Slashdot Mirror
Anonymous Surfing?
Just Alex asks: "I just got Comcast High-Speed Internet service, and found out that just up to a few months ago they were recording the actions of all of their users and saving it for who knows what. Now I'm thinking about getting an 'anonymous' service like anonymizer.com, but I wonder what other folks are using. Are all of these services the same? What should I be looking for? And what people recommend given their experience with them? Also, which ones play better with Linux?"
Remembering anon.penet.fi, the world famous anonymous remailer and news posting service, I can only *stress* that your anonymity will be guaranteed only as long as nobody sues to resolve it.
&& aemula C. ab stirpe interiit
Yeah, the all that will show up in your log file is that you go to anonymizer.com for everything. Good plan Irwin.
If your ISP is monitoring you, you're out of luck. All your packets are going down a wire to Comcast before they go to whatever "anonymizer" you use. Encryption would help, but if you're doing anything in plaintext then there's not much you can do to prevent them from looking in on it.
(Note to the good folks at Verizon: I'll get my bill in the mail today, I promise.)
Karma: Good (despite my invention of the Karma: sig)
Multiproxy is good for windows. It changes annonymous proxie every 20 seconds or so...
Sure this will be the more expensive route, but drop cable (and explain that the reason you are dropping them is that they are monitoring your surfing habits), and get DSL.
If enough people did this, the company will what they are doing or go out of business.
After all, why pay for an inferior service?
Well despite what someone else said, though comcast is looking at your traffic, it will simply show up as you repeatedly going to whatever site (probably anonymizer.com) that the software sends to before it redirects the traffic. The web-based ones like the late, great safeweb.com seem to be gone now, so you may end up having to pay for this service :(
You report, Slashdot decides
Prevueing you're poast ownly hellps iff ewe no how two spel inn teh furst plase
How does one know that the anonymizer and or
proxy sites are not honeypots run whatever
corps or agencies that are especially
interested in tracking users who *want* to
be anonymous?
Someone already mentioned multiproxy. Also check out Java Anonymous Proxy and Peekabooty. You seem kind of new to the game of paranoia. Why not just start here and do some reading.
It's important to understand exactly what these anonymous services get you and who and what they are protecting against so take some time and realistically educate yourself to the risks and threats.
Oh, and don't forget to check out Freenet
Revolutions are never about freedom or justice. They're about who's going to be top dog. -- Kilgore Trout
--I have thought that myself, that certainly "some" of these anonymous surfing sites and "secure" email places were setup by either das authorites or by some crooks, both just to snag whatever they can and look at it. Another one I was long suspicious of was ICQ, their origins just didn't jibe with reality enough, seemed more like-to be politically incorrect here-a mossad operation. Now I don't know but when they first started I just couldn't see penniless "students" affording free icq and running it. Just the bandwith was huge, it didn't compute. Note: This is pure speculation, I have no knowledge about either, the anonymous places or icq. The only possible actual data I have is two people removed from source so I can't rely on it, but it's something like this,2 steps removed from horse's mouth, no such agency has compromised most of the anonymous email places. They are working on the rest of them as fast as they can. And that's it, and I admit that is still just vapor with no backups for it.
"Compelled to do so by law" could mean anything from an airtight subpoena to some random LEO flashing a badge and asking nicely. Thus, this service is only useful for protecting against casual snooping. It's strong point is that it uses an ActiveX control and can easily be used on (non-locked down) public machines.
Call (206) 338-5780 COLLECT for information about a genuine BA, BS, MA, MS, MBA, or Ph.D.
I rarely have to, but when I need to surf anonymously, I use The-Cloak.
Look in the phone book and find the local "been there since the dawn of time" ISP and call them up. See what they can offer you for DSL access.
Everyone has forgotten the small ISPs that cleared the trail for the big companies. Those usually take the "common carrier" stance and don't go all big brother.
Of course if you need an anonomizer then you have troubles on your own. Take a page from Chris Tresco's interview as seen here on slashdot.
"My advice: get out of the scene"
Unless your just paranoid.
Check them out: the-cloak.
/Links/Dir/Privacy/Anonymisers/
Just a list from my site.
Try Private Sea (http://privatesea.net). I don't have experience with 'em, but their service does seems decent. It's not a free service though... Anyone here has tried them yet?
In case you have way too much money to spent, why not buy a small box at havenco and route an ipsec tunnel to it?
We run a web based newsgroup service called BinFeeds and sometimes have users who are concerned about anonymous surfing.
First point we often tell them is this. We dont care what service you use, we know who you are. Like any subscription service... you have to log in, and thus we know who we are sending the data to - unless someone stole your account. Many of our customers think that services like the anonymizer will protect them from that. In our experience, webmasters running protected sites more often run into "anonymizer-like" users actually being people with stolen accounts or who are using it for other purposes (site mirroring, etc). 75% of Anonymizer users on our service have been of that type and they (The Anonymizer owners) refuse to act (disable the account, block the user, assist in the credit fraud investifation, etc) or take months (thus we currently block all Anonymizer users). On signups, 95% of Anonymizer users are those trying to fraudulently use a credit card. We expect both from noting the increase of such errors on Anonymizer and from our own decisions, that many webmasters will be blocking such services on an increasing basis, because for us to track anonymous users is very difficult (even though I learned it is trivial from my time at a very very large ISP/Telco).
Basically, if you just dont want your ISP to have a log of where you are surfing and what you are doing, then great! Look into one and sign up for whichever service best meets those needs.
If you are worrying about law enforcement officials or a big ISP tracking usage then just surf normally.
Though they will never admit it the telcos (or fiber providers of similar technology) know exactly what you are looking at and more importantly, where you are. By "where you are" I mean that literally. Your physical address.
On CableModems as in the initial post, it may be more difficult, but under DSL, T3, T1 (DS1, which is often dual sDSL circuits nowadays) and dialup, etc, there are multiple networking protocols and layers not ever discussed. The telcos run their own network protocols and layers on their hardware that route the data for the ISP's data layer over the telco equipment.
In the past, while working for a major ISP (who owns a very large chunk of the Internet backbone and their own fiber network and telco), a person was seriously breaching our AUP terms and the law for actions he was doing using one of our customer's accounts. He THOUGHT he was anonymous, but since we owned our telco arm (and since they are all interconnected) we did a network (circuit) trace on the connection and viola! Through that we end up with the physical address (street address and number) of the loser.
Most people forget or dont realize that in order for your local telco to be able to route internet data to you, they needed your physical address to bring the wires to your house. The network hardware isnt computer based in the sense we all think and runs different protocols in a transparent fashion that doesnt make the end user think of it as anything more than a wire going to a router someplace else (like on an internal ethernet/TCPIP network), but it is not. It is it's own network on different hardware that transports the signals to "standard" network routers (Cisco, Ascend, etc). Much like NetBIOS over TCP/IP. To the user once configured, it's "Windows file sharing" and that's it, but the reality is it is running through TCPIP.
Since "we" (my former employer) ran such a large telco, a simple call to the NOC (telco) got us the info in under 5 minutes. This can be done to an active connection or to a past connection via the activity logs. Also easy to coordinate with the other telcos for cooperation since they needed us/we needed them for the telco services to work.
If you as a user or owner of a small ISP try to get that info you will get a dozen different "I dont think that's possible" or "There is no way of doing that" or "I dont know what you are talking about" answers. Just the way it works. No one is supposed to know it works that way, and few people actually seem to think nowadays - even the technical ones - about how such a system would work - or half the world would realize that any entity with enough "power" or authority can determine exactly where you are at what you are connected to, anonymous surfing, encryption and proxying aside.
Just the sad truth... even if you are on a cell phone (btw, the logs for your location when your cell phone is ON (and in some phone's cases, off as well as long as it has power) are kept for decades and have been since the late 80's at least... right down to a few hundred foot circle.
- Rob
WebMaster:
BinFeeds
XXX Thumbnailed Image Newsgroups but
Wander down to the local library (that doesn't have surveillance cameras) and wear gloves. Of course this only works for those rare, absolute-privacy-needed situations.
Try JAP, it's a Java proxy program that you run on your system, which connects to a network of anonymizer servers. It is a breeze to setup and use, even your grandmother could use it. It is also more secure than many other systems, because it makes use of a network of anonymizing servers in a way that if one server owner went evil and decided to log your traffic, he couldn't. One would need to have control of all the nodes of the anonymizing network in order to successfully track you, which is much more difficult and unlikely. BTW, the project is sponsored by the German government (!) and FREE (for the moment at least).
I have to admit that its a lot of fun surfing around anonymously, and keeping all that neat encryption software handy, but if and when the men in the dark suits turn up, I would be the first to furnish them with a full suite of passwords - otherwise - what exactly is it I am hiding???
- assuming I am not a huge corporation with super secrets - and we all know that they use lousy encryption and insecure mail systems, with holes in their data management setups - called mail rooms!
You see, it does not matter whether DSL providers are small or big, they usually buy DSL equipment and rent infrastructure from a larger company. If that large company wants to monitor you, it does not matter if the puny DSL company monitors you or not.