Slashdot Mirror

← Back to Stories (view on slashdot.org)

Peekabooty, Camera/Shy Released

Posted by michael on from the carnivore-go-home dept.

An anonymous (how appropriate) writer sends "Peek-a-Booty, a program designed to circumvent mechanisms (such as China's Great Firewall) limiting access to websites, has been open-sourced. It's listed as a "Beta" on SourceForge, but the Peek-a-booty website seems to encourage people to start using it." And Doug writes "PC World reports about a new tool to encrypt text with a click of the mouse and bury the text in an image. After posting an embedded image on a Web site, someone can notify intended recipients by e-mail with code words such as 'Go to this URL to see pictures from my birthday party.'"

14 of 156 comments (clear)

  1. Birthday pics? by ocbwilg · · Score: 5, Funny

    After posting an embedded image on a Web site, someone can notify intended recipients by e-mail with code words such as 'Go to this URL to see pictures from my birthday party.'"

    This product must have already been released since I've been getting emails like that for months now. "I just turned 18! Click here for hot pictures from my 18th birthday party! You won't believe how wild my barely 18 year old friends and I got that night!"

  2. er... by david_g · · Score: 4, Funny

    How are the chinese going to circumvent their firewall to be able to get this program that enables them to circumvent their firewall?

  3. That explains it! by MxTxL · · Score: 3, Funny

    I guess all those x10 ads were just a bunch of Chinese dissidents passing messages ICQ style.

  4. Free sites already foil this, IIRC by wirefarm · · Score: 4, Informative

    Long ago, I tried hosting the images for a site on Geocities or Tripod or somewhere and the HTML page on my laptop and Ricochet modem. Worked OK, but I noticed one side effect that would seem to be relevant - these sites were re-compressing the images.
    If you take a jpeg and encode some data steganographically and later the compression is changed, wouldn't that effectively remove the steganographic information? (Correct me if I'm wrong.)

    Now, if I was trying to communicate with terrorists this way, pretty much the only safe way would be to put the 'birthday pics' up on a very popular free site - no way I'd post them anywhere that had my name connected to it.

    I don't know if the compression thing is common, but couldn't something like that be put pretty transparently into "The Great Firewall"?

    Cheers,
    Jim in Tokyo

    --
    -- My Weblog.
  5. Am I missing something? by FreeLinux · · Score: 5, Interesting

    From the description at the Peek-a-Booty site it seems to me that it is nothing more than open proxies running SSL. While I understand their stated goals, the whole project seems redundant.

    First, the project assumes that the governments are using a NOT list. This is a big assumtion. I would think that control freaks like the Chinese government would more likely use an ALLOW list. A small list of governmet sanctioned sites. This would, of course, negate Peek-A-Booty.

    If the government is in fact, using a NOT list, there are already countless open proxies continually popping up all over the place. This makes me think that the whole project is redundant.

    1. Re:Am I missing something? by helarno · · Score: 5, Insightful

      Last time I checked, they used a NOT list and it was a very small list. For mainstream use, you could pretty much access anything you wanted with the exception of a couple of news sites like CNN and sometimes, NYT. The blocking was erratic though ... some months the sites were reachable, other days, they were perfectly fine. Of course, I'm sure a few dissident sites are blocked, but since I don't view those on a daily basis, I wouldn't know.

      But it's really a non-issue. Even 4 years ago, all the internet cafes I visited by default went through a proxy that pretty much allowed you to view whatever you wanted. Knowledge of how to circumvent the blocks were very common among the younger audience. I'm sure it's even more prevalent today. For China, at least, this project isn't really relevant.

    2. Re:Am I missing something? by nemesisj · · Score: 3, Informative

      Their implementation of their current firewall is very loosely implemented as it is up to each carrier in each city to do the blocking. They are currently rolling out a much improved system that will enable them to completely control and/or replace content, as referenced by several stories on slashdot. The attractive thing about SSL proxies is that they either allow SSL or deny it completely - making this arrangement very attractive. Of course, there's nothing that will prevent them from declaring this product illegal, which, unlike the US has serious ramifications if you're found violating a state security law. Additionally, they could just deny all traffic that doesn't run through their proxies. China currently mandates that a site must have approval for a site to be hosted in China. It's a small step to require companies to buy an SSL cert from China in order to reach a quarter of the world's market in the coming years. Bottom line - it will be a constantly evolving war between the freedom seekers and the freedom takers.

      --

      $45 per U Colocation Special
  6. Snake Oil by cperciva · · Score: 5, Informative

    This "steganography tool" is no more than snake oil.

    Rather than using a more advanced method of steganography, this tool packs data into the least significant bits of the image. Simple, easy, and incredibly obvious. This is to steganography what ROT13 is to encryption -- if you use it for anything important, people will laugh at you.

    In fact, this is the worst kind of snake oil, because it is not only ineffective, but also dangerous. The administrators of the Great Firewall Of China (for example) could very easily detect files encoded with this software; using it would then be akin to waving a red flag and shouting "hey, I'm doing something I don't want you to know about". Bad steganography is worse than no steganography, because it highlights the fact that you're trying to hide something.

    --
    Tarsnap: Online backups for the truly paranoid
  7. This stuff needed in USA by WCMI92 · · Score: 4, Insightful

    I can see a growing need for this kind of thing in the USA, as we allow the Megacorp cartels like the RIAA/MPAA to chop off and "firewall" so to speak, the individual.

    Remember the Napster trial? The infamous statement by a RIAA honcho "We will firewall them at their PC"? And then go read the story just below this one where AOLTW's RoadRunner is port blocking Kazaa.

    I find it very interesting phinisophically, that the net result of "Big Government (Communist)" and "Big Business (Capitalist)", when left unrestrained by civil law that is supposed to protect and affirm the rights of the individual, produce the SAME RESULTS!

    In the communist system, as China is, the governmment IS the corporation. It makes up "laws" as it goes along, always to benefit those in power. In the USA, we've allowed corporations to achieve similar results by the fact that our Congress and Presidents are passing and signing laws WRITTEN BY THEM, as the DMCA and CBDTPA are.

    Unfortunately for the tyrants, both governmental and corporate, there are a lot of Thomas Paine's in the world, and they tend to be creative people. Hence this program that lets you circumvent firewalls.

    --
    Corporatism != Free Market
  8. I propose a new form of steganography by phaxkolumbo · · Score: 3, Interesting

    How about putting hidden messages in spam? Nobody bothers with those anymore, anyway.

    Here's an example:
    ***SNORING KEEPING YOU FROM A GOOD NIGHT SLEEP ?***
    tHIs proDuct has been featureD on national tv.doEs sNoring keep you up at night?
    tired of having to sleep in separate rooMs bEcauSe of Snoring?
    just tired of being tired becAuse of someone's snorinG?
    tired of hEaring how your snoring kept someone up all night?
    There is a safe, natural solution to your snoring problem...

    And so on...

    The steganographic schema could be a bit more advanced in the production version, but i think the basic idea is good enuff for a start.

    1. Re:I propose a new form of steganography by Tazzy531 · · Score: 4, Informative

      Already available: http://www.spammimic.com/ and talked about here: Wired

      --


      _______________________________
      "I'm not Conceited...I'm just a realist..."
  9. Well... by Greyfox · · Score: 3, Funny

    Seeing as how they've been merrily spamming us for a while now, we could just return the favor, spamming everyone in china with copies of this program. Worst case, the Chinese government comes up with a solution to the spam problem...

    --

    I'm trying to teach myself to set people on fire with my mind... Is it hot in here?

  10. Re:Great... by geekd · · Score: 3, Insightful

    Lets write some more utilities so that drug runners and crazies can send undetectible messages to eachother with great ease.

    What's the difference between criminals and "legitimate" political dissidents? To the governments of the world, nothing.

    I'm sure King George thought Washington and Jefferson were "crazies".

    I'm sure the British government thought Ghandi was a criminal. They put him in jail several times.

    The price of a truly free country is that "drug runners and crazies can send undetectible messages to eachother with great ease". This has to be so that future Ghandis and Mandellas can do so also.

    Or we can just shut everybody up. Yeah, lets do that. Let's start with you.

  11. As usual... everyone is missing the point. by GuNgA-DiN · · Score: 3, Interesting
    Sure the Peekabooty website talks about free speech in China, blah, blah, blah.... Everyone here is arguing about whether the Chinese will block Peekabooty and whether it will be an effective tool for freedom of speech. But, the REAL point of this software isn't to help the Chinese -- it's to help us poor saps in the Good Ole US of A! Think about it: since 9/11 our Government has gotten more and more oppressive. They have taken away freedoms that we used to take for granted. But, if the developers of Peekabooty came right out and said: "this is used to circumvent the assholes in Homeland Security" they would get a visit from the NSA/FBI/CIA etc.. They picked an oppressive regime (like China) to talk about this tool. But, substitute the letters USA for CHINA and you will begin to see the truth.

    Another nice benefit of this tool will be the developement of secure, anonymous P2P networks. Look at all the shit in the news lately about how ISP's are cutting off KaZaa. And, how Ranger Online is tracking down Gnutella users. The RIAA/MPAA Gestapo is out to get us and take us down. New tools like Peekabooty and FreeNet will help to insure that these organizations will never, EVER shut down the free-flow of information on the Net. Peekabooty is a dagger that is aimed right at the heart of corporate America! It says: "You think you can take over the Net? Ha! Fuck you and the horse you rode in on!". This just proves to them that we can always defeat them with technology regardless of how much money they have!