceedings that keep evidence from finders of fact, but those rules tend to support other policies, such as reliabiity, civil liberties, and even oxymoronic judicial efficiency.
This proposed rule exists solely to make relevant, reliable evidence inadmissible. That doesn't, at least to me, seem just.
SuperID
I know I've gotten into the habit, on my Win9x system, of using either PGP Wipe or Norton Utilities' WipeInfo to delete files that I have even the slightest concern about. Both also give you the ability to "securely" wipe free space on your drive, which I also do occasionally. I hate the fact that I even have to worry about it. But there have been enough incidents of little things coming back to haunt people that I'm not going to chance anything. I particularly do it at work, since so many companies have the potential to track what you do. I'm not going to give them anymore info than I have to. :)
The idea here is to protect corporations and government agencies, not citizens. If there's something on my hard disk that they want for whatever reason, they'll do some handwaving and get it, because laws are selectively enforced. This idea is presented as if it might help the little guy, but its transparent intent is to immunize institutional criminals, the Firestones and the White Houses, etc.
Disclaimer: It's All Been Said Before.
If you said something via email, you said it. It doesn't matter that it was via email. Email is just as valid a form of communication as anything else. Why do you support trying to make internet communication "less real" and "less important"?
Does this judge really not realize that there are tons of nullifiers out there? Even randomize-nullifiers exist. If you do things well, you can't recover a deleted file. Just remove the filesystem entry, nullify it, write a few iterations of random data and nullify it again. There's no need for this nonsense!
However, stupid people like the judge DO need a recycle bin to keep them from destroying important documents.
As for the e-mail stuff, I agree that one shouldn't be confronted with stuff from years ago that is out of contest, but if we were to find an e-mail right now from O.J. to his lawyer saying he did it, would we ignore it? I don't think we should!
I ordered it from one of those stupid "Things You Never Knew Existed" catalogs, as I recall. It's not a real keyboard key, it just looks like one. I stuck some tape on the back and now it's an integral part of my day: Won't compile? PANIC! Memory leaks? PANIC! Boss wants to see me "for just a minute"? PANIC!
--
An abstained vote is a vote for Bush and Gore.
Non-meta-modded "Overrated" mods are killing Slashdot
(Hey Ryan! Here's your proof!)
I'm not sure that I've really liked the practice declaring perfectly good evidence "inadmissible" in court - the idea that a rapist, murderer or CEO could be legally freed (and immune to further prosecution for that crime because of the double-jeopardy rule) because the judge or jury has to "ignore" a real piece of evidence really annoys me.
It seems to me, that if even if the evidence was collected illegally, as long as there is a high degree of confidence of its authenticity (e.g., the law enforcement hasn't cooked it up to try and frame the suspect), then it should be used.
_BUT_, the individuals responsible for collecting that evidence illegally should be punished in proportion to the manner that the illegal collection was performed (if they tortured a suspect for instance, then they should be charged under a criminal offense like anybody who tortured another person).
Not sure what to do if you're not sure who collected the illegal evidence (anonymous tipsters) though.
I am currently suing a former employer. The statute of limitations on the action is 1 year. Some email is critical evidence to the case. The SOL should be a minimum of 1 year to conform with the SOL on any possible complaint that might rely on the email as evidence.
Frankly, I think the guy is an idiot. Some lawyers have this wild hair up their collective butts where they get to be judges and all of sudden that start "making policy from on high".
A bunch of egotistical bullshit in my opinion. Email doesn't need a SOL. The case it's related to has its own SOL. If you have a case you have evidence. If the case can be brought to complaint within the statutory time frame then all evidence should be valid for that frame.
Friggin' lawyers....
This is different from legislating Pi to be three, how?
The electronic record exists. Cope.
What needs to happen is not a change in evidentiary procedure, but a shift in western culture. When juries and judges are themselves familiar with what their own electronic traces are, then they will view the electronic traces of others in more reasonable proportion.
-*- Any technology indistinguishable from magic is insufficiently advanced -*-
One day at Iowa state, while leaving the den o the quantitative geneticists (I worked for one of them) in Kildee hall, I noticed a bit of plastic on the floor. As I got closer, it turned out to be a computer key. And sure enough, it was the escape key, which had taken its mission a bit too seriously.
I found it hysterical, but realized that there were tragically few people with whom I could share my amusement . . .
A company called Disappearing, Inc. has a solution to the email problem. It's somewhat convoluted and requires you to be online to their servers to read email sent using their encription. If you're willing to put up with the hassle, they allow you to send an email which becomes unreadable after a time period you specify. Basically, they encript it and store the key on their server (just the key, not the message). After the set time period, the key is deleted and the message is unreadable (without serious cracking). The recipient must be online to read the message (has to be able to access the key) but doesn't need to install software.
/. or Ars Technica). They are a private company and, depending on your level of paranoia, may be up to no good. Their business model seems to be aimed at selling the server software to businesses; providing the free net-based service as a come-on.
I don't work for Disappearing (I think I found them through
--
Yes, it's true. This man has no dick.
Correct me if I'm wrong, but I thought saw something in the news recently where a software company is releasing a product that will permanently erase data from your hard drive when you want it to. If you recall, when you delete a file, all that is really done is the link in your FAT on the hard drive is erased, not the actual file. So the file still exists, but your computer just doesn't know that it is still on your hard drive. This really wouldn't be all that hard to code... instead of erasing the FAT link, write dummy bits over everything in the file, then erase the link in the hard drive's FAT... problem solved. Don't let others solve your problems if you can solve them first :)
...pick up your things, walk out the door, and go home. Take a nap, think about things for a while, not important things, relaxing things. Feel all thoughts that you have about any "central authority" drifting away. It's important that you understand that we can never trust you again, but don't let it get you down, another couple weeks of rest and you might function normally again.
"Share your knowledge. It's a way to achieve immortality." -- Dalai Lama
Instead of a trash bin it would be a shredder and you can set the time of when the files would be atomized completely. Thus there wouldn't be any evidence for authorities to find in the first place.
Now, is this something we really want? I don't know. But I do suspect tech criminals already scramble their files.
This is not the way to build a lasting empire.
It's a nice idea. It caused me to reflect on all the times I haven't posted on USENET or other places under my own name for precisely the reasons he's mentioned. Fear of my words coming back to haunt me (due to technical inaccuracy or being taken out of context, read by a future boss, etc.) has definitely led me to post less at times. Then again, maybe this is a good thing. ;-) But I agree; lack of a time horizon for computer-mediated communications definitely leads to self-censorship, something we should be wary of.
--LP
Comment removed based on user account deletion
Wait just a second! Did anyone tell him about Murphy's eLaw? What? No body told you, either?!
Murphy's eLaw #1
The files you thought you deleted (i.e., your browser history, old highschool love letters, and other such atrocities) never really go away. In fact, alot of times they get printed on WAN printer on the other side of town!
Murphy's eLaw #2
The logs for your server can never, ever, be re-constructed. Even if it was you who accidentally erased it! (don't tell your boss there was no hacker!)
to be continued...
You're going to die for the cause of getting rid of carnivore? My man, there's a lot better causes to get worked up about in this world.
Comment removed based on user account deletion
...that if I commit a crime and they catch me because I left a partial fingerprint somewhere, BUT I can prove that I tried to wipe all my fingerprints away, that they have to let me go?
"The market alone cannot provide sufficient constraints on corporation's penchant to cause harm." -- Joel Bakan
After reading some replies, I have to say the Slashdotters don't Get It(TM). The judge is not saying that everyone should go back and recode. He is not saying that if you threaten someone then actually do harm to them, that after 6 months it would be inadmissible. What he is saying is the law should recognize that people are imperfect and that email is not formal correspondence. Email should be treated as a passing conversation. Sure I may threaten you in an email, but there is no way to tell from a printed word that I was joking. If I really did have a problem and the threat was serious, then there would be some sort of physical, real-world evidence of that to back it up. For example, maybe I'm stalking you, leaving threatening phone messages, egging your house, etc. The point is there will be ACTION to tie it all together. What the Judge is trying to stop is that I jokingly threaten you in an email, then years later that email is dug up out of the blue and used to charge me with attempted assault with no other evidence to back it up.
There are two ways to match reality with expectations: bring reality closer to expectations (through legal and/or technical measures), or bring expectations closer to reality (through education).
Certainly it'd be nice to be able to permanently delete some things sometimes. But in general, it might hamper the industry if we force them to implement everything the user expects (and burn tax dollars for enforcement). Alternatively, the government could simply educate the user as to what's really happening, and explain to them how to get the desired results if they still deem it necessary.
This is one nice feature of a sensational press. The wider the gap between expectation and reality, the more of a scandal it will be when the press exposes it. So the press is encouraged to work hard to find the widest gaps and "educate" the citizens about them. And the citizens don't end up paying taxes for strict enforcement of relatively minor gaps. They just "pay" by viewing advertisements, and they only "pay" for the things that really matter to them.
--
<parody>
In a related story, prominent Silicon Valley computer engineer John Q. Programmer has written an article that legal briefs, should be brief.
Mr. Programmer has written, "Too long have we be burdened by misnamed legal 'briefs.' Brief should mean brief." He went on to write, "I am proposing a technical solution to this problem, we should develop a data structure to hold all legal briefs in a data field of char[256]."
</parody>
Well first off the judge didn't do his homework. Its not like there's some switch that can be flipped and all of a sudden the memory where a file was stored is filled with zeros when its deleted. The idea of just altering the record that points to where the file was in memory is engrained into almost every filesystem on the planet. We would need to change code in the filesystem to do a "real" delete and that would take time and effort. I kinda doubt this judge wants to do it. Also, even though its been brought up before in parts...people who really want to delete things permanently know how to do it. If you don't know how...then don't keep anything incriminating on your hard drive.
This is a horrible idea. It's just like making reverse engineering illegal under the DCMA, since technology is so advanced. Or making certain frequency listening devices illegal because some cell phones don't encrypt their communications. Legislation is no the answer. Legislation is the problem.
--
--
He lives in a world where those who do not run the client software of the omnipresent meme are unacceptable.
Insert will insert
Delete will delete
Enter will enter
Escape will escape
but what about Return, what about Return
Space will make space
And a Tab will tab text
Shift will shift your stuff
but what about Return, what about Return
Control will control something
Meta will do whatever
Caps Lock will lock our caps
but what about Return, what about Return
Home will get you home
End will put an end to this song
F1 will certainly help you
but what about Return, what about Return
PS. Speaking of which, what should Break break, and why doesn't Scroll Lock locks the scroll?
You can't handle the truth.
Could the government have made as strong a case (or any case at all?) if there were a 6 month statute of limitations on e-mail?
And I could sure go for that Tab right about now...
Aren't you supposed to just push OPTION-1 or soething like that?
Glückwünsche, haben Sie Slashdot ermordet, indem Sie zum korporativen Druck beugten und Subskriptionen einlei
Comment removed based on user account deletion
The implication presented to me was that by deleting my email, I was hiding something.
So the next time you hit the delete key, remember that a lawyer might ask you a year after the fact why you hit it, what right you thought you had to hit it, and what you were trying to hide by your deletions.
And me? I just continue to do what I've always done -- whatever I feel like doing minute to minute. If I change my pattern now, hell, I might be guilty of something. Can't evidence that!
But didn't features like "undelete" and "undo/redo" get added to software because people wanted the possibility of taking back something they did by mistake?
Doesn't good user interface design specify that users will likely hit, for instance, the "delete key" by mistake, and thus that the option to undo this decision is a good thing for user satisifaction?
--craig
I use it to wipe my browser cache and history folders..... just because I can.
1. I'm pissed off at someone and write an insulting and scathing letter to them. I save it to the hard drive.
2. After a few minutes, I calm down and "delete" the letter. I then write a new, more civil, letter and send it.
3. After a few months, my relationship with the recipient degrades even further. They file suit.
4. During discover, they sopoena (sp?) my computer and discover the original ("deleted") letter. The letter I never sent.
The question is, should that "deleted" letter be used against me in a court of law? The judge is saying, "no", it's the same as writing a draft and tossing it into the trash.
I have no idea what most slashdotters are rambling about.
What determines how old it is in a relevant way is..... THE TIME YOU DELETED IT! Sheesh, people are acting like he said that after 6 months your email or file or whatever vanishes. No. After you DELETE it, 6 months from then no one can come digging around and find its magnetic traces. If you still have the email i sent to you saved, then yes it's perfectly admissible.
But we're not just talking emails. Any files. Your personal files. If they were on paper they could be destroyed to the point where they are no longer evidence. This is not possible with electronic documents. But the law can treat it as if it is.
Say someone writes you a lover letter, completely out of the blue. Several, and they wont' stop when you tell them to. If they're on paper, you can burn them when your wife's divorce lawyer tries to take a look at them. But not if they're electronic. Not everything that LOOKS incriminating actually indicates a crime took place. There are other valid reasons for not wanting others to look at them.
And what many people are proposing is that the law is fine, because they are personally skilled enough to delete their files. So when did technical skill start to mean that you have more legal rights than others?
And of course the file may not be yours. Ever bought a used computer? Sure you may have reformatted the hard drive. But what if the former owner had all his KKK letters and kiddy porn on there? Well to the cops it will sure look like that should be evidence that's admissible - against you, whether it's yours or not. Should the sins of the former owner be visited on the new owner, even unto the 7th generation? After 7 reformats and wipes the illegal files of the first owner will PROBABLY no longer be there in readable form.
This is not just about email. And it's not about whether the key should really delete it. Its about whether the law should TREAT it as if it's really deleted. People are acting like he said that after 6 months your email or file or whatever vanishes. No. After you DELETE it, 6 months from then no one can come digging around and find its magnetic traces. If the file still exists, then this rule wouldn't apply at all.
If your files were on paper they could be destroyed to the point where they are no longer evidence. This is not possible with electronic documents. But the law can treat it as if it is.
Say someone writes you a lover letter, completely out of the blue. Several, and they wont' stop when you tell them to. If they're on paper, you can burn them when your wife's divorce lawyer tries to take a look at them. But not if they're electronic. Not everything that LOOKS incriminating actually indicates a crime took place. There are other valid reasons for not wanting others to look at them.
And of course the file may not be yours. Ever bought a used computer? Sure you may have reformatted the hard drive. But what if the former owner had all his KKK letters and kiddy porn on there? Well to the cops it will sure look like that should be evidence that's admissible - against you, whether it's yours or not. Should the sins of the former owner be visited on the new owner, even unto the 7th generation? After 7 reformats and wipes the illegal files of the first owner will PROBABLY no longer be there in readable form.
Only if the recipient deleted it on the first day. This isn't a date after a file is created. It's a date after a file is deleted.
Say someone writes you a lover letter, completely out of the blue. Several, and they wont' stop when you tell them to. If they're on paper, you can burn them when your wife's divorce lawyer tries to take a look at them. But not if they're electronic. Not everything that LOOKS incriminating actually indicates a crime took place. There are other valid reasons for not wanting others to look at them.
And of course the file may not be yours. Ever bought a used computer? Sure you may have reformatted the hard drive. But what if the former owner had all his KKK letters and kiddy porn on there? Well to the cops it will sure look like that should be evidence that's admissible - against you, whether it's yours or not. Should the sins of the former owner be visited on the new owner, even unto the 7th generation? After 7 reformats and wipes the illegal files of the first owner will PROBABLY no longer be there in readable form.
In my opinion, the rules for admitting evidence shouldn't change based on whether it's stored electronically or not. So, I think this rule may be reasonable (although I question the logic that just because you try to get rid of something, it can't be held against you ... sort of like saying that if you tried to get rid of a body and flubbed it, you still wouldn't be held responsible...) it had better apply to both paper documents and electronic. Otherwise, criminals will simply turn to the internet because of the extra safety factor.
How can we continue to believe in a just universe and freedom to eat crackers if we have no ale?
It's people like you who would be protected by this idea that delete should actually delete..... did you really now know that it didn't?
And you're running a MICROS~1 OS, then encrypt it using E4M. Save the files directly to the encrypted "volume" and voila.
Now what I want very much to know (perhaps I should ask slashdot, ha ha) is whether you can refuse to give your encryption key up on the grounds of the Fifth Amendment. Look at it this way: Your encryption key may incriminate you. But mine is a phrase of more than five words, it's not just a meaningless jumble of letters. (The longer the better, as long as it's not easily guessable, right?)
So I've been thinking, if you had a good lawyer, you might be able to plead the fifth and get out of giving up your passphrase. Keep this one in mind at all times :)
If you're on a platform that doesn't have an encrypted filesystem, then be very careful. Swap and temp files (vim creates both) will be written to your disk and will leave their traces until they have been overwritten by something else. Encrypting files when you're not using them won't help you if there's fragments of unencrypted data lying around your hard disk.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
that the entire legal system will ignore evidence of a crime just cuz we tortured it out of the guy?
.doc file it will never ever cease to be legal evidence? assuming they both say the same thing? the law shouldn't treat virtual documents any more stringently than it treats real ones, and real ones can be destroyed.
yes.
are you telling me the legal profession will ignore evidence of a crime just cuz the evidence was obtained illegaly?
yes.
now can you tell me why if i have a letter in one hand, and a word document in my virtual right hand, when i burn the letter it ceases to become legal evidence, but when i try my damndest to destroy the
What the judge is proposing is a statute of limitations of 6 months on such data. So even if it is backed up somewhere it won't be admissible as evidence
NOOOOO!!! If it's backed up then it hasn't been deleted! If rich uncle john writes a will leaving everything to his parrot, and i find out about it and burn it to get the inheritance that would work. UNLESS he had another copy somewhere. See how that's exactly the same thing here? The pile of ashes is no longer a will. The deleted file should no longer be considered a file. BUT if it exists elsewhere, then this idea would have no impact whatsoever.
And your paper shredder function may not work. The detection equipment is getting more and more sophisticated. What if you used such a program and they STILL found enough magnetic traces to reconstruct the file? You have no choice but to take it on faith that those programs will actually do what they say. Whereas if you have a physical document, you can be sure of it yourself.
I thought that formatting the hard drive turned all of those incriminating patterns of 1s and 0s to blocks of 0? Wouldn't a defrag mess it up if it was still there anyway?
Remember "Bring 'em on"? *sigh
I know, i was trying to move my computer the other day.. i kept pressing the shift key over and over, it didn't budge, so i hit it. It fell over. So i pressed return. nothing happened. i thought it might need some help, so i pressed carriage return. nothing happened. i thought my keyboard was broken, so i phoned the manufacturers.. apparently it's *meant* to be like that!!
:)
Blaa
PS, i'm sure with some thought i could have slipped the Win key, caps lock, control, and especially break in, but i have to go now..
I'm not sure the government could pass such a law. As I understand it, email has been ruled to be the property of the person owning the system. For the government to set an arbitrary time limit for people to use their property, in court or otherwise, seems like an unconstitutional taking of property. The government could not say that after a set time limit printed memos are meaningless or could not be used in court.
Suppose an employee stole some money or property from an employer, and sent an email about it over a company email system. The employer owns that email system, and should have every right to use it to reclaim their property, just as they could use company paper records.
You could try to draw a line between corporate email and personal email, but that line can get very blury. Suppose someone wrote from a personal email account to a corporate one.
I think the answer to this is to get the general public to pay more attention to privacy, and demand that their ISPs not keep any records of their correspondence. At work, if you are using your employer's email system, you will have to work out with them whether or not it will be kept private, but they are the ones paying for it, and it really isn't fair to legislate how they can use it.
In the end, it all comes down to people knowing what they are dealing with. If you are on a company email system, you just don't have a realistic expectation of privacy. On a private account, that privacy will only be there if you demand it and fight for it.
--
Its sort of like garbage picking. Getting in trouble for something you threw out. The whole point of throwing things out is because you dont want it, right?
How about an option....such as "Do you wish to permanently delete this file or save a copy in an archive"
OK,thats enough out of me.
There is so much shame in rebooting.
While its a very specialized job that takes very specilized equipment, there are ways to look at the individual magnetic sections, and tell what the charge used to be, then tell what that bit was before that, and before that, suppositivly we can go back as far as 7 changes, before its completly lost.
That's not a format but a wipe. Completely different operations. Even a wipe isn't entirely secure, though.
With magnetic media, the position of the head on the track tends to drift; so while the new value may be laid down the middle, the old bits are often still detectable off to the sides if you've got the equipment to do so.
There are other means of recovery also.
...with a Java viewer would do what you want. Put that's not security. That's fake security. Making people *think* their email can't be recorded (when it really can by anyone marginally clever) is worse than not doing anything at all.
I disagree with the judge.
First, it's just plain silly. Delete will never be delete again. The world has changed - accept it.
Secondly, it's for the good anyway. After a few nasty surprises, our culture will adapt, and we'll learn to be more careful before we mouth off. And we'll become more forgiving when someone does mouth off. I hope. -k
These concerns don't exist with computerized data -- rather, they exist, but they are not related to time. You can falsify evidence at any time on a computer, so the problem becomes securing the evidence IMMEDIATELY after the investigations begin, rather than allowing hackers to mess with your forensics. Once that is done, you can be sure of the data's truthfulness (if not its bit-by-bit integrity) over any amount of time. When you're talking about Usenet and email, this task becomes even easier, because you've got redundant copies of the data distributed throughout the world -- you can only falsify a finite number of copies.
Finally, he proposes imposing a law to make a precise and literal system ephemeral and arbitrary. This goes against the grain of what computers do, and thus philosophy should teach us that it's doomed to failure.
For these reasons, I don't think there should be a statute of limitations on computerized data.
--
It's rare that you're presented with a knob whose only two positions are Make History and Flee Your Glorious Destiny.
To the AC that called you a dumbass: It isn't always apparent that C/C++ is going to destroy a files contents, iostreams are kind of weird sometimes. One ios:: flag can make a world of difference.
-
I've had enough abrasive sigs. Kittens are cute and fuzzy.
as described here.
Basically, if you edit a Word doc with the 'fast save' feature ON, your recepient may be able to see the previous version (using 'strings' for ex). Real world example, create a doc offering someone $30,000 and save it. Then edit the offer to $22,000 and email it, they could dig into the doc and find your previous figure and hold out for a better deal, knowing you were thinking of offering more. W/ fast save, the changed are just appended to the file. I tried it and it's true.
try { do() || do_not(); } catch (JediException err) { yoda(err); }
If an executive at a company says something atrocious at a meeting - when he's speaking as an official representative of the company. Handing down policy. That's one thing. Whereas a conversation with the same executive in front of urinals is quite another and not open to litigation.
Likewise, when Bill Gates emailed folks to cut off netscape's air supply, he was speaking in an official capacity. He was dictating a corporate policy which was relevant in court. I gather that this proposal would prevent those emails from being admissible - that sucks.
I realize there are problems with leaving it up to a judge to decide in what context a message was sent. Just as an astute judge should be able to decide that if I tell my webmaster that I'll kill him if the web page goes down again. Somebody has to decide these things... that's why they call them judges.
It's the context, not the medium that's important. A casual conversation or a casual email or a casual winpopup message (super ephemeral!) or a casual anything should be viewed as such.
A policy dictating winpopup message should be treated as the serious piece of lawsuit-bait that it is.
It's the meaning, not the medium!
my livejournal is interesting and worth reading - I swear. I know everyone thinks their blog is interesting. mine is.
Note: emptying the trash also does not erase the data. Again, it just marks the files deleted, their space ready for reuse.
Even erasing the data doesn't really mean anything. Getting paranoid, the FBI and others have the technology to read your data even after it's been written over. Tiny traces of your data's magnetic fields still remain on the hard disk. Someone who knows how to get at them can get at your data anyway. The government's standard for erasing data when you are really paranoid, is writing over the data ten times (I think) with 0s and 1s before it is considered really ereased.
Here I go, thinking aloud again. Someone reach for the volume control...
;-)).
Talk to most people who consider themselves proficient computer users, and they will be horrified at the sort of thing you can find lying around on disks.
How many times have you allocated a large file on disk without writing to it and found all sorts of interesting things lurking in there with 'strings'?
There are of course many ways that users and programmers can prevent information leakage on multi-user systems this way. Erase on allocate, erase on delete, etc. However, how many word processors are in the habit of doing the same with memory, doing the equivalent of mlock() on the document pages, (the techniques employed by MS word seem to be to gobble all your memory, thus leaving nothing to allocate
I've noticed, that when we ran our product on windows NT, a simple fopen()..fseek(several hundred megs)..fwrite()..fclose() took forever, because it seems to insist on writing all the intervening blocks. Could this be a security thing (and how do I turn it off? or is it a bug).
Back to the subject, Joe public would be horrified to find that his data doesn't go away when he thinks it does. Methinks encrypted filesystems are the answer (different file, different key).
saying that the delete key should actually delete things... WTF does that have to do with how long an email can be "held against you" whatever that means.
I also must disagree with "This is an astonishingly insightful idea". Of course if actually was able to see the article (/.ed) i could comment on that instead the foolish poster of the story
I beliebe the secure keyboard option is intended to prevent other X clients from receiving keyboard messages destined for the terminal window.
For instance, if I wrote an X client to capture all keyboard events and record them to a log file and then ran the client on your X server I could log all of your keystrokes and get your passwords. This is why it's important not to allow remote clients or even clients running on the same machine but as different users to connect to your X server.
For stupid users who might not have their X set up right (or for stupid distros that have incorrect settings) the secure keyboard option allows you to lock the keyboard into that terminal window. Try it, you'll find that no matter which window is focused the keyboard events go directly to the terminal window. With that said, I do not consider the option to be an alternative to a properly configured machine. For your own safety, keep your machine up-to-date with the latest bug fixes for your distribution.
Sorry, but no. *IF* I delete it, sure, take it off the record.
But if I want to *KEEP* my mail, then it should be my right to do so, and have it remain legally real forever.
If someone sends me a confirmation that they've cancelled my order, should they be able to bill my card six months later, knowing that the confirmation is "no longer legally valid"? Total bullshit.
My blog: http://www.seebs.net/log/ --- My iPhone/iPad app: http://www.seebs.net/seebsfrac/
Right on! Just because we don't like something doesn't mean it should be illegal. Just because the MPAA doesn't like fair use doesn't mean fair use should be repealed. Just because the nerd community doesn't want their questionable pr0n and war3z to get them in trouble doesn't mean that the rules of evidence should be changed to keep that from happening.
If you mod me down, I will become more powerful than you can possibly imagine.
This Judge isnt thinking very hard is he. We will always develop a technology to recover what we once thought was lost forever.
http://en.wikipedia.org/wiki/2004_U.S._Election_c
No way in HELL should this be instituted. If it applies to individuals, it will eventually apply to corporations (and hence the military, NSA, and... Microsoft) Speaking of which, how the hell would they ever have brought up the case that they did *without* email? "well your honor.. the email here directly states... objection! that email has gone through its statute of limitations" etc. etc. etc. I'm not crazy about email staying around forever, but the benefits to freedom far outweigh the disadvantages. horos
I think this would be a useful widget, but I don't think it should be required by law. Personally, I *like* the idea of being able to retrive things I accidentally delete. It seems to me that this guy is trying to make a name for himself, or perhpas go down in history as some sort of high-tech law maker, standing up for the common man, et al.
;)
This also makes one wonder what this judge has been doing on his computer to want to do this...
--
Cognosco: (Latin) To examine, enquire, learn
Cognosco: To examine, enquire, learn
http://cognosco©datablocks©net
"Intellectual property has been overrun by technology -- get used to it! Information wants to be free, and any legal system that doesn't recognize the impact of cheap, pervasive digital storage is just pissing into the wind -- the world has changed."
"The standards that apply to paper should apply to files -- it shouldn't make a difference just because they're digital."
Exercise for the reader: reconcile the above two positions. Blush if appropriate.
(Mind you, if you have an old, incriminating email from somebody in the RIAA, it could get interesting.)
This next song is very sad. Please clap along. -- Robin Zander
Is there a statute of limitations on printed paper? If not, I can't see why there should be one for electronic documents. After all, when I threw that thing in the trash I clearly meant to dispose of it so that nobody could ever read it. But surely if it ever *were* recovered from the trash, it could be used against me.
Moral of the story: In the real world, if you *really* want to get rid of something, you don't just throw it away -- you shred it. Same with computer documents. Now, it's possible that with NSA-type technology somebody might be able to recover my message despite my every attempt to eliminate it. To me that's the interesting question: If I really took the effort to eliminate those bits but they were recovered by extraordinary means, should they still be admissible? But to simply say "Delete means delete" is as about as useful as saying "Wastebasket means wastebasket". I pity the fool who thinks that deleting an e-mail makes it go away, just as I pity the fool who thinks that throwing away a paper document means it's gone forever. (I don't know about you, but I always shred or tear up anything remotely sensitive before I put it in the trash.)
"Biped! Good cranial development. Evidently considerable human ancestry."
Essentially, the Good Judge has found a technical problem - those darn incriminating e-mails that Ollie North deleted to cover his hiney over Iran Contra were in fact still in the system. Instead of urging a technical solution "Delete means Delete", he urges a legal solution that is entirely outside of the traditions of the law.
He's not really urging a statute of limitations on e-mail. Rather, it seems he is proposing that e-mail messages that are greater than 6 months old should not be used as evidence. I think this is wrong.
It's one thing to parade the horribles such as the flamebait message you wrote years ago coming back to haunt you when you apply for a job at Microsoft's Linux division 8 years from now, but what about this: Even today, emails are being used as evidence prove the existance of contracts - I believe that proposed changes to the Uniform Commerical Code deal with this sort of thing. If you can say that the slander you wrote six months ago shouldn't be considered in court, then why should they admit as evidence the e-mail from Bill Gates offering you shares for coming over to the dark side?
Also, why should the law ignore old e-mails when it embraces old letters? Heck, under the "ancient documents" rule, old documents can be admitted to evidence over hearsay objections.
If the judge wants to protect us from our old messages, then our legislatures to pass laws to compel OS and application publishers to provide a secure delete function.
144l. ph34r my 133t l3g4l 5k1lz!
Forget the delete thing - that's unlikely to be technically practical.
What we should hold on to is something you said a long time ago shouldn't be held valid forever.
People change. Some get wiser. Some actually repent.
Digging up a private conversation and taking it as valid 30 years later is unfair.
Let's not have a hell on earth where our mistakes keep getting replayed to us over and over and over again.
Let there be more mercy - let God be the final judge for things like this.
But of course if the person repeats/revalidates the statements then that's different.
Cheerio,
Link.
Why not set the legal standard as a reasonable person's expectations of the useful length of a message? It seems to me that the problem here is that people use e-mail both for the very ephemeral and for more long-lasting purposes, and that a single standard would be doomed to failure. If I digitally sign a message to enter into a contract, I expect that message to be retained basically indefinitely. If I send my boss a message questioning the legality of a chunk of code in our software, I expect that message to cover my butt as long as the underlying issue is legally relevent. If I send my boss a message questioning his intelligence in relation to his NCAA-tournament picks in the office pool, I expect that message to be irrelevent much sooner. One of the problems with relying on events such as deletion is that this is rarely an action that I have sole control over. Programs (Word) may retain some of my deletions as part of the file for some time. System admins may back up my system in mid-stream and capture the deleted text. Messages sent to a small group, i.e. a mailing list, may be subsequently archived and made available to a much wider audience with a very different context. Recipients may delete messages regularly or store them for years on end. Rules of evidence should not be influence by these actions which are not under my control. One of the nice aspects of human to human correspondence is that the brain naturally applies these sorts of algorithms, remembering the important stuff while purging the silly. When we communicate to each other via various technological devices, paper, e-mail, telephone, we naturally assume that this sort of filtering is going on. The law should recognize these reasonable expectations just as it does with various privacy rules.
So encrypt from stdin. Duh.
TO BUY A NEW CAR WOULD MAKE YOU SEXUALLY ATTRACTIVE.