Building Anonymous-Friendly Computer Libraries?

H310iSe writes "Listening to NPR today and caught a story on All Things Considered about how the FBI has demanded information on borrowing and browsing habits, including computer seizures, from 85 libraries since Sept. 11 (utilizing their new-found powers from the PATRIOT act). Similar stories (which don't require RealAudio) are here and here. The American Librarian Association is providing information for librarians to help deal with this, and it seems heavily tilted towards supporting individuals' rights to privacy. It seems like the Slashdot crowd could come up with a great library computer setup that would protect anonymity (I'm thinking about things like creating a RAM disk and loading the OS onto it). How about ways to enable people to borrow books anonymously without opening the door to large-scale theft? I bet if we offered a packaged, free, easy to install Safe Browsing computer or Anonymous Checkout program, libraries across the U.S. would enthusiastically embrace it." According to the articles, these checks can be made for any reason, not just for suspected terrorism. It seems that if the American people are going to protect their rights, they are going to have to do so actively. Is the idea presented above, feasible? How would you improve upon it?

interesting...

[graznar]

hmm i agree that the users rights should be protected. but maybe the RAM disk is a little bit of over kill. i think potentially it could be solved at a software level rather than having to reload the OS into a new location. theoretically, browsing habits can be covered easily at the software level with many programs available on the internet. i sure wish the CoDC would come up with something for this. :)

Why?

WHY on EARTH would you want to hide from Big Br... er, Our Benevolant Government? You must be guilty of something! Stuff him and cuff him, boys!

Re:Why?

[AnotherBrian]

or UNITED STATES CITIZENS of Japanese decent in world war 2?

Privacy So Important?

Does anyone really think that the privacy to look up whatever info you want is important enough to justify the fact that that privacy WILL be used by someone somewhere to take lives?

The people who built the propane bombs that thankfully didn't kill anyone at Columbine got their info off the internet. Kevin Mitnick was able to escape justice by using anonymous chat rooms. No doubt there are terrorists using it to communicate as we speak. I just don't think that your paranoia about what someone might find out about your computer habits justifies the risks that have to be taken.

Why not just accept that what you look at might be known by someone else? If you aren't trying to make bombs or Anthrax or anything, you'll be fine. To do otherwise is to put your own wants above the lives of others.

Re:Privacy So Important?

[Fat+Casper]

Does anyone really think that the privacy to look up whatever info you want is important enough to justify the fact that that privacy WILL be used by someone somewhere to take lives?

Yes. I'm sorry; yes, Mr. Anonymous Coward. I cherish my freedom, as you apparently cherish your anonymity. The price of having freedom is allowing other people to have it, too. You apparently believe that freedom is really just the freedom for all of us to be exactly like you. If we don't want to do anything that you don't like, we'll do fine. Because so many people are fucking morons, that means letting them have the freedom to saturate the airwaves with the Backstreet Boys, or the freedom to learn about explosives. We have to accept these dangers as simply the cost of doing business.

Just as my right to privacy is important enough to justify the fact that that privacy WILL be used by someone somewhere to take lives, my right to due process and a fair trial is important enough to justify the fact that due process and fair trials will end up allowing dome "detainees" to go free.

Re:Privacy So Important?

[DarkZero]

Does anyone really think that the privacy to look up whatever info you want is important enough to justify the fact that that privacy WILL be used by someone somewhere to take lives?

Given the general interest among US citizens about Islam, terrorism, and methods of terroism that has been shown through the packed classes on all three at colleges and the huge amount of hits that such websites are getting, I seriously doubt that we can say that that privacy WILL be used to take lives. What the Justice Department is doing here is policing the freedom of information and stifling an interest in the unknown and relevant. If there's a piece of evidence that will prove that someone is a terrorist, it won't be found in what books they checked out or what website they went to in the local library. And if such evidence were admissable in court, then a whole lot of curious, middle class white Americans would be heading for the slammer.

Re:Privacy So Important?

[Fat+Casper]

Uhm, whatever happend to LIVE AND LET LIVE?

That's exactly the point. As someone posting anonymously, you should understand the value people place on freedoms. I'm anonymous here, too- just try to email me- you can't.

I want to be able to act freely, to do as I please without cops looking over my shoulder all day, without every store I go to collecting data on me to be used against me by marketers, cops or people who just don't like me. Wanting to live and let live involves accepting the risk that some peoples' actions will be perfectly legal up until they unload a gun in a subway car or a fast food joint.

I'll live with that. The only way you can live a life of perfect safety is pretty damn boring. Government spying and "detaining" doesn't allow any of us much of a life.

Re:Privacy So Important?

[rhakka]

Whenever I see a point of view this blatantly ignorant and shallow I weep for the american people, including myself.

So basically what you're saying is, because a few people might die, that the hundreds of thousands, perhaps millions, of people who died to free this country and give us civil liberties in the first place, every person who ever fought for equal rights in the face of a heavy handed government, everyone who believes that freedom is WORTH dying for, has lived their lives in vain.

News flash, we've killing more civilians at this point in afghanistan "defending" our freedoms then the terrorists killed in the World Trade centers. And at the same time, you advocate giving away the very thing we should be protecting?

Value security over freedom and you buy it at that price my man. Thanks, but I'm not buying.

Re:Privacy So Important?

[idontneedanickname]

If you "aren't trying to make bombs or Anthrax or anything," then why are you posting as Anonymous Coward?

Re:Privacy So Important?

[zCyl]

Terrorists, child molesters, identity thieves and countless others use our PUBLIC computers to commit their crimes. Make the bastards have to buy their own computers.

By this same logic we could stop murder by putting a tax on knives and guns. Criminals use whatever means are available to do what they want to do. If you want to battle terror, your best bet is to start addressing where the motivation for it comes from (which is actually a complicated issue and could take you a lot of research). You won't get anywhere by changing library policy.

Not so much for hardcopy books...

[duck_prime]

... but the library could have a service where they download a book into your eBook or other reader, set to expire when the book is "due".

If their software doesn't keep records -- which they won't have to, as "overdue" downloads remove themselves -- there is nothing to subpoena.

That said, my borrowing habits are innocuous enough that I'm having trouble mustering a lot of outrage over this whole business.

Re:Not so much for hardcopy books...

[Fat+Casper]

That said, my borrowing habits are innocuous enough that I'm having trouble mustering a lot of outrage over this whole business.

They're innocuous right now. Wait until your favorite author publicly supports something unpopular. Wait until these records become even more public; you'll be looking for a job and the interviewer won't like your taste in books. You could get turned down for a mortgage because the bank sees you return books late sometimes.

I don't go to the library- I buy a lot of used books. My borrowing habits are about as innocuous as you can get, not being on their records. I've still got outrage enough to spare. Wake up and muster some yourself.

Re:Not so much for hardcopy books...

[duck_prime]

That said, my borrowing habits are innocuous enough that I'm having trouble mustering a lot of outrage over this whole business. They're innocuous right now. Wait until your favorite author publicly supports something unpopular. Wait until these records become even more public; you'll be looking for a job and the interviewer won't like your taste in books. You could get turned down for a mortgage because the bank sees you return books late sometimes.

Jeez, guy, how slippery is your slope? If you read the article you'll recall that it is not about the library giving this information to banks and employers; it is about giving it to the FBI if they have a warrant. Yes, it is one of those PATRIOT Act super-warrants (& a whole 'nother debate), but a warrant all the same. Please explain where banks and employers come in to this.

I don't go to the library- I buy a lot of used books. My borrowing habits are about as innocuous as you can get, not being on their records. I've still got outrage enough to spare. Wake up and muster some yourself.

Your comments, uselessly snide as they may be, do make me wonder about the anonymity people... do they really want there to be no consequences for their actions? If you read books about bomb making a) if you check them out of the library and expect librarians to protect you from the FBI, you deserve whatever you get, and b) have the courage of your convictions. Don't feel like you're living on the edge because you're reading a second-hand copy of "Anarchist's Cookbook" by flashlight huddled under a blanket.

If your opinions are so odious that they make people unwilling to work with you, maybe it's time for a little self-examination, eh? You live in a community, after all.

Building

[Hex4def6]

now if only we could build an anonymous-friendly slashdot, that doesn't place posts at 0.

Re:Building

[benjamindees]

That's a great idea. Posting at 0 wouldn't be such a problem if I didn't have to go in and change my browsing settings to -1 every time I got mod points. Slashdot should have a setting that says "if I have mod points, I want to browse at -1, otherwise 2".

Re:Building

[psamuels]

now if only we could build an anonymous-friendly slashdot, that doesn't place posts at 0.

Great idea! How about if we had a slashdot that let anyone in the world register for a free account without giving away any personal information except an email address, and the email address would never be shown publicly, and you could even change it to an invalid address if you didn't mind giving up certain features?

Oh, wait...

Dead Man's Switch?

[Ophelan]

Perhaps the information on the reader could be encrypted with some sort of "dead man's switch", except that it is triggered to release the information to the library in the event that the book is not returned in a timely fashion. At this point, the encrypted record is purged from the system.

Anonymous Checkout?

[cheinonen]

Maybe I'm not sure what exactly the submitter means by Anonymous Checkout, but if they don't know who checked out a book, why would anyone ever return it? I guess I'm just confused about that issue of this idea, they have to maintain some records so that they can fine people that don't return books, right?

Re:Anonymous Checkout?

[teslatug]

Instead of checking out the actual book they could check out the amount the book costs (plus some extra as a deterrent). This way if you lose the book, you pay for the amount and the book comes up as missing (not who lost it though). The same thing could apply to other materials (they would just cost more or less). The time when is due as well as overdue fees would remain the same. The problem is the software not the feasability.

Re:Anonymous Checkout?

[mother_superius]

they could forget about who had it after it was returned; there wouldn't be much of anything for the FBI to look up; they'd have to hope the person checked out something suspicious right before they checked.

Re:Anonymous Checkout?

[H310iSe]

problem is then the 'free' libraries start costing money - even if you return the book, you have to have the money in your account/credit card (if you have one) to check the book out - this would disallow many paycheck-to-paycheck people from checking out materials.

As to what I meant by anonymous checkout (or how that would be possible), I'm not sure myself, that's why I floated the question - the idea about encrypting the info and erasing it once the book is returned is good.

Re:Anonymous Checkout?

[teslatug]

They don't check if you have money in your bank account now...what happens if you lose a book now? They simply send you a bill and If you can't pay they will block your library card (I would assume since I've never lost a book).

Just purge records

[BenCaxton]

It's my understanding that a lot of libraries don't keep any records of who has checked out a book in the past. The only records kept are who currently has the book and any info pertaining to fines. The same could essentially be done with computer usage. The records of who was using a computer need not be kept past the end of a day, and the hard drive could then be synced to some disk image (I know some places already do this too, just to keep the machines working properly). I'm not sure any fancy technical solution is really necessary. If libraries are really interested in protecting privacy they can do it.

Re:Just purge records

[NiGHTSFTP]

Not quite.

I can go to my local library, go on one of the computers (the library is running kiosk mode for the non-internet computers) and punch in my #, and get a history of the books I've checked out since they introduced the new cards.

The new cards are plastic with the libraries logo on the front, and on the other side has a bardcode. They swipe the card when I want to check out a book.

Anyway.

The numbers were not given out in random :) I can also, say, add a number to mine (i.e. 12345, 12346) and it will bring up a name, along with their history.

On the flip side, the internet access is unfiltered (yay freedom!), but its been awhile since I've needed to check out a book, so they probably have installed filters by now (damn righteous parents wanting to 'protect their kids' from porn, not like they wont find their damn parents stash, right :P )

Re:Just purge records

[acidos]

We have a similar computer setup in the library for the college I work for. Each PC has a special PCI card in it that keeps information from being permanently stored on the HDD. I believe they are called Sentinel cards, but I have been unable to find a link for them. Anyone else know of them?

The card has a keyhole in the back with two settings. There is the administrative mode, in which any changes made to the computer (basically, anything written to the HDD), are saved from that point on. In the user mode, which we keep them in when we are not performing maintenance, any new documents or modifications to files are undone upon reboot. And we make sure the staff reboots the machines once a day.

We do this to make our jobs easier, keep viruses out of there, keep the HDDs from filling up, etc. But it also seems to have some merit as a privacy tool. However, I am not entirely clear on the workings of the cards. In addition to the chance of something hitting the swap space, files may actually be written the HDD and erased either on shutdown or the next bootup. In any of these cases, it may be possible to "undelete" these files if caught in enough time.

Re:Just purge records

[DrZish]

At the library where I work something similar to this happens. The only information that our computer system keeps on a patron is what items they have checked out and what fines they owe. Once they return the book or stop using a public internet station the item is checked in, removed from their record and we have no way of knowing what they have out. Now I guess someone could look at the backup tapes but we only keep a 3 week cycle of those anyways so after those are overwritten there is no way we can tell what someone has checked out. The computer system is actually better from a privacy point of view than the old system using paper cards in each book. This is because with the older paper based system the card numbers are stamped on a card which remains with the book until it is removed from the collection. Therefore, at my library at least the computers seem to be more anonomous than the old way. Of course I believe we also have a policy that we cannot release borrower information without a warrant anyways.

Re:Just purge records

[brigc]

The technology you refer to is probably Centurion Guard from Centurion Technologies. They have a hardware/software product which I'm familiar with. The hardware is a black box that plugs into the floppy drive cable (getting around the fact that some folks use SCSI, some use IDE), and then you put a keylock into the cardslot on the back. Load a software component, and Centurion Guard creates a 'scratch' partition on the hard drive.
While the machine is in 'locked' mode, any changes to the machine, including desktop, installing apps, changing screen res, whatever, get written to the scratch partition. Reboot the machine and the scratch partition is cleared, away go the changes!
Works pretty darn well.
...brig

if you build it..

[mjolnir_]

..the Feds will complain and Congress will simply mandate that any US library that receives any federal aid (ie, all of them) use a browse/borrow system that can supply exactly this kind of information.

Patriot Act, indeed. If you want to be a patriot these days, go vote in November and boot these current idiots out of power.

It's really in our powers

[cp5i6]

If you dont like laws such as the patriot act that give such broad powers to the FBI... you should have voted in the various elections. If you did.. congratulations .. if you didn't then you have absolutely no right to talk about your sense of privacy. Voting really is alot more powerful then people think it is. Granted we run on a republic. But even then we still have the power to change legislation. If the government starts thinking... "crap.. the people don't want this and I'm not going to get reelected next term" .. guess what the members of the government will do :) Point is.. I don't want to sound racist or anything but take a look at how the US intervenes with Isreal and Palenstine. Two countries with not much significance to us in the US (I am grossly simplifying and I honestly don't care about the justification that comes with "but we're a superpower and we should look after the world").. however the jewish population has one of the strongest turnouts when it comes to vote. In NY for instance pretty much 100% of the jewish population votes. Compared to like a measley what 10-40% of hispanics and asians? Anyhow this country is built on the vote. If you don't like a legislation find out who supports such legislation and put up a website to try and convince people not to vote for that person come reelection.

Re:It's really in our powers

[Dthoma]

"If you don't like a legislation find out who supports such legislation and put up a website to try and convince people not to vote for that person come reelection."

Problem. If all parties who have a reasonable chance of winning are willing to invade our privacy, then no matter who you vote for, you're going to wind up in the shit. This is especially true if you have a system which effectively consists of 2 parties.

Re:It's really in our powers

[moncyb]

You make some good points, but you are naive if you think the people have power to vote in who they want. I'm not a Republican or a Democrat nor do I believe in any of the other parties. Yet under the current system, I am forced to choose between them because of how the electoral college is run.

Originally, the electoral college meant that everyone voted for a person they thought was honorable, and that person would represent everyone by voting for who he/she thought was a good candidate for the office. Now they make it so everyone votes for a party in the college, and that party gets elected. The party chooses who to offer for the primaries. The politicians are just as answerable to their party as they are to the voters. Not to mention the fact that only the top two parties even have a decent chance at being elected.

The electoral college was meant to be a system which filters out extremists from entering office. Now it's being used to filter out non-Biparty members.

Yes, go out and vote, however realize that you aren't given many choices of who to vote for.

Re:It's really in our powers

[GigsVT]

The wasted vote argument is tired.

Just go vote for who you believe in, and it doesn't matter who wins. It is most definitely possible to lose the battle to win the war.

Re:It's really in our powers

[EllF]

The wasted vote argument is tired.

You know, the surrealist film movement that took place in the early part of the 20th century in France spent a good deal of time focusing on the idea of revolutionary failure. One of their premises was that in any power struggle situation, the weaker side (practically, not ideologically) would have its strongest arguments assimilated by their oppposition. The effect was one where the side with more might could lay claim (and thus control)to the most persuasive arguments levied against them.

Yes, the "wasted votes" point is tired - but who tired it out? Who robbed the claim "the votes of the citizens *doesn't matter*, and somebody other than the public pulls the strings in a public election" of its impact?

I'll vote for who I believe in when a man I believe in can be voted for.

Re:It's really in our powers

[DoctorFrog]

I did vote, as I have every year of my majority in this great United States of ours, although amazingly enough the office I was most concerned with last election (the Presidency) not only did not go to the guy I voted for (a chance you always take), it went to a guy most people didn't vote for. Thank you for your condescending congratulations on my vote that made no objective difference.

Being a resident of South Carolina and a keen proponent of new technology I have a view on my elected government which you apparently don't have in your home town. Specifically, I have a nonentity, Rep. Brown, who doesn't appear to represent anyone's views particularly, not even his own, Senior Senator Thurmond, whose main claim to fame is that he holds the record for filibustering (against the Civil Rights Act, I'm so proud), and Junior Senator Hollings, who is so well known here on Slashdot.

I'm registered, I'm ready and waiting to vote again. So now I've met your criteria for complaining, and I still don't think either that my vote is strong enough without constant public complaint on my part, or that I'm obligated to stop trying to improve the issues that bother me until I've solved world hunger and internecine warfare.

Re:It's really in our powers

[cp5i6]

I'd like to say it is unfortunate in this country that we happen to be primarily a bi-partisan country. But first off I'd like to repeal certain misunderstandings people have about this government. It is not American democracy that this government is built upon. This is an American Republic. We are not and will never be a true democracy because as the Greeks have shown way back when a true democracy does not work. To the person that shot back the 1st and 2nd amendment rights. The issue has NOTHING to do with the 1st and 2nd amendments. The FBI trying to grab personal information is not your right to bitch about it. If you had mentioned the 4th amendment at least then you'd be on topic. Also with the voting system. Only the presidency is voted upon by the electoral college. Not your state senators, governors, mayors and so forth. As with voting, I completely agree that it's hard to keep up with all the candidates. And I'm talking about a lower scale then the big election (the Presidency). But here's the thing you should really only need to follow your local candidates. Why would you even care about who's running in another state? In that sense you can follow just a few candidates that are running for the senate (because the senators are the ones that represent your voice in the federal government). Here's another reason why you should vote for the local offices and not just the presidency. The US government contrary to popular belief does not truly run on the "Federal" level. Each state has it's own little government, and the states government is the one that's really in charge. For example, Nevada's recent fling with legalizing marijuana. Are you really telling me that the Federal government supports this? Going by what you guys say then the voter really doesn't have a say in the issue because the "Fat Cats" have forced us to do their bidding. However the Nevada bill to legalize marijuana is gaining strong support among the voters. And if it does pass yes marijuana will be legal in Nevada against the government's wishes. Why? because this nation is built upon free states. And it's the states that make up the federal government. And guess who makes up the states? Definitely not the "elite" few in congress. They are the masses. The workers. The people who vote. For those wishing to find more information about the candidates. As ironic as it seems, the information is to listen to the candidate themselves. You hear about what they wish to accomplish and you vote for them based on that. You hear the other candidates point of view to judge and see how truthful the candidate your evaluating is. And that is why there are terms in office. If you think your candidate didn't fulfill his promise that person will no longer be around next year because he didn't fulfill his promises. Which is the main reason why Jesse Ventura (yes the wrestler) won that election. His opponent didn't bother to go with the issues and mud slinged instead. Answering questions about how the Presidential election works. It's like this... I totally agree that the two parties will choose the two candidates for you. However before those two candidates are chosen, they are actually voted upon by people who have been voted upon by the voters. Also on common sense alone why would a party put a candidate that they know has no chance of winning? The party will try and select the best possible candidate it has just to make sure the people will vote for him. Anyhow my point is this may not be the best of all systems but it does have alot of checks and balances in place. And for those of you who do vote. Then I tip my hats off becuase you guys do deserve to complain and that is the American way :)

Are you sure it's a computer problem?

[Sheetrock]

First things first, one would have to assume that the librarian and network techs can be fully trusted. If not, any library-provided computer has to be considered untrustworthy unless you bring your own laptop, in which case what's the point, right?

Respect for the anonymity of the library patron (at a minimum) needs to be codified in law. Otherwise, at any point the government can stop funding libraries that don't track patrons (like McCain's initiative that flew through Congress mandating web surfing filters) or worse.

If all these conditions are met, then if the libraries refused to use proxy logs or anything of the sort, and set up network PCs that ghosted themselves from a server (preferably with Linux) every time a patron logs out to fight trojan loaders and such, then things would go pretty well. But I don't think that it's the technology that's at issue.

Our librarian is pretty cool about these things, by the way, and probably would go for setting up something along these lines if she thought it'd be worth the investment. It wouldn't be, however, because there's still a lot of other variables that prevent such a setup from presenting anything other than a false sense of security.

Re:Are you sure it's a computer problem?

[davecb]

Indeed, it's a legal problem, albeit one that affects the computer programs. In a previous life, I worked on a library system for a well-known company in the industry. Because the program was to be sold into numerous different states in the US, we had to

1. Keep records until a book was returned or reported lost and paid for
2. delete those records as soon as the book was returned or paid for.

No other combination of rules satisfied more than a few states and provinces, so unless we wanted to customize for every customer, we had to meet the two requirements above. This means, by the way, that libraries using our software would have to manually report on books out by patron, and store those reports, probably on paper, for the courts to subpoena... --dave

anonymous borrowing

[pensano]

A borrower could get an anonymous ID number (anytime) and leave a deposit, refundable upon return, for the replacement cost of each book checked out.

The only problem I see with this is that some people might not be able to come up with the deposit -- they could use the old, non-anonymous system.

Re:anonymous borrowing

[ipfwadm]

The only problem I see with this is that some people might not be able to come up with the deposit -- they could use the old, non-anonymous system.

Oh, so anonymity is the privilege of the wealthy, and not the right of the people? How equitable.

Re:anonymous borrowing

[xenocide2]

There is a price associated with anonymity. How do you suggest we counter the liability of loaning books to strangers? The price you pay with anonymity is trust. Nobody inherantly trusts strangers for long.

Re:anonymous borrowing

[Bingo+Foo]

Oh, so anonymity is the privilege of the wealthy, and not the right of the people? How equitable.

Preach it brother! It's just like those super-scary GPS equipped cell phones that they're always using to track poor people. I consider myself lucky that I'm wealthy enough to use land lines and pay phones.

Re:anonymous borrowing

[ipfwadm]

It's just like those super-scary GPS equipped cell phones that they're always using to track poor people.

No one is forcing you to use those super-scary GPS equipped cell phones. If you don't like it, use a pay phone. No one is forcing you to use your platinum credit card. If you don't like it, use cash. And so on. On the other hand, many poor people can't afford to drive the 8 mile-per-gallon SUV that they don't have to the local Barnes and Noble and sip cappuccinos and buy a hundred dollars worth of books. For these people, a free library is their only chance to read (and that is, after all, the point of a free library - to give everyone the opportunity to read for free). Everyone on /. seems to believe that privacy and anonymity are a basic human right, but then the original poster turns around and implies that no, those things are just a privilege of the wealthy. Personally I don't give a damn if Big Brother knows what I read, I'm just pointing out the hypocrisy in the argument.

Re:anonymous borrowing

[ipfwadm]

How do you suggest we counter the liability of loaning books to strangers?

Simple. I suggest we don't loan books to strangers. I wasn't the one advocating anonymous borrowing. Personally I think the solution is for libraries to just destroy borrowing records after the book is returned. I have no problem with libraries keeping historical data on how many times a book was borrowed, but there's no reason they should keep individual borrowing histories. And from other comments, it appears as though many libraries already use that policy. Anonymous borrowing is totally unnecessary.

Re:anonymous borrowing

[Safety+Cap]

If you don't like it, use a pay phone. No one is forcing you to use your platinum credit card. If you don't like it, use cash.

You don't really have that luxury of choice any more: already most of the pay phones around here are gone. The phone company says they aren't getting enough revenue to justify maintaining them, so they are ripping them out.

Some businesses do not accept cash anymore, or very reluctantly. Try renting a car or getting a hotel room with only cash. How about paying for a resaurant meal with a cheque?

Re:anonymous borrowing

[ipfwadm]

Some businesses do not accept cash anymore, or very reluctantly.

I have NEVER encountered a business that does not accept cash. As for renting a car or getting a hotel room, I have, with cash, no problem.

How about paying for a res[t]aurant meal with a cheque?

Checks aren't anonymous. And besides, I understand why businesses are reluctant to accept checks. You never know if one will bounce (as opposed to credit cards, which nowadays are verified instantly).

Re:anonymous borrowing

[zenyu]

And from other comments, it appears as though many libraries already use that policy. An onymous borrowing is totally unnecessary.

I've never worked at a library that kept the records for long. But most books aren't checked out very often. Sensitive books are mostly read in the library so your record could easily be kept for 10-15 years even if they only keep a record of the last person that checked out the book. I shelved Mien Kampf every 6 months or so but it hadn't been checked out in years. I was only one page out of 4 in the branch so it was read every 6 weeks or so.

They kept the last person checking out the book in case it was reported damaged by the next patron. Of course an expiration date on that would have made sense since you can't claim someone who had the book two years ago damaged it. But libraries subsist on donations and usually a stipend for salaries, and sometimes building maintenance. Large city libraries purchase books, but them smaller ones rent them or get the donated. If you ever checked out a book with a green label it was probably rented. Sometimes this is just the new fiction.

Unless it's a large city library the tech department is probably funded by grants from private foundations. Sometimes they get some government money from sending books to a scanning and pulping operations, but only if they have enough rare books that it's worth the effort. Their buildings are usually something that was condemned or abandoned. If it's an East coast and nice looking that's explained by the robber barons that established them a while back. The foundation is generally bankrupt but may still restrict the actions of the library for good or ill.

The library is unfortunately a dying institution. They can't even lend out software. And their efforts to offers to lend scanned books online can only apply to books printed before 1850-1925 depending on when the author died. Hours are constantly cut back in even the wealthiest library systems. By now there should be 24-7 libraries.

If I ever fund a library it will be open 24-7, foundation supported and have not be allowed to accept any operating funds from any government.

Re:anonymous borrowing

[Niten]

I believe that, rather than being based on any such belief that anonymity belongs only to the wealthy, pensano's statement was just one good thought being put out on the table, so to speak.

Furthermore, I do believe that pensano's idea is a very good one. This is exactly the type of system that would ensure the anonymity of library patrons - it relies on neither the staff of the library nor the library's computer administrators to keep the logs in check. It rules out the theft of books (at least provided that the books in the library would be easily accessible from some book seller, such that a thief would not experience any net gain for stealing a book due to the difficulty of acquiring such a book by conventional means - perhaps the deposit should be about 125% of the price of any given book, just to ensure that the library can only gain a net profit through the theft of its books). And as for the issue that patrons of lower economic standing may not be able to afford the price of making such a deposit... it is entirely possible that the government or even local charities would be willing to make one-time donations to qualified patrons that would give them the money they would need for such deposits.

This idea seems to be one that deserves serious consideration in the near future, for the sake of our right to read.

Re:anonymous borrowing

[ipfwadm]

it is entirely possible that the government or even local charities would be willing to make one-time donations to qualified patrons

How can it be determined who is a qualified patron if that patron is to remain anonymous?

Re:anonymous borrowing

[Niten]

How can it be determined who is a qualified patron if that patron is to remain anonymous?

Easily. Read it again.

What I am saying is that a charity may determine who is qualified to receive such aid in a non-anonymous manner; what needs to be anonymous is which books what patrons read. So Charity X gives Citizen Y a one-time donation of about $65 in cash for use as such a deposit. This is not anonymous, and for our purposes doesn't really need to be. Citizen Y can then use this charitable donation - anonymously, and as any citizen with higher economic resources would use his or her own money - to make the deposit for a book.

I know, this isn't perfect - such a charitable dontation could be easily abused, though if such a donation needs only be a one-time donation the potential for abuse by any one library patron is somewhat limited. It is just a thought.

Re:anonymous borrowing

[awol]

The only problem I see with this is that some people might not be able to come up with the deposit -- they could use the old, non-anonymous system.

Oh, so anonymity is the privilege of the wealthy, and not the right of the people? How equitable.

For anyone reading /., the replacement cost of a book as a deposit is no impediment to anonymity, but you are so right about the implication for those for whom the library is the key resource, those who almost certainly cannot find the deposit money. It is a very tricky problem, I see that it is actually two issues. First access to resources within the library premises. In this case a deposit really shouldn't be an issue since we should be able to "secure" the book/computer/whatever to the premises in an acceptable way whilst retaining anonymity. The second issue is when the user is to be granted permission to remove the item from the premises, the nice thing about this is that clearly browsing habits are not a part of this problem and so we are just worried about reading habits.

The library user goes into the system as having borrowed a book, the title is irrelevant, but the item has a due/popularity/price index that is used as the basis for calculating late fees and damages and this index is assigned to the non-anonymous part of the library users account. So in the event of lateness or default then the user can be charged but the actual book remains anonymous. The library can then use it's catlogue system to detect which books are missing from its deposit and replace them. The netting of the cash from the defaulting system and the cost of replacing books should be zero within reasonable tolerance.

This leaves one problem, borrowing a high index book and returning a low index book, wearing the fine and selling the high index book for a relative profit. Well, this is a bit trickier, but certainly the system could ensure that high index book borrowed == high index book returned which would help enourmously and you could go further by encoding the title of the book in a write only cypher with the borrower holding the key, that way the return could be managed exactly without identifying information about the borrower being available (this last bit is probably unnecessary given the way libraries actually work.

Using this approach, libraries can still record the statistics about borrowing habits from the catalogue, they just can't track who did what.

Admittedly the risk here is that the anonymous library user who legitimately loses or damages a high index book might be paying more to replace it (since the index would be inexact to protect correlation between price and title) but that _is_ a reasonable price to pay for anonymity since you know it to start with and it is only for exceptional cases.

well

[AllMightyPaul]

If you ask most any librarian, he or she will tell you that they do NOT give out information regarding borrowing histories without a warrant from an official and will not give out to anyone else for ANY reason. Most libraries in colleges and universities purge all those records as soon as possible if they know what is good for them. Public libraries aren't so good at that, but still don't like keeping that information longer than they have to.

My mother has been a librarin for over thirty years at various places of business, including private corporations, public libraries and at colleges and universities and from listening to her, I believe it is the general sentiment of the ALA to protect their reader's privacy. If you all take a moment to recall, it was the librarians who fought the most against COPPA because of they inherent censorship created by the requirements.

What does happen, however, is libraries will outsource their searching services because they don't have enough money or manpower to handle the computer equipment themselves. When that happens, the business they outsource to may not have the same ideas in their head concerning privacy and censorship and will start storing this. Unless libraries get more funding, it's likely that outsourcing will continue and records will be saved.

Re:well

[namespan]

I worked as a developer in a major university library for about two years. The system I worked on only tracked requests made to borrow books through other universities, but it kept ALL of them. Your whole history. This system was used at a whole host of other libraries, including NYU, ASU, Berkely, and more.

The main system that kept track of circulation for the whole library also kept all requests. And it gets worse. I shouldn't have known that; it was outside my employee privileges, but several reference librarians kept the username and password posted on post-it notes, and being able to look up my own circulation record via telnet (or tnvt3270 or whatever it was) was way too convenient. From that point, looking up someone else's circ records was often way too interesting.... oh, and did I mention that the library used your SSN as a unique ID?

Anyway, the point is, the system saved ALL your information, and it was fairly easy to get to it. If we were counting on practices of libraries to preserve anonyminity, I wouldn't feel all that secure....

Re:well

[fatbastard10101]

Michael Moore tells the story of librarians saving his book "Stupid White Men" from the Harper Collins pulp factory. (Whether you agree with him or not, that Voltaire quote comes into play.) He was giving a talk and read a chapter of his book, because he didn't think it would ever see the store. One librarian in the audience takes note, gets on the librarian newsgroups.

Monday morning, Harper Collins calls MM. "What did you say to the librarians, Mike? They're really mad, and there's a lot of them." And that brought them to the table.

As one that works in a Library Systems Office ...

... Privacy is extremely important to us. We allow not only Web browsing but also offer full the full MS Office package on several hundred computers so that people can work on their projects as they conduct their research.

While not completely secure, we clear the web browser cache and history each time the browser loads (and it closes itself after 10 minutes of inactivity o further help this along).

We also remove the contents of "My Documents" and then the Recycling Bin each morning before the library opens. This is all done via scripts of course.

Granted this isn't the best solution, as the info could still be retrieved, but between not requiring login's (there-fore not knowning where anyone that comes into the library was sitting) and deleting as much as we can, as often as we can it should help.

Re:I'm sorry..

[ed__]

the government has no such right. the people determine the rights of the government. all rights not expressly given to the government are the people's and the institutions to which those people wish to grant rights.

government has no property it is not given by the people.

(this is true even in non democratic/republican forms of government. see Gandhi's writing on non-violent resistance for an interesting object lesson in this fact).

Good crack?

[Arethan]

You must have some pretty good crack in your pipe today. Anonymous Checkout? Sure! I'll just anonymously check out a few expensive books I've always wanted, and just keep them. Since it's anonymous, they'll never know who has them, so they can't bill me for them or come looking for them. The only way you're going to keep theft out of the equation is to keep tabs on who has what, but throw away that data the minute the book is returned. No amount of encryption is ever going to make anonymous checkouts work, since you must always be able to tell who has what.

As for running your entire OS in a ramdisk...yea...sure...that's...great. I don't know about you, but I sure as hell wouldn't pass any mileage that simply wanted to put 3GB of ram in every public computer. All so that the entire OS can run in a RAM disk so that we can have a false sense of anonymity on those machines. If the FBI wants to see where a computer has been, they will find out. Yes, if they turn off the machine, everything is lost. But this will only get them once or twice. They aren't fucking idiots. They will catch on, and start going to the library's isp instead and plugging a nifty little black box between the library and the internet. "Wow, look! I can see every packet going in or out of that building. How nice!"

Three words: Waste of money.

Re:Good crack?

[GigsVT]

I'm a member of the forensics mailing list at security focus, and I can assure you no FBI investigator would be stupid enough to turn off the computer until live data was collected. (If the local cops got involved first, then all bets are off). The only benefit to a RAM disk would be the lack of traces left behind if it were rebooted regularly.

Preventing this abuse through legal means is a far better solution. Trying to address a legal problem through technical means is about as dumb as the many attempts to solve technical problems through legal means.

Re:Good crack?

[vegetablespork]

How are forensic data collected from a RAM disk without compromising the integrity of the machine, chain-of-custody, and all that? There's no way to capture the contents of RAM without running a program on the machine, and doing that changes the contents of RAM.

BTW, if you don't do computer forensics for a living, I'm sure Richard Clarke has noted your subscription to that list.

Re:Good crack?

[GigsVT]

Heh, Forensics is part of my job, it's part of any person's job if they are responsible for servers.

A basic familiarity of forensic ideas is necessary if you are to preserve data in the event of a major break-in that causes a large economic loss. It's not something only for cops.

There have been ongoing discussions about how to preserve the integrity of live data, it seems the consensus is that the best you can do is document every move you make, and use industry standard tools.

In the case of a break-in where a big loss of money is involved and charges might be pressed, it seems it's best for the admin of the server to just take as few steps as necessary to preserve the integrity of the network, and to document everything.

It's tricky business from what I gather of lurking there.

Re:Good crack?

[H310iSe]

I'm not sure that addressing the problem from a technology perspective is a waste of time. Just because a firewall can be hacked through doesn't mean you just don't put one up - the object is never to have 100% whatever (security, anonimity, etc.) but to put up barriers to make it as difficult as possible to snoop, crack, whatever.

I like all the posts saying we need to change law, it's good to focus on that too, but let's make it difficult to enforce while we're working on getting it off the books...

Re:Good crack?

[_Sprocket_]

The only benefit to a RAM disk would be the lack of traces left behind if it were rebooted regularly.

...which, I believe is the point.

One of the problems being addressed is the dragnet style of evidence collection. This collects large amounts of data that has absolutely nothing to do with the stated case and, frankly, is a lot more likely to be abused once its in the hands of the agency in question and out of site of those who would be more inclined to safeguard it (ie: the libraries). Long-term detailed records and discrete data left behind on individual workstations are perfect sources for this kind of data collection.

A ramdisk-based workstation would help limit the amount of data available during a sweep. It would force an investigative agency to be a lot more targeted in its activites (perhapse more on a time-critical scale than overall scope) and it would limit collateral data that could be used outside the scope of the specific investigation. It could even render these workstations as useless sources of intelligence and limit the damage done by these overly broad laws.

Re:Good crack?

[GigsVT]

Just because a firewall can be hacked through doesn't mean you just don't put one up -

That's like saying the best way to avoid a government raid on your cult compound is to build bigger walls. I think Waco shows otherwise. If they government wants to get you, and they have the legal grounds to do it, no technical measure will stand in their way.

Don't remove the books

[dr_l0v3]

If you don't want to be hooked by some large data-mining net you can always read the book in the library and take handwritten notes.

Re:Don't remove the books

[vegetablespork]

What if you ILL it? What about the cameras? What about the nosey TIPS people seeing you reading an Arabic looking book?

Act on it!

[warkda+rrior]

Says the article poster:

It seems that if the American people are going to protect their rights, they are going to have to do so actively.

Of course you have to be active about protecting your rights. If you let someone else "protect" your rights for you, you let that third party decide which right you have (i.e. which rights that someone will defend for you).

Methinks that instead of looking for technological solutions that will take a while to implement, we would be better off making a big deal of this issue. The more the general public knows about how FBI snoops into library records (about other things), the more stringent the public outcry.

I am not saying drop the search for a technical solution, I am saying a lot of policies can be balanced through social means rather than actively fought through some kind of enforcement tool (e.g., technology).

Re:Act on it!

[warkda+rrior]

Hmmm, in the last line of the third paragraph, we want a more "strident [...] public outcry", not a more stringent one.

Next time I will re-read my comment before submitting...

Re:I'm sorry..

Sonar guns? What are you driving; an aqua-car?

Use Knoppix

[JayAndSilentBob]

This is a wonderful oppertunity to use Knoppix or another similar, customized Linux-On-CD. Just lock the cd drive (or have the main case behind the librarian's desk) and you're good to go. an external floppy or zip would take care of any need to save information. It'd protect anonyomity and eliminate any records to search, as the OS reloads from CD every time it is booted. No hard drive is even needed. Just a little time for the initial setup.

Cash up front

[Comrade+Pikachu]

1. Library patron checks out a book. Barcode inside the cover is scanned in by librarian to register it as "checked out".
2. Patron hands librarian the cash equivalent of the book, then walks off anonymously.
3. When patron returns the book, he gets his money back minus late fees, if applicable. The intrest which accrues on the patron's money while it is being held by the library is used for salaries, maintenence, or additional aquisitions.
4. Anyone can return a checked-out book for cash completely anonymously. All books are checked against a database of books in the library's collection to prevent fraud.

It's not an ideal solution, since libraries should be in the practice of lending books for free, but it would work.

Re:Cash up front

[R2.0]

Problem is it this plan throws up an economic barrier to getting knowledge, which is the exact OPPOSITE of what a free library is supposed to be.

Scenario: Poor kid doing a term paper. A smart, ambitious kid, and he needs some relatively obscure books. Cash value may be $100/per for academic stuff. So now this kid must come up with $300 cash to write his paper. It doesn't matter if he's going to get it back - he just doesn't have it to give.

And the system can't be "opt-in". That means the well-off get to be anonymous, while the poor get tracked.

Lord knows I think the ACLU is a bunch of busibodies, but they'd have a fit over this one, and rightfully so.

Re:Cash up front

[Damion]

Or he could do his work in the library. It wouldn't be as convenient, but it would be free.

Re:Cash up front

[TKinias]

[ checking books out for a cash deposit ]

There's a very real drawback to doing this: many important works are out of print (and will stay that way until they enter the public domain -- but that's a different rant) and cannot be had at any price unless you can locate a used copy. If I found a library that would lend me -- anonymously! -- a book which I'd spent a year trying to find for, say, a $50 deposit, the temptation simply to "buy" it that way would be tremendous. Unless the deposit were made so onerous that no one could consider its payment an acceptable price to acquire the work, the system would fail. And if the deposit were that onerous, books would not circulate.

Re:Cash up front

[foo12]

Or just be like many people and go sit in the stacks, taking notes off the book.

Re:Cash up front

[moody]

I'm a librarian and I see a few problems with the anonymous checkout idea. The library at which I work does not keep records of what someone has checked out in the past as long as fines have been paid, but we do keep information on books currently checked out and books that have been returned overdue with fines, until those fines have been paid.

This serves two purposes: to protect the library and to protect the patron. In a perfect world the system you lay out might work, but occasionally libraries make mistakes and sometimes people make mistakes or try to take advantage of the system.

On the patron side: If a book is returned on time, but somehow never gets properly scanned, it may show up as not having been returned. Often patrons cannot or will not return books during open hours, so they will use the book drop. Also having to stand in line at the checkout desk to have a deposit return would at least double the amount of people in line at the desk, meaning longer waits, and perhaps higher taxes to pay for more personnel to deal with twice as many transactions. If the library makes a mistake and the book is returned and not checked-in but reshelved, there will be no way to prove that the book was in fact returned. The patron would have no ground to stand on in stating that the book is in fact on the shelf or checked out to someone else or some such thing, as there would be no record they had checked out that book in the first place. Merely a deposit.

It might be possible to barcode cards and then input prices on the cards at checkout and then check cards inserted into the books on a patron's record, but in addition to taking more time, there would be no record of shelf status for the book (is this book checked out, withdrawn, missing, etc.) meaning anytime someone would want to see if something was one the shelf they would have to go and look, defeating much of the purpose of computer-based catalog systems.

On the library side: In addition to some of the above points (which in many cases would be negatives for patrons and libraries), there are always a group of people out there who wish to abuse the system. A case in point is our printing policy. We do not typically charge per page on printing from public machines, and we used to have signs merely saying "The library reserves the right to charge for excessive printing." 95% of persons using the computers printed reasonable amounts. However, a small percentage would consistently come in the library and print out reams of stuff. We eventually started enforcing that policy, and eventually changed it to the current policy which is 30 pages free, pages 31+ 10 cents a page and printing. But the same contingent still likes coming multiple times during the day, trying to sneak out without paying, printing without doing a preview getting lots of stuff they don't want and hiding the undesired pages, etc. It's a pain. I'm hoping to develop some system for counting pages printed (perhaps running all print jobs through a central server) but with Win98 machines this seems to be an expensive and not-too-easy task.

At any rate, I have no doubt that people would check out single materials, for instance, and then come back on a different day and try walking out with different stuff and say, "hey it's checked out on my record" and there might be no way aside from anecdotal evidence of the circulation staff to prove otherwise. People wouldn't remember what they had checked out. People wouldn't remember what they owned fines on. I'm sure the system could probably be undermined many different ways, while now we can say, "You have X checked out, and X is overdue." and if we are wrong the patron can try to prove otherwise.

Perhaps the most reasonable solution to get this kind of thing to work might be to check out the card to a patron with a price input at check-out and the book checked out to a dummy (non-existant) checkout patron, but that would essentially double work and add an awful lot of hassle, and might have other problems I haven't considered (I don't actually work in circulation, and most of the time the people that work in circulation technically aren't librarians (they don't have a library science degree) but clerks or para-professionals).

I have doubts that this kind of thing is really worth it in the end. If someone is that protective of their privacy that they can't stand to have a book linked with their record for the 3 weeks they have it checked out, maybe they'd be better off just reading it in the building or buying a copy with cash somewhere.

Re:Cash up front

[Quixadhal]

True, although *most* libraries don't prevent anyone from coming in and using the materials on the shelves, regardless of who you are. For example, not being a current student, I can't go check out books from our local University without paying a (rather high IMHO) fee to get a non-student library card. I can, however, sit down in the library and read anything I want.

What this idea would do is allow the wealthy to research in the comfort of their own home, whereas the poor would have to take notes and do the work at the library.

Re:Cash up front

[epsalon]

About the proof of circulation problem, that's easy. Give the borrower a receipt with the serial number of the book and date of return when the book is scanned as returned. If there were any problems, the borrower could present the receipt.

Re:I'm sorry..

[ClarkEvans]

Public Libraries are _public_ places, owned by the _government_. The government has a right to collect information from the library. It is not a private citizen's business or residence

Public Libraries are _public_ places, owned by the _people_. The people have a right to peacebly educate themselves, assemble, and petition government for greviences. They have a right to perform these activities anonymously, else they could be subject to harrassment by those individuals who currently control the government.

Remember in the turn of the century when black people had the right to vote, but had to do so publicly so that their owners knew how they voted and what they were up to at all times? This is called opression and we are quicly headed back to this stage... only this time it won't just be along ratial boundaries.

Libraries in America

[idonotexist]

I am reminded of a public service ad which demonstrated how lucky Americans are that reading activities at libraries are kept private. Ads, such as this, were produced after 9/11 to show an appreciation of individual rights.

Ironically, the new government policies for our libraries seem to have, now, deteriorated our privacy. And the ad is, now, an excellent demonstration of how the current administration has run amok.

PSA's ad, "Library" is in realmedia format. And, no. America is no longer America.

Re:Libraries in America

[onion2k]

Right.

You've done nothing illegal. Nothing 'deviant'. Nothing thats going to get you on the cover of a popular tabloid. Nothing your neighbours might go 'tsk' and whisper about. You don't drop litter, swear, or look at porn on the internet. You're not 'guilty' of smoking, drinking, or sex before marriage. You don't speed, you've never inhaled, and your only knowledge of a 'hooker' is from watching Rugby (obscure English sport) on the telly.

So, what the fuck do you care if the feds see that you borrowed a copy of 'Popular DIY' last weekend?

Or is your desire for 'privacy' just a misplaced sense of rebellion against the state because you're a bit anal and have no other way to vent your displeasure about 'the system'?

DISCLAIMER: I'm English. The idea^h^h^h^hinevitability of having to live with identity cards and the state tracking is very real here. And yet, it seems very few people have a problem with it. We can see the benefits. A reduction in crime, the possibility of being able to pay tax online and such securely, and whatever else we think up, is GOOD. OK, so Tony Blair might be able to tell what I was doing this weekend. SO WHAT?

Re:Libraries in America

[onion2k]

Very true. But I repeat myself when I ask.. SO WHAT? Nothing you mention is criminal, nothing is of any interest to the government, nothing is worthy of spending resources on.

Stop being so paranoid for pities sake.

Small OSes, alternatives?

What OS do you run that requires 3GB of space?

Linux w/ X could easily run in 128mb ram, possibly 96 or 64 if you fit things right and get rid of everything absolutely not needed.

Might you have an alternative idea?
By all means, do share.

I hope you aren't dellusioned into believing that creating a hypothetical and unrealistic situation then proving it wrong is helpful.

Re:I'm sorry..

[R2.0]

"Public Libraries are _public_ places, owned by the _government_."

Not necessarily. "Public" does not necessarily equal "Gov't." Some are indepentent non-profit orgs, with a public charter. And the others are part of the local gov't, NOT the federal.

"The government has a right to collect information from the library."

Again, not necessarily. The Feds have even LESS right to tell the states what to do than the states. State governments are sovereign entities, except as delimited by the constitution - a document you are apparently unfamiliar with.

"It is not a private citizen's business or residence. It's almost like your telling the government not to use sonar guns to catch people on the roads."

Now you are just a goofball. It's RADAR, idiot. And some areas DO limit what the police can do with it. What's next - the prosecutor is allowed to see the public defenders records because it's a gov't office? Jeez.

My 2 cents

[pc486]

While a bootable Linux/*BSD CDRom is feasable as an semi-anonymous browsing device, a anonymous checkout system would not. The problem with checking out a book or any other material that a library might offer is how they track and recover a forgotten book. How many times have you missed a due date? Almost everyone has missed a due date once. Compared to this, theft is a minor problem.

Lets roleplay for a moment. We are a librarian and John Dole has forgotten a book. Lets look up his record and remind him that his book is late. What information do we need? A contact. That means an adress or an phone number. Email? Forget it as an unreliable medium which a majority change addresses often and don't check often enough to be effective. Plus, email from the masses can be traced with little effort.

The only way to make library checkouts anonymous is to make communication completly anonymous, and as of right now that seems to be quite some time into the future.

Re:My 2 cents

[vegetablespork]

OK, I'll give you that, but what legitimate reason does a library have to keep track of what someone checked out once it was returned? In an ideal world, any link of personally identifiable information to the checkout of a given title would evaporate upon the book's return. Of course, in the real world of backup tapes and funding sources wanting stats, this is unrealistic.

I wonder how long it will be before it will be illegal to lend or sell books without ID and records kept!

Re:I'm sorry..

[Fat+Casper]

Public Libraries are _public_ places, owned by the _government_. The government has a right to collect information from the library.

It's not Flamebait; it's Unintelligent.

My town thinks a library is an important thing to have, so we tax ourselves to fund one. I haven't seen any money filtering its way down from Washington to buy our books. Let Ashcroft search for borrowing records and browsing habits in the Library of Congress. That's the library owned by that government. He can stay out of my library, because my town owns it.

Where are you pulling this radar gun thing from?

_However_, when it comes to the FBI demanding book histories from stores like Borders, they can bugger off until they get a warrant.

You actually have less of a leg to stand on with book stores. They don't need a warrant, or even a subpoena. They could just ask. They could just walk in and seize it, claiming it's a terrorist related investigation. You don't own the bookstore, and if you signed up for their card club, you're asking them to collect information on you. It's their data, and they can sell it to anyone they want or give it to the FBI. They could sell it to the FBI. I hope you didn't buy a felafel cookbook, because then you're going to get detained. At least with your local library you can get the town to resist handing the info over to them. Borders probably made money selling you out.

MOOT addresses some of the requirements.

[perlyking]

Possibly all of them.

Moot website

Re:I'm sorry..

[RupW]

government has no property it is not given by the people

Philosophically or constitutionally?

RAMdisk != privacy

[frovingslosh]

While one would think that a RAMdisk in such a situation would lead to privacy, don't forget that our good and trusted friends the government already have carnivore in place, and can use it to get anything that they might have expected to find on the hard drive.

That said, I still think a RAMdisk based system is a good one, the computers could be booted from a boot image on the network or even from a locked CD drive and then run completely from RAM. While it offers no protection from Carnivore, it does protect people's information from other people who come to the computer later and snoop for e-mail addresses, account information, and the like. Lets not forget to try to get libraries to close this door just because the shadow government can still get our private information.

The NPR story made claims that the government could somehow link information between a user's sessions. The reference was to someone who looked up information about atomic energy and then came back later and looked up something about the Koran. Unless they have logs of who used the terminal and when, how can they make such a link? Do they just assume that the person doing the Koran lookup must be the same evil doer as the person who previously committed the heinous deed of reading about atomic energy?

Concerning anonymity

[Fizzlewhiff]

Considering that terrorists and the like usually have many aliases and false identities I think these folks already have the anonymity they need. What is the privacy advocate afraid of if the FBI has access to public library records? I'm not trying to troll but I just don't see it. As for bookstores and purchased books I can see the argument. The buyer and seller are both private entities and their transaction should be a private manner. A libary is however a public entity and I don't really see a problem with records being public for that matter.

Re:Concerning anonymity

[jazzmanjac]

A libary is however a public entity and I don't really see a problem with records being public for that matter.

If the records are public, why then can only the FBI look at those "public records" and not tell the rest of us (public) what those records are or how they used them?

According to the NPR story the FBI doesn't even tell the Library what they did and returned the computers repartitioned, again not telling the Library, much less the public, what they did.

These are not "public records."

1984 has come and gone my friends.

Re:I'm sorry..

[vegetablespork]

It's almost like your telling the government not to use sonar guns to catch people on the roads.

I hate it when the government used SONAR guns for speed enforcement on the highways. The ear-shattering pulse almost made me wreck my car. And the pings bouncing off all the other cars just makes a cacophonic mess.

(Perhaps you meant RADAR?)

Re:As one that works in a Library Systems Office .

[jarrell]

... not requiring login's (there-fore not knowning where anyone that comes into the library was sitting) You see, that's the part that annoys me. Yes, protect the privacy of what they were searching for, but dammit, keep track of who they are and where they were working. Crackers aren't idiots, they know damn well where the anonymous computers are. We have this trouble with library labs all the damn time. I don't care if they were reading info on HIV, downloading insurrectionist pamphlets, or searching any number of embarrasing topics, but when ebay shows up at our door step with proof of credit card fraud coming from that pc, I damn well want you to be able to tell me who was sitting there...

Technological Solutions

[evdg]

A technological solution to any problem posed on Slashdot is always the community's first response. As we've seen from the history of encryption, any realistic and practical method of protecting data is eventually going to be broken.

Legislation is the answer. Not happy with a law? Last I heard America was a Democracy of sorts -- let's get out there and use the classic techniques for creating change. Vote. Write. Talk. Protest. Rage.

Or has the wealth we enjoy in North America made us too complacent?

Take your Knoppix CD with you

[Fragmented_Datagram]

If you've got a Knoppix CD with you, just boot from it and cast your fears aside about locally installed software snooping on you.

Re:I'm sorry..

[Jeremy+Erwin]

_However_, when it comes to the FBI demanding book histories from stores like Borders, they can bugger off until they get a warrant.


How ironic, bookstores such as Borders are more likely to keep exactly the type of records, the FBI thinks it needs. Libraries, by way of contrast, really have no need to keep copious customer data profiles, and might even consider it unethical to do so.

The FBI can piss off. They don't need warrants to view reading records. They don't need to prosecute individuals based on their choice of reading material.

[OT] Why I don't vote

[extrasolar]

I don't take pride in this, but there is one big reason I don't vote.

I don't know enough about the issues or the candidates.

I try to be informed, but I don't subscribe to a newspaper...I did once, but the newspaper's went unread because I really didn't have the time to read them (yet, I have time to post to slashdot, go figure).

I've picked up books from my college library, one about israel and palestine. It seemed like a good book introducing some of the issues that are happening over there. But I honestly never got beyond the first chapter. The book was kind of dense for someone with the typical American knowledge on foreign affairs.

And I've heard arguments such as yours, that democracy requires a lot more people voting. But it almost seems to me that having uninformed people vote doesn't make the system more democratic. It just makes the system more arbitrary and more whimsical.

And the politics really gets in the way. For instance, trying to find political information online is difficult, since you can never really trust the source of information. Especially as we got closer to voting time, everyone starts putting up articles supporting their own personal political agendas, and people like me are the worse off, since the uninformed are not going to know much difference between truth and outright lie anyway.

The solution, of course, is to get information from a variety of sources. But then we are back to the same problem of lack of time. Especially with the vast number of candidates and issues we have to decide upon come voting time.

Another thing I've finally figured out. I've tried watching CNN or FoxNews for a while, so that hopefully I would get some insight into what is happening. It took me a while to figure out that I'm not just dumb, but the television station doesn't actually tell you enough of what is happening, and certainly provide almost no context of the issue. And the biggest waste of time are them talk shows where they have a number of "analysts" debating a certain topic. Usually the person hosting the show (who usually gets the most time speaking), either (a) doesn't under the issues anymore than I do or (b) has some political agenda of their own. And given that these shows are on most of the time, television is practically useless for getting information.

So it seems to me that voting isn't just something you do once every two years. Its almost a part time job to keep up with the issues, and then research your candidates. Maybe I'm exagerating. But without spending a good amount of time on this, many of us couldn't tell the difference between one candidate and the other.

It would be great if someone could post where they get thier information from. Is there an unbiased MiddleEast for Dummies book somewhere? Where do we get information about the various political candidates that doesn't come from the candidates themselves?

So I may not be voting this November either. Maybe the best way would be for me to get information on the local politics, and then vote for the local candidates. But I'll have to see.

Re:[OT] Why I don't vote

[extrasolar]

Ignorant, not apathetic.

See the problem?

Re:[OT] Why I don't vote

[524287]

Sometimes I've avoided voting for a candidate or a ballot initiative because of my ignorance of the issues. But it doesn't take full-time research to find out where most candidates stand. Your local governments probably put out an election guide, and that's a great place to start. Also, check your local deadtree newspapers in the weeks prior to an election. If you're not willing to subscribe, just go to a local library and ask a librarian if you need help. An hour in the periodicals room should give some insight into the issues and candidates.

For non-partisan info on the web see Project Vote Smart or The League of Women Voters. You may find links to local chapters here. And if you have an active local chapter, they almost certainly put out a voter's guide and may even sponsor debates.

If you want to surf some more, try starting with Google's Directory.

Finally, to follow the money check out Open Secrets.

My Addition To The Pot

[DarkZero]

Security measures such as firewalls and anonymous browsing would still be needed, but I'm sure that much more educated individuals could point you toward good solutions for that. I just wanted to bring up the idea of an OS on a CD-ROM. It leaves no records and viruses and worms cannot be installed on it, because it cannot be written to. It's a security solution for both Big Brother and the stupid, worm-downloading idiots that he watches over.

STFU, whiner!

[Dthoma]

"As for running your entire OS in a ramdisk...yea...sure...that's...great. I don't know about you, but I sure as hell wouldn't pass any mileage that simply wanted to put 3GB of ram in every public computer. All so that the entire OS can run in a RAM disk so that we can have a false sense of anonymity on those machines."

You can run an entire OS from RAM. Miniature Linux installations are available for free download on the WWW. They require under 50Mb of HD space, so what makes you think that it wouldn't fit in RAM? You don't need a power installation - just a GUI, a database, and a network connection to ghost the machine.

"If the FBI wants to see where a computer has been, they will find out. Yes, if they turn off the machine, everything is lost. But this will only get them once or twice. They aren't fucking idiots."

Whether you're an idiot or not, you can't just magically extract all the data from some RAM after it's been turned off. It's physical law. It's math. It's not an issue of IQ points.

"They will catch on, and start going to the library's isp instead and plugging a nifty little black box between the library and the internet."

Libraries do not need an Internet connection to look up databases for books. This can be done across an intranet, with no access to an ISP or the outside world whatsoever. To break into that and run a packet sniffer, the FBI agent would have to be sitting on the premises, where they could easily be seen.

Re:STFU, whiner!

[josh+crawley]

---Whether you're an idiot or not, you can't just magically extract all the data from some RAM after it's been turned off.

Yes you can. The method requires determining the amount of oxides in the memory cells. It's a destructive process that has to be done relatively quick. Tempature is also a factor in this too. The hotter, the more bit deteroriation, and the cooler, the longer.

This method is discussed in the documents that come along with Eraser (for WIndows). They are the "Methods of recovering data in solid state memory" in the public DOD handbook. Since the government has released this, I'm sure there are better ways to do such (that they know about) that have a 99% success rate.

Re:STFU, whiner!

[Arethan]

Alright, I was hoping that maybe I could get some intelligent replies, but apparently not. I guess you really do need to spell it out for some people. (BTW, don't get the idea that this is entirely a direct attack on the parent's author. This is just the thread on which I clicked 'reply to this'.

I'll start out with the issue of an OS not fitting into RAM. I don't know about your area, but in my area the libraries could give less of a shit about linux on their public access PCs. Realistically, the PCs aren't there in order to show the world that linux is a great solution for everyday problems, the PCs are there to provide a simple service. Word processing and internet access. PERIOD. There is a reason why those boxes are Wintel machines. Mainly because it is what 90% of the desktop computer using population is familiar with. Yes, linux would solve this problem quite nicely, but I can guarantee you that any proposal suggesting the use of linux would get a lot of "what the hell is leenux?" going on in the background, following by some light chuckling. When people go to the library to use the computers, they expect to use MS office, and surf the net. Sorry, but that is the extent of it. Yes, there is openoffice, and I agree that mozilla kicks the shit out of IE. But the fact remains, OpenOffice isn't MS Office, and mozilla is still plagued by plenty of IE only websites.

Now for a few direct rebuttals:
No where did I ever mention that an FBI agent would gain access to data on powered down RAM. The IQ reference was in regards to them shutting the machine off to begin with. Like I said, they aren't fucking idiots. If they lose the logs once to a RAM disk, you can bet they won't make that mistake again. Next time they'll simply leave it on, or as I said, tap the network at the ISP.

And I don't know where you got the idea that I was referring to book checkout logs when I was talking about tapping at the ISP. I would sure as hell hope that any library with half a mind wouldn't use a public network to service their internal database transactions. However, even if the logs were the target of the search, they could just simply walk up to the machine hosting the database and fuss all they wanted to while the librarians called their bosses to explain how the FBI just walked in with a search warrant. And if you've read my previous post, you'll remember that you can't have both accountability and anonymity. The two are mututually exclusive. No amount of fancy encryption is ever going to change that. Please think before you flame. I don't post crap, so I don't expect crap in return.

Re:STFU, whiner!

[H310iSe]

yea, I don't like it when people diss posters IQs but I think you are missing the point. bringing up things the FBI will do to counter whatever is set up on the client is good, now how to you counter the countermeasures?

for example, what if all the terminals ran some kind of triangle boy / safe web esque setup? howabout encrypting all the communications to an anonymous proxy so the FBI can sit and sniff at the ISP all day long for all we care. this is just off the top of my head - I'll try to talk to the folks at hactivismo for some real-world solutions.

so keep bringing up flaws in the plan, but at least try to suggest some work arounds while you do it?

Re:STFU, whiner!

[Arethan]

I completely agree with you in that there are actually plenty of very workable solutions to privacy concerns. Triangle boy; encrypted tunnels to outside proxies; RAM disk style Linux boxes that boot and load into RAM disk off a CDROM, set up to auto reboot immediately after log off.

Like many people have already said, some libraries already throw away information on items checked out once they are checked back in. So accountability only lasts as long as you have the item.

So privacy of what you check out isn't really a big problem to solve. The biggest problem are the computers they keep for public use. There are plenty of ways to solve this, but I don't see any of them using Windows. Which pretty much makes them useless to libraries, since Windows is exactly what the public wants. Maybe you could put up a single "secure" machine that ran Linux off a RAM disk and performed the autoreboot I mentioned earlier. But I highly doubt we'll ever see a library with no public MS machines in the next 10 years.

Anyhow, nice chattin with ya. Hope I didn't stir up any hatred. :)

Re:STFU, whiner!

[Myself]

The FBI could quite easily sneak a wireless AP onto the library's intranet, place the AP into bridging or sniffing mode (see the OpenAP project for ideas), and watch database lookups from their van parked at the coffee shop down the street.

That's beside the point anyway. Patrons frequently use the library terminals for things they can't find in the dead-tree collection. This does require an internet connection.

Here's an idea: Many libraries are on reasonably fast connections. Someone needs to create a small ram-based Linux distribution in a DOS executable. Something like Loadlin packed with a kernel image and filesystem image.

Then place this distro on a server with some carefully-scripted web pages which exploit flaws in IE to run the package. This is because the library probably runs Windows security software that prevents the user from easily downloading and running arbitrary programs.

The library patron walks up to the computer, and punches in the URL of this distro. The thing downloads, IE is tricked into running it, and the library's computer is now running a real OS from RAM.

Build in whatever freedom and paranoia you want: Perhaps the kernel shuffles things around in RAM every few seconds to prevent memory cell persistence. Perhaps the browsing is done via a secure tunnel to prevent the feds from simply Carnivoring the library's pipe. Perhaps this system meets other similar systems (gnutella-style?) on the net and they proxy each other's data (Freedom.net-style) to make things hard to trace. Perhaps the screen font is Tempest-annoying.

When the patron is finished, the distro wipes memory and reboots, back into the library's Windows for the next person to come along.

Of course such a distro would also be used by lame crackers with nothing better to do than attack websites from the library. *sigh*

Re:STFU, whiner!

[H310iSe]

I like that approach, not sure if Windows will cache (write to swap, whatever) the DOS session the linux disto would run under but I suppose I could ensure nothing interesting is in there. Or if it really whiped the RAM then what about the people who have Word open and want to launch I.E.? I don't think the windows session would survive this intact :)

Your second idea is interesting, something I was thinking about - IBM did something called crowds that were basically a peer-to-peer proxy program that would send requests randomly to proxy servers (other nodes on the network) - if a bunch of libraries ran this desktop they'd all be peer'd proxies for eachother, sending encrypted requests through several hops before it goes to the internet. The only way it could be traced to a source is if you could hack the proxies - you'd have to hack a good number of them record the NAT and keys in real time to trace who'se sending what.

At least i think that's how it works. I like the idea of creating a huge national library network of peers - you could run your own gnutella-like network to encourage information sharing between libraries, etc.

Anonymous Checkout

[flonker]

As far as I see it, anonymous checkout won't work in a free library. OTOH, if you require the library patron to deposit the value of the book before they can check out the book, that would work. You might be able to decrease the deposit amount to a percentage, depending on the honesty of the patrons, but I wouldn't count on it. Put money into the equation, and dishonesty increases.

Another method would be to give a "library card voucher" to every new resident, and allow them to obtain a card with the voucher, using some sort of random hat draw or something. Have some type of card trading system in the library, where people can trade cards, reliably knowing that each card has no books on it. (Scan cards, it tells you, "No books are checked out." You then randomly decide whether or not to exchange cards.) Of course, if you lose your card, you're screwed. This method would require a bit more honesty than today's libraries. IOW, it's susceptible to many of the same no-return attacks as modern libraries, (Borrow books, and never use the card again. Not much they can do about that either way.) But the fact that it can be traced back to you seems to encourage honesty, regardless of the library enforcing returns with external mechanisms. IOW, being anonymous increases dishonesty.

The best method seems to be to delete the records of a patron's borrowed books as soon as they are returned.

Re:I'm sorry..

[ed__]

both.

in the US case the 5th amendment grants the government the power of eminent domain. this means that the government can take private property for public use and must provide the owner with just compensation when doing so.

philosophically it should be self-evident (one way or another depending on your leanings).

Re:Bottom Line

[jarrell]

Because you're not thinking straight. Knowing that, at any moment, the gov't could walk into the library and demand a list of everything everyone has been reading, or searching on the internet, is incredibly chilling to people's willingness to read, or search, materials that aren't "popular."

It's our responsibility as citizens to remain informed, that's the point of the whole "Informed Democracy" thing. Nowadays, we have the govt regularly telling us "You don't need to know these things, we'll know them for you."

Lets take the current anti-terrorism campaigns. If you oppose the way the detainments and trials (or lack thereof) are going on, then it behooves you to do research to be sure you know all the facts. But wait, our own presidents press secretary has been more than hinting that asking those kinds of questions is unamerican "in this time of war". So the feds raid your library and add you to the list. Next thing you know a friendly FBI team comes by your house, or place of employement because "they have concerns about your reading habits."

As another example, there are plenty of reasons to read up on bomb making, other then planning on actually making one. I'll ignore completely the concept that you might actually be hoping to get into a job involving pyrotechnics, or might be taking a class in it. But I've heard some extraordinary things come out of the mouths of officials about what a particular device built by someone could have done or not done. If I had no idea what the facts were, I'd have to take their word for it, and allow my opinion to be shaped by my own lack of knowledge.

Also, who says the Feds will protect that information right? What if a loved one is HIV positive, and you're researching it for them. Now the FBI has that you've been reading on that topic, and eventually that slips out, and eventually your insurance company gets hold of a 4th hand database, that implies you're hiding that you're hiv positive, and finds an excuse to cancel *your* insurance... Then just the concept that you might be dieing gets to the credit agencies, and all your creditors cancel your credit. Just because you read a book in the library.

Read John Varley's "Press Enter" for a view of a world taking to the logical end of this nibbling away by the "well, if you don't have anything to hide, why do you care?" folks...

Re:Bottom Line

[GigsVT]

It has nothing to do with "sensitive" research. We shouldn't be forced to scurry into our holes like so many mice, there is supposed to be a presumption of innocence in this country.

Be Courageous

[Raiford]

Perhaps readers should become as courageous as the writers. I guess if someone has the guts enough to write about a controversial topic, I should have the guts enough to read about it and not care who knows that I have the interest.

Re:Be Courageous

[80N]

Next time you go to your public library, as well as borrowing the book that you want, just borrow a book chosen at random.

If enough people do this then it would be impossible for TPTB to know whether you really borrowed (and read) that book or just selected it randomly.

Similar techniques are used for making survey responses anonymous.

80N

Re:Be Courageous

[vegetablespork]

Similarly, when using a supermarket that requires cards to avoid a privacy surcharge (aka a discount for using the cars), liven up your shopping trip a little. If you're just picking up a whole chicken, add some whipped cream, a spatula, a box of condoms, a can of Crisco, and some peanut butter. Doing so will not only intrigue the checker, but help to confuse TPTB.

Re:Be Courageous

[DEBEDb]

So by buying this extra stuff you are paying
money that you wanted to save to begin with. Brilliant.

Re:Be Courageous

[80N]

The difference is that you have to pay for the stuff you buy in a store, and they store is paying you (indirectly, by giving a very small discount) when you use the card.

When you borrow books from a library you don't have to pay anything, so there is no cost in taking out two books instead of one.

BTW You should try my peanut flavored cream-of-chicken aphrodisiac soup. You apply it with a spatula and then lick it off... ;)

80N

Re:Be Courageous

[DEBEDb]

Father, your sense of humor leaves much...
Father, did you turn into a tree?

Re:As one that works in a Library Systems Office .

[vegetablespork]

I damn well want you to be able to tell me who was sitting there...

Why? Is there established precedent that makes you personally or the library institutionally liable? Wouldn't your life be much simpler if you could tell them you honestly don't know?

Carnivore? WTF?

[billbaggins]

our good and trusted friends the government already have carnivore in place, and can use it to get anything that they might have expected to find on the hard drive.

Carnivore is a program that they install an an ISP to grab e-mail that looks suspicious. It cannot, afaik, be used to grab info off of a computer, unless you can be talked into e-mailing that information somewhere. Pray enlighten us on how they would use Carnivore to get information from a computer...

The NPR story made claims that the government could somehow link information between a user's sessions. The reference was to someone who looked up information about atomic energy and then came back later and looked up something about the Koran. Unless they have logs of who used the terminal and when, how can they make such a link?

It's been a while since I did this, but at some libraries I believe it's necessary to "unlock" a computer by somehow presenting your library card or some similar token, and so they could in fact know who was at which terminal. They might also look for things like what signin you used when you were checking your webmail &c.

Re:As one that works in a Library Systems Office .

[Rendwich]

Great, maybe you can join the TIPS program, or CitizenWatch, or just annoy the hell out of your local police by calling them whenever anyone uses a computer in your lab.

It's Ebay's problem, not yours. You're already wildly underpaid, do you really feel it's your responsibility to protect Ebay's credit card accounting? It's not.

Criminal stuff is happening all around you, all the time. If you can prevent it, or assist in prosecuting the perpetrators, great. But when your "assistance" means *assuming that everyone will commit a crime* and recording their identities *before the crime is committed*, well, now you are, in my mind, much worse than the Ebay hacker.

He's only ripping off Ebay, you're assuming that every library patron is a criminal.

As I read more and more of these

[bons]

I've come to the conclusion that privacy activists are fighting the wrong battle.

There seems to be two main assumptions when dealing with privacy:
1) X can't be trusted. With X being any group other than the privacy group advocating something.
2) X needs to insure our privacy.

In all honesty, these two beliefs are mutally exclusive. If you can't trust the government or the corporations or anyone else (and I'll agree that you probably can't), then stop looking for a method for them to insure your privacy.

The only solution to insure your privacy is to insure than no external entity is capable of tracking you. In the case of libraries, this means NOT checking books out. It means paying with cash everywhere. It means no phone service, credit cards, charge cards, discount cards, banking accounts, driver's license, car, or anything else that involves filling out an application or showing any form of identification.

And even that isn't a safe bet. You have to also not allow your face to be seen in public, where a camera can record you in a specific location at a specific time.

It's simply too easy to track data. Giving outside agencies method to quit tracking your data only works if you trust those agencies.

Maybe a better solution is to make all, or at least as much of the data as possible, public. After all, the problem is the ability of someone to use data about you in a method you don't approve of. Another solution to that is to level the playing field. When spammers and telemarketers can't hide behind a wall of anonymity any more than you, when goverment officials have all their dirty little secrets made public, then perhaps we'll see a change in behavior.

But as long as some groups have access to information that everyone else doesn't have, you'll have the same problem over and over. Either you need to insure your privacy yourself of you need to insure that they have no pricacy either.

RAM disk good for keeping the OS clean

[lkk17]

Having the OS on something that is loaded clean at each boot would be a good idea for other reasons.

If the browser history were filled with porn, if the computer were infected with a virus, or if a keystroke logger were installed, everything could be cleaned up with just a reboot. (The keystroke logging thing happens more often than you would think on public machines.)

An OS that boots from read-only media (like some CD-based Linux distros) would accomplish the same thing.

Re:RAM disk good for keeping the OS clean

[H310iSe]

The problem I see with RAM disks (this applies to all the RAM disk posts here) is verification of the media. Anyone could come in with thier own customized CDs and replace the legit ones. Only if you had staff with a trusted computer who regularly checked md5s on the cd could this be avoided. like that will happen.

Could make the disks available for public download and people can bring their own disks in they burn at home :)

Not really sure what the answer is other than using a RAM disk solution raises the effot needed to siphon information off the system so maybe it's just the best possible, but not perfect, solution.

Re:RAM disk good for keeping the OS clean

[CableModemSniper]

I've seen lots of libraries where the disk drives were protected by locks. Conceivably you could put your boot cd in there first and lock it up.

To make a difference

[FakePlasticDubya]

Run for a seat on your local library board. I can almost guarantee you that you won't see much competition, and heck there might even be an open seat that you can run for uncontested.

Libraries are not run or operated by the Federal Government, at least in the United States. They are run by local government, paid for my the local library district's taxpayers.

Show up to the library board meetings, bring your friends with you. Ask them what they think about these issues, and what they are doing to keep a balance between needed record keeping and just letting Project TIPS or the Homeland Security department grep through records for "nuclear weapon" or "anthrax."

You can make a difference! Most people it seems lately take no interested in local / town / area governments, but that is where the normal citizen can make the MOST difference!

I wasn't talking about "wasted" votes

[moncyb]

I wasn't bringing up the "wasted vote argument". I was saying that the voting process needs to be restored to the proper electoral college. The forced Biparty system only works for corrupt politicians and factional groups.

Re:The Pet Psychic

[Medieval]

She gets paid large sums of money to spew questionable advice about dealing with your pet based on her 'communications' with them... This is stupid? Nah, that is genius... The people who bring their pets to her, on the other hand....

Re:As one that works in a Library Systems Office .

[jarrell]

No, if you'd get your head out of your ass, and read the actual post, instead of just deciding what it said, your post would have been far more useful. And no, my job isn't to protect ebay. But my job *is* to cooperate with legal authorities tracking actual wrongdoing. If crimes are commited with services we provide, and we don't have any clue who was doing it, we start getting smeared with liability. Given I have *plenty* of evidence of the number of events that come from public labs (be they libraries or what) I have *plenty* of justification for my stance, despite your pathetic knee jerk response to it. Over 80% of crap that we deal with comes from those labs. I'm not assuming everyone will be committing a crime. If the criminals would register at the door, I'd leave the rest alone. But I am assuming that those 1% that are need to be tracked. As I clearly stated, I don't care *what* they were doing, and I don't want to be logging that. But, if it turns out that they were doing something illegal at the time, and it's tracked back to a particular PC, I want to know who was sitting there at the time.

I Work for a Library

[bleechack]

I work for an academic library (state university). I'm not a librarian, I exclusively do computer "stuff" for them. So I am familiar with these issues.

We do not save historical checkout information. Our feeling is that there is no reason for us to save that information. The only way that we could know what books a person had checked out and returned would be if they returned them late and have unpaid fines. Once the fines are paid, they go away. So be sure to pay your library fines ;).

For anonymous browsing we are currently using a product called Centurion Guard. It keeps files from being written to the hard disk permanently. Once the computer is rebooted, the browser cache, history, EVERYTHING is reset to the state it was in when I installed it.

The reason for doing these things was not anonymity initially. We didn't want to waste a hard disk on the automation system logging user's browsing habits. The Centurion Guard is really to keep users from breaking systems, but has the nice side-benefit of hiding user's identities.

I have talked about this a little with our Dean and he staunchly supports the patron's right to privacy, so I don't see us changing any of this any time soon. Which makes me happy.

Don't think that libraries are ignoring privacy and freedom issues. Some of the most fierce freedom of information advocates I have ever met, I have met in the library setting. ALA is one of the best freinds that we have right now.

Re:As one that works in a Library Systems Office .

[jarrell]

No. We're only protected if we innocently didn't realize it was an issue. If we *knew* people were doing things from there, and do nothing to stop it, we open ourselves up to cival liability.

Secondly, some of those attacks are against our own systems - people trying to crack admin systems, or just own systems, and the "oops, we can't track that" gets very old...

If it was an environment where I knew that kind of crap *couldn't* come from the boxes, but they were still useful for what they were intended for, I wouldn't worry.

Oh please

[ArchieBunker]

So you do impliment this whole privacy thing and the feds come in and raid the place, guess what happens to you? You get thrown in jail for obstruction of justice.

Those towelheads down in cuba could only be so lucky. They get everything they need to live absolutely free and the quality of life is better than in afghanistan. Why don't you look at how some of our POW's were treated in vietnam?

Knoppix is perfect for library computers

[bitMonster]

I am posting this from Konq on Knoppix right now. It is a live-cd version of Debian running KDE. Very, very user-friendly and by default it does not touch the hard-drive at all. All modifications are on a ramdisk.

Preventing finding out who the terrorist ........

[3seas]

really are....It must be tracked...

Information and who's accessing it....

So as many may be trying to rationalize invasion of privacy by thinking only of terrorism excuses, perhaps there is the other side of the coin as to what the feds may be looking for......like those assessing information in order to see the truth:

take a look at this: World Meters

Take a good look at the different meters! Then look at this: What the World Wants

We have the technology and we have the funds to make good things happen.

So why is it not happening? You want to fight about it?

Assuming you don't want to fight about it, that fighting is not the goal or main desire of people, then there must be something else, something bigger that is the problem. You know, considering annual world military spending is $780 billion dollars (US) and to solve the major world humanitarian problems only needs 1/3 of that....

The problem has to be more than something under a trillion dollars.

A CIA Fact Sheet on Indonesia -- see the religion percentages (88% muslim).

OK, (given the above muslim population of indonesia): from the pbs trillion dollar bet article:

"In the summer of 1997, across Thailand, property prices plummeted. This sparked a panic that swept through Asia. As banks went bust from Japan to Indonesia, people took to the streets - events so improbable they had never been included in anyone's models."

and in Indonesia May 1998:

"Sources all over Asia tell Uscher that Asians know about local corruption but believe America is taking advantage of the situation to grab Asian markets and Asian wealth."

and (read the article!!!) another article from CNN:

"The austerity measures were a condition of the International Monetary Fund's $43 billion aid package to bail out the southeast Asian nation. "

World Bank wanted to help Indonesia out but charge interest (usery) entrapment???? Funny how China is the only country who did not participate in this stock game and are better off then the rest of us for not doing so.....

Where the US bailout was only (pbs article):

"We expect that they're going to explain to the members of this Committee why the Federal Reserve has organized the $3.5 billion bail-out for billionaires, why Americans should be worried about the gambling practices of the Wall Street elite"

And there is Something Else I have run across for that timeline as well (making the "trillion dollar bet" just icing on this cake?):

(note: overall I find information from this resource to be integratingly correct enough to be both useful and insightful, though with a touch of blind bias towards capitalism, though it does try not to be blindly biased, it is to subjective to capitalism to completely avoid it.)

"During the 1993-1999 bubble era of false economic progress, many CEOs, executives, employers, employees, even customers adopted the scams of clintonian-era politicians, lawyers, journalists, academics to become increasingly dishonest, corrupt, even criminal. The bubble-building, stock-market fraud began when Chairman Alan Greenspan clintonized the
Federal Reserve. He signaled that politicization by blatantly breaking a time-honored apolitical precedent when he sat as a special guest in the president's box during Clinton s first State-of-the-Union address. Greenspan, the former acolyte of capitalism-champion Ayn Rand, then married a socialist/clintonian journalist. His drive to create a Clinton-boosting, economic boom -- a high-tech bubble economy -- escalated from that point. He with Robert Rubin and Bill Clinton artificially increased the value of the dollar, relentlessly increased the M-3 money supply, recklessly created sloshing liquidity, and pied pipered consumers and corporations into bankrupting debt. He engineered those cancerous long-term policies to continually fuel the equity markets for baleful political ends and unearned glory.

The bubble burst in early 2000 causing losses of four-trillion dollars. After several sharp bear-market rallies, those equity losses launched a long-term economic decline -- the feared L-shaped recession or worse."

Oh yeah and this 5 year stock market link comparing the DOW with the S&P and most important the NASDAQ. Where you can tell where the money went and also know what the dot coms were all about.

Given the above

From theCBS article on the NSA (National Security Agency) total system failure:

"In January 2000, Gen. Mike Hayden, the director of the NSA, received a call from the agency's watch officer alerting him that all of its computers had crashed."

In that same article (in fact in the previous paragraph):

"A phone call intercepted by the NSA is often the first warning that a terrorist such as Osama bin Laden is planning an attack against Americans. To find that threatening phone call, email or radio transmission among the billions made daily, the NSA relies on rooms of supercomputers."

The date of this CBS article is Aug 29, 2001.

Do you really think maybe Y2K brought the systems all down? For what is supposed to be the top spy agency in the US? (they don't say what caused the three and a half day crash.)

Or do you perhaps see a simpler Truth to the matter, such as:

Stock market gamblers and Gov. screwed up the world economy so bad and especially for muslims that the NSA had damn good reason to KNOW what was going to happen and that they needed an excuse for their total inability to deal with it.

*And then there is this, how might Afghanistan participate in global* *humanitarian issues:*

And the Bill of Rights

How about now? Do you want to fight now? And if you were an Afghan Muslim, instead of a US citizen?

Targets....White House for it's political control over Pentagon military backed control over World Trade Center ....world economy.

We taught them how to do it, How to fight smart, how to learn what they need to know and where they can get supplies (anthrax, planes, etc..) from us to use against us....... then we lite a bon fire under their ass to motivate them into action while we turned our backs to intelligence....played ignorant......so they could more easily do it.

And Ted Turner (CNN) said something about the attack being an act of desparation. Which he later apologized for.....because of why?

Does it really matter?!

[Gushy79]

I mean does it? honestly? Is it really an issue if the govt knows how often you get Monkey Spanking for Loners vol 3 out?

Just because they information is there doesn't mean they will do anything (not that there is that much you could do with library information). The govt wants access to the info for a reason - to find terrorists, peadophiles and the like. If you don't set off any flags in their search, then your data gets bypassed and life goes on.

Don't get me wrong I think there are limits and I wouldn't want to live under the watchful gaze of big brother all time.

However all this talk of big brother is always being thrown about and you are just fueling the fire. Yes the govts around the world should not have access to every aspect of information about you, but if them seeing what books you read, or if you need to carry around an id card with a chip on it that has a load of info about you (medical info would be damn handy if you got run over or something) then I think it's a small price to pay if it means the govt can get more terrorists, peadophiles, rapists, etc off our streets.

The trick isn't stopping them having info, it's controlling what info they have; and for the average citizen, most things the govt would want to know aren't going to affect your day-to-day life.

Now that I think about it, maybe you posted the topic because you have something to hide from the govt. :-P

Re:Does it really matter?!

[Smallest]

yes, it does matter.

you should expect political candidates to try to use checkout records to stir up controvesry over their rivals.

you should expect this information to be used against you if you are ever on trial, if for nothing else than to attempt to discredit your "character".

you should expect the govt to use it to determine the appropriate benefit amount for various programs (the same way insurance companies rate your lifestyle before determining policy rates).

you should expect the govt to track your every move, if you check out books that fall on their List.

if you're a minor, you should expect your parents to be notified if you are checking out books that aren't approved.

it's a rare occassion where the govt does not seek to excercise as much power as it can get.

-c

Re:Does it really matter?!

[meowwmixx]

The issue isn't that the government can search our library records, the bigger issue is the encroachment on other rights and control of our private information. Its essentially the same premise as spyware. Its not there to get anyone, just to obtain infomation about customers. It won't be used to incriminate you. All the same, its the issue of control. Once they have all of your marketable information, you have no say as to where that goes and who sees it. These aren't people who are looking for terrorists, so why should they have your information? Also, who wants their internet history in the hands of other people?

I don't mean to seem harsh, but I value the protection of my rights and personal information more than the off chance that a few bad people will be caught. Where will the line be drawn? The entitlement to some information will lead the government to seek entitlement to other forms of it. And then where will the line be drawn when it comes to investigation of suspicious library records? I am imagining a lot of harassed and annoyed students and researchers.

But lets play devil's advocate... Assume that a few terrorists are caught by the library trolling system. Soon, people learn that the libraries are no longer a good place for information, and the system rapidly loses effectiveness. The government moves on to another source of information and at the same time maintains its rights to the decreasingly useful information from the libraries. Soon they have information from all sorts of aspects of your life and can paint a clearer picture of what you do. Expand your search parameters here, change your guidelines there, and suddenly you can begin to find that certain aspects of a person's life make it look as if something illegal is happening. The government now will claim it has due cause to invade your privacy further to examine leads they have gathered. They will be acting on the hint of a suspicion of a premonition and it will all be considered legal. After all, we granted them access to the information, they are allowed to use it as they see fit. If our privacy is to be encroached upon, we need to define how and where the information can be used.

Of course, if the other posters are to be believed, the libraries don't actually KEEP this kind of information. In which case, rapid analysis at checkout would be the only method available, and even then I have a hard time imagining a terrorist walking out of a library with 15 books on nuclear weapons, marxism and counter-intelligence. We'd be going on a lot of wild goose chases and catching only the dumbest criminals... Hey, at least we will be able to look forward to another FOX special...

I know how to make a bomb

[DoctorFrog]

I have all the information I need to take lives right here in my apartment. I found the formula for the ANFO explosive McVeigh used (or one very similar) in my aging Encyclopaedia Brittanica.

Now, should I be arrested? Should my Encyclopaedia, which I purchased at quite some personal cost while I was a seaman in the United States Navy, be taken from me lest I use the dangerous information it contains? Or does that only apply to electronically-conveyed information?

Re:I know how to make a bomb

[zeugma-amp]

Indeed. Olde Brittannica's have tonnes of information that are of practical use in many circumstances. I have an almost complete set from 1903, and can attest that it is loaded with information that would make the modern statist's hair curl.

Go Back...

[Blue+Stone]

Roxio's GoBack 3 has an "Auto-Revert" function that automatically restores the hard disk to a pre-determined "clean" state, at a given time/event (midnight/shutdown/whatever.)

They tout it as being ideal for cyber-cafes and libraries.
Unlike GoBack's normal working state, where a detailed history of the drive's activity is maintained, when Auto-Revert is enabled, no history is kept after a revert; all that's left is the "clean state."

Sounds ideal for preventing authoritarian agencies from snooping on their citizen's web surfing habits. :)

Re:Go Back...

[dreamfactory]

or Better Still.. Instead of go back, at the local internet cafe near me they just ghost the machines with the original setup every night. stick in the cd, bang... it's all done!

Hell.. you could even do it for your own PC'S :)

Re:Go Back...

[netfist]

Just restoring a saved state at filesystem level does not reliably destroy information added since the state was saved. Some tinkering with the standard unix commands strings(1) and grep(1) on a raw disk device can lead interesting results without too much trouble.

Restoring from an *unoptimized* raw partition/disk image (eg using dd(1) ) (as can easily be accomplished with a bootable linux CD + NFS) will at least put such information out of the reach of reading with normal operating means.

Recovery of such information would then require lab conditions and cause substantial costs. Such recovery can be made even more difficult with "wiping" programs, which overwrite the disk with random patterns (dd(1) again + /dev/urandom(4) for a quick solution) multiple times.

Obviously it is simpler *not* to use any magnetic media here at all. Though recovery of information from pulled RAM chips has been done(!), I doubt that it is a trivial or even viable task when they were used under a complex OS that manages memory in a complex way.

I'm even sorrier

[astroboy]

This may very well be taken as Flamebait or Offtopic, but I can't resist sticking my nose in here. Public Libraries are _public_ places, owned by the _government_.

1. While this is often true, so what? The rest areas in national parks are also owned by the government, but that doesn't mean they have the right to put webcams in the latrines.
2. Further, it isn't always true. Lots of private universities have libraries; there are a number of privately-owned museums with libraries attatched.
3. Finally, while it is true your bog-standard municipal library is owned by `the government', it isn't owned by the federal government; it's generally a service of the municipal government, paid for by municpal ratepayers. Why exactly, again, does the FBI have the right to get any information at all from the library just because both the FBI and the municipal library are owned by `the' government?

The Cato Institute, a libertarian think-tank and about as right-wing an organization as you can imagine, a group I seldom have occasion to agree with, published a report on these sorts of issues entitled ``Preserving our Liberties While Fighting Terrorism'', which, in discussing exactly the sort of new powers like being able to search library records with no probable cause, says:

That ought to give pause to people of goodwill from all across the political spectrum-since those are the telltale signs of societies that are unfree.

How?

[starX]

"I bet if we offered a packaged, free, easy to install Safe Browsing computer or Anonymous Checkout program, libraries across the U.S. would enthusiastically embrace it."

The fundamental problem with this is that an anonymous checkout system would mean that the library would have no way of getting their books back. Not that a lot of people are out to steal books from public libraries, but I know that if there weren't a fine for returning it late, I would probably put my borrowed books down some place and forget that they were borrowed and not mine. After two weeks of this, they usually give me a call reminding me that the books actually belong to them.

Now picture a world where they can't call me, and when I check out a book, they have no idea that I have quite a few sitting in my apartment waiting to be brought back. Multiply that by the number of people checking out books, and the nations libraries would soon be depleted.

Another thing, I know quite a few people who work in libraries, and they tend not to enthusiastically embrace anything. Especially anything that even sounds like it might require having to re-enter every book in their collection to a new database, and unfortunately they equate the people I know equate "new software" with "new database:. Of course this view is probably a little bit skewed because I'm used to pivcking around small libraries in sleepy towns in the sticks.

Anonymising library loan records

[caveman]

Some years ago, the Hampshire County Library service in the UK had two different styles of library tickets. One type was the standard cardboard wallet into which went a ticket identifying the book. On this carboard wallet, about 1.5" square, was the borrowers name and address. When you returned the book, you got the cardboard wallet back, leaving no trace of who borrowed what, and when.
The other type of ticket was the 'Fiction Token'. This was a simple, mass-produced plastic card, identical to every other plastic card, which was simply exchanged for fiction titles. You take a book, you give 'em a token. You return the book, they give you a token back, but not the same one. There's no way to track who has what.

This was all removed in the name of efficiency some years back. The current system uses barcodes in books, and barcoded member cards, tying all books to borrowers present and past. Any librarian can browse through your borrowing history, or the history of a book, almost instantaneously.

So, take a backward step for privacy. Replace your lendng libraries computer system with cardboard wallets. When a book is loaned, you do have the borrowers details, but ONLY while the borrower has the item. This allows you to chase borrowers who have not returned items. Once the item is returned, you lose the association. Simple, private, and virtually idiot-proof too. The system doesn't even need electricity. For low value items, such as paperback books, issue 'fiction tokens'. Borrowers get, say, four tokens, and if they want more, they pay the average cost of a paperback for one. Keep a log of who has how many tokens, but nothing more than that. This will catch abuses, but not provide any tracking. Librarians: You're in the library business, not the espionage business! Do your community a favour, and take a step backwards.

New popular crime

[moldar]

So, now the new thing will be for the seedier kids to hang out at the library and ambush anyone walking out. Books have a pretty high value and with this system, thieves are able to get full-face value for their loot. Hmmmm. Methinks it won't work. . .

Good Idea

[linuxislandsucks]

This is a good idea to collect ideas on how to enable libraries to rpotect individual privacy in borrowing books..

we need to send this thread of ideas to people like Jenny levine at

http://www.theshiftedlibrarina.com

Re:I'm sorry..

[gmhowell]

Unfortunately, this isn't true. Look at the number of seizures without court hearings, etc. of 'drug lord' property.

Re:I'm sorry..

[gmhowell]

Again, not necessarily. The Feds have even LESS right to tell the states what to do than the states. State governments are sovereign entities, except as delimited by the constitution - a document you are apparently unfamiliar with.


I agree with your analysis of the traditional view and the US Constitution. However, states have repeatedly ceded their authority to the Federal Government. I blame the Federal Income tax. My state taxes are roughly one half that of my federal taxes. If the situation were reversed, the federal gov't wouldn't have nearly as much power over the state governments.

I'm I the only one...

[Llywelyn]

Who thought "Programming Libraries".

The answer to make sure they weren't spying was to create open-source ones, duuuuuh. ::shakes head, sighs:: I am such a geek.

Re:I'm sorry..

[fatbastard10101]

I don't think the "American" people would agree with you on any of these statements. Quite frankly, that makes you a PRO-TERRORIST communist. Don't you know that the cable news opinion poll has replaced the Supreme Court as the mechanism of judicial review?

I think every elected official and appointed bureaucrat should be required to recite the entire Declaration of Independence and Bill of Rights on TV at least once. That way they cannot plead ignorance of fundamentals of our country, like the IX Amendment.

Too often, all the polarized political rhetoric emphasizes either the I for "liberal"s and the II for "conservative"s. There are many others, and they are not just historical artifacts or relics.

Already happens

[RandomPeon]

At any large university there is a small problem of people stealing textbooks and selling them back. It's not an earth-shattering problem, but it exists. There's nothing you can do about it, some theft is inevitable when you have 40,000 students. That doesn't mean schools should end book buybacks.

If you want to steal things that are readily tradeable for cash, you've got a lot of options. Anything that can go to a pawn shop, for example.

Re:Already happens

[moldar]

But book buybacks are not *full* value - as the parent to my original post had suggested . . . But yeah - I don't deny that "stuff happens" already.

Here is how it could work

[Facekhan]

First of all, regardless of whether government owns libraries or whether we the people own the libraries it does not matter. Our records are private because we have a constituional right to privacy. Just because we go to a government school or a go to a government building does not mean we are surrendering ourselves to a polygraph or a piss test or a background check.

The way to make a library system secure against violations of our privacy is simple. When a person checks out a book, a record is created, when it is returned and any fines due are paid it should be erased. The record as to what book was checked out should be erased as soon as that information is no longer pertinent to the library or the customer.

How about writing "PatRiot" instead of "PATRIOT"

[hey]

Seems nice and subversion - invokes "paternalistic".

Re:I'm sorry..

[ed__]

what isn't true, the 5th amendment?

when the government takes property in the manner you describe they are not excercising eminent domain. the government seizes property under other laws made by congress under the authority granted it in the consititution ('provide for common defense and general welfare'...'to make all laws which shall be necessary and proper for carrying into execution the foregoing powers, ....')

whether the law is constitutional is another question.

Re:I'll make it easy for you

[extrasolar]

Hell no.

Note what I said about the system becoming whimsical.

Also, I believe in public education and government regulation. So libretarians isn't the answer.

Neither is arbitrarily choosing third party candidates.

The crypto for anon checkout is already done...

[Jim+McCoy]

David Chaum, the inventor of the "blind" signature mechanism that is the core of most digital cash protocols, created an extended variant of this system [Chaum90] that explained how you can accomplish some rather tricky things with unlinkable identity systems. One of the examples he has used in the past a computer controlled library, the "librarian" would let you check out books with an anonymous identity and maintain policies such as "only three books out at any one time", etc. with strong security for the system and complete unlinkability among user transactions as long as they follow the rules.

This system handles the daily mechanics of such a digital library, but it needs an external hook to get a user into the system called an "isa-person" certificate (a cert that you could only get one of, probably biometric, that is a hard link to your meatspace identity) which is used as the stick to prevent people from walking away with your books. If someone checks out books and does not return them they get a negative mark on their isa-person cert that will follow them to around until it is cleared. A deposit of cash, as others have suggested, would probably serve an equivalent purpose.

If you really want a secure, anonymous digital system it is probably going to end up working something like NetFlix. You apply for an anonymous id and put down a cash deposit, the anon id lets you borrow titles with certain restrictions, when you are finished with the account you cancel your subscription and get your deposit back.

Jim

[Chaum90] David Chaum: Showing credentials without identification: Transferring signatures between unconditionally unlinkable pseudonyms; Auscrypt '90, LNCS 453, Springer-Verlag, Berlin 1990, 246-264.

Re:I'm sorry..

[Zigurd]

Your milage may vary depending on your country's constitution, but in the U.S., there is no generalized right for cops to go fishing for criminals. They have to have "probable cause." Radar is still somewhat controversial on those grounds, and it is one reason speeding is not a misdemeanor but a civil infraction.

Indeed, as you point out, a warrant is required for accessing most records, and a warrant has to be based on credible testimony, and a judge has to sign his name to it (a standard that is often enough abused, but...).

So a library simply being property of a municipality or charitable foundation is not enough to enable a completely free hand in records access.

Re:Bottom Line

[lightcycler]

Knowing that, at any moment, the gov't could walk into the library and demand a list of everything everyone has been reading, or searching on the internet, is incredibly chilling to people's willingness to read, or search, materials that aren't "popular."

I would also suggest that if the vast majority of peacable citizens could be persuaded to educate themselves about science which would prove useful militarily (they don't need to read the books dammit, just borrow them) then such people would help to preserve others' anonymity at the library.

The article tells us that since the 50's, every single state has passed laws making library records confidential. What does that tell you? Overwhelmingly, every single state in the United States is against this release of information. So how does El Presidenté Bush's opinion over-ride that of the people who elected him?

Re:I'm sorry..

[gmhowell]

What isn't true is that the government must provide fair and just compensation when it takes the property of citizens. Sure, that's what is says on paper, but that's not how things work. In the case of _suspected_ drug dealers, property can be seized without warrant, without trial, and without compensation.

I suppose it falls under the authority you cite, but I think my point was that the government does not always have to provide compensation for property seizure.

The solution is simple and easy

[perrin5]

Assuming that:
1) librarians want to know how often a book is checked out and in.
2) librarians want to be able to get their books back
3) Librarians are Good People(Tm) and want to protect privacy:

The system should look like this:
3 separate databases/tables:
1) book check out/in information. contains 3 fields: Book name/barcode, date out, date in. This is written to at the same time as the other database
2) Personal holdings: the table is set up as follows: Personal ID, Date Out, Date Due.
3) personal info: name, address, etc.

The second table is checked against the current date to see if the book is overdue, if any are, it sends you a letter.
When your book is checked in, the check in date is filled in in table 1, and the record is DELETED in table 2.

Simple, easy, completely safe.

Libraries currently don't keep track

[Uteck]

Having once worked in a small Librariy I can say thay we could not keep track of all the books ckeked out. The server just could not handle keeping that much data,even the AIX server that ran it all. The couple of thousand books ckecked out every week would be a maintance money pit for the IS staff to keep backed-up. We keept track of fines and what is CURRENTLY checked out only and who has a library card. Anything else is too expensive for the tight budgets of any Library.

Why keep the info in the first place!

[dakorman]

The 64K questions is why do they keep this information in the first place! I can see why they may want to know how many time a certain work is taken out so they can make intelligent choices in picking books that are of interest to the individuals that use their facility.

Maybe librarians are just nosey b#####ds!

Re:Why keep the info in the first place!

[willpost]

They write your name down so they can call you if you never returned the book. If they didn't.. free books!

Re:Bottom Line

[archen]

If I had no idea what the facts were, I'd have to take their word for it, and allow my opinion to be shaped by my own lack of knowledge

Very true. Time after time since the whole Anthrax scare I found myself correcting people about what this or that biological agent could do, how you could spread it, etc etc. The only reason I happen to know these things is because I did a report in high school on nuclear, chemical, and biological weapons. It sort of makes me cringe to think that I'd probably be put in prison now for researching that report. I mean how do you protect yourself from terrorists, if you don't know how they think, or what they would do?

Re:Carnivore?

[frovingslosh]

Carnivore is a program that they install an an ISP to grab e-mail that looks suspicious. It cannot, afaik, be used to grab info off of a computer, unless you can be talked into e-mailing that information somewhere. Pray enlighten us on how they would use Carnivore to get information from a computer...

Carnivore is not limited to SMTP packets (if it was it would be defeated by all the web based mail readers). It can capture any and all IP traffic, so it can reconstruct anything a monitored site does on the Internet. No, it can't capture information off of a computer, but one does not go to a library to store information onto their hard drive. Anything on the hard drive of interest would have been sent over the Internet, either to or form another location: E-mail, user/passwords (even a /. login), news stories, stories about evil doers who think they are entitled to "rights" after peeking at an anti-government site, and so on.

It's been a while since I did this, but at some libraries I believe it's necessary to "unlock" a computer by somehow presenting your library card or some similar token, and so they could in fact know who was at which terminal.....

Clearly this is a needless action to take at a library. I can see the need to present your card when checking out a book, as it gives them some level of expectation that the book might be returned. But I've never had to present a library card at a library to read a book on site. I can read books in just about any public or university library in this country without a card, I just can't check them out. Why should I have to show a card to use an Internet terminal? The only reason seems to be to track people's usage. If they are doing this then we are hardly going to convince them to boot to RAM disk to protect people's privacy.

They might also look for things like what signin you used when you were checking your webmail...

And again, Carnivore will get that, a RAM disk will not provide privacy.

Re:I'm sorry..

[woogieoogieboogie]

Public Libraries are _public_ places, owned by the _government_.

The US gubment does not own anything. They maintain property for the common good of the people. As a citizen of the US, you have every right to question how the gubment uses any of the public's property.

Furthermore, in the case of public libraries, the local municipality is charged with maintaining the local library. Not only is the FBI infringing on the rights of the people, they are also infringing on the rights of the states which is in direct violation of the US constitution.

It amazes me how many of my fellow Americans do not understand that the US government exists to serve them, not the other way around.

And no, the corporations do not control the gubment. The most powerful government lobby has always been and will always be a "grass roots movement."

Re:I'm sorry..

[jxs2151]

Are you the result of what public education is cranking out these days?

Did they teach you *anything* about the constitution?

Purely economic decision

[DeeAyeVeeE]

Libraries are not as popular as they used to be. If librarians want to keep their libraries open and funded, they need as much traffic as possible to justify their existence.

If people believe their privacy will be jeopardized by visiting a library, they will stay away from libraries even moreso than they do now. Thus, a pro-privacy stance makes perfect sense from a librarian's perspective, and it is an economically rational position to take.

That isn't to say the librarians don't prefer it that way, of course. If the government said "you only get funding if you invade people's privacy" it would be economically rational to take an anti-privacy stance...but I think some would still fight it.

After all, what good is a library full of books with nobody there to read them?

At least it would be quiet. ;)

FBI files...

[Medieval_Thinker]

In the 70's a friend of mine in high school and I decided to check _The_Communist_Manifesto_ out of the school library. This seemed like a rebellious thing to do, and we were feeling rebellious.

It turned out to be a boring read for a couple of guys in high school, so it was thrown in the back of my locker.

It came due and my homeroom received two late lists. One had my name alone. The other had the four or five other late book folks in the homeroom. We laughed about how a copy of that late book list was in a file at the FBI.

Ha Ha Ha ...

Anonymous even when a book is checked out

[rossz]

Information should only record that you have something checked out, but not exactly what you have in your possession. Use a one-way hash such as MD5 on the ISBN as a key. When you check out a book, only this hash is recorded. When you return the book, this information is purged from the computer.

Downside, the library can't tell how much the book is worth when it is lost. If you record the value along with the hash, it could theoretically be used to figure out the exact book. To fix this, only the value "range" is recorded, and the maximum is charged if the book is loss. For example, the book is in the "Under $10 range". If lost, you own $10 to the library, even if the book only cost $7.

Another downside, the library doesn't have a way of keeping track of which books need to be replaced. This isn't a good situation, but privacy overrides inventory tracking need. I think it's a fair trade-off. The library could implement an "inventory week". During that week, the actual ISBN is recorded when you borrow a book so they can do a proper inventory check. If you don't want that information recorded (even if purged when the book is returned), don't check anything out that week.

Re:Anonymous even when a book is checked out

[netfist]

A list of all valid ISBNs in the world, let alone a list of those which belong to books which exist in a nominal library (I bet that it is trivial to extract such a list electronically from the inventory data of the library), would make for a very trivial dictionary attack on such a hash. If it can be encrypted in a time frame which does not obstruct the workflow in a library, with the measure of processing power available to such a library, it can surely be cracked in short time with the processing power available to an investigating agency.

Re:Anonymous even when a book is checked out

[John+Hasler]

Use a one-way hash such as MD5 on the ISBN as
a key. When you check out a book, only this
hash is recorded.

And then the FBI runs the ISBNs of all the books they find "interesting" through the hash and searchs for matches.

Another downside, the library doesn't have a
way of keeping track of which books need to be
replaced.

Sure they do. They can add the accession number of each book to a list of books in circulation as it is checked out. If you note only the week or even only the month it went out you'll be able to figure out when to give up hope of it coming back without giving the FBI any useful information.

I like your idea of "price classes", though. Try this: When you check out a book its price class is added to a list linked to your name. Appended to this is a hash of the accession number likely to be unique among the small number of books of a given class that can be checked out by any one client but far from unique across the entire collection. When you return the book the hash is recomputed and the book removed from the list. If you don't return the book the library levies fines and eventually compensation based on the price class. An adequate hash might be something as simple as the las few digits of the accession number.

Re:Anonymous even when a book is checked out

[rossz]

And then the FBI runs the ISBNs of all the books they find "interesting" through the hash and searchs for matches.

Good point. Some method needs to be used to randomize the hash. Perhaps each person would have a PIN they would use. The ISBN and the PIN generate the hash. When you return the book, you enter your PIN and they scan the ISBN to compare the hashes Big downside here! Now we've added an element that makes it even easier to track you if the MIBs compromise the database. I think I need more foil for my hat.

I was trying to come up with a method that did not require a deposit on the book. People with limited incomes have as much right to privacy as people with money.

Re:Anonymous even when a book is checked out

[librarygeek]

This would be futile, as not every book has an ISBN number.

Another point...

[slamden]

As the sys admin for a fairly sizable public library system, I'd considered doing an "Ask Slashdot" on this very same subject. Our library (and, I'd assume, many many others) is fiercely protective of our patrons' right to privacy. And, like many on this site, we were outraged at the passing of the PATRIOT act. (At least CIPA still isn't in effect.)

We can still do quite a bit to protect our patrons' privacy, such as not requiring log-ins, using DHCP and NAT to keep their ip addresses hopping, etc. But as for records of what people have checked out, there's another problem that I haven't seen mentioned elsewhere; backups. As with any database of mission-critical information, we have to maintain at least a small amount of backup information.

Of course, once a book is returned, we wipe the transaction record from the database. But the government will still be able to see who has what currently checked out, as well as whatever is on the backup tapes. Unfortunately, I can't see much of a way around that.

Please keep this thread going! I'm kind of having to teach myself the basics of system administration at my library, and some of the ideas that have come up so far have been very interesting...

The really serious problem is ...

[njdj]

It seems that if the American people are going to protect their rights, they are going to have to do so actively.

That's always been true, not just in America but in every country. The fact that so few people seem to understand it, is the most serious long-term threat to our freedom. Politicians want power, that's why most of them became politicians. Unless constantly resisted, they will grab more and more power over our lives.

Re:I'm sorry..

[Bingo+Foo]

During the turn of which century did black people have both 1.) the right to vote, and 2.) owners?

Policy or Technology?

[Bingo+Foo]

Do we really want an ironclad technological solution to this? I sure like my library records being anonymous, but I also recognize the benefits of having such records accessible by a warrant or subpoena. Right now I think the Librarians' policy "No records without a warrant" is an entirely reasonable and sufficient policy.

At Andersen, Worldcom and Enron, the technological solution to their "problems with anonymity and privacy" (document shredding) was illegal, even before there was evidence of wrongdoing. (Now I know this is slashdot, the home of the easily stretched bad analogy, so I'll right off state that I realize that their financial records are supposed to be available.)

When a planned, possibly conspiratorial crime/attack/etc. occurs, do you really want our law enforcement hobbled by an inability to unravel the methods, sources, and co-conspirators of the bad guys?

If someone needs a book to committ a crime...

[BrodieBruce]

why can't they goto a book store? If libraries become closely watched, then I think any smart crook will just go over to a Borders or Barnes & Noble instead.

It's just another thing to boost our false sense of security. The people who end up paying for it are law-abiding citizens. Anyone who flew in the US in the few months after 9/11 knows what I mean.

Re:If someone needs a book to committ a crime...

[netfist]

A net with holes will still catch you some fish... They probably don't expect *complete* information on individuals from such spying, but *lots of bulk* information which helps narrowing down a group of suspects (narrow the group of suspects down from "the whole population", that is.).

And by the way, an online bookstore will probably keep more records on you than any library, for perfectly legitimate reasons. The local bookstore, as long as you *will be allowed to buy books and newspapers for cash*, is an option of course.

Re:If someone needs a book to committ a crime...

[finnatic]

Variation on your premise.

If someone needs a book to commit a crime - why borrow it from a library or buy it from a book store? Most Library systems are fairly good at preventing book theft - but there's bound to be a way with even the best to steal books (in the Library I work in, it's called opening a window and chucking the book to a friend waiting below in the evening when our staffing is *real* low).

If Library's keep track of patron usage of the collection, then any *good* criminal/terrorist or whatever would be stupid to use their own details - they'd just steal the book, steal someone else's borrower card etc.

Which leaves the question - how does the government having access to the patron usage information help to catch anyone who is really good at what they're doing - you're only going to catch the amateurs who don't think about data shadow...

Re:If someone needs a book to committ a crime...

[Prior+Restraint]

...there's bound to be a way with even the best to steal books (in the Library I work in, it's called opening a window and chucking the book to a friend waiting below in the evening when our staffing is *real* low).

Ah, for the days of living in a community with a semi-secure library. I used to live in a city which put magnetic strips in the book spines (unthinkingly, I once wandered into a video store with a backpack full of library books; comedy ensued).

In my new hometown, we have self-checkout. Walk over to the dumb terminal, scan your library card, enter a PIN, and scan the books you want to check out. If you "forget" to scan one or two of the books, who's to know?

from a systems librarian

[MagusAptus]

First, I am a systems librarian. I run the central "materials management" server for a public library consortium, so I believe that I can add a few things to the discussion here.

First, it is important to mention that privacy and the right to information is very important to librarians. All professional librarians have at least a master's level degree; we receive in-depth training and education in privacy laws, ethics, and technology. Yes, slashdotters, I am a professional librarian, but I am also run an E10K.

A librarian will be the last person to give any private information of any sort. We fight internet filtering just like we fight the people who want to remove those "blasphemous" Harry Potter books from the library shelves. It's just a part of our profession.

With that said, I can tell you what we are doing, and maybe calm some of the fears of the original poster. The practices that I use in my system administration are very common, and are widely used. First, all of our "private" information is stored on the central server. We do not keep any identifying data on the server past 30 days. This is a very common practice... we've done it this way since coming off the old card catalog (as do most public and academic libraries).

As for any information stored on the public access computers-- there is no way to tell who used what computer on the client end. Again, the usage records are all centralized and secure. Furthermore, I know that most of our branches do maintenance routines to clear the workstations' cache and such. Some branches even go as far as reloading the entire hard drive each night ( actually removing the partition, and starting again from scratch from a image).

So, there is no need for an "anonymous checkout system" or anything like that. We're handling this job just like we've been handling it since Egyptian times... and John Ashcroft does not scare us. Much.

You know, instead of posting this question to slashdot, you should of consulted your friendly local reference librarian, who would of consulted your local systems librarian (who is probably chained up somewhere in the server room). That is their job, afterall.

Re:from a systems librarian

[John+Hasler]

First, all of our "private" information is
stored on the central server. We do not keep
any identifying data on the server past 30
days.

Why don't you delete it as soon as the book is returned?

As for any information stored on the public
access computers-- there is no way to tell who
used what computer on the client end.

Is there from the server end? If so, why?

Again, the usage records are all centralized and
secure.

Not against the FBI. For them the centralization is just an added convenience.

Re:from a systems librarian

[finnatic]

>Why don't you delete it as soon as the book is returned?

Because damage to a book is not necessarily noticed when it's returned? Imagine the situation where that happens - someone cuts out pages 31 & 32 (this happens - and it *really* upsets librarians) - something which the average library assistant scanning returned books isn't going to notice. If you don't have a record of which patron id has has the book recently, you can't do anything... Having 30 days means you can at least watch for patterns of book damage - and maybe catch those responsible.

disclaimer: I'm not a Librarian, I just work with them...

Re:from a systems librarian

[MagusAptus]

Why don't you delete it as soon as the book is returned?

1. Troubleshooting. We circulate millions of items, and "stupid" problems occur. I keep records for this time period because most problems will crop up in that time period. Our typical item's circulation period is 2 weeks. It is much easier to fix problems with footprints.

2. Usage statistics. Libraries live and die from statistics. It is how we justify our funding, assign staff, and determine what hours we are open. We need time to extract data (yes... non-identifying data).

Is there from the server end? If so, why?

We track who uses what system. These records live the same amount of time as normal circulation records (30 days). We have people who abuse their computer privilages (we've had many cases of spam and hate mail). We use these records to determine who did what. Again, these problems usually surface in 30 days. And, again, we need usage statistics.

Not against the FBI. For them the centralization is just an added convenience.

You are sure confident in my (and my cohorts) lack of ability. It only takes about 3 keystrokes to misplace a log file. And we've been having alot of problems with those back up tapes lately.

*sheesh*

Re:from a systems librarian

[John+Hasler]

You are sure confident in my (and my cohorts)
lack of ability.

I have no confidence at all in the willingness of the average librarian to risk a prison sentence for the sake of my privacy.

It only takes about 3 keystrokes to misplace a
log file. And we've been having alot of problems
with those back up tapes lately.

It's easy to say that now, but what will you do when you have four large, extremely aggressive men with guns standing over you?

Re:As one that works in a Library Systems Office .

[H310iSe]

See, that's a really good point - and environment that's safe and anonymous might also be one that would make it difficult for crackers to work from. Talk to me about what things a PC should be able/not able to do to make it cracker-unfriendly.

Re: Building Anonymous-Friendly Computer Libraries

[Harmon]

I don't think anyone here has even a clue how huge and complex library software is -- nor how much money it costs, and the nightmares there are in maintaining it. We tried to create a GNU software system for libraries sometime ago, never got off the ground. There were quite a few volunteers, all who seemed to think this was just a simple database project, but when they took a look at what libraries actually are using and what it would take to create a whole new state of the art object oriented library system -- they all went away. Go to the SIRSI page www.sirsi.com or the Innovative Interfaces homepage if you want to see companies that have the best commercial stuff out there. And, BTW, up until now libraries didn't keep records of what you checked out -- the default setting in the software is to erase the record as soon as the book was checked back in. This was done precisely because the police and feebs had in the past tried to get that info. Librarians are not happy to be in this position, believe me.

Re:Carnivore?

[H310iSe]

clearly part of the system would try to limit the ability to snoop on the goings-on from the ISP - some kind of encrypted, anonymous browsing would be great (I posted above suggesting encrypted communications to an anonymous proxy (only as safe as the proxy is) like triangle boy (if I recall correctly that how it worked) or what ever happened to that IBM program 'crowds'?

I'm interested in any ideas you have on how to secure against ISP-level snooping

O/S in RAM

[chris_sawtell]

I'm thinking about things like creating a RAM disk and loading the OS onto it

Knoppix is what you need.

Most Data Collection is Financially Driven

[reallocate]

I'm more worried about Amazon and the like than public libraries. They have a reason to track and retain your reading habits. Libraries, I suspect, track current borrowings.

Meanwhile, your bank knows how and where you use your credit cards, your phone company knows who and when you use the telephone, and, if you use one of those cute little discount cards, your local grocery knows what you eat.

All this privacy threatening activity existed before the current post-9/11 focus, and would still exist absent that. It is financially driven, even in the case of libraries who want their books back.

republic

[bsDaemon]

Its a republic. Democracy is a dirty word synonimous with mob rule. The word democracy apears nowhere in the constituion or related documents. Its use is merely a populist attempt to overthrow perfectly good and well thought out methods for maintaining a government.

Encrypted? How? & Physical Book Checkout Syste

The library is going to be required to turn over their keys legally. You can't hide the encryption from them, and you can get charged with obstructing justice if you have a librarian dead-man switch deleting files...

I've also been thinking up a system for checking out physcial books anonymously for sometime. This became especially important to me, when I realized my library was asking patrons for their SSN in order to get a library card.

So this is system I've got so far....

1) You need to get the libraries to add another field for all books in their databases: how much replacement costs are (not book costs, as those are far cheaper) for each book. This is *not* an inexpensive step for large collections. Also you need a flag for whether or not a book *can* be replaced. Many, if not most, books can't be replaced. And most books are out of print in under 5 years.

2) When checking out a book with an anonymous borrower's card, the value of the card is compared to the value of the book. If the book is less valuable than the $ on the card, then the person wishing to check out the book may check out the book. In total all the books the person wishes to check out must be less than the value on the card.

3) The person wishing to use the anonymous card, tells the checking out staff member their use-password, to confirm that they have permission to use that particular anonymous borrower card (an attempt to prevent theft of cards. It's not very effective it's still possible for the woefully underpaid staff members to fleece anonymous cards, amongst other problems). And the amount the book is worth is deducted from that anonymous card account. As per most libraries, you get a checkout printout (which is also your receipt - how much good it's gonna do you I'm not sure....)

4) There's another password, which is the refund password. That allows you to cancel the anonymous account and get your money back (minus set-up fee). Card is written off as a loss, but can be re-upped with more money later (ie: don't reuse the card numbers, or be willing to tell people their old card can't be re-used). The reason this is different than the use-password is so one person can fund an anonymous card with more than one user, or give to a child and not let them cash it out.

5) Books that are late are automatically depreciated by late fees, until their value is 0, and then the book is purchased. Otherwise, patron gets whatever value is left back into their anonymous account, when they return the late book.

6) Another large problem (like 1), is book returns. A lot of time returning a book to the library does not put it back into their availablity system, and there's no reciepts issued, and no way to prove that you did return a book on time (any library user of more than a casual amount has run into this problem). One way around this design problem is to assign another staff member to do physical check-ins and print dated reciepts, limiting anonymous people to risking their money or having set hours which they must do returns. Also, most libraries are woefully underfunded and understaffed to be able to assign a staff member to do this.

7) This system doesn't cover defacement or other problems.

Many thanks to a nameless (for fear of slashdotting) librarian news site, for covering these issues and many other that are essential to rights, and knowledge.

-- Ender, Duke_of_URL

physics of information

[Erpo]

While I like your idea in principle, it violates information physics. The idea that you can set [the book] to expire when the book is "due" is just as fallacious as the idea that you can rent a secret. "Information" isn't a block of cheese that can rot over time or a car that can be rented and returned. It isn't anything physical. It's simply the organization of discrete bits into a specific order. This requires physical material to store that order, but the information stored on the pages of a book is not the same thing as the book.

Linux is not the units of magnetic material on your hard drive that store it. A story is not ink and paper.

People fall into this way of thinking all the time because information is so closely tied to the material on which it is stored. Sure, you can rent a book, but you can't prevent someone from taking it home and scanning it in. That person wouldn't be stealing the book - she could still return it - but she would have a copy of the information represented by the order of ink blots on its pages.

When you introduce eBook readers into the equation, you mix two fundamentally incompatible areas of thinking: the old world view that can't properly distinguish between information and the physical material that contains it (book publishers), and the new world view that understands the physics of information (tech savvy people). By making easy the electronic distribution of information that is usually contained in books, it becomes easy to copy that information - much easier than scanning a page. Sure, you can have software that looks at a clock and zeros out flash memory depending on a rental table, but any technology like this, any technology that attempts to control information copying, is doing so artificially. Information does not naturally expire or resist copying.

This opens the door to widespread copying and distribution once someone hacks the eBook device. While there would be no "theft", people would have their desires satisfied (i.e. they wolud be able to read the book) without paying for it. Sure, those people could go down to the library and rent the book, but they would risk having to wait in a queue for a limited resource. Also, "renting" something is not nearly as satisfying (to most people) as "owning" it. However, it would decrease the amount of demand for that book that would be channeled into the purchasing process resulting in revenue for the book publisher and author.

Copying copyrighted information is not stealing - it doesn't detract from the quantity of stock the "owner" of the copyright has. It detracts from the market value of the stock the "owner" of the copyright has.

Er ... do we *really* have that right?

[duck_prime]

Public Libraries are _public_ places, owned by the _government_. The government has a right to collect information from the library. It is not a private citizen's business or residence

Public Libraries are _public_ places, owned by the _people_. The people have a right to peacebly educate themselves, assemble, and petition government for greviences. They have a right to perform these activities anonymously, else they could be subject to harrassment by those individuals who currently control the government.

As to that last ... *is* there really any right to anonymity? I mean, in a legal sense. If you borrow books from the library, do they or do they not have a legal right to store this information?

Techno-solutions won't do it - we gotta fight 'em.

[tchdab1]

If someone builds a fantastic device that can't be tapped or logged, they will then only demand or legislate that it not be used. It's good to have that friendly solution in our back pocket, but we must confront the idiocy behind the forces that are eroding the rights we all deserve together.

We will not passively save our freedoms.

What information is kept...

[jonadab]

It seems a lot of people are under the impression that the library's
computer remembers everything you ever checked out. While it is
theoretically possible that there may be libraries whose automation
systems do that, it is certainly not usual. I work at a library,
and our vendor (Gaylord) produces two of the major catalog systems
on the market, Galaxy (which we use) and Polaris (which is newer
and less, erhm, mature). Neither provides even the _option_ of
storing this information.

The library _does_ of course know what books you _currently_
have checked out. That's sort of necessary for them to be able
to hold you accountable if you fail to return the item. They may
even be able to check a book that recently came back and see who
just had it out, but that information is not stored forever, either.
(On our system, it's stored either for three days, or until someone
else checks the item out and returns it, whichever is sooner.
There is no way to look it up on a per-person basis, not even
with the report-generation facilities.)

So, if you are worried that having checked out a book on bomb
making a couple of years back for a report will make you a
suspect when the next terrorist attack rolls around, set your
mind at ease.

Furthermore, it is in many states (including Ohio) illegal for
a public library to disclose to anyone outside the library
your personal information (such as what you have out or what
your phone number is) except in certain special situations,
such as at the request of a parent of a minor patron, or a
court order.

So, to summarise the risk, the feds could, with a court order,
find out what you _currently_ have out, and your address and
such. Actually, I'd be more concerned about J. Random Criminal
(or someone who decides to hold a grudge for some reason) walking
up to an unattended circ terminal while the librarian on duty
is off helping a patron in the stacks (this happens quite a bit
at smaller libraries) and quickly looking up your address, or
charging you fines, or whatever. Very little computer knowledge
would be required to do this, because library computer systems
are designed for librarians, many of whom are not geeks.

Perhaps the most interesting insight I have to offer here is
that librarians tend WAY further toward the privacy-nut view
on this issue than the typical citizen. A significant number
of patrons would prefer (some of them strongly, to the point
of being quite annoyed at our refusal) that we retain a
complete list of every item they have ever checked out, in
order to be able to inform them whether they've already read
a given book, which books we have by a given author that they
have not read, and so on. Our suggestions that they retain
such a list themselves fall on deaf ears. They don't want
to be troubled with that. They want the convenience. (I
personally am appalled that anyone could take the trouble
to read an entire book and then not remember the plot (or
the major points, or whatever), to say nothing of not even
remembering whether they've read it or not, but apparently I
am nearly alone in this view. Anytime I state it, people look
at like I've just announced I'm from Mars.) If there are
libraries that do retain such information, I'm quite sure
it's because they caved in to patron demand.

Re:I'm sorry..

[Prior+Restraint]

No, he's talking about the other turn of the century (the 2000 election in Florida).

(Sorry, bad joke.)

Re:I'm sorry..

[Prior+Restraint]

My state taxes are roughly one half that of my federal taxes. If the situation were reversed, the federal gov't wouldn't have nearly as much power over the state governments.

Be careful what you wish for: your state may take you at your word and quadruple its taxes.

Survey says: the Declaration is Communist

[gentlewizard]

I remember growing up a classic social science experiment. A group of Boy Scouts took a modernized paraphrase of the Declaration, including the passage cited above, and circulated it at shopping malls as if it were an Initiative petition. Most people not only refused to sign the thing, but called the boys Communist sympathizers.

Yep, that democracy thing is heavy stuff...

OT: Shopping cards

[Prior+Restraint]

The difference is that you have to pay for the stuff you buy in a store, and they store is paying you (indirectly, by giving a very small discount) when you use the card.

In my experience this isn't so. Around here, prices jumped 50%-100% just after the cards were introduced; those with the cards kept paying the same prices they always had.

I resisted getting a card for months, but finally settled for getting one with the name and address of our fearless leader. I make it a point to always use cash at the grocery, so there's no way to cross-reference a credit card number (maybe I'm just paranoid about that bit).

Last night, though, something interesting happened: I had forgotten to bring any cash, so I pulled out a credit card and claimed to misplace my discount card. The lady at the register pulled out hers and swiped that one! She must do this all the time, because the receipt announced that she had saved over $20,000 so far by using her discount card.

Of course, now my credit card number is associated with the purchasing habits of everyone within a ten-mile radius.

Re:Carnivore?

[forkboy]

I believe the Cult of the Dead Cow's program "Peek-a-Booty" does just that...kind of an encrypted peer-to-peer internet proxy. Check out their website

Re:I'm sorry..

[awol]

I agree with your analysis of the traditional view and the US Constitution. However, states have repeatedly ceded their authority to the Federal Government. I blame the Federal Income tax. My state taxes are roughly one half that of my federal taxes. If the situation were reversed, the federal gov't wouldn't have nearly as much power over the state governments.

Consider yourself lucky. In Australia, the federal government was took income tax powers a) as an emergency measure to fund WWII b) as a result of some delightful constitutional interpretation by the High Court of Australia, the members of whom were selected by, wait for it... the federal government (regardless of the left right preference of the justices, their centralist tendencies were rarely in doubt). The states were then beholden to the federal government because the delightful interpretation said that the states could tax anything they liked, it's just that the federal government got their slice first (this is known as the "First Uniform Tax Case" if anyone is interested) as a result every year the states go cap in hand to the federal government for their slice of the national income tax pie to fund such mundane services such as education and hospitals, both of which are the responsibility of the state government. It is a joke!

Re:I'm sorry..

[gmhowell]

I live in Maryland. I'm sure I'm not the first with the idea. Trust me, when our state government grows up, it wants to be Massachusetts.

Re:I'm sorry..

[gmhowell]

This sounds somewhat similar to the situation in the US (although the mechanics are no doubt different). Large federal tax, small local tax (and in case of debt, the federal government gets money first). In order to fund roads, schools, etc. the state(s) must get various and sundry federal grants and loans. In turn, the states must follow all matter of federal laws and regulations. I don't have a problem with that. What I have a problem with is that road money is MY money. The money of a citizen of this state. The rules are those of Pennsylvania, California, New York (just picking big states and using as example).

Anyway, I think the politics and idea sound very similar to what you have in Austrailia. Although from your description, it sounds like you just pay one tax bill to the federal government, not two separate ones?

All the worlds problems on US shoulder

[huckamania]

What is the point of your ranting? That the US hasn't done enough or that the US is responsible through its actions for all that is bad?

Maybe I should feel guilty, being a US citizen and all, that we haven't solved all of the worlds problems.

I suppose the Japanese and Germans would have done a better job of things if they had won WWII. Maybe the USSR would have exported their version of a workers paradise if there was no cold war. Maybe Mao's great leap forward wouldn't have resulted in millions of dead from starvation if the US had done something or nothing (you tell me, Nostradumbass).

Maybe. But I doubt it.

Public Records on borrowed material

[cgoyle]

So go ahead then and take out a few books on STD's or some other such sensitive, private topic. Even if you are just curious, or looking at information because of something you heard. Then allow the public to have access to that information.
"So, have you heard that John Smith has" blah, blah, blah. It may sound far-fetched, but it isn't too far off-base.

You might say, "who cares, I don't care if people think I took a book out because I am sick", well there are quite a few people in small towns or not so small towns who don't wan't others to know their business.

Re:I'm sorry..

[kiowa]

And I that thought that the Goverment was supposed to be the peoples representative. But I guess it's not that way in the US.

Re:Carnivore?

[frovingslosh]

I'm interested in any ideas you have on how to secure against ISP-level snooping

Much like sending post cards through the mail, it's hard to keep much private from ISP/FBI snooping.

One time pads are the obvious first choice for encryption (I don't trust that the FBI and their cohorts can't read PGP). That still can give away a lot of information, like who you are in contact with. While it might be considered an abuse of resources (no worse than most use of Usenet though), I would consider posting an encrypted private message to a binary newsgroup that I knew my contact was monitoring. One should be able to disguise it so that it looks like a stray file segment to the casual user. With a interesting subject line you should even be able to entice enough people to download it that our friends in the government who protect our rights wouldn't likely be able to find who downloaded it, even if they were monitoring all ISP (he would be lost in the crowd). Very short messages might even be stored in the file header, good luck sorting through the list of all people who downloaded those! Of course, if they see you pick up a response they would have an IP address they could backtrack on, so responses, if needed, might have to consider alternate forms of subterfuge.

Clearly there are ways, which should make it clear that Carnivore is more about snooping on honest citizens than it is about spying on terrorists who are taking precautions.

Escrow

[starlbirth]

Perhaps you could set up a third party system in which you pay a regular fee or deposit that is placed in escrow with the third party. Said third party then checks out book for you. That way all that government officials would have access too would be all of the books checked out by that third party.