Slashdot Mirror
AOL Selling AIM Gateway/Listener To Employers
PizzaFace writes "After pushing free instant messaging to more than 100,000,000 users, AOL is now selling AIM-monitoring software to businesses that want to monitor and control the messaging of their employees. AIM Enterprise Gateway will reportedly sell for about $35/employee/year."
Because you can encrypt your messages.
AOL is just catering for that market. I don't see anything insidious, evil, or otherwise overly noteworthy about this...
Ray
"Ritter anticipates that encrypted instant messaging will appeal greatly to federal agencies that want secure, interagency instant messaging. "Our military and intelligence customers are more interested in the secure version," Ritter said."
;)
Jeez, better off with RogerWilco than AIM to communicate on the battlefield
this could help move more and more users to use alternate messaging utilities in fear of getting fired from sending IMs to their friends...msn anyone?
Everyone will have to bust out their best pig latin.. Miay otay erapay yma sbosay ntheay tshooay nheroiay dbehinay ethay ophotay rcopieay.
Now there's a pretty good subscription based service! Get people hopped up on IM'ing, then monitor their every move for lude and lavicious comments. Every Human Resources person must be loving the potential of this. No more 'downsizing' excuses, or we've eliminated the position.' Now is just, 'remember that comments you made two years ago...''
*friendly aol voice speaking*
"You Got Fired!"
Remember that you are unique, just like everybody else.
Has anyone with a packet logger and a campus LAN been doing this for years? Mine just finds any trafic with the (html)(body right next to each other (and the close html body tags nex to each other too). I have yet to get a false positive.
I thought it was just an unfortunate coincidence when my boss and HR popped into my cube when my pants were down around my ankle due to that hot chat with an 18/f Solaris admin.
1 - for $35 an employee, it would a wiser decision for such a company to simply ban the use of aim, and either use else, or develop their own, in house. 2 - i see this as a bottom of the barrel effort by aol to generate some revenue. hopefully, this signals the beginning of a near end for aol.
In germany AOL is already on the downward spiral, The only strong base they have are the dial up accounts,and they are growing slow,then the jumped on the broadband wagon way too late and now this, AOL lost its battle for market share in germany already this wont do anything to improve it.
Hey isnt this what PGP is for? Well, it works for me, anyway....
That people already have been encrypting their messages through reverse engineered AIM protocol clients which aren't the standard one that AIM allows people to download.
And on the flip side, people already have been snooping on AIM conversations through the regular sniffing tools that come with any standard linux distribution.
But! If you make it official that you will remain in control of your protocol instead of opening it up, and roll your own equivalent tools up, and sell them at a decent price, then they will bite. I agree.
However, at 35 bucks a head a year at a large company, I'd be tempted to just have the employees use a stock client distribution with/without encryption abilities and hire a technie to take care of the snooping if I care to do that. Or just ditch AOL and use one of those others ones like jabber with all the same abilites.
But hey, sometimes you just get that knack to spend your corporate money you know?
Now is your chance to move to jabber. Jabber is an open source server/client/protocol. Some of the clients even support ssl (encrypted) messages. You have to be careful, however, as the auth is still plaintext, even using ssl. But still, jabber may be a good answer: It supports 'gateways' to AIM, yahoo, etc.
Think you have some slackers around the office spending all their time chatting online, spilling the beans about your financials, or just bad-mouthing the CEO? Take AIM and blow them away with our instant message monitoring software!
First Falcon-1 to orbit, then Falcon-9. Then I can die a happy man.
"A new, more secure version of AOL Instant Messenger, or AIM, will enable businesses to read instant messages sent by employees"
How, under any definition of security does this make it more secure?
side note: does slashdot seem very slow to anyone else today?
a little snoop based on ip address, then grep out the relevant stuff.
I only do this when directed by management, for bandwidth reasons, but it's nice to know that I'm doing my part to save marriages and relationships.
But if you want to line the pockets of AOL/Time-Warner, go right ahead.
A. Rightmann
I can appreciate the need to do this -- but Jabber seems a better solution.
Company runs its own Jabber server. Everyone there has a user@yourcompany.com address. Internal messages between folks in the company never go outside. Admins who want to do monitoring or whatever can do that. Users who want interoperability with AIM or whatever can do that -- *if* the admins decide to install the AIM connector on the server. And it sure doesn't cost $35/seat.
This: "AOL plans to offer private companies and federal agencies a premium version of the service early next year that will enable employees to send encrypted instant messages that can only be read by designated, registered recipients".
It's easy enough to listen to generic AIM traffic anyway, recording those messages shouldn't be upsetting to anyone. In fact, this'll have to happen before some enterprises will allow IM in their walls. If IMs are being used for business purposes, make the users accountable for what they say.
it's an open system. nuff said.
I don't see what the problem here is. AOL is well within their rights to produce and sell the monitoring software. Your employers are well within their rights to purchase and use the monitoring software. You, as an employee, have probably agreed at some point to have your network activity monitored to ensure you aren't wasting company resources, time, and money. In fact, encrypting your IMs could very well put you in violation of your company's computer usage policies and lead to some rather unpleasant consequences.
Of course, I'll be curious to see if M$ signs up for a copy to keep an eye on their own employees.
we use YSM with AES encryption.
My managers are listening to my phone calls
My managers are reading my e-mail
My managers are reading my IMs
My managers are monitoring what candy I get from the vending machine
You know for someone who is supposed to be in charge of managing a department/whatever, has work (or should have) of their own to do, he's taking a really big interest in what I'm doing back here.
MS has had IM as part of Exchange 2000 for 2 years now. Other vendors have sold similar products. I always wondered why AOL never used their IM clout to make money in the enterprise market and try to lock MS out of it in at least 1 product.
Employees should have no expectation of privacy for any information placed into the business equipment of the Company/government... This policy shall serve as notice to any and all that Company/government equipment may be monitored without further notice.
There is plenty of other text that details this, but that's the meat of it. Companies have a right to monitor any traffic to protect their interests. If you don't want your AOL messages watched, find a company that supports employee privacy on company equipment over covering its own ass. Good luck, because I've never heard of one.
I think it's kind of shady on AOL's part to suddenly roll over on its user base. However, there are a lot companies that don't allow IM because it's more difficult to keep an eye on than email. AOL may benefit from more acceptance as a result of this move.
The companies can still get around this, don't assume that they are that inept and encryption will protect you. One thing they can do is install and hide key logging software, software that takes screen shots of what you are writing, etc.
Ritter anticipates that encrypted instant messaging will appeal greatly to federal agencies that want secure, interagency instant messaging. "Our military and intelligence customers are more interested in the secure version," Ritter said.
This is certainly at least a little bit of an exaggeration. You can't put classified information on any system that has any kind of communications software or hardware on it. You have to physically disconnect all connections before starting in classified mode. The only exception is machines on a network that has only classified systems and uses some form of secure line for transport between the nodes in the network. There are only a handful of such networks, and you won't have one on your desk. There will most likely be only a few such machines per facility.
There already is a system for the transmission of classified data between different personnel in the government. It's called, to use technical terms, the "secure telephone." For documents, you can use a technology called the "courier" - an organic system that has advanced intelligence functions and is capable of defense through the use of an integrated firearm.
Much of the unclassified stuff is transmitted in the same way as classified information. There are also secure networks that are used for the transmission of unclassified but sensitive information.
If it's anything that requires encryption, it will be transmitted over a secure network, or will be handled through other procedures. This IM system really has no application to the military or intelligence communities.
So - Fred the McDermitt file, where can I find it?
... oh my god...
Yeah. the game was great! The beer girl
But with AIM you could write very important messages across the battefiled such as
:-(
:-)
:-O
;)
Solider5554: Sarge! We're under fire! We need help!
Sarge0034: Hang in there. You're doing a great job solider
Solider5554: Arrrghhh!!!! I've been hit!
Sarge0034: God, these whining soliders never know when to quit, that god they're dispensible.
Sarge0034: Oppsss. Wrong person sorry.
Solider5554: What!? I need a chopper. I'm losing a lot of blood over here. >:-@
Sarge0034 (warn 10%): Hey, just because you've warned me anonymously, doesn't mean I don't know it's you.
Sarge0034: brb *door slam* as sarge leaves
*door open* as sarge enters
Sarge0034: Sorry had to reboot, did I miss anything?
Solider324: uuuuhhhhhh I don't think I'm going to make it
P.S. Rob, Nate, Jeff, your change of hosting service this week from Exodus East to Exodus West has made Slashdot incredibly s...l.........o...........w....... from Europe. It's taking 2 minutes to load a page compared to 10 seconds on the old host. Did OSDN pull the plug on your funding for the larger pipe at Exodus East? It's understandable but a shame nonetheless because it's going to stop people visiting.
Scroogle
If you're going to be a bitter little AC, at least do a better job of hiding the fact that you didn't think of it first, k?
Baaaa....
If I knew the wedgies I gave you back in 6th grade would have resulted in this . . . I might have taken a moments pause.
So where are our open source alternatives to the proxy? Maybe the gaim and squid guys should get together? The only compelling feature I see is the direct-IM for internal users (i.e. not using up your internet bandwidth). The encryption might be nice, but you can already do that with gaim plugins. Everything else just seems like spyware, but maybe some companies need/want that?
i'll sell your boss the ethereal settings to be able to filter out all traffic on a network except the aim messages for only 100 bucks. It shows the screename they send to and recieve from, and each message is in cleartext on one line, with no other random crap. it only took me 10 minutes of reading the ethereal documetation to find out how but can be yours for only $100, unlimited license. great for digging up dirt on people in your dorm floor too....
AIM transmits in clear text, I've been 'monitoring' AIM via ettercap and my iBook/802.11b for over a year; I'm sure others have been doing this for much longer, 802.11b just made it a lot easier to get behind a switch.
...than a keystroke monitor on the local PC? On another note, employers have been monitoring unencrypted IM conversations for years with via packet sniffing, most people assume it's not being monitored. All this does it make the public more aware of the monitoring possibilities.
Most AIM users manually encrypt their message using a collection of complex command line tools. Therefore, the content IS secure.
I thought everyone knew that!
come on fhqwhgads
1. Give away AIM for free
2. Charge companies $35/user to monitor AIM
3. Sell un-monitored "AIM Platinum" for $50
4. Sell "AIM Platinum" monitor for $100/user
Someone needs to write OSS that monitors AIM connections for $0/user. Oh what changes we'd see in AOL's client then...! "Protect your Privacy! Unmonitorable AIM Platinum - GOLD EDITION!"
Of course writing such software would seem kinda evil to most slashdotters, and far too proactive. If it stops being profitable to rob people of their rights and privacy, corporations will stop doing it.
-dameron
Let's see: I've got issues with the trustworthiness of a large corporation and their fairly ubiquitous software. Why don't I install and use the not nearly as ubiquitous software of a large convicted monopolist company that has time and time again shown explicitly that they can't be trusted with anything, ever. Logic like that will lead straight to upper management.
Any other netadmins out there figure out how to block the kid in the back with a Voicestream cell doing dialup for his IM? He's actually got enough free minutes to stay dialed into his ISP during all 9 hours of the business day, 20 days a month. The boss made me take the tin foil down. What else can I try?
slashdot: where everyone yells sarcastic metaphors to themselves to understand the issue
I would use it to send quick messages to a co-worker or friend if for whatever reason the phone isn't an option. It's much better than using NET SEND anyways :)
Besides, where I work, nothing online is private. You get used to it after a while and know what you should and should not do.
"Give a man a fish, he'll eat for a day. Teach a man to fish and you get to sell him fishing gear for a lifetime." :-/
Soko
"Depression is merely anger without enthusiasm." - Anonymous
Some industries, like Finance for instance, are required by law to keep a record of all communications with their customers. Sadly, some customers insist on communicating with their brokers via a lame piece of software like AIM. This would allow the company to automatically keep a record of all communications between brokers and their customers. Now, whether that's all it will be used for is left as an excercise for the reader.
tcpflow-0.20.tar.gz and a connection to a spanned port on a switch
1) tcpflow port 5190 &
2) cat logs and enjoy conversations
I run everybuddy (although any other *nix client would work) remotely using X tunneled through an ssh session to my home machine. That way, all my conversations are logged at home and exist in unencrypted form only on my local X server at work. It's not unbreakable by any means (especially when they own the computer I'm working on), but it makes it unlikely that they'll bother, and it's not particularly inconvenient for me. I don't use it to do anything sketchy. I just prefer to have my personal conversations kept private.
-TUAC
AOL will NOT be monitoring AIM communications -- what this product essentially does is set up a private network WITHIN a company, based on the AIM protocols. It is that internal communication that is being monitored -- and not by AOL but by the company that buys the software from AOL. I imagine that the users will be able to use their clients to communicate with other AIM users outside their network, but if they don't want to be monitored, they can just download the standard free AIM client and use that instead.
Several of my friends work for IBM, and they have been using something like this software, called Sametime, for a couple years. Sametime may have been a beta of this product.
jf
Looks like they finally caught on and are selling the solution (to a problem they created)! Now if they could only sell me some snake oil that would keep me from recieving their stupid disks in the mail! Perhaps we are looking at the future of marketing here, pay the corporations hush money or they will bug you to death.
Consultants - If you can't be part of the solution, there's money to be made redefining the problem.
As a network sysadmin, I generally don't want anything on the computers I work on that I didn't put there. Simple solution: user rights. My users cannot install any software without oversight. Limited privileges = no instant messaging software = no viruses transferred through IM software, pr0n, mp3's, etc. =no need to govern over IM use in the first place. Problem solved.
Never look down your nose at others. Someday, someone is bound to see your boogers.
Add a section to your employee policy document that prohibits using whatever he's using and then fire his ass when he ignores it.
No one ever had to evacuate a city because the solar panels broke!
I just waited close to 1.5 mins for the page to load after clicking "Reply to this". What an irony! /. just got /.ed.
... and every other kind of IT employee monitoring solution is that they are implemented by the IT DEPARTMENT.
Who by definition are the worst offenders.
And because they're all buddies, they "bypass" the monitoring for their own IP addresses.
Total waste of time.
I don't see what the big deal about this is, it's not like you couldn't find this stuff out in the past without this.... and for free no less.
I work at a college, and the network admin here wanted to try out this mini-distro called PLAC for Portable Linux Auditing CD. Basically it's supposed to be small enough to be burned onto one of those business card sized CD's, and they're bootable. So basically you can pop it into a CD drive and boot a machine to this auditing software. Well, since he wanted to try it out, we setup a small box just inside the firewall here to see what it could find. Well... to be honest, it found a lot. It could grab URL's that people were looking at, emails that they were sending out, and yes, even AIM messages.
The amazing thing is that it would sniff the network packets, but yet report everything in a simple, easily-readable format. It's amazing how much private stuff on the internet isn't private.
This makes me appreciate licq with an SSL connection even more.
-Through the server, over the router, off the firewall... Nothing but 'Net!
Damn right... thought it was just Telewest being crap (S-W England), but from being able to load /. instantly (maybe a couple of seconds), it's now taking around 20-30 seconds *consistently*. Certainly makes posting comments a tedious chore. Grrrr.....
- Oliver
The right to bear arms is only slightly less stupid than the right to arm bears...
How is allowing someone else to monitor my communications more secure?
Just keep in mind who the customer is. In the mass market, the customer is rarely the user.
Nope, no sig
"So easy to spy with, no wonder its Number 1!"
ALO gives away AIM. People download it by the tens of millions of copies. Millions of these copies are on work computers (indeed AIM is designed to work through corporate firewalls). Every day, millions use AIM at work, causing huge uses of corporate bandwith and wasting many hours of employee's time. NOW..AOL is going to help companies FIX (reason for caps soon) this by selling (these affected) companies software to control AIM usage by said companies. Pretty clever AOL, but hardly new.. See, AOL is doing exactly what heroin dealers do every day. They give heroin away to get the people hooked.. then said people have to buy their FIX (see?)from them. I knew that AOL was going down the tubes..but this is a new low....even for them....
to demonstrate a company talking from both sides of its mouth.
In April 2001, AOL filed a motion to quash Nam Tai's subpoena, arguing it should not be required to reveal subscriber information because it would "infringe on the well-established First Amendment right to speak anonymously."
Ethereal always works for me in a pinch. . .
Funny how this topic came up because just yesterday I sent a long-winded email to our LAN Support Admin practically begging for a more feasible (and responsible) way to use IM in the workspace.
.dat file on the computer before I log off.
... that use any type of instant messaging and the justification for changing this system has not been met."
/. the last 2 days? My dsl connection seems fine everywhere else. Did a traceroute but didn't see any noticeable jump.
The company I work for uses ICQcorp, which, AFAIK, is dead software and has sat in beta since it was released in 1999.
Now I won't get into most problems our company has had with instant messenging (the second biggest being users abusing their broadcasting rights), but I will dwelve on one...
ICQcorp is terribly insecure... well, at least the way it was implemented in our office environment. In my department, most people don't have a workstation they can call their own. When you get in, you pick an NT box, log in, and that's that. The problem is that anyone who used that particular box (and logged into ICQ) can have their history of messages viewed easily. The *.dat files can be opened through notepad, and sit locally on the C: drive in the ICQcorp folder. Albeit, the formatting is bad, but you can definitely read it. Since I've discovered this, I've really toned down my instant messenging to the point where it is pretty much all work related, and if I actually remember to do it, I'll delete my own
I just recieved a response back from LAN support and it wasn't very encouraging:
" There are no other departments
I think it's time I maybe had a chat with Corporate Security. Do you guys agree?
P.S.
On a totally unrelated note... anyone else experience unbelievable slowness with
It is incredibly slow from the east cost of North America too. 15-20 sec page loading times, as opposed to 1-2 sec before. Brutal.
I read the article before reading some of the /. comments. I was then surprised by the focus on the monitoring aspect.
For me, the interesting part was that this is a localized server supporting a widely implemented client program -- no user mindthink upgrade required, no roll-your-own or half-baked client programs. An internal corporate chat system that can also talk to the outside.
I'm all for vivre la software libre but in this case the suits who are stuck on AIM/AOL for chatting, this is great news. Allows one to fence in the chat traffic that shouldn't be leaving the premises, and also provides logging.
Logging isn't necessarily a bad thing -- in particular, in the financial sector there are legal requirements for auditing all of the public and private messages, and long-term archival.
Good job.
MUUUUUUUUUUUCH slower in the D.C. area too. Someone screwed up.
512MB req'd for Windows, but 2GB req'd for Linux?
Can someone please explain that (bottom of page) to clueless me?
It's not a magical AIM filter, which is what all the comments are suggesting.
It's a way to run your OWN aim gateway server at your business.
So I am at franks widgets (fwidg). I install the gateway server. Everyone at fwidg logs into the company aim server instead of the official AIM server, as employee@fwidg.com.
So now we have intranet messaging, and apparently others can add us to the contact list as well (outsiders).
OBVIOUSLY since all communication is going through this server, they can log/etc it. But htis is not some sort of magical firewall dropin that listens to aim conversations... there's been opensource projects that can do that for years now.
It looks to me like it's aiming at the jabber and MSN/exchange messenger market. It's a locally hosted central server, so your business stuff isn't going out over the internet, and it authenticates against stuff you already have, according to their marketing. I'd guess that means ldap and active-directory.
are there any parts of the AIM protocol that still haven't been reversed engineered or published in some form or another?
at 35 dollars a seat per year per head, that's a lot of money to be charging for the same sort of monitoring you could achieve with ethereal and a basic understanding of the AIM protocol (isn't there already an AIM decoder in ethereal?).
either way, it's a pretty nice business model of there's. i guess i'm just worried to see if there's any 'extra' information stored in the AIM protocol that might be of added benefit to management.
otherwise i say no big deal..
That's great. Now I can sit at my desk and see what AOLholes have to say:
:)):) ;)
hpyrabbit1981: Ya! LOL!
dlscowboys0101: hi rabbit how r u?
tina23992: me 2!
hpyrabbit1981: @->-- cowbyos
memphisflowershop2: me too! a/s/l?
I don't want that. I let the AOLers have their little messenger and chat rooms and they can crap all over it as much as they want. I much prefer slashdot, where frist porst's and goatse.cx reign supreme!
I really hate signatures, but go to my website.
This story immediately put me in mind of anti-virus software companies, although in this case it appears to be a matter of the company that sells the solution having caused the problem in the first place.
I'm sure that AOL did not have that in mind* when they first developed AIM but I can't believe that they are not relishing the opportunity to generate even more cash from the monster they created.
*Or am I not being paranoid enough?
I'd rather fall off Ilustrada than ride any other horse
Call me old fashioned, but I like a dump to be as memorable as it is devastating - Bender
If AOL would just take AIM out of the netscape install, that'd save a number of companies a bundle, right there.
Kind of disgusting, though: A company forcing the problem into an organization, and then selling the solution for an obscene amount of money. That's extortion. See that, DoJ? SEC? FTC? E-X-T-O-R-T-I-O-N.
Ed R.Zahurak
You know, oblivion keeps looking better every day.
Devils Advocate... Ok this is obviously for people who dont know how to properly admin thier networks. Block AOL or other apps at the door (FW or Proxy) or better yet setup some friggin policies. Thier is no reason for this unless corps want to intentionally spy on thier employees. Dont get me wrong, I'm a free net kind of guy but when you got over a 1000 users clogging up the veins what choice do you have?
1. Gives security conscious corporations a reason to allow AIM rather than ban it (not so long ago, I seem to remember, the AIM client had a security hole. Wasn't that '99?)
2. Allows companies to unify their methods of IMing, a product which is actually a really good business tool. If you're on a conference call, phone call, in a meeting...there are lots of times it's great to have a live medium to communicate with a coworker. Easier than remembering Joe down at helpdesk is B1gP3n1s.
3. The CYAN (Cover your ass network). Hey, I know that you don't have to worry about this when you're down at the bar putting the moves on the blonde, but do that at work and it's all of a sudden the company's liability. Of course, you could lose your job. But they could lose money and time too. Don't forget, not every company out there is a big evil CORPORATION.
Those are three fine reasons. Hey, we don't open up the firewall and have mail delivered to a server on every desktop, why do the same with IM? It's a logical way to start partitioning off Instant Messaging, rather than having massive servers off somewhere else handling messages. And in a lot of cases, companies are leery about plaintext running around the web with potential trade secrets. It's silly, when it could route locally.
I'm not saying that AOL's solution is the one and only, but the idea is a good one. For the same reason we use mail servers, file servers, PBX systems, it makes sense. With companies convinced that IM is necessary for productivity, it opens the doors for other solutions, non proprietary in nature. And it opens the demands for secure features to be built into clients. Hey, somebody's gotta pay the bills, right? And we know that it won't be AOL people dialling up...
-- Bird in the Bush: The Renewable Energy Blog http://www.birdinthebush.org
Will having this AIM-sniffing software help free software projects like GAIM and Everybuddy?
Create a wide spread business problem, then sell the solution to the problem...
Who ever thought that one up gets 2 points..
10 years ago it would have been called a fraud.. but in todays world....
---- Booth was a patriot ----
Heh. Why "violate the privacy" on one protocol (it's not a viloation on work time...)? When I could run tcpdump and maybe a custom app somewhere to ferret out anything?
:)
Wee.
tcpdump + large fast disks + promiscuous NIC == all your bits are belong to me now.
Mental Image: O'Really: Snooping Email for Fun and Profit
-- Note: If you don't agree with me, don't bother replying. I won't read it.
Slashdot's quite slow even from the East Coast of the US :-/
For the past few weeks I have been writing a program I currently call SecureIM. It is a encrypting proxy server that runs on your computer and allows you to have secure conversations over AIM. It's runs under Win32 and is tested with AIM 4.x and higher and Trillian.
:)
If you would like to check out the beta version, it's available at http://www.vonnieda.org/SecureIM
The program will be getting a name change before v1.0 since there are several SecureIMs out there.
Before you flame me about security or what not, please at least have a read of the Readme.txt file where I think I explain pretty well what SecureIM is and isn't capable of.
I hope someone finds some use of it. Enjoy
but I think you just made a strong argument for why you shouldn't be using IM in that setting, anyway:
EVERYTHING you touch has Attorney-Client privilege and is either employee- or company- confidential. Anyone who is not supposed to be privy to your data, communication, files, etc., would be putting the company at risk by snooping
What employer is seriously going to pay $35/employee to monitor their IM usage? Especially when most people use IM for personal reasons. There is a much cheaper solution. If you don't show a need to use an IM client at work, then you don't get too.
"Not knowing when the dawn will come, I open every door." - Emily Dickinson
another 200K in storage space and the 80K salary for the security nerd to read them. Or could we just post the strings as an entertainment service aka something like dub, dub, dub office-watercooler.com?
you can install ethereal
The whole point of this system is not to determine whether employees are using lots of IM. It's to insure that employees aren't using IM services for "inappropriate" purposes such as cybersex, or to give away sensitive information. (Or both, as the case my be.)
Incidentally, if I had my employees using IM for intra-company communications I would damn well want them encrypting their communications. Do you really want company data going through some untrusted external server? If I didn't want my employees using IM at all, I'd just block the ports.
1. Create 100,000,000 monsters
2. Set them loose
3. Sell monster traps
Now we can install this at home to find out what our other personality is saying about us. Both of them.
http://www.kubuntu.org/
Last year I took a networking class and I started a project that involved some openssl libraries and chat software. I am wondering how hard would it be to modify current software or write something new that can encrypt and decrypt messages with help of some ssl libraries. If you want to be very extreme, you can setup a pair of public/private keys per friend that you want to talk with. Provided that the number of friends you have is relatively small and that the computers that you use are somewhat fast, it can be done. Thanks,
Like yours?
Don't label something "offtopic" unless you know the topic well enough to tell what's on topic.
A lot of companies have a very important need for this, other than just the desire to "snoop" on their employees. For example, many firms such as brokerage houses are required to monitor and keep records of their employees' interactions with clients. The article alludes to these groups slightly, without going into much detail. These companies would like to be able to use instant messanging to communicate with clients, but right now regulations stop them from using AIM, unless they somehow develop their own monitoring software. It's companies like these that AOL is really targeting with this product. Of course, a lot of these companies are also demanding that all the IM providers adopt and open/interoperable standard, which AOL isn't quite as willing to do.
If you assume all silly illogical posts are jokes, you are giving posters too much credit.
Don't label something "offtopic" unless you know the topic well enough to tell what's on topic.
Trillian only can establish a secure connection if it has the ability to contact the other computer directly.
If both ends are behind an IPmasq or similar firewall this won't work.
OTOH, pgp/gpg would work fine, so long as
1) both parties have it
2) you have eachother's pubkeys
gAIM and similar clients allow not only protocol plugins, but also general purpose - I don't see why gpg support couldn't be added in.
Desperation is a stinky cologne
It would actually be nice to have something that's somewhat private like a phone call, but more convenient. Oh well.
Donate background CPU time to fight cancer.
I was reading some of the "features" of this mess and found the following:
-Allows enterprises to create screen names that follow the structure: user@company.com
-Enables an enterprise to validate and manage screen names from the corporate directory
I especially like the first one.
So it makes ents that AOL's next 2 projects in attempts to get more revenue will be:
-ProcIM for AIM
-SpamAssassin for AIM
(Yeah yeah, they can't really use those names, but you know what I'm talking about.)
I agree they've made it tough to block if you're just targeting AOLs resource(as in time) sucking software. My experience is that most of the time for most offices (not counting tech companies), you don't want your users running ANY of the many time/bandwidth suckers out there. In that case, the following is extremely effective.
Block all internet traffic for your desktop machines at the router/firewall/whatever, and force all web browsing through a squid proxy on a server that is not blocked. This breaks virtually all messaging and file sharing software, while also generally accelerating web browsing. Any users with special needs can be explicitly allowed through the router.
Be sure to have a cache only dns server on your side of the link, and voila: Instant messanger stops working (and Aol doesn't get jack), you improve the web browsing experience for your users, and any new messaging programs/file sharing programs won't work. Win win win!
Then you can spend that 35 bucks times X number of employees, which in my case comes to over 10 thousand bucks, on new hardware like switch upgrades, router upgrades, and the like, which will really make you look good.
Show me an effect without cause and then I'll believe in chaos.
I did notice that the per-employee price was lower than the average for software priced that way -- but 10 billion sales at a buck apiece is a whole lot more dough than one sale at 10 million bucks.
As to the slashdot-slows -- I'm in California, only about 350 miles from the new server. Til this morning the new server was VERY slow to respond -- never less than 15 seconds, often more like 1-2 minutes. Once it *finally* coughs up the desired page, it comes across about 2x as fast as with the old server.
However as of 8am this morning, initial server response has sped up considerably, tho it still has spasms of taking 15 to 30 seconds. But at least it's not affecting every single request, like it was yesterday!!
~REZ~ #43301. Who'd fake being me anyway?
aol is really goign to have to change there business plan if they want to survive.
Microsoft is obviously quite smart, and them "opening" up there code is showing that they see wehre the future is going.
if you can't beat them, embrace it.
i' can't wait till the ms version of sourceforge is like.
probably faster bandwidth and no sites going down.
I can see it now, the logs will be filled with "Tina765432107457: Watch as my sister gets beaten with my whip Click the -->[ENTER HERE]-- to see!"
good prog.!
It's been happening for a loooooong time. I got told about it when I was at work, they complained that they had online conversations that some of us were having and told us that if we didn't stop leaking information, we'd get canned.
Netjak.com independent reviews of domestic & import video ga
How could this software stop something like QuickBuddy that runs in a browser?
Uh. Or you could just ssh to a trusted server and run TAC on the command line. Anyway, one ssh session is less distracting and easier to minimize than all those AIM windows.
It was odd.. the last place i worked at, the ONLY port they blocked was ssh. They didn't monitor that i was aware of, but i suppose that in the case they did decide to monitor someone they just really, really didn't want them to evade that monitoring..
Hopefully it saves the time on a single task, done once per week, otherwise you're not saving 20 minutes per week. Time isn't aggregatable like that -- you can't turn four minutes per day into 20 minutes per week, or 20 minutes per week into "2 days per year".
Plus the idea that you saved 20 minutes per week is kind of a joke in and of itself -- what good is 20 minutes, unless you're job is one of those hyper-monitored jobs where they know how many keystrokes/min you type, but based upon your post I'd say not.
If there is a serious effort at security at all SSH won't be permitted. Any site that would bother paying $35/seat to essentially proxy AIM will have forced proxying of any other outbound traffic. It is fun when SSH is open though, gotta love the forwarding of your own private squid to avoid the jobsite web proxies.
I as SO thankful several countries in Europe outlaws eavesdropping by an employer like this.
(And don't get me started about it's their equipment, etc etc etc. I don't care whose equipment it is. I am a human being. I want to communicate without being monitored - "freedom", as some would call it. Laws guarantee me that privacy, just as they outlaw listening to my phone conversations or opening and reading my dead-tree letters. People whose knee-jerk reaction is that "they own it, they set any rules they like" need to look around and realize that it actually need not be like that.)
or hardware logger could handle this, at quite a bit less than 35$/user/year...WOW. If they could sell this they could start giving away their lousy net service for free...
errr....umm...*whooosh* *whoosh* Is this thing on ?
The article states "A new, more secure version of AOL Instant Messenger, or AIM, will enable businesses to read instant messages sent by employees..."
Umm... if it's more secure, how can the employers eavesdrop? The answer, it's not more secure!
Dupe posts are
You talk in key words/ a made up language that only those who you talk to understand. You could try it in another language, but if they where detrmined they propbably can get the stuff translated.
You still can get caught, but they will not have a clue as to what you are really saying. Then again, they could take you to court about it.
Invade privacy for free!
AimSniff
--
One of my close friends is a contractor and thus is on the move alot [sic].
Item: IM destroys the natural and God-given human capacity to spell.
But it goes further than that. As this Don Juan of a friend of yours travels through the several states, seducing his way through the cities and towns, leaving the shattered wreckage of broken homes and mangled lives behind him, as the wails of bereft children pursue him on his loathsome path, is it really of such great moment that IM enables him to maintain a flimsy, repugnant facade of decency with his own long-suffering helpmeet?
I think not.
In future, please consider all ramifications before you speak. You do our once-great nation no favors with your thoughtless casuistries.
I know that when Microsoft gives something away for free, it means they're up to something.
I thought AOL was just preying upon the non-internet-literate, but I now see that AOL falls into the same category of evilness as Microsoft.
Another reason that Enterprise IM is becoming a necessity is that it is intra-business communication, equivalent to memos and emails. You'll also want message logging/recording and other stuff required for compliance with HIPPA or the SEC. The intent is to make messages loggable and available as proof of communication, as evidence. Imagine if Arthur Andersen sent an IM instead of a memo telling people to shred documents.
My God. All this just to chat at work?
Its called tcpdump written to a file,
and processed by some clever regexes.
This is a reasonable method of making money. It's not like they're going to start charging for the client, or take down their free servers.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
I don't know if this is proof of evil, but I know I'm jealous I didn't think of this first. They must have gotten their business plan from the U.S. arms dealers.
Voodoo Girl is the bomb!
And then the uber geeks will release an IM encryption tool that hides the true content of IM messages.
Why bother? Just use one of the hundreds of keyloggers out there. Much cheaper than aohell's version of employee monitoring.
eTrade SUCKS
Hmm, if you are concerned about people watching, get Miranda ICQ and either the SecureIM or GPG plugin...
Both work and will secure your data.
Brielle
1/3rd of US foreign aid goes to 0.1% of the population [wrmea.com]
Why are you posting an inflamitory offtopic sig linking to an anti-Semitic website which openly supports terrorism?
And just to point out the bias here, Israel get's $2.5 billion (1.5 military, 1 civilian) a year in aid from the USA (the site you link to doesn't even get the basic numbers correct), while Egypt gets $2 billion a year in military aid. People are starving in the streets in Egypt, but the country refuses to convert even $1.00 of that military aid to civilian aid. And of course there's Jordan which averaged $284 million per year over the past 5 years and will go up to $300 million next year, which put together with what Egypt get's is almost identical to what Israel gets.
And of course there is indirect aid to the Saudis. Ten's of thousands of American soldiers protect the biggest supporter of terrorism and bin-laden in the world. If you want to bitch about something bitch about the fact that the state department coddles and protects a government which directly (if "secretly") supported and still supports the people responsible for the Twin Towers bombing.
Disclaimer: I'm an American Israel Jew. I also happen to oppose US aid to Israel, but for real reasons, not bullshit anti-Semitic ones.
Woopty Doo Basil, what does it all mean?!
Logical next step for AOL would be to offer encryption plug-ins to employees.
There is a free, open source product called AIM Sniff that will monitor aim traffic without any need for a special aim client or gateway device.
http://aimsniff.sourceforge.net/
(while this makes sense for the majority of our idio^h^h^h^h users, it's a little extreme for us in the engineering department - including the ones who used to have IT jobs)
However, I want to use AIM... So, rather than installing AIM, or Trillian or Fire or GAIM, or any other client (and this would also apply to companies wanting to install this new encrypted client - they probably wouldn't want their users installing other versions), I go to aim.com and use AIM Express - the Java applet version of their client.
Nothing downloaded, nothing installed, no problem.
-T
All the ones I've used--ICQ, AIM, MSN, Y!--can be changed to go out on port 80.
You need some sort of gateway that can differentiate betwen *application* traffic on port 80.
Or you need to lock down each desktop.
Don't label something "offtopic" unless you know the topic well enough to tell what's on topic.
Don't label something silly or illogical unless you know enough about the topic to recognize a joke.
- No LDAP Support - No Encryption support; - No PKI or X.509 support; - No support for companies with multiple locations (It does not support a distributed Server to Server architecture) - No Interoperability with other IMs; - No IETF standards support such as SIP/SIMPLE; - NO SDK to integrate IM with other applications; . - No track record for supporting enterprise customers;
Plus: How are they going to sell this sucker. They have no Enterprise sales force. I do not see a CIO making a decison based on AOL CD Coaster in the mail.(German philosopher) Georg Wilhelm Hegel, on his deathbed, complained,
"Only one man ever understood me." He fell silent for a while and then added,
"And he didn't understand me."
- this post brought to you by the Automated Last Post Generator...