Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hotmail: Not Safe For Work?

Posted by CmdrTaco on from the no-shocker-there dept.

silentknight writes "According to MSNBC, web-based e-mail providers such as Yahoo and Hotmail may not be a haven for your private e-mail anymore. At least not while you're at work. SpectorSoft is introducing eBlaster, which aims to "secretly forward all e-mail coming and going through such Web-based accounts to a spy's e-mail". Corporations will most likely argue that, because of sites like Internal Memos, companies need to keep a tighter grip on the information that flows in and out of their companies. But attempting to spying on private e-mail?? In the words of Homer J. Simpson: "Butt out, Buttinsky"."

30 of 564 comments (clear)

  1. eBlaster by tuxedo-steve · · Score: 4, Funny

    That eBlaster software seems like a totally excellent way to increase the amount of spam you receive in your inbox per day.

    Thanks, SpectorSoft.com! You've made my week!

    --
    - SMJ - (It's not just a name: it's a bad aftertaste.)
  2. To be honest by ObviousGuy · · Score: 5, Insightful

    The time you spend at work, you ought to be working, not sending personal email, making personal calls, or anything besides work-related stuff.

    Now this becomes a little tough because we aren't automatons and have lives outside of work that need tending to. However, to expect that what you do within the walls of your company is private is laughable.

    Just assume that everything you do there is under surveillance. Heck, all your thoughts are already belong to them.

    --
    I have been pwned because my /. password was too easy to guess.
    1. Re:To be honest by nagarjun · · Score: 5, Insightful

      However, to expect that what you do within the walls of your company is private is laughable.

      That's highly culture specific. For example, most Asian companies usually do not insist that *whatever* you do on company time is teh company's. Heck, I did not even sign a contract to that effect.

    2. Re:To be honest by Mr_Silver · · Score: 5, Insightful
      The time you spend at work, you ought to be working, not sending personal email, making personal calls, or anything besides work-related stuff.

      Which is fine until you point out that the flip side of this is that you'll only work your contracted hours and never think about work outside of work hours.

      If a company is going to totally restrict what you do during work hours then they shouldn't expect any favours back - especially when a better job comes along as you'll be the first out of the door.

      It works both ways, they make your working conditions pleasant and you reward them with loyalty.

      --
      Avantslash - View Slashdot cleanly on your mobile phone.
    3. Re:To be honest by pubjames · · Score: 5, Interesting

      The time you spend at work, you ought to be working, not sending personal email, making personal calls, or anything besides work-related stuff.

      Stuff that nonsense. This is exactly the kind of crappy mentality that made me become self-employed.

      If my employer feels the need to treat me like a child, then I'll go work for someone else (which is what I have done, now I work for me). Stand up for yourselves people -- don't let your employers treat you like children! It's your
       life!

    4. Re:To be honest by photon317 · · Score: 4, Interesting


      Search perlmonks.org for Tilly's article on the subject a while back. It appears that by most states' labor laws, if you are an exempt, salaried, full-time professional - the company does in fact own all of your output, even when you're not at work, and they don't need a special contract to get these rights. If you work as unix sysadmin, and you develop and patent a new lawn sprinkler on your own time on the weekends, they can take your patent away from you. They certainly in this light own your output during work hours, which means they very well can try to enforce that you don't do things like use hotmail.

      --
      11*43+456^2
    5. Re:To be honest by RailGunner · · Score: 5, Insightful
      If a company is going to totally restrict what you do during work hours then they shouldn't expect any favours back - especially when a better job comes along as you'll be the first out of the door.

      Quite honestly, you should do that anyways. Company loyalty is a complete farce. Most companies treat people as "human resources" anyways, and in most companies your employment is "at will".

      Quit giving your lives and your hearts and your souls to a company like that. You'll be much happier if you think of yourselves as mercenaries - do honest work for honest pay. If you think a management decision is stupid, as long as it's legal / ethical, then kick back and remember that they're paying you to work, they're not paying you to care. Example: Say some pointy haried boss wants you to implement a horrible User Interface. You know it's a bad idea, that it'll be clunky. GO AHEAD AND GIVE THE PHB WHAT HE/SHE WANTS! Let them deal with any consequences. If a company starts reading your private email, then quit. Find something else.

      And this isn't a bad attitude. When you're at work, you should perform your duties to the best of your ability. However, when you're not at work, forget about work. And if someone offers you a better job, then TAKE IT. Start putting yourselves and your families over your jobs. Ultimately, your own self and your family is far more important then a company that's here today, gone tomorrow.

      Look what company loyalty got employees at Enron and WorldCom.

  3. blocked at work by Jucius+Maximus · · Score: 5, Informative
    In the large company where I work, all access to Hotmail, Yahoo, etc is blocked at the firewall. This is because too many lusers kept downloading klez, hybris, (random vbs trojan), etc and executing them.

    After this was done, all virus problems on the network dropped from one incident per 2 weeks to maybe 1 incident per 4 months.

    As to the privacy issue, the easy solution is to NOT SEND PRIVATE E-MAIL FROM WORK (or at least use GnuPG or PGP!)

    1. Re:blocked at work by Nomad7674 · · Score: 5, Informative
      Another alternative, when e-mail from work is essential, is to get a wireless device capable of sending e-mail without using the work e-mail system. The Kyocera 6035 Smartphone (and the coming-soon 7135), Palm's i705 Palm.Net service and Earthlink's various wireless services seem like good possibilities.

      Of course, a truly persistent person or corporation can find a way to tap into any technology, given time and money.

  4. One word : by M1000 · · Score: 5, Informative

    http://www.hushmail.com

  5. Make all changes retroactive, technology-wise by SirSlud · · Score: 4, Insightful

    The best way to make people rise up against this is simply to encourage employers to try to apply the goals and reasoning of software like this against traditional communication services.

    How many people you think would be cool with their employer listening in on their personal phone calls, and opening all their personal mail that gets sent to the office?

    Apply it to everything, and people will understand that this is an encroachment on what we currently have, not a reasonable measure for dealing with a newish technology.

    --
    "Old man yells at systemd"
    1. Re:Make all changes retroactive, technology-wise by gmhowell · · Score: 4, Insightful

      Ditto some of the other replies. NO mail gets delivered in my office until it is opened. Even stuff that says "personal and confidential" is opened. It's a safety issue. There have been a couple of death threats throughout the years. It's also my facility. I paid for the person opening the mail, I paid for the post box. Trust me, I have no interest in reading a subpoena from your divorce attorney. I really don't. But if that's a death threat, I owe it to you AND THE OTHER EMPLOYEES to tell the cops.

      In our employee handbooks, we reserve the right to monitor calls. We never have, but we can. We allow a few calls (lots of mothers in my office. Lots of calls to/from the office to make sure the kiddies got off the bus okay) which is no big deal. Same thing with... A million little things. People are more productive, like you say, if they don't have to stay at home to wait for a package, to order a repair of their appliance, etc. But some people abuse the privelage.

      It's a balance that has to be struck. What seems to work is when we suspect someone of abusing the phone, we just remind them that we allow limited personal calls, and that we can monitor their calls to see if they are abusing the privelege. The offending behavior stops within hours:)

      And to the naysayers who say 'ignore company loyalty'. I've got news for you: it's a chicken and egg problem. I'll extend loyalty. We've got employees working for us who were around in the Ford administration. Until they retired, there were a couple of employees who changed my diapers. They gave their loyalty. We reciprocated. Need 2 months off for back surgery and recovery? No problem. Hope you get better. We'll keep your chair warm for you. OTOH, you think we're only good for a paycheck? Well, screw you. When times get tight, you'll be first on the chopping block. We'll find a way to save the person who stayed late to finish up some work.

      Loyalty works both ways. I think some of the children on slashdot forget that.

      --
      Jesus was all right but his disciples were thick and ordinary. -John Lennon
  6. Our only hope is by Dirk+Pitt · · Score: 4, Interesting
    that the market will take care of these privacy invasions, and people just won't work for companies that get a rep for doing BS like this.

    I mean, legally, I have to side with the companies. Their machines, their time, their liability. The can do what they want.

    BUT...it does suck, and I'd hate to work for anyone that would think they needed to read my private mail. My only hope is that more and more people will leave companies that do that to work for smaller companies, or start their own, and that these smaller companies will begin to resist the temptation of corporate assimilation. I see it beginning to happen now, there are some fairly large, privately held consulting companies that foster a great atmosphere for their people. The more I see big companies doing things like this, the more hope I have that this renaissance of the small business will grow.

  7. Heh by zapfie · · Score: 4, Insightful

    Their computers.

    Their network.

    Their time.

    Their money.

    'nuff said.

    --
    slashdot!=valid HTML
    1. Re:Heh by Rude+Turnip · · Score: 5, Insightful

      OK, then the following changes will take place:

      1. Pay for all my work clothes.

      2. Pay for my fuel expenses going to work.

      3. Pay me for all the unpaid overtime spent in the office *and at home*.

      4. Pay me rent for using my home as temporary office space (see item 3).

      5. Pay my cable modem/DSL bill for VPN'ing over the weekends.

      --
      Bill Clinton: Pimp we can believe in. - The Shirt!!!
    2. Re:Heh by Dan+Crash · · Score: 5, Insightful

      Their toilets.

      Still think you don't deserve any privacy?

      --
      He who refuses to do arithmetic is doomed to talk nonsense.
    3. Re:Heh by ObviousGuy · · Score: 5, Funny

      I'm not worried that they're keeping logs.

      --
      I have been pwned because my /. password was too easy to guess.
  8. They're welcome... by Zathrus · · Score: 5, Funny

    ... to read each and every one of the 300+ spam emails I get daily to my Hotmail account.

  9. Solution? by f00Dave · · Score: 5, Interesting

    Use ssh or WinVNC (like I do) or somesuch to remotely access your home system, and run your personal stuff THERE. At work, the only non work-related software I run is WinAMP, WinVNC client and a web client. At home, I run an email client, IRC, ICQ, Kazaa, etcetera....

    So long as the employer doesn't mind you connecting to your home machine (and you can encrypt that connection, somehow), then what you do with it is your own business.

    Of course, you can still paste memos over VNC/ssh, so this just defers the problem somewhat. ;-)

    --
    .f00Dave
  10. Re:Ooh, goody... by Latent+IT · · Score: 4, Insightful

    You're leaving out one major point -

    When we (meaning the IT department at my company) monitors what users are doing, either on the internet, or anything else, they're not just doing it on company time...

    They're doing it with company computers.

  11. You Bet Your Ass We Monitor! by DnemoniX · · Score: 5, Interesting

    I am an IT manager for a local government agency. We monitor all internet usage on a regular basis. for the most part it is rather boring. This also means that if sombody uses Hotmail or some such at work it gets logged. By state statute here all documents that are created on our equipment, i.e. you type an e-mail. It becomes public record. that means any Joe Blow off the street can send in a request for copies of any and all e-mails that we have on our system. This causes a few interesting problems. So I do a couple things. 1. I do not backup the e-mail system. All users are aware of this. 2. Zero retention on deleted e-mail. 3. A signed Acceptable Usage poilicy for each user. They are all aware of the possibility of being monitored. Does this stop people, no! We have had to take action on abuses several times. Like the guy that wouldn't stop surfing porn at work, he worked in the cube and there are several women that work in that office. Bad judgement. Last week things got worse. I noticed a user surfing a little porn so I checked the logs, I was a little surprised, he was accessing a Sex Offender Database. He was looking himself up! Turns out this guy is a registered sex offender in the neighboring state. I looked up what he was convicted of and it was RAPE. Also 90% of the workers in my building are female. We would have never known any of this without monitoring our system. Our lawyers are working on what to do with him now. People can bitch all they want about Big Brother, but ever consider sometimes this is bigger than one person feeling bad? Think about how you would feel if your sister or mother worked in that office and something happened. Wouldn't you have wanted us to do something about it? Take off the blinders and step off the soap box, because until you are the one responsible you don't know shit.

  12. the system by mattdm · · Score: 5, Insightful

    So it's feudalism at work; democracy on your own time.

    Your words could apply just as well to someone justifying plutocracy as the logical system of government for a nation -- the wealthy landowners get to make the decisions, because they literally own the country. Somehow, in these modern times, we've decided that that's just not acceptable anymore. Why do we still put up with it at work?

  13. Internal Memos Website by irix · · Score: 4, Funny

    Man, that site is hilarious! You can't make stuff like this up :-)

    --

    Do you even know anything about perl? -- AC Replying to Tom Christiansen post.
  14. you missed something by mattdm · · Score: 4, Informative
    The 9th amendment -- for some reason, people who want to restrict the rights of US citizens seem to conveniently forget that one. Here it is:
    The enumeration in the Constitution, of certain rights, shall not be construed to deny or disparage others retained by the people.
    There's my right -- and yours --to an adequate standard of health, to be looked after after a life of contributing to society, and yes, to pursue happiness. Oh, and of course, to live like a free human being, not a corporate slave, even when I'm at work.
  15. Good and Bad by chill · · Score: 5, Interesting

    The last place I worked, I had to do something like this. We had a problem with an employee who was suspected of leaking company trade secrets to a competitor.

    It turns out she was using a Yahoo e-mail account to send CAD files of complete circuits to her "ex" boyfriend at a competitor. She was doing this from computers at work, and yes she had authorization to access the CAD files in her job.

    Because we were able to monitor the activity, the company knew what/when/where the files went. She was fired for cause and we contacted the competitor and waved the evidence. They had little choice but to fire the person on the other end and we watched them close to see if they introduced any "new" products over the next year or so that were based off of our designs.

    * * *

    Fast forward to my new company -- a once major telecom giant -- they now block all webmail sites they can find via their firewalls.

    Simple fix? Squid proxy on your home computer running on port 443 (HTTPS) and requiring a username/password.

    --
    Learning HOW to think is more important than learning WHAT to think.
  16. Hotkey sequence by sdxxx · · Score: 4, Interesting
    From the FAQ:

    11. So, if eBlaster does not show up anywhere, how do I get into it?

    ... if you do need to open eBlaster to change some settings, you simply type a Hotkey combination, which is 3 keys pressed simultaneously followed by a fourth key. (Nobody would ever accidentally type those 4 keys, so they won't accidentally discover eBlaster is present.)...

    So does anybody know what those four keys are?

  17. Examples of privacy at work by dcollins · · Score: 4, Informative
    From the article:

    ...a personal letter through the company mailroom. The contents of such a letter are protected by U.S. mail regulations.

    Contrary to the large contingent of "company can do whatever it wants on its property" boosters, there in fact seem to be all kinds of legal protections and privacy expectations established for workers in corporate offices.

    The fascist model that says otherwise is not only frightening, it's untrue.

    The full quote from the lawyer in the article (in reference to the 1986 Electronic Communications Privacy Act):

    Spyware like that produced by SpectorSoft and competitor WinWhatWhere Corp. has not yet faced a definitive courtroom test. But David Sobel, general counsel of the Electronic Privacy Information Center, equated private Web-based e-mail account with an employee receiving a personal letter through the company mailroom. The contents of such a letter are protected by U.S. mail regulations.
    "The question is: Is there a reasonable expectation of privacy? I would argue that if a company.com account is provided to me for company business, I can assume it might be subject to monitoring ... but if I take additional step to set up a Hotmail account that I occasionally access from my desktop at work, I think that could be construed as an expression of an expectation of privacy."

    --
    We know where leadership by an anti-intellectual "strongman" who scapegoats minorities and likes boisterous rallies goes
  18. Meeting with my boss... by David+Wong · · Score: 4, Funny


    "Mr. Wong, we've been monitoring your incoming hotmail and we can only assume you've spent hours of company time sending out hundreds of inquiries requesting information on how you can lengthen your penis by 3-4 inches with some kind of herbal supplement..."

    --
    Phallic Symbols in LOTR
  19. backwards by spoonyfork · · Score: 4, Funny

    So, they want to read my personal email but they don't want to read my ideas on how fix some corporate IT problems?

    Perhaps I should put my suggestions in personal emails sent through Yahoo!, that way they might get some attention.

    --
    Speak truth to power.
  20. Rights vs brains by MountainLogic · · Score: 5, Insightful
    Sure, it's the company's system, but any smart manager knows that allowing employees to take an occasional personal phone call or email is going to make for more productive worker. Someone stewing about a sick child because they can't get a call from a caregiver is far less productive than a worker getting a quick email every hour with the childs temp.

    There are two types of workers, those who WLL get the work done regardless of distractions and those who will NOT get the workdone even if placed in a locked room. Hire and trust good people! Big brother tactics just makes the productive people less productive and won't fix the duds.