Keystroke Logger Faces Federal Wiretap Charges

securitas writes "In what prosecutors say is the first case of its kind, a former insurance claims manager was indicted on federal wiretapping charges for allegedly installing a keystroke logger on another employee's computer. The device was secretly installed 'on a PC used by a secretary to senior executives at Bristol West Insurance Group.' Reuters reports that the man, who had been fired, was gathering information for a class action lawsuit against his former employer. SecurityFocus interviews would-be keystroke logger user Larry Lee Ropp who reportedly installed the KEYKatcher device on the PC."

Just slightly OT

[The-Bus]

From http://www.keykatcher.com/testimonials/index.html

"I must thank you for this great invention. Early this year, I discovered my 14-year-old daughter was on the ICQ with a person with a name of "P****". I was shocked and did not know what to do. I then e-mailed the editor of Parent and Child and they reccommended me to do a search on the internet. I was very fortunate to have purchased a KEYKatcher. The ability to read my daughter's e-mail has helped us to make the right decision about the school she would attend last September..."

I mean, is there any useful use for this device at all?

Re:Just slightly OT

[REBloomfield]

we actually use something similar in the school i work at. Students are monitored by the logger, if it finds a word or phrase in our database, then a screenshot is sent to us, and we can then watch the student in real time over VNC.

eg. student types in http://192.168.0.1/admin then we know about it (ficticious example: idea is that the kid is going somewhere he shouldn't).

Re:Just slightly OT

[Liselle]

I can't think of anything that's terribly legal. I knew there was a reason I never do anything important on publically-accessible terminals. I guess it's a nice device to own if you're a bad parent with a tinfoil hat.

The question in the back of my mind on this article though: what would they have done if it was a software keylogger, instead of a hardware one? Do the wiretap laws still apply in the same capacity? I understand from TFA that the fact that it logged emails made him a target for it.

Re:Just slightly OT

[mirko]

So, they'll begin typ1ng l1k3 w4r3z m0f035 t0 /\v01d b31ng tr4x0rr3d by n4z1s ?

Re:Just slightly OT

[Chess_the_cat]

I mean, is there any useful use for this device at all?

Definitely. If you're a writer of some kind, install a KeyKatcher and you've got an instant backup of everything you've written. If your word processor crashes, no problem; fire up KeyKatcher and cut and paste everything you've lost. Beautiful stuff.

Re:Just slightly OT

[REBloomfield]

we're not trying to read what they're doing, it's frankly of no interest, we're more concerned with *what* they're doing. For example (again) They have no need to ever run a .com file, so if it comes up in the log, i can find out why, and deal with it. Typ1ng l1k3 7h15 will achieve bugger all if they actually want to use the system...

Re:Just slightly OT

[Vellmont]

Good to hear that Big Brother is alive and well in our schools. This kind of thing just makes me sick. Is it appropriate to have computers monitor the phone line in a school for keywords or phrases, and then listen in when they're detected?

Re:Just slightly OT

I mean, is there any useful use for this device at all?

No. Not unless you think like this:

Dear god, think of the children. WON'T SOMEBODY THINK OF THE CHILDREN?

The correct solution is called parenting. There is no substitute for parental supervision and being involved with your children's activities. You wouldn't let a child watch whatever TV station they want, completely unsupervised - so why would you do the same with an internet-enabled computer? Call me old fashioned, but I don't even think a child should be allowed access to a net-connected computer unless it's in a shared, plainly visible family room environment.

Using tricks to snoop on your kids like this will breed an attitude of distrust and paranoia. You'll also only find out what they're up to after the event. Instead of working against them, you should actively work with them.

Plus, with a software solution - you actually have to check the logs from time to time. If you care so little that you'd rather a piece of software babysat your child, eventually you'll stop reading the logs because that involves effort.

Re:Just slightly OT

[Jarnis]

This is just a lawsuit waiting to happen.

Big brother is truly alive and well... I guess Orwell got it wrong by 20-30 years, but that's irrelevant.

Re:Just slightly OT

[eclectro]

Actually, kids in schools can not prevent the search of their lockers, as the school owns the lockers. I imagine it is this same logic that is extended to computers owned by the school.

The same unfortunately is applicable to many places of employment. Owning the equipment gives employers the right to monitor it. I believe that this was decided in the supreme court.

You should never assume that you have privacy on equipment you do not own.

Re:Just slightly OT

[Vellmont]

Duty of care? The internet is everywhere, not just schools. You can order up some nice heroin on the phone too, but there's no "duty of care" because you provide a phone line.

Are you going to bug the bathrooms to find out if anyone is making drug deals? What's so special about the internet that you feel you should monitor usage on such a personal level?

Re:Just slightly OT

[Mose250]

Not really - what's the difference between this and just having a teacher walk around and glance over the kids' shoulders? The fact that VNC is used instead of a pair of eyes? Computers in schools have never been a place for completely anonymous internet access.

Re:Just slightly OT

[Liselle]

Just pray that you haven't done anything with your mouse, moved around the cursor, formatted the text, used any weird keyboard shortcuts, or ducked out to send an IM to your girlfriend. The data on the keylogger could be a little bit munged with that bit of randomness added. :D

Re:Just slightly OT

[REBloomfield]

I take it you're not a parent. Find one who wouldn't be concerned that we offered filter free, non-monitored use of the internet.

If a student starts accessing material of an unsuitable nature, who gets it in the neck? we do. Parents like to know that their children are safe when they are at school.

Re:Just slightly OT

[loyalsonofrutgers]

I agree. Especially in states where the state constitution provides an explicit right to privacy (for example, Alaska, a notoriously libertarian state). There is a big, big difference between filtering internet content and monitoring an individual. I recall when I was a freshman in high school the ELP (gifted program) lab computers had a program to take a screenshot every so many seconds and save them to be reviewed. It turns out that it was a student "administrator" who had installed it and who reviewed the screenshots. THAT was a lawsuit waiting to happen.

Re:Just slightly OT

You realize, of course, you actually diminish the message of Orwell when you bleat this tripe.

Re:Just slightly OT

[mirko]

I think the above was mismodded because of his tone or because it would be easy to call a troll seombody nickname *.troll, but he's got a point here :
this soft is about CONTROLLING people and it will for sure piss its (victims|targets) off.

If parents or whichever authority attempts to control below them on such a preemptive basis, it'll end badly for sure.

Re:Just slightly OT

it is possible to type .com without typing the letters in order or even next to each other. just use the mouse and reposition the cursor between each key. i hope the students don't know you are using keyloggers, because if they do and don't want to be caught then you are going to quickly teach them how to obfuscate their typing.

Re:Just slightly OT

[REBloomfield]

BTW, i'm not in the US. We have the right to do this, and we do. It makes for a safer environment. Parents like it, we like it.

Re:Just slightly OT

[Vellmont]

You can tell when a teacher walks over and is monitoring what you type, just like you can tell when someone is in the same room as you listening to a conversation.

Re:Just slightly OT

[REBloomfield]

it doesn't actually catch the key strokes, it catches what's on screen. This includes text in program menus, and text on web pages. if they see .com, we know about it (it isn't this cut and dried obviously). As said before, obfuscation doesn't help if you want to type 'command.com'. c0mm4nd.c0m just doesn't have the same effect....

Re:Just slightly OT

[The+AtomicPunk]

Who decides what's appropriate?

Rationalize whatever you want, but he's correct, you are the Orwellian Big Brother, and what you're doing is dispicable.

Then again, I guess you're probably just bored shitless as an IT guy in school and need something to get your jollies from. :)

Re:Just slightly OT

[REBloomfield]

And when VNC is being used, the icon in the system tray goes black. they can tell when they're being watched. But then, under your way of thinking, security cameras on all entrances to the school are bad as well. I mean, who cares if random strangers come on site?

Re:Just slightly OT

[Vellmont]

So if the school owns a phone they can listen in on all calls? It may be legal for the school to do the monitoring, but that doesn't mean it's the right thing to do. I find it frightening that a generation can grow up with the expectation of being monitored constantly.

Re:Just slightly OT

[REBloomfield]

How is preventing 11-18 year olds from accesing hardcore norwegian donkey porn dispicable?!?!?!

Re:Just slightly OT

[orthogonal]

I can't think of anything that's terribly legal

Well, there are very few cases, but... I installed a (software) key logger on my own box in order to get the raw data needed to figure out my personal letter frequency in typing -- the standard English frequency wouldn't apply, as I do a lot of C and C++ coding. (How often do you see semi-colons, let alone curly braces, in standard English writing?)

A nice side benefit is that I could review the key log -- to see if anyone else had been using my computer.

Re:Just slightly OT

[Slamtilt]

I take it you're not a parent. Find one who wouldn't be concerned that we offered filter free, non-monitored use of the internet.

I'm a parent, and I wouldn't send my kids to a school with a policy like yours. That policy is not, by the way, the same as offering "filter-free, non-monitored use of the internet". There are ways of achieving a safe and humane environment without logging every keystroke, and it's disingenuous to imply that there aren't.

Re:Just slightly OT

[Zerth]

it does if you've a file named "c0mm4nd.c0m.[bat|exe]" that executes command.com :)

Re:Just slightly OT

I suppose you have clear rules for students then? So everyone surely knows that they should not try to run .com files etc. ? Or is this surveillance done in great secrecy to avoid provocating students with some accurate set of rules?

Re:Just slightly OT

[REBloomfield]

we don't log every key stroke. the system see's words on the screen. text in menus, words in documents, etc. if one of these is found in our database, a screenshot is taken. We don't log everything they type. It's not the same as a keylooger, just an example of where similar technology is used, and a good idea.

Re:Just slightly OT

[maxwell+demon]

You mean like www.microsoft.com or someone@hotmail.com?

And BTW, for running a .com file, it suffices to just type the name without the ".com"!

Re:Just slightly OT

[Jazzman]

I mean, is there any useful use for this device at all?

Most definitely. For example, if you are investigating a suspect system, you can use the KeyKatcher to keep track of what commands you are typing on the system. No need to install anything on the suspect system (thereby not requiring you to alter the evidence you are looking at in any way).

Re:Just slightly OT

[I+confirm+I'm+not+a]

There's a report on the BBC today (sorry, at work, no link) about how British kids are getting less sleep than their parents' generation because so many children have one or more of: TV, PlayStation, PC in their bedroom. I'm in my 30s and can remember being told that "if you don't turn that radio off, you'll lose it." The idea of having a 'net connection in my bedroom boggles my mind.

Re:Just slightly OT

[REBloomfield]

yeah, they're called policies, and they are signed by the students, and by the students parents, and they are available for all. When they log on, they are reminded that their actions will be monitored, and they consent to this before they are given access.

Re:Just slightly OT

[maxwell+demon]

For that, a simple HTTP proxy with appropriate filter rules, combined with a firewall which routes all HTTP requests through that proxy, should be more effective and less privacy invading.

Re:Just slightly OT

[dwave]

They promote their product as a technical solution to a social problem? I don't think this will work.

Friends with children who are computer literate often ask me if there's a way to limit the log on time for the children's accounts. I've no children myself but I always advice against the technical way. If there's an apparent problem (homework not being done properly, neglect of friends, socialising with the wrong kind of people etc.) parents have to dedicate time to their kids and find an agreement together. Just installing spyware and barriers won't work.

Besides, parents often underestimate their kids' knowledge and creativity to jump technicals obstacles. And I'm sure there a quite a few children who have root account on their daddy's Windows box and know a lot more about computers than dad ever would.

Re:Just slightly OT

[m.koch]

we actually use something similar in the school i work at. Students are monitored by the logger, [...]

To teach children that they are constantly watched and how to get around it (which they certainly will in many cases) might be a good lesson for their future life.

Re:Just slightly OT

[REBloomfield]

it was a bl**dy example. stop nitpicking. :)

Re:Just slightly OT

[azaris]

You should never assume that you have privacy on equipment you do not own.

OK, then I suppose you'd be fine with a clothing store videoing their customers in the changing room and selling the tapes on the Internet. After all, those people have no expectation of privacy since they don't own the store.

Similarly, an ISP would be permitted to decrypt the passwords of their clients, rummage through the data stored on their servers and see if there's anything useful or naughty in there.

We must concede that the question of privacy is not a line drawn in sand but rather one drawn in water, so making blanket statements like yours is not a sensible approach to the issue. Each case must be considered on an individual basis.

Re:Just slightly OT

Of course, when the teacher walks by to watch over the shoulder of the student then the student modifies their behaviour.

Ask yourself this:- If they modify their behaviour then doesnt that sugest they were behaving improperly in the first place?

Re:Just slightly OT

[Cousin+Scuzzy]

A better method for saving your documents is the "save" function, often found under the File menu. Clicking on this once in a while is a good idea.

Re:Just slightly OT

[Vellmont]

Who gets to decide what's unsuitable? Is going to a site about homosexuality unsuitable? How about abortion? Are holocaust denier sites unsuitable? The point is that someone, somewhere is always going to have some problem with everything. Why don't I get to tell kids they can't look at sites involving Rush Limbaugh? I think he's harmfull to children, and a liar to boot. The guy will probbably encourage kids to become pill-poppers just like him.

This isn't a new problem as certain parents have long squawked about books like Huckleberry Finn and Catcher In The Rye even being available in the school library. If porn is the big problem it's pretty easy to spot if you've got an adult in the lab.

How old are these kids? Below a certain age I can see monitoring of the kids by a teacher, and not allowing chat and unrestricted access. Starting at somewhere around High School it seems very inappropriate to be monitoring every keystroke though.

Re:Just slightly OT

What is this File menu of which you speak?

Re:Just slightly OT

[mirko]

Were such devices able to monitor the time between strokes, they could also be used to "record" some game sessions a funny way (provided the mouse is not used, of course).

Re:Just slightly OT

[jp10558]

I'm going to go out on a limb here, and say my parents, and the parent's of most of my friends. In fact - this is what our highschool had the entire time I was there. Any let me tell you - most people did everything they could to avoid porn, cause it's embarrasing to be caught(by friends or passerby) in HS looking at that. Besides- that's why you have the net at home.

Seriously, what is so scary on the net that teenagers need supervision on it? What can they do to get in trouble? Chat with some people? See some dirty pictures? Come on - no one in their right mind cares. Now my parents and pretty much any parents doing their job should draw the line at running out to meet strangers regardless how the teen set up the meeting. As long as the teens don't have a credit card, I fail to see how anything permanant or dangerous could happen.

Get a grip. I don't want Orwell, and neither does anyone else.

Re:Just slightly OT

[Robmonster]

Damn, I'd done some great moderations to this thread. I didnt realise that posting Anon would undo them all.

FWIW I consider the attacks on the parent poster flamebait. If I could mod them as such again, I would.

Re:Just slightly OT

[I+confirm+I'm+not+a]

That link in full:
BBC Newsround - for kids! Oh the shame!

Re:Just slightly OT

[Robmonster]

I'd be interested to know what kind of performance hit this monitoring software has.

Can it recognise the phrases in different fonts/colours?

Re:Just slightly OT

[Robmonster]

So you think these PC's should be entierly unmonitored, letting the users search and access whatever they want?

The IT Staff shouldnt monitor attempts to breach internal security using these PC's?

Re:Just slightly OT

[Vellmont]

There's an enormous difference in the privacy expectations of walking into a building, and monitoring every keystroke. It's analogous to the difference between a camera at a building entrance, and a camera in a bathroom.

Re:Just slightly OT

[Troed]

You'll find those parents outside the US - and you know what? Our kids are alive and well - no school shootings and less drug problems.

Re:Just slightly OT

[Lord+Kano]

take it you're not a parent. Find one who wouldn't be concerned that we offered filter free, non-monitored use of the internet.

I'm not a "parent", but I am helping to raise my GF's 3 children. I don't feel the need to resort to spying or filtering the internet access in our home. I have told the children that they will NOT be getting internet access in their rooms, they will use the computers in either the living room or the kitchen where we can see them. I don't care if they're going to cartoon network or nickelodeon, or whatever, but if I see a naked ass on the monitor; someone's in trouble.

LK

Re:Just slightly OT

[REBloomfield]

So you've just agreed with me. There are 300 PC's on site, and one member of staff for every thirty. Teachers can't see the screens of all the kids at once, but we have a means too, should we need to. If we see naked ass in the logs, someones in trouble.

Re:Just slightly OT

[maximilln]

Just because you sign a policy agreeing to slavery doesn't make it legal or ethical.

Every single person who uses the excuse "I can play God because you signed the policy agreement" should be bludgeoned to a pulp with wet noodles.

Why wet noodles? It'll take longer to achieve the pulp stage and sting more.

Re:Just slightly OT

[Atzanteol]

This is just a lawsuit waiting to happen.

How? The students signed a paper saying they know they are monitored.

But this is getting way off topic now.

Re:Just slightly OT

[Vellmont]

No.

If you're talking to a trusted friend/family member about something personal (traumatic event in your life for instance) and someone walks in the room, do you modify your behavior? Of course. Does that mean you shouldn't have been talking about it? Of course not. People do have legitimate reasons to keep secrets. Doing so isn't evidence that what you were talking about or doing is wrong.

Re:Just slightly OT

[mshultz]

...Easy way to generate your very own stream-of-consciousness, free-form, surreal novel! You don't even have to think about what you're typing; at the end of a week, you've got a product you can sell!

I wonder if (with passwords removed) this could become some kind of weird blog subculture- every day, you dump the contents of your keylogger to a web page, for all to read.

Re:Just slightly OT

people don't seem to understand the difference between a school and a government.

We don't want a "big brother" style government, but this means that we have to allow smaller entities, schools, parents, companies, etc to determine what's best for them, separately.

So if your school wants to monitor it's students..great.

If your school pushes an agenda for the governemnt to nationalize school monitoring...that sucks.

An absence of federal policy doesn't mean a free for all...in fact it may mean some rather stringent local policies. Keep it local.

Re:Just slightly OT

[maximilln]

Legal disclaimers do not preempt basic human rights and ethics.

Well... okay... in today's America they do. Let me rephrase that.

Legal disclaims SHOULDN'T preempt basic human rights and ethics.

Re:Just slightly OT

[leonardluen]

there are still ways to obfuscate this.

things start getting really messy here, but kids are quite resourceful. i was in school once, i seem to remember that some of use knew more about the security systems on the computers (including the admin passwords) than a number of the people running them.

so what if it grabs the text from the window i am working in...there are ways around this so i can still dl www.naughtypictures.com or run a certain command and not get caught.

for example i just have to write a little program or script that will dl it for me through a proxy and then save it to hd or homearea as prettyflowers.jpg then open file and no one was caught.

i guess my point is that whatever you do is not enough for someone sufficiently motivated to do something they shouldn't be

Re:Just slightly OT

[Cr3d3nd0]

As a matter of fact I just found a maybe not so much legal, as a justifiable use for a keylogger. My girfriend lives at home with her mom, 6 year old brother, and her mom's boyfriend. Being the geek I am I took the time to help clean their system of spyware and the like when I ran into a few child pornography pictures in the recycle bin. Seeing as they have a 6 year old child living there I wanted to keep an eye on their system to find out where the pictures had come from. Sure enough three days later I got a log in the email of the boyfriend chatting with a young child online. I informed the mother, and the police and now the asshole is up on child porn charges. Obviously they couldn't use the keylog information but the fact that the pictures were on there was enough.

Re:Just slightly OT

[maximilln]

Yeah. Perhaps the teachers and parents should be in trouble for not properly raising the kid to get a real girlfriend.

I understand. It's much much easier to blame the kid. The kid doesn't have the social connections or life experience to argue back. Even if they did they'd be disciplined for being backtalk and insubordination (ie. putting the blame where it really belongs).

Re:Just slightly OT

[REBloomfield]

if it's in text, we can see it. including menus in software. not pictures though.

Re:Just slightly OT

We don't do this by trawling through every one of their files, they are only examined if questionable content is found

SO, you only look thru their files if you find something questionable while looking thru their files?

Re:Just slightly OT

[eclectro]

I did not imply that I am fine with anything.

I am just stating fact. It's true that it would be wrong for companies to place video equipment in changing rooms and bathrooms, and in fact there are laws specifically preventing this.

You can be sure that you are covered by five different cameras as you enter and leave changing rooms. Also, most stores have spies close to these areas.

So much as ISPs and computer privacy is concerned, I wouldn't say they have the right to do anything. but that does not mean they don't have some capability and can use it covertly. One example might be is if you are a spammer.

Also as you know, the FBI can intercept much of your email traffic with carnivore if they wanted to, and because of the patriot act they do not need to get a court order to do so anymore.

Privacy is not a constitutional right. Modern electronics means that we as citizens are going to monitored and watched more than ever before.

Re:Just slightly OT

[The_Unforgiven]

Which presents one obvious conclusion, of course.

The last generation were weaklings, and we need less sleep. :)

If you'll excuse me now, I have to drink a 6-pack of Coke. That annoying yawn is returning...

Re:Just slightly OT

Actually, kids in schools can not prevent the search of their lockers, as the school owns the lockers.

[smartass student]Fine, search the lockers. Just let me remove my stuff from them, first.[/smartass student]

Re:Just slightly OT

[darkmeridian]

I hate to say this, but teens aren't quite adults yet. Even physiologically, their brains are matured yet. (The centers for self-restraint do not fully develop until after adolescence.) They need to be monitored. Children who plan on suicide, children who are planning massacres, children who are drinking and worse, these children need help. And we can't help them unless we look after them.

Yes, wiretapping and espionage seems repellant. But we can't stand by and watch Columbines roll by in the name of excess liberalism.

Re:Just slightly OT

[I+confirm+I'm+not+a]

Have some pity on us - we were the forgotten generation between "diet-pills" (aka: speed) and "jolt cola" (aka: speed2) ;)

Re:Just slightly OT

[Tokerat]

Not too long ago, we did rennovations to my house, including Cat-5e in the walls to a router in the basement. The Internet comes to my bedroom from the same wall jack as the phone and cable TV.

I haven't slept in 7 months. :-D

Re:Just slightly OT

[Huogo]

I've found that booting to a Knoppix CD, then connecting to a proxy on my webserver through an SSH tunnel is a very good way to avoid being monitored. NetOp (basically VNC) won't work, VNC won't work, watching my history won't work, and the server logs won't work. All the data is encrypted, with nothing running client side to monitor me. Only way is for someone to look over my shoulder.

Re:Just slightly OT

[D-Cypell]

Well, I for one, support this action.

If parents are happy for their kids to have free run of the internet then fine, let them do their running at home.

They are at school to take lessons and hopefully learn a thing or too. Would the posters questioning this action also be happy if the school library was stocked with 'playboy' magazines?

Re:Just slightly OT

[Atzanteol]

Oh for chrissakes. The original poster was monitoring children in a classroom. Children! Children are supposed to be monitored. You want an 11-year old going to images.google.com and typing in this new word 'lesbian' he's heard so much of (in Massachusetts at least)? We all know what's going to come up, and it's a bit more educational that many would like.

What if the childs surfing for porn? Emailing a friend about commiting suicide? Chatting with perverts? Planning a murder of a teacher? You think these things aren't done?

What's coming to this country when 11-year olds have a "right to privacy"? What kind of parent puts that much faith in a child? Hell, why bother parenting at all then?

Re:Just slightly OT

[maximilln]

How about spending more effort on identifying and neutralizing teenage cliques which inevitably lead to scapegoating and witchhunting?

I know. Once again it's easier to blame the kids than it is to take responsibility for being armchair parents--omniscient and impotent at the same time.

Re:Just slightly OT

[Atzanteol]

Basic human rights? What $DIETY given right is it for a child to surf the internet and use public computers without being monitored? I must have missed that one in the Constitution...

Re:Just slightly OT

How? The students signed a paper saying they know they are monitored.

***

Legal disclaimers do not preempt basic human rights and ethics.

Well... okay... in today's America they do. Let me rephrase that.

Legal disclaims SHOULDN'T preempt basic human rights and ethics.

Which basic human right is this? It's not their computer, it's essentially a public computer, so they have no right to expect privacy.

Do you even know what a basic human right *is*? It's not free, unmonitored-under-any-circumstances internet access, that's for damn sure. Next you'll be telling me about their basic human right to cable television, I guess.

Re:Just slightly OT

[Zak3056]

They have no need to ever run a .com file, so if it comes up in the log, i can find out why, and deal with it.

I'm curious if these machines have any sort of net access? If so, watching a keystroke logger for ".com" seems like it would produce more than a few flase positives... :)

Re:Just slightly OT

[eclectro]

I find it frightening that a generation can grow up with the expectation of being monitored constantl

Yes, it is frightening. But after Columbine and increasing crime waves in schools you will see cameras everywhere.

I actually don't think that phones will be monitored that much, as many students have cell phones anyway.

An alternative would be to send your student to a private school that does not have cameras everywhere. But that of course will be more expensive.

There are many good books on privacy. The recurring theme is that it is possible to obtain privacy, but it is increasingly expensive to do so.

Re:Just slightly OT

[REBloomfield]

I couldn't see your email, but it's nice to see someone I haven't seen for a long time (CA face). Darxide

Re:Just slightly OT

[maximilln]

Why does everyone use Columbine as an excuse to increase Big Brotherism?

Anyone with an ounce of honest thought realizes that watchful Big Brother wouldn't have prevented Columbine. Watchful Big Brother always sides with the majority popular clique. If anything watchful Big Brother would've helped the priveleged students antagonize their scapegoat prey and would've brought the whole situation to a head much earlier.

Which isn't a bad thing. Armchair parents and water-cooler gossips needed a wakeup call. I don't condone the end result of those actions but, in all honesty, the clique nature of our social system is just begging for it.

Re:Just slightly OT

[D-Cypell]

British kids are getting less sleep than their parents' generation

Yeah!! Damn kids, they should be doing exactly what their parents were doing at their age...

Taking lots of mind altering drugs and having unprotected sex with complete strangers!!

What is the world coming to!

Why is it that every generation feels the need to tell the next how much they lacked discipline! Thats part of being a kid! Consider it compensation for the next 45-50 years you will be stuck behind a desk.

Re:Just slightly OT

[dave420]

and when the user types in ptt:h/1/290816...a/dinm and uses drag-and-drop/cut'n'paste to rearrange the letters and then press enter, your keystroke logger knows all about that, right?

I'm sure it works well for you, but don't put all your trust in it. It's ridiculously easy to fool something like that - ridiculously easy.

Wouldn't it be better to use policies and actually restrict their actions, as opposed to trying to half-ass guess when they're doing something wrong so you can send out the heavies? It's kinda like an automated CCTV system that looks for people in black/white striped tops, wearing masks and carrying black bags with dollar signs on... The sort of students who know how to get round stuff like that are the ones you want to be watching. Ironic, really... By using that approach to security, you've made yourself less secure.

Re:Just slightly OT

[n3on]

What if the kid just copy & pastes every character with the mouse ? Or just uses an onscreen keyboard ?

Re:Just slightly OT

[Vellmont]

I don't necessarily disagree with you, I just disagree on who should be doing the monitoring, and to what extent. Parents have the ultimate responsibility to take care of their kid, and are the ones in the best position to decide what monitoring is appropriate and understand what they see. The school shouldn't be playing Big Brother.

I understand that children have been growing up for quite a long time without their activities being routinely monitored by schools down to the personal communication level. We seemed to have survived so far without grivous harm taking place. As far as Columbine goes, it's fairly obvious that the parents were the ones that should have picked up on that. The kids had guns, talked fondly of Hitler, etc. I'm sure they'd deny they could have ever found out about it, but I find it hard to believe the parents didn't know _something_ was wrong with their kids.

Re:Just slightly OT

[REBloomfield]

it's not strictly a logger, it monitors the words on screen. we can't follow everything they've typed, we're just alerted when a word that we have defined as warranting further attention appears.

Re:Just slightly OT

[REBloomfield]

it still picks it up.

Re:Just slightly OT

[maximilln]

Basic human decency. You don't stand over your kid while they're using they're making a bowel movement. You don't stand over them when they're urinating. You don't stand over them while they're showering.

Even more to the point, if you're like most parents, you don't stand over your kid when they're studying, or reading, or playing baseball or basketball or even watching TV. You're not standing watchfully at their shoulder when they go to the library or to the mall. If you're like most armchair parents you basically ignore your kid except when you want to interrogate them.

What message do you honestly think you're sending by intensely scrutinizing them when they sit at a computer? You're indirectly telling them that the computer is the most important part of their life. Then you want to moan and complain around the water cooler that they don't take in interest in the things that you did when you were a child.

You figure it out.

Re:Just slightly OT

[REBloomfield]

We used to use Netop, but it still required the member of staff to be watching, rather than helping the kids. Now, we only have to look when we are alerted to it.

Your method wouldn't work here though. Our router will only accept packets from our proxy server, and you would not reach the outside world.

Re:Just slightly OT

Whenever anyone does something with their kids someone else disagrees with, they classify that action as "not good parenting", as if there were an objective definition to reference for that.

I'll bet dollars to donuts YOUR fine parents, and the parents of everyone reading, snooped on you all a lot more than you know.

You wouldn't have to use it covertly for it to work as a 'nanny' device.

Are you against baby monitors as well?

Re:Just slightly OT

[maximilln]

If you're relying on a keystroke logger to clue you in to children who have problems with any of these issues then let it go. You're already too late.

If parents and mentors were even close to taking responsibility for their children they'd pick up on these issues long before a keylogger alerts them to it.

Ode to a generation that is completely self-absorbed until the last possible moment when "DANGER WILL ROBINSON" is blaring over loudspeakers.

Re:Just slightly OT

[kantai]

who are drinking and worse, these children need help.
What? By children, do you mean anyone under the age of 21?
I wouldn't say that those 'children' need help especially unwanted help.

Re:Just slightly OT

[Gsus411]

According to Roe v. Wade, privacy is a Constitutional right under Amendment X.

Re:Just slightly OT

[weierstrass]

>You're indirectly telling them that the computer is the most important part of their life.

You're also telling them that the computer is where they can find all the bad, forbidden stuff. :)

Re:Just slightly OT

[eclectro]

Why does everyone use Columbine as an excuse to increase Big Brotherism?

Most of it is pathological. Parents and school administrators are scared. So naturally they will do anything they can think of to prevent another Columbine from happening. More cops and cameras in schools are the first things that comes to mind.

But I think you touched upon a larger issue. Since 9/11 we as a nation have lived in a constant state of fear, much of it irrational.

Where do we stop and look at ourselves and ask what are we giving up in the name of security?

I hope more people ask that question.

Re:Just slightly OT

[Tassach]

You still can't trust the hardware. A hardware-based keystroke logger would still capture every character you type, which is exactly what the article was talking about.

A partial solution would be to use an alternative input method besides the keyboard -- a virtual keyboard on the screen or a morse-code based method based on mouse clicks (or even a single key -- keystroke loggers can only tell you what key was pushed, not how long it was held down or how long it's been since the last keypress)

Re:Just slightly OT

[Gsus411]

Errr. I meant Amendment IX. Gah.

Re:Just slightly OT

[Jarnis]

Um, taking screenshots based on keywords typed in by users is WAY different than monitoring vs. breakins or filtering based on URLs (blocking software).

Re:Just slightly OT

[maximilln]

It's the basic human right to personal space.

You don't watch them intently when they use the bathroom, study, go the library, go out with friends, eat breakfast, read a book, play basketball, or watch television. It's only natural to perceive the microscopic attention during computer use as a violation of a level of personal space (established by the baseline of monitoring in other normal activities).

I understand. It's very easy to be a reactionary armchair parent and to pat yourself on the back for being so vigilant when they're using a computer. Maybe you should try _real_ parenting rather than the selective self-fellatio.

Re:Just slightly OT

[SirChive]

"The centers for self-restraint do not fully develop until after adolescence"

I see absolutely no difference in the level of self-restraint shown by teens compared to that shown by "adults". Self-indulgence is the American norm for all age groups.

And I'm sick of hearing about Columbine. Most often it's cited to support somebody's attempt to ram their personal brand of controlling morality down other people's throats. For every Columbine there are a dozen or more cases of a so-called "adult" blowing away his whole family or offing a bunch of random people at his workplace.

Re:Just slightly OT

[Catbeller]

MEMO: Privacy and Intellectual Property Protection Policy of NorthByNorthwestern University

Anyone (hereafter referred to as "we") in the employ of NBNWU designated by appropriate management can monitor any activities of any student, employee, or casual visitor to to your dorm at any time. We reserve the right to record any activities, up to and including really gymnastic-quality sex. We reserve the right to distribute said information and cool tapes if we want to. Get over it.

If you (student/employee/casual sex encounter) do not like this, we suggest therapy for your sad case of paranoia.

If you (student) do not like this, you are free to quit this institution and become free to obtain any employment you desire in the fast-growing field of janitorial work.

We reserve the right to give your ass up to the Feds on command. Or even if we feel they may be interested. Or if you seem suspicious to us in any way.

We feel that you (student/employee/casual encounter) should feel safer in the hands of a benevolent power such as We; what are you complaining about, hippy? Something to hide? Hmm?

We are broke, and are of necessity closing down Student Health Services for lack of funds. This will not deter us from investing 23 million dollars in an all-campus surveillance system necessitiated by the vicious attack on one of our coeds by Millie the pit-poodle.

All independent ad-hoc "dark" networks, and of course independently created wireless networks are forbidden as they violate the purpose of maintaining the public safety of NBNWU; unmonitored communications are sadly reliquated to the distant past. 9-11 9-11 9-11, and of course, 9-11.

We at NBNWU also feel that consistent with our finest traditions of preparing our graduates for the rigors of the working world, our students should acclimate themselves to the weekly anal examinations, virginity and drug tests, and loyalty oaths prepared by your loving administration. We love our President, our God, and our Alumni Association.

Your tuition will be raised by 15% this year. If you have a problem with this, take it up with the 10,000 people waiting to get in behind your expelled butt.

Re:Just slightly OT

[elmegil]

Of course, not everyone is in agreement about that fact, including some notable SC justices....

Re:Just slightly OT

[lindsay+rose]

I'm sure you can make a case that monitoring a child on the internet with keyloggers is looking out for their welfare, but I think that it is much too extreme.

Take it from me. I'm at college now, but when I lived at home, my parents always had our computer in the living room, where they could see everything my brother and I did on it. When I turned 17, they allowed me to have internet access in my room, and I felt priviledged that they trusted me. Then my mom told me that she had been reading my email for years (she confronted me over something extremely silly), and I felt violated. Snooping is one thing if the kids are aware that it might occur; when it's done covertly and then used against them, trust will be broken.

Most kids can be trusted, you know. All it takes is a little adult supervision to ensure that they're following the rules.

Re:Just slightly OT

[viking099]

You're assuming they allow booting off a device that isn't the primary hard drive.
How many people who know anything about computer security actually continue to allow non-internal hard drive booting on a system that is intended for general use after it's set up and installed?

Not many, I'd hope. :-)

Re:Just slightly OT

[elmegil]

If parents and mentors were even close to taking responsibility for their children they'd pick up on these issues long before a keylogger alerts them to it.

Spoken like a true non-parent.

Let's just say, you can take all kinds of responsibility for your kids and still miss things they hide from you. I don't advocate keystroke loggers, but your statement is the absolute other end of the spectrum which is just as ludicrous. There is a middle ground.

Re:Just slightly OT

[maximilln]

-----
you can take all kinds of responsibility for your kids and still miss things they hide from you
-----
I agree. I made my statement to address the excuse for using keystroke loggers. Your tack is equally applicable: there does exist a point at which nothing can be done.

Keystroke loggers are an exercise in absentee parenting at worst and a paranoid token last ditch effort at best.

Re:Just slightly OT

[elmegil]

You've never had to deal with rule breakers, have you? It's not a matter of "playing God" in most cases, it's a matter of making sure that the rules are adhered to. If all you do is sit back and repeat the rules, and are only able to do anything about the most flagrant rulebreakers, all you end up doing is pushing the real troublesome ones underground. Policies should not only say "you agree to be monitored" but also what you can do if you think you've been mistreated, and provide real relief if you are.

As a former university sysadmin, there were times when we would find out someone was breaking the rules, but to enforce them we had to have real evidence. This involved surveillance, usually electronic/email. We then made our case to the dean of students, and if they agreed that the rules were broken, punishment was handed out. The student always had the ability to appeal to higher authorities if they thought they'd been mistreated or the punishment was too harsh. Enough checks and balances that it was never abused; we didn't snoop on students who had not done anything to arouse suspicion, and I can't recall any cases where we went to any great depths investigating anyone who wasn't found to be guilty of enough of an infraction to justify our time.

That said, I think continuous keystroke logging is excessive and likely more prone to abuse, but still, there is NOT any absolute guarantee of privacy, even if I'm using my own equipment. That's why the FBI can go to a judge and get permission to wiretap a suspect (let's leave aside the fact that I believe that PATRIOT has gutted a lot of the appropriate checks and balances in this system). The other side of that is that you can't just wiretap someone because you want to, and getting back OT, that's what happened here. Regardless of how noble the cause, the means was illegal.

Re:Just slightly OT

[Dun+Malg]

Privacy is not a constitutional right.

Yes it is. As the other poster noted, see Roe v. Wade and the 9th Amendment. The ninth essentially says that just because a right didn't come up specifically in the founding fathers Top Ten List doesn't me it doesn't exist. It is important to remember that our right do not come from the Constitution, they are only protected by it. Rights are intrinsic to our existence as human beings. The second paragraph of the Declaration of Independence says it pretty well: (emphasis mine)

"We hold these truths to be self-evident, that all men are created equal, that they are endowed by their Creator with certain unalienable Rights, that among these are Life, Liberty and the pursuit of Happiness. --That to secure these rights, Governments are instituted among Men, deriving their just powers from the consent of the governed..."

Re:Just slightly OT

[I+confirm+I'm+not+a]

Getting serious (slightly...) for a minute... I don't feel that "my" generation needs to tell the younger generation that "they lack discipline". That's just passing the buck. It's my generation's responsibility to *provide* discipline - even if that means saying "you can stay up all night surfing pr0n once you leave home/reach 18/run away and join the circus - and not before!

But yeah, back to the humour... I'm just bitter!

Re:Just slightly OT

[Dun+Malg]

You want an 11-year old going to images.google.com and typing in this new word 'lesbian'...?

Actually, I tried it myself and I think it'd be educational for an 11 year old. If nothing else, they'd get a sense for the difference between "porn lesbian" and "real lesbian". I agree though, school is probably not the appropriate place for this.

Re:Just slightly OT

[Atzanteol]

Basic human decency. You don't stand over your kid while they're using they're making a bowel movement. You don't stand over them when they're urinating. You don't stand over them while they're showering.
You don't? How did you get toilet trained? Were you ever bathed by your parents or did they just give you a hose and put you in the back yard?

You *do* watch everything a child does, to the best of your ability. While you were out playing in the yard I'd bet your mother *was* watching you . She may not have told you, but she probably kept a closer eye on you than you think. Ask her sometime.

What message do you honestly think you're sending by intensely scrutinizing them when they sit at a computer?

That they'd better be careful? That if they do anything wrong you'll take corrective actions?

What message do you send the child (remember, these are *children*) by NOT watching them? That anything they do is okay?

You're indirectly telling them that the computer is the most important part of their life. Then you want to moan and complain around the water cooler that they don't take in interest in the things that you did when you were a child.

I don't even know what you mean by this. What was I bitching and moaning about?

Re:Just slightly OT

[GlassUser]

You need to clear the cookies so it doesn't give you the option of posting anon or not, just allows only that. It's rather frustrating.

Re:Just slightly OT

[Atzanteol]

I never said 'rely on the keystroke logger'. Where did you read that? It's "yet another tool" for parents. You can't watch them all the time, especially while they're at school. This gives *some* insight while they're at school.

Will you stop going to bloody extremes here? Get off your 'privacy high-horse' for a minute and view the world as it is. Children don't have lots of rights (voting, driving, decisions on their education, the list is endless). There are reasons children don't have these rights. They're not old enough to make these decisions on their own. And you're telling me that they're adult enough to surf the web unwatched while at school?

Re:Just slightly OT

[maximilln]

-----
You've never had to deal with rule breakers, have you?
-----
This sums up my whole issue with Big Brother techniques such as keyloggers.

Even former university sysadmins play favorites. Teachers play favorites, parents play favorites, PEOPLE IN GENERAL play favorites. While playing favorites is a natural part of human existence there's no good to come of installing more and more systems to further antagonize those who aren't the favorite.

In our society the people writing the rules are far too priveleged and too well protected. A natural usefulness of rulebreakers is to identify which rules need to be revised or reconsidered. With all of these Big Brother techniques to catch rule breakers the moment they move a finger the wrong direction we'll never refine our system of rules. We continue adding rules and more rules and more rules. It's only logical that, in a system that never repeals or revises rules but onoy adds them, it will be possible to selectively enforce the rules not for the sake of order but to advance personal agendas.

Let's face it. Until we constructively figure out a way to get out of our descending spiral of zero tolerance and moral elitism (often defined and enforced by those who are the biggest hypocrites) then our society is and will continue to be _broken_. Keyloggers aren't going to fix it. Keyloggers are only going to help make it more broken.

Re:Just slightly OT

[maximilln]

I'm not on any privacy high horse. You're free to watch over my shoulder all you want. It's not going to fix the problem that you champion as an excuse for Big Brother tactics.

Please don't use the "yet another tool" for parents argument. Parents have had plenty of tools for the 6000 years before the electronic revolution hit the earth. The only thing that spying accomplishes is alienation. Even before the electronic revolution there was never anything good to come of spying on children.

Spying is a destruction of trust. If your relationship with your children is so broken that you don't have a positive level of communication and trust then 1) a keylogger isn't going to fix the problem and 2) a keylogger will only antagonize the problem.

I understand. It's always easier to point out faults with the kid. There's no sense in accepting personal shortcomings at the social or parenting level.

Re:Just slightly OT

[Mr.+Piddle]

Students are monitored by the logger, if it finds a word or phrase in our database, then a screenshot is sent to us, and we can then watch the student in real time over VNC.

This kind of rancid crap is why home schooling is so popular. Our children are not inmates!

Re:Just slightly OT

[Xenographic]

He's not the only one ;]

Bah, silly mods, they don't know that we know each other :P

Probably best to post without the bonus though, so people won't complain so much...

Re:Just slightly OT

Where do we stop and look at ourselves and ask what are we giving up in the name of security?

When the community discovers that the only people that are secure are those walking around in full body armour, with a a pair of HK pistols, and an AK-47 in each hand.

Re:Just slightly OT

[elmegil]

So until we can have the computers monitor things, we should just give up trying to enforce rules? Did you miss the part where the student has recourse to a higher body if they felt they had been unfairly singled out?

Re:Just slightly OT

[pcmanjon]

Yeah, so everytime they go to a website with the TLD .COM they're going to set off a red flag.

Or, was this another example that isn't really used?

This isn't a flame, just a question

Re:Just slightly OT

[dave420]

Shouldn't the systems be locked down instead, so they can't do any damage, as opposed to having a rapid-reaction force to pry the keyboard from their mischievous hands? That seems like putting all your eggs in a very wobbly basket :-P

Re:Just slightly OT

[pcmanjon]

Whoops, I didn't know the .com stuff was already mentioned, ;/

Re:Just slightly OT

[eclectro]

I'll remember that when I watch the fireworks the next fourth of July. For all the good it will do me.

Evidently I don't have enough privacy rights to stop the government from searching through my library records, seeing what books I buy, or reading my emails in the name of stopping terrorism (and doing so without a court order). Thanks to the patriot act.

Then there is Total Information Awareness reborn which is the marrying of commercial and government databases to rob me of even more privacy, and echelon.

So privacy is a nice idea, but unfortunately, that is all that it is.

Our government is out of control in more ways than one.

Re:Just slightly OT

[Atzanteol]

Tell me, how did parents control the web-browsing habits of children in the 1700's? If it didn't exist, there was no *need* to monitor it...

I actually rather agree with you on the trust angle. You seem to think I wish to key log everything and then rummage through it every night to see what dirt a child is doing... I'm saying that in the case of the schools doing it, it's their way of letting children know they're being watched so they'd better not do anything wrong. And if the school happens to find something disturbing (picture two students IM'ing each other about another school massacre), they can react on it.

Re:Just slightly OT

I'm not sure why they can't type command.com, but regardless, why not

echo c >>stupidAdmin.bat
cls
echo o >>stupidAdmin.bat
cls
echo m >>stupidAdmin.bat

well, you get where I'm going with that

Re:Just slightly OT

[Shakrai]

Which basic human right is this? It's not their computer, it's essentially a public computer, so they have no right to expect privacy.

And cordless phones (not to mention 802.11b) broadcast on public airwaves so I can hook up a scanner to my tape recorder and record all of your conversations. What? Illegal you say? What right do you have to expect privacy on the public airwaves?

Re:Just slightly OT

[4of12]

Good to hear that Big Brother is alive and well in our schools. This kind of thing just makes me sick.

Exactly.

The worse thing is what the policy teaches. Too many short-sighted administrators and members of the general public think "Now I'll teach something that they'll learn and do." "Now, I'll go do something else entirely, but I'm not teaching now, so it's OK."

Guess what? Kids learn everything, including the bad behavior.

When you and I are all old enough to be in nursing homes and the people running the world think it's normal to install 24/7 monitoring on everything people do and say, and feed us drugs to get us into a mood that is more cost-effective for them to handle, then we'll know where they've learned the lesson and that we've taught them well.

Re:Just slightly OT

[Robmonster]

Thanks ;)

Re:Just slightly OT

Bet the kids can't wait to start setting up some of the losers. Just walk to his computer, open ICQ and type "This school is the SHITTIEST ever, I'm gonna go watch porn now. xxx". And bingo, they've fully set him up. This is why teachers make such horrible jurors, they think it's sooo easy to catch kids, and they are completely wrong.

Re:Just slightly OT

[Robmonster]

The original poster gave the example of them trying to navigate to http://192.168.0.1/admin

That might be considered trying to breach internal network security.

Re:Just slightly OT

[smyle]

How many people who know anything about computer security actually continue to allow non-internal hard drive booting on a system that is intended for general use after it's set up and installed?

I did in my former position as a technology director for a small school district. I understood the implications and the potential for abuse, but I still left them able to boot from a CD (but not floppy).

Why?

Cost/benefit ratio. All web traffic still had to go through the squidguard proxy, and the rest of the network was relatively-well secured on the inside. And, quite frankly, I didn't have anybody else who was security-conscious enough to know how to exploit it yet (like I said, it was a small district, and I knew every student who could do anything more with the computer than type a report). Leaving them CD-bootable made my life easier, and as one of many understaffed schools, I would take any break I could get.

Re:Just slightly OT

[Robmonster]

For every lawsuit filed by parents aghast at the rivacy invasion, there would be another filed by parents aghast at the school allowing their kids to surf to www.donkeypr0n.com and suchlike if this measure was not in place.

Its a lose-lose situation in that respect, and I guess the school admin is doing what they feel covers them the most.

Re:Just slightly OT

[maximilln]

There's always been a need to monitor children doing something. If it wasn't web-browsing in the 1700s it was something else. I wasn't alive in the 1700s, I don't know what the shenanigans were back then. It probably had more to do with 11 and 12 year olds sneaking off to the woods to play doctor. If you're trying to say that parenting today has more inherent problems than it did in the past I have to disagree.

Now that we've talked about this I'd have to say that I don't have any issue with you as a parent keylogging your children as long as you have an open and honest level of communication and trust. Ideally the children know that you use a keylogger.

What bothers me is when an outside institution wants to use a keylogger--especially if that institution is tied with the government. It's not about privacy or about rights. I have no illusions about the complete subjectivity of privacy and rights in the modern world. The majority of it depends on who you know and how much you can afford for legal counsel. My concern is the government's disposition towards overreaction and misinterpretation. Often overreaction and misinterpretation are used to further personal agendas or even vendettas. How many scapegoats (on one side) and poster children (on the other) does it take to promote a local politician to state Senator?

Re:Just slightly OT

[Strange+Ranger]

> They have no need to ever run [X]

How about learning about [X]??It is a school after all. I remember my school librarian used to get all worked up because I'd quit "Oregon Trail", and fool around at the DOS prompt instead. She watched me like a hawk, which was the old fashioned equivalent of a keystroke logger.

"Hey, you don't need to be fooling around in there! Why are you always doing things you're not supposed to be doing?"

"We'll, I can learn how to shoot "Indians" with the space bar, or I can learn about this computer."
She basically loathed me after I said that.
Sad to see things haven't changed much since then.

Re:Just slightly OT

[dogfart]

You should never assume that you have privacy on equipment you do not own.

And since most people own damn little, they effectively have no privacy. Should your landlord have the same right to monitor their tenants? Suppose someone is sneaking in an overnight visitor in violation of the lease? Should the landlord be able to monitor your communications to find this out? They own the building, you don't.

Privacy rights that extend only as far as you own the computer equipment are effectively useless, as they would cease to exist once your networked data travels outside your property boundary. After all, the phone/cable company owns the wires, and you are using their equipment.

Re:Just slightly OT

[pointbeing]

If I were working in Information Assurance the first thing I'd ask you is to demonstrate the business need for the tunnel you've created on port 22 ;-)

Re:Just slightly OT

[OhHellWithIt]

A better solution is simply making regular backups. Also, many word processors and editors include an automatic save feature to permit you to recover all but the last 5-10 minutes of work if the power goes out. MS Word permits you to save versions of your document.

As far as KeyKatcher goes with respect to personal privacy, it looks very easy to defeat, if you know about it. Unplug it, do your naughty things, and plug it back in. I think monitoring email, proxy server logs, etc., are going to be more effective, and harder for the end user to defeat.

Re:Just slightly OT

[Blackneto]

actually if you have it run as a service there is no icon to go black.

Re:Just slightly OT

[vivian]

They're not old enough to make these decisions on their own. And you're telling me that they're adult enough to surf the web unwatched while at school?
This is exactly why I think keylogging is neccesary for kids at school and home.
Would I care if my 14 yr old son was checking out playboy sites? No - O'd be more worried if he wasn't. But I'd sure as hell want to know if he's talking to someone called 'hotchik' on some chat room wanting to talk about how often tosses off and wanting to meet up - because it could easily be some sleasy 40 yr old pedophile grooming him up.

Having just seen a U.S based documentary about exactly this, it worried me about my nephews, who are in that 9-14 yr old group where they're still a bit too gullible & trusting. I Don't actually have any of my own kids wo worry about yet, but when I do you can be sure I will be keeping an unobtrusive eye on them - ignoring most things until it looks excessively dangerous or overly twisted.

It's not te same world it was when I was growing up - there was no easy way for a potentially dangerous stranger to get into my close confidence without at least one of my parents or a school teacher meeting them at some time. The internet changes all that. I don't want to ne a net nazi, but I would want my (future) kids to be shielded from the worst the web has to offer until they are mature enough to deal with it, without it jading their world view too much, or leading them into real physical danger.

Re:Just slightly OT

[STrinity]

OK, then I suppose you'd be fine with a clothing store videoing their customers in the changing room and selling the tapes on the Internet.

That's a completely different issue -- the store would have to get a model-release and pay me for the commercial use.

Re:Just slightly OT

[MrScience]

Unless you used something hardware based... say, the KeyCatcher mentioned in an above post. In which case it catches all keypresses, whether you're running OS/2, BEOS, in the BIOS, or Linux.

Of course, since I type in Dvorak, it wouldn't be able to figure out what the heck I'm typing (since I use a software driver to convert a QWERTY keyboard).

Re:Just slightly OT

[maximilln]

-----
Did you miss the part where the student has recourse to a higher body if they felt they had been unfairly singled out?
-----
I didn't miss it. I ignored it. Our system of zero tolerance and well protected rulemakers leaves no real breathing room for recourse.

We shouldn't give up on enforcing rules. We should better define which rules need to be enforced. This is _the_ central problem in our current society. A vast majority of people are busy writing rules and more rules and more rules to justify their high-horse of righteousness.

Stop and think about the following:
Is this really a rule that we will want on the books ten years from now?
Is this really a rule that we have the ethical right to enforce?
Is there potential for abuse in this rule?
Can we better spend our time refining existing rules than adding new rules?

If you've done any complex programming you would understand what I'm getting at. Any idiot with a text editor can write more code and more code and more code. It takes a good programmer to go back and rewrite code to be faster, better, more efficient, more effective, and more productive.

Here in the US we don't have a demand for good politicians. We only have a demand for politicians that can make more rules. In essence, the US political system is writing a crappy operating system with more band-aid style approaches such as key loggers. They never go back to see that the real problem is with the existing US Code. It's causing more page faults than any army of keyloggers can fix.

Re:Just slightly OT

[STrinity]

Should the landlord be able to monitor your communications to find this out? They own the building, you don't.

But the phone-company owns the phonelines, the cable-company the cable, and there are federal laws dealing with mail.

Re:Just slightly OT

> Students are monitored by the logger, if it finds a word or phrase in our database, then a screenshot is sent to us, and we can then watch the student in real time over VNC.

Curious: Is it something homebuilt or are you using a specific software package?

Re:Just slightly OT

[jackbird]

That's how replays work in Warcraft 3 - it saves the random number seed and all the mouse clicks of all the players, then literally 'plays the game' using that data instead of live input. Changes to game mechanics rendered old replays unviewable when the game was patched, and a side effect is no rewinding and only limited fast-forward capability.

Re:Just slightly OT

[Atzanteol]

Often overreaction and misinterpretation are used to further personal agendas or even vendettas. How many scapegoats (on one side) and poster children (on the other) does it take to promote a local politician to state Senator?

That's a very good point. Often times a 'loner' or 'unusual child' is held up as something inherently wrong for no greater reason than he/she looks different. However, I think the over-reaction is bad, whereas the original act of monitoring is not. Like all the discussions here about how P2P is legal, but sharing illegal things is not. I'd like to see something in the 'contract' signed that says any information gathered is the property of the child's parents, and not the school.

Re:Just slightly OT

[ever+vigilant]

\/\/47(h 0u7 f0r 7h3 1llu|\/|1|\|471, 7h3yr3 3v3ry\/\/h3r3.

Re:Just slightly OT

[silicon+not+in+the+v]

Using tricks to snoop on your kids like this will breed an attitude of distrust and paranoia. You'll also only find out what they're up to after the event. Instead of working against them, you should actively work with them.

My dad used all kinds of ways to check up on me--calling up my friends' parents sometimes when I had spent the night there, and such like that. It had a good side and a bad side. Yes, it caused an air of not wanting to trust him, but it also caused a very useful sense of paranoia in me. I was caught doing stuff I shouldn't a few times, when I thought I had gotten away with it. It really worked, because many times after that, my friends would suggest doing something or going somewhere I shouldn't and I would say, "I can't. My dad will find out somehow; I just know it."
Maybe that's not a very nice way to go about it, but it sure works to keep a kid out of trouble.

Re:Just slightly OT

I am in school right now. (it's break at the moment) and all the internet traffic from this lab goes to the capitol to monitor. I totally agree with this practise. You can't use a phone to change your marks, look at porn, download viruses, bring down the school network, etc. you can do all that with a school computer. If you want to do private stuffon the computer, do it at home. The school computers are not really for private use (maybe at lunch or break)

Re:Just slightly OT

[maximilln]

Unless we plan on patenting every word or utterance or keystroke our child makes the property tack, while it sounds good, won't have any real teeth. There's no confidentiality and word of mouth is 100 times more effective in creating a scapegoat than any formally compiled information.

The only way that I see to avoid the inequities is to avoid getting started on the system of clandestine spying on the children. Many people don't believe in the slippery slope argument but, from my experience, the world is coated with teflon coated with ultra-fine Turtle Wax.

Open communication and trust. That's the only way that I see an improvement. When the government is constantly violating trust, and the schools are constantly violating trust, and paranoid parents are trying to push other parents into violating trust then it's a self-perpetuating road to h-e-double-toothpicks.

Re:Just slightly OT

[Black+Jack+Hyde]

Since 9/11 we as a nation have lived in a constant state of fear, much of it irrational.

Tell that to the people who died on 9/11. Oh, wait, you can't, sorry. Tell the surviving families they're irrational instead.

Minors, that is people under 18 in the US, have minimal rights or expectations of privacy in a school setting. I hated it when I was a student, and so did everyone else, I'm sure. Guess what, when you grow up and get a job, and work on a network in a corporate environment, you get treated the same way: no expectation of privacy.

Do your schoolwork at school, and save the fun stuff for your non-keylogged boxen at home. Don't let some paranoid school sysop get you expelled just because you tried pulling up a web page they happen not to like.

Re:Just slightly OT

Actually, kids in schools can not prevent the search of their lockers, as the school owns the lockers.

No, if it were only that the school owns the lockers, then the school would not be able to legally search them - just as a landlord is not allowed to arbitrarily enter a renter's apartment.

The doctrine that laws the schools to search lockers (and otherwise (mis)treat students at random) is called "en loco parentis" and is the belief that while at school, the school's administration is acting in place of the child's real parents and thus has just about all of the right of control of said child that their real parents do.

The same unfortunately is applicable to many places of employment. Owning the equipment gives employers the right to monitor it. I believe that this was decided in the supreme court.

Again not true. The courts are divided, mostly due to differing state laws. At the very least, "adequete notice" must be made of such monitoring and be consistently enforced without prejudice.

Re:Just slightly OT

we're not trying to read what they're doing, it's frankly of no interest, we're more concerned with *what* they're doing.

I don't get it... Oh, *now* I do.

Re:Just slightly OT

[Short+Circuit]

I used to use something like "echo $( echo ...|rot13 )" when I needed to type stuff in putty that could be questionable.

I haven't really worried about it, lately. I already know they're watching me after getting in trouble for maxing out the college's bandwidth while downloading Debian CD images from a decent mirror.

Re:Just slightly OT

[poot_rootbeer]

I mean, is there any useful use for this device at all?

I think you just provided one by example.

Installing a keylogger on a machine YOU OWN to monitor YOUR CHILD is about as legally and morally justifiable as it can get.

As a legal guardian, you bear a certain amount of responsibility for the actions of your dependents -- if they're doing something illicit, you have a duty to try and find out and prevent it. And that's not even addressing the safety issues of keeping your children away from possible abductors or rapists...

Re:Just slightly OT

[Short+Circuit]

Learn to read rot13...it shouldn't be that difficult. Just like learning a new language, but the only difference is your alphabet.

Re:Just slightly OT

[muskr]

1. Do they know they're monitored?
2. What if they type the alphabet then copy and paste one character at a time? ;)

"abcdefghijklmnopqrstuvwxyz" It's the funniest word I think I've ever seen.

Re:Just slightly OT

[poot_rootbeer]

So which is it? Do you think parents should supervise their kids' internet usage, or not supervise their kids' internet usage?

Re:Just slightly OT

[ScooterBill]

While I certainly agree that you have the right to monitor your kid's net use and can have video cameras in every room of the house, the point many are trying to make is that this should not be considered a panacea for parenting. There are millions of people out there using the internet unsupervised with full access who are not doing anything illegal or "bad". Kids grow up to be these kinds of people with good parenting.

My kids aren't quite old enough to surf the net and get into trouble on purpose so I would probably make random checks on what they're doing. For instance, you wouldn't give a 16 year old the keys to your Ferrari and tell them to do whatever they wanted. You set some rules. The internet is pretty wide open and kids don't always have the best judgement.

What I'm getting at is that most kids are curious and will explore if left on their own. They just need to be instilled with the common sense and good judgement to draw their own boundaries. It's a balance that if done right will enable you as a parent to release control gradually as they get older. I've seen parents actually try to control their kids more and more as they get older and all that happens is everyone gets frustrated and then you get real problems.

M

Re:Just slightly OT

[badzilla]

Installing a keylogger on a machine YOU OWN to monitor YOUR CHILD is about as legally and morally justifiable as it can get.

Surely you mean "about as thoroughly illegal as it can get" ?

UN Convention on the Rights of the Child

Article 16
1. No child shall be subjected to arbitrary or unlawful interference with his or her privacy

Re:Just slightly OT

[wwest4]

> after Columbine and increasing crime waves in
> schools you will see cameras everywhere.

and worse - there were cameras at columbine, recording the shooting but not preventing anything.

Re:Just slightly OT

[wwest4]

> Tell that to the people who died on 9/11. Oh,
> wait, you can't, sorry. Tell the surviving
> families they're irrational instead.

Not everyone who lost someone to this tragedy agrees that we should be afraid in its wake.

> Don't let some paranoid school sysop get you
> expelled just because you tried pulling up a
> web page they happen not to like.

Or, don't accept being placed at the mercy of a sysop, and advocate for privacy.

Re:Just slightly OT

[cayenne8]

"...they'd get a sense for the difference between "porn lesbian" and "real lesbian"."

Hmm...there's a difference? Never thought of that before.

Is it:

• One you want to point a camera at, watch or join in with
• The other is ugly

:-)

Re:Just slightly OT

[Rich0]

What we need is a client-server system that masquarades SSL connections to webservers.

Web proxies have to pass SSL connections without messing with them - since they are encrypted from client to foreign server. There is no chance for the man in the middle to intercept these communications, or determine what is really in them.

So, you set up a server which listens on the regular https port on a computer you control. Then you boot knoppix and run a client which connects via https through your web proxy to your home computer, and essentially uses it as an ssh tunnel. You could then run X11 programs from home across the link, or even smarter would be to use it as a PPP link or something like that so it would just be another network interface.

My workplace also filters all outgoing connections except through a web proxy, but I can https to my home server just fine. Unfortunately, while that works fine for accessing my mail via squirrelmail, it doesn't do any good for web browsing or just about anything else.

Re:Just slightly OT

And no privacy in rented residences? After all, the landlord owns the property. And probably the phone lines installed in it, too.

No, ownership should not justify spying.

Re:Just slightly OT

You did a masterful job of switching topics, and attempting to obscure what was being discussed. It really was a thing of beauty. But let's try this again.

There is no basic human right to unmonitored internet access on a public computer.

It's really simple. If you disagree that a parent or school *should* monitor their children in this way, well, that doesn't really matter, does it? Maybe they should, and maybe they shouldn't, but that doesn't change this fact:

There is no basic human right to unmonitored internet access on a public computer.

See, I'm hoping that if I repeat it enough, you'll understand.

I understand. It's very easy to be a reactionary armchair parent and to pat yourself on the back for being so vigilant when they're using a computer. Maybe you should try _real_ parenting rather than the selective self-fellatio.

Nah, you really don't understand anything. I was unaware that, in pointing out my fact, which is:

There is no basic human right to unmonitored internet access on a public computer.

that I was being an armchair parent. Well, I was unaware of this because I wasn't being a parent, ignoring the possibility that you're my son, of course. As far as it being selective self-fellatio, well, that's an interesting opinion that you have, but it doesn't change the fact that:

There is no basic human right to unmonitored internet access on a public computer.

I hope that helps you, I really do. And, for the record, you do have the right to monitor your children when they study, go to the library, go out with friends, eat breakfast, read a book, play basketball, or watch television. And it's the parent's decision how much monitoring they feel is necessary.

So, what happened? Did you get grounded for sneaking out last week, or what?

Re:Just slightly OT

[Dun+Malg]

So privacy is a nice idea, but unfortunately, that is all that it is.

Our government is out of control in more ways than one.

Yeah, I agree. The rights of man are a noble idea, but adherence to the noble ideal has been eroded continuously since the beginning, and even then it was on shaky ground because, among other things, "man" essentially meant "property owning male non-slave".

Re:Just slightly OT

Tell that to the people who died on 9/11. Oh, wait, you can't, sorry. Tell the surviving families they're irrational instead.

Just who do you think you are to speak for all of us? Just because I lost loved ones doesn't mean I'm somehow obligated to jump on your exploitation bandwagon.

Re:Just slightly OT

[LookSharp]

I'd like to point out that:

1) Not every troubled kid has bad parents,
2) Not all crappy parents have bad kids, and
3) Define "bad parents" in precise language.

I'm the oldest of 7 kids. I have two stepbrothers, two adopted brothers, a sister, and a half-sister. My parents provided for us very well. My dad (workaholic and emotionally distant) has always worked 70-100 hours a week (never home), and my mom is... insane is about how I would charcterize it, although "extremely emotionally unstable and prone to manic behavior" is more specific. We all had TVs and later, computers with modems, in our rooms.

Out of the 7 of us, from different genetics but identical environment of upbringing, now all in our 20s:

Our IQs range from 90 to 143
We range from college graduate to high school dropout
We range in income from $0 to $55,000 a year
One of us is in jail for dealing drugs
One of us is in the Army, just back from Iraq, following 4 years in the Marines
One of us is divorced with two kids, fathered by a convicted felon
One of us moved out with a woman a dozen years older and has stopped speaking to us
Two of us are respectably married and happy
One of us is finishing an undergraduate degree, majoring in pre-law

Are my parents bad parents? They tried to watch out for us as best as you can with seven kids (which is something neither of them expected having to do until circumstances and decisions led them to find it was the best thing for all of the kids, to have two parents), but some of us handled this lack of supervision differently than one another.

FWIW, I consider my parent both some of the best examples, and worst cautionary tales, you could provide for good and bad parenting alike.

Re:Just slightly OT

[rark]

Erm. How the heck would reading one's child's email help one make a decision about which school to place them in? Unless perhaps one found out something so shocking that one decided to place one's child in boot camp.

Actually, I can think of a handful actual uses for such a device, such as backup and data gathering (both of which have already been noted in this thread) as well as a handful of situations where monitoring of keystrokes is warrented.

But in general, if you're reduced to spying on your kid (as opposed to saying "I am monitoring your movements on the computer", which can be done without such things) something has gone very wrong. It might *not* be the parents' fault, but the odds are that they had a lot to do with it.

Re:Just slightly OT

No, the landlord usually owns the actual wires in the building.

Re:Just slightly OT

[LetterJ]

Should your landlord have the same right to monitor their tenants?

That's specifically why most (all?) jurisdictions have renting governed by leases rather than just considering it as something more like you living in someone's spare bedroom. Because, when you are leasing property, you get many of the rights/responsibilities of ownership, while the title to the leased property is still technically owned by the real owner. Consider the difference between the rights of Hertz when you rent a car vs when you lease one from the dealership. Hertz has the right to monitor your use carefully and does so, while the lease from the dealership is limited to statements of the expected return condition and the penalties for conditions worse than stated in the lease.

Re:Just slightly OT

[DarkVader]

A public school IS the government... There is NO difference.

Re:Just slightly OT

Doesn't mean squat. Just let them try to enforce it and see how it takes for the US to "liberate" them!

Re:Just slightly OT

[Perky_Goth]

but... and honestly, IMHO (but not terribly informed), the pictures themselves, if not connected to him, aren't ilegal.

am i wrong?

Re:Just slightly OT

[fscking_coward_2001]

Find a more relevant argument. Agreeing to restrictions on your use of computers is not equivalent to slavery.

Re:Just slightly OT

Yep, you're wrong. Merely possessing child pornography is illegal in many countries.

Re:Just slightly OT

[elmegil]

So what are you going to do DO to fix it? Posting to slashdot doesn't count.

Re:Just slightly OT

[firewood]

But they were on your girlfriend's (or her mom's) computer. e.g. they had physical possesion of the disk drive. So why weren't they charged with the crime?

Re:Just slightly OT

I find it frightening that a generation can grow up with the expectation of being monitored constantly.

Helpful Tips on Internet Safety

"Finally, whenever possible, sit with your children when they are online." :)

Re:Just slightly OT

[maximilln]

I didn't switch topics. You're simplifying because you wanted to win. I never claimed there was a basic human right to unmonitored access on a public computer.

The discussion was about the ethical use of a keylogger especially with respect to monitoring schoolchildren.

There is a natural level of watchfulness which parents keep. There is also an unnecessary level of spying which does more to damage the relationship of trust and communication than it does to protect the children. If the justification for a keylogger is to protect the children then it fails. There is nothing that a keylogger can tell a parent about their child that proper parenting wouldn't have already addressed in a more constructive forum.

Would you like a bandaid for your poor bleeding heart?

Re:Just slightly OT

[Ironica]

Privacy is not a constitutional right.

Well, it wasn't, until the Supreme Court said it was. Dammit, now I have to find my notes from "Law and the Quality of Urban Life," to find the case... though it may be Mapp v. Ohio (1961). That's the earliest one I can find.

But, since some case the SC decided, privacy has most definitely been a constitutional right, and that precedent has been affirmed in many other cases, chiefly on reproductive rights and sexual conduct.

Re:Just slightly OT

[Ironica]

Actually, I tried it myself...

And then you have to explain the Rocky Horror Picture Show to them... fortunately, that's one my kids will probably learn about very young (at Alumni Night).

Had to look at those pictures carefully to make sure none of the Columbias were me ;-) (Or in hopes that they were... /shrug)

Re:Just slightly OT

[JamieF]

I think that httptunnel and stunnel would do this.

TCP over PPP over TCP has serious performance problems, though.

Maybe you just need a new job.

Re:Just slightly OT

[dasunt]

Definitely. If you're a writer of some kind, install a KeyKatcher and you've got an instant backup of everything you've written. If your word processor crashes, no problem; fire up KeyKatcher and cut and paste everything you've lost. Beautiful stuff.

Vi and its clones (vim, nvi, elvis, etc) have a copy of the current text in a swap file. In event of a crash/power failure/etc, its easy to recover the swap file and resume your work.

As for word processing, that's what LaTeX is for.

Re:Just slightly OT

[firewood]

Only way is for someone to look over my shoulder.

If the system, keyboard and monitor aren't Tempest shielded, it might be possible for someone with an antenna pointed at your system, and the appropriate demodulators (canonical windowless black van parked outside), to see every keystroke, every mouse movement and record the raster show on your monitor, just from the RF leakage.

See the book Cryptonomicon for an example.

Re:Just slightly OT

[maximilln]

I did (tried) my part. I got the crap kicked out of me by people with larger social connections and more financial resources. The elected people in power don't react very nicely to people who want to change the status quo. They make lots of money and a good lifestyle off the status quo. Why would they want to change it?

I'm now currently paying off debt and attempting to keep food in my stomach.

C is for cookie, that's good enough for me...

Re:Just slightly OT

[Ironica]

Let's just say, you can take all kinds of responsibility for your kids and still miss things they hide from you.

So how do you get into a situation where your kids are hiding dangerous things from you?

More to the point, how do you *avoid* getting into that situation?

Kids should be able to trust their parents to be looking out for their best interests. If a kid wants to hide something from mom or dad, it's probably because they *know* it's wrong... in a healthy relationship. If they're hiding something and don't believe it's wrong, it's because they mistrust their parents' judgment or morality. This can occur because they personally witness their parents engaging in a double-standard, hypocritical behavior, or just flat-out breaking their own rules, but sometimes it's simply because parents make rules that are unreasonable and don't give their kids the resources to follow them (assuming it would be possible).

A good parent knows what's going on in their kid's life, in large part because the kid tells them. If you tell your teenager they're not allowed to date, that won't keep them from dating... it will keep you from knowing who they are dating. So when your 14-year-old college-junior prodigy is off losing her virginity to a 31-year-old jazz musician, you think she's at her friend's house for a slumber party... isn't that cute? (No, I didn't make that up off the top of my head... that was a good friend of mine.)

Re:Just slightly OT

[daksis]

It doesn't make for a safer environment. It makes for an environment that *seems* safer. Coercion is the lowest common denominator of co-operation. It works only so long as the will of the coerced is broken. So the kid who's going to find a copy of the anarchist cookbook surfs for it at home, instead of at school. He's still going to come into the school trench coat and six guns blazing and people are still going to wonder "why?". All safety is an illusion. And snooping on the online activities of children seems a pretty low way to give the parents piece of mind.

What would happen if the school spent as much time attempting to provide for the moral development of their charges as they did policing their online activities?

Re:Just slightly OT

[ziggy_zero]

That's why I love my KeyKatcher that I've had for awhile now.....undetectable unless you look at the back of the computer, and even then most people will just think it's an adapter...

Anyway, if I saw a bunch of random stuff that I got from your machine, I'm sure it wouldn't be too hard to "decode" what you typed if I just found out what your dvorak software thingie converts each key to.

Re:Just slightly OT

[jhoger]

He's going through a web proxy. So he's actually tunneling over port 80, so as far as anyone knows it just looks like web traffic.

Performance sucks in such situations, but you can get around byzantine firewall policies that way likely with no one the wiser (there are ways to tell I suppose if someone really wants to know what all that port 80 traffic is from that Linux guy...)

Re:Just slightly OT

Hasn't been ratified by the US, so it's as good as toilet paper here.

Re:Just slightly OT

[Jackie_Chan_Fan]

The schools may own the lockers, but when i was in highschool 80-90s.. We had to buy the locks for the lockers.

And while the schools may own the lockers, that simply means the tax payers own the lockers. And they happen to be the parents of the children.

Re:Just slightly OT

[elmegil]

So how do you get into a situation where your kids are hiding dangerous things from you?

I didn't necessarily mean things in the physical objects sense. As for my part, I'm a relatively new parent, so I'm still figuring things out as I go, trying to overcome the bad programming I got from my parents and thankful for the good stuff they gave me. I just think this whole "parents are 100% responsible for everything" attitude comes from people who don't have kids more often than not--which doesn't mean that the polar opposite of "we must make the world safe for our CHILDREN" point of view is any more valid.

As for the other comments, they sounds familiar, I know people who did the same kinds of things. But here's a clue: I was a straight arrow at home, and I had a relatively fucked up family situation (I sure didn't talk to my parents about anything important, or trust them to talk to about controversial issues). Other people I know who had better situations, some of them did much stupider things. So it's not simply a 1 to 1 relationship, as easy as some would paint it. You do the best you can, take responsibility, and things will probably work out right, but there's never a guarantee. That was my main point.

Re:Just slightly OT

Amen, brother.

Re:Just slightly OT

yea, i know.

but i'm talking about federalizing everything vs. keeping things relatively local.

as soon as we decide EVERYTHING must be the same everywhere....we're screwed.

there are a few things which lend themselves to be federalized.

and a whole lot which doesn't.

Re:Just slightly OT

If I was a student and I found out something like that was being done I'd code up a little denial of service attack that would cause screenshots to be taken until it swamped the resources of the logger. And before I used it, I'd make sure that other like-minded people had copies of the same code so there wasn't a single point of counter-attack...

Re:Just slightly OT

[Perky_Goth]

wow. i need to get more informed...
this is not about a fantasy or anything, i'm wondering about freedoms.

Re:Just slightly OT

[Vellmont]

You can't use a phone to change your marks, look at porn, download viruses, bring down the school network, etc. you can do all that with a school computer.


Well aren't we a good little Hitler Youth? You'll make a fine drone son. Just keep up your obediance to what the institution tells you.

If the only thing that's keeping you from changing your grades, downloading viruses, and bringing down the school network is some underpaid desk jockey "monitoring what's going on", then your school has some serious problems. You don't get security by monitoring peoples activities, that's just too hard. You get security by making the system hard to break.

Re:Just slightly OT

Actually if you sign an agreement and don't live up to the conditions, then you deserve exactly what you get.

Do you know that you can cross sections out you disagree with?

If they don't like it, go to a different school.

Re:Just slightly OT

[Ironica]

I take it you're not a parent. Find one who wouldn't be concerned that we offered filter free, non-monitored use of the internet.

I'm very concerned that you DO offer non-monitored use of the internet.

You must be doing this, or you wouldn't need to have a computer system watching for buzzwords to let you know when to *start* monitoring.

Whatever happened to having a teacher or aide walk around the room, looking at what students are doing? A human who can ask questions, hear explanations, and interpret language? Oh, right. They're too expensive to waste on watching our children. We'll save them for when a computer tells us that a child *actually* needs watching.

I wonder how many cases that you catch a kid doing something "wrong" could have been avoided if there'd been a person they could ask about something...

Re:Just slightly OT

[jafac]

You forgot the additional 23 million dollars to build a new football stadium.

Re:Just slightly OT

fucking coward.

Re:Just slightly OT

[pantherace]

> What message do you honestly think you're sending by intensely scrutinizing them when they sit at a computer?

That they'd better be careful? That if they do anything wrong you'll take corrective actions?

What message do you send the child (remember, these are *children*) by NOT watching them? That anything they do is okay?

That you trust their judgement/skills.

You don't put training wheels on a bike until the child is an adult. Just until they are good enough, then they will inevitably fall and get hurt. You watch your kids play in the playground/park/other area for a while, then eventually you let them go there alone (assuming it's nearby, etc.)

Re:Just slightly OT

[Atzanteol]

That you trust their judgement/skills.

So then your message to the child is that you're an idiot? Why would you trust the judgement of an 8yr old over your own?

Sure, as the child becomes an adult you trust them more and more. But that's not the issue. I didn't say that full-grown adults should be monitored.

Re:Just slightly OT

[ChaoticLimbs]

Hey goofball, by using a keylogger he was esentially NOT allowing her to use the computer unsupervised. Get that? Sometimes when you have a teen, you're not always there glowering over her in judgement over her every action, and all you can do is supervise as you can, when you can. What he was doing was monitoring her use. What more legitimate use could there be than a parent monitoring a child? What he wants in this case is a method of knowing what his child's interests and potential weak areas are. This way he can provide additional guidance and wisdom for her to help her along. I don't think it means he cares too little- neglectful parents simply don't use anything at all, and of them there are plenty. The most accurate information you can get about the activity of a child is that information gathered from times when the child did not percieve monitoring or authority. It's a good indicator of your child's patterns elsewhere. It's good parenting.

Re:Just slightly OT

You are a fucking NAZI and I hope you burn in hell. Next you'll be telling us how you support what the Israelis are doing to the Palestinians.

Re:Just slightly OT

[Black+Jack+Hyde]

Not everyone who lost someone to this tragedy agrees that we should be afraid in its wake.

I completely agree. To take action to preemptively stop terrorists before they can harm more innocents isn't acting out of fear.

But to expect privacy in a public school setting isn't very smart. Why give the bastards a chance to cause you trouble? If you're too willful to be prudent with your actions in school, and you know what you're up against, that's your problem.

Re:Just slightly OT

[Black+Jack+Hyde]

Just who do you think you are to speak for all of us?

And who are you to speak for everyone else, AC? How many more people have to die before we stop treating terrorism as a criminal act and start treating it as an act of war? I'm not driving a bandwagon, but I'm sure as hell not going to ride in a hearse if I can help it.

Federal wiretapping charges?

[pinkUZI]

When is the last time you remember hearing about an indictment for actual wiretapping? Doesn't it seem like people get away with wiretapping regularly? I'm thinking about things like the illegally recorded phone conversations with Monica Lewinsky. Or does the law specify exemption if it is done for a good cause?

Re:Federal wiretapping charges?

[eclectro]

Wiretapping laws actually vary from state to state. Some states allow you to secretly record a conversation as long as you are a part of that conversation. A few states do not allow this - you have to tell people you are recording them.

In this instance, the guy at the insurance company was not a party to the conversations going on. Therefore he was obviously in danger of violating the law.

Being a whistleblower means that you call up the FBI and you let them do the investigating. Here, he was playing the role of the FBI.

Unfortunate mistake, considering that his former employers probably were/are scumbags.

Re:Federal wiretapping charges?

[pinkUZI]

How can " federal" wiretapping laws vary from state to state? Either the laws he broke are federal laws and the so the charges are federal or they were state laws and the article should read "California wiretapping charges."

Re:Federal wiretapping charges?

[222]

Whats even more interesting is that according to him, the Dept of Insurance had encouraged his activities.
The Dept of course denies this, and i'm having to wonder if this is just a means to distance themselves from any sort of legal mess that could come along with encouraging a wiretap without a warrant. Then again, maybe im just wearing this tinfoil hat backwards.

Re:Federal wiretapping charges?

[pinkUZI]

There is probably truth to both sides. I think he probably was involved with the Department of Insurance, though I doubt they told him to install the keylogger. Looks like he got a little overzealous and the Department of Insurance is washing their hands of his activity.

Re:Federal wiretapping charges?

[eclectro]

How can "federal" wiretapping laws vary from state to state? Either the laws he broke are federal laws and the so the charges are federal or they were state laws and the article should read "California wiretapping charges."

Wiretapping laws vary state to state.

There are also federal wiretapping laws covering much the same thing. They are not mutually exclusive. It just happens that some states extend federal law.

This guy was investigated by a federal grand jury, hence federal law applies to him.

But so does state law, and he could be charged under that too. Like Linda Tripp was for recording Monica Lewinsky's calls.

Re:Federal wiretapping charges?

[pinkUZI]

OK - didn't realize that Linda Tripp was prosecuted, I guess I just assumed that since the tapes were released and they appeared to consider them as evidence that no charges were pressed.

Re:Federal wiretapping charges?

[Lord+Kano]

I'm thinking about things like the illegally recorded phone conversations with Monica Lewinsky.

We have all heard that "ignorance of the law is no excuse", but in Maryland there was an exception to the law IF you didn't know it was illegal to record the conversation.

In some other states you can record a conversation if at least one of the parties is aware that the monitoring is taking place.

In some other states it's illegal unless BOTH parties are aware of the monitoring.

Have you ever called a customer service telephone number? "This call may be monitored and recorded ...." That's all they need to make it legal to record your conversation.

LK

Re:Federal wiretapping charges?

[digrieze]

Actually, wiretapping is a pretty common charge, it's just not usually the primary charge because it was discovered in the investigation of another crime that the wiretapping was performed as a part of the preparation for. It wouldn't surprise me to find out that other charges are pending or filed.

There are probably several reasons he was charged. For instance, many state laws allow the recording of conversations by one party or the other. Some states require the notification of the recording verbally in the recorded conversation, a beep every few seconds, etc., some do not. It varies state by state and in some cases is not allowed at all. That was the issue with the Lewinski conversations. It was legal where Linda Tripp was located, but not where Lewinski called from, so we have state laws conflicting. There is a great big hairy issue over that particular case because some state attorney generals are not sure it is legal to use some answering machines, specifically the tape type because it "makes a PERMANENT recording without notifying the person leaving the message". I don't see the difference with digital, but I'm not a lawyer, I'm honest, ethical, a member of the human race, etc..

The issue here is that the person installing the keylogger was not a party to the communications, so no matter where he was he had no right to record those communications. No matter where you are it is illegal for a third party to record communications between two other parties without their knowledge and/or a valid court order to do so.

The other issue that affects affect this is that he did not own or have authority to control the computer he installed the keylogger on. This technically makes it hacking and immediately throws it into federal jurisdiction, state law is irrelavent. If the keylogger was the hardware type, it's interception of signal and is wiretapping, if it was installation of software it's tampering with an ADP system, which is worse penalty wise, so that may have been the charge and he's pleading down.

The key point is, if it's not YOUR system don't put it there, you're wide open for trouble.

Re:Federal wiretapping charges?

I have always wondered if one party stating this fact makes it legal for the other party, in this case the consumer, to also record the conversation.

Re:Federal wiretapping charges?

[Lord+Kano]

I have always wondered if one party stating this fact makes it legal for the other party, in this case the consumer, to also record the conversation.

That's a good question. When I worked for DishNetwork we were instructed to stop talking if the customer said that the were recording the conversation. We were instructed to tell them that we didn't give our permission for them to record us, right before we stopped talking. We were also instructed that legally they HAD to stop recording us once we said that...

But that never made sense to me, we're all aware that any given call COULD be recorded and monitored. I would guess it varies from state to state, but it didn't sound right to me. If we get the right to monitor the call by making the announcement, all parties are aware of the possibility, and consent to US monitoring the call, then how in the hell can that same right not extend to the other party of the call?

LK

Re:Federal wiretapping charges?

[SuiteSisterMary]

There is a great big hairy issue over that particular case because some state attorney generals are not sure it is legal to use some answering machines, specifically the tape type because it "makes a PERMANENT recording without notifying the person leaving the message". I don't see the difference with digital, but I'm not a lawyer, I'm honest, ethical, a member of the human race, etc..

With a digital, you can't pop out the tape, label it, and file it away.

Re:Federal wiretapping charges?

[digrieze]

No, you just plug a cassette recorder into the headphone jack and hit "play".

Seriously, I'm using an old PC with a voice modem as my answering machine, I've got every phone call it's recorded in .wav format for over 2 years, even so, with a 20 gig drive it'll be a long time before that thing needs cleaning out.

And by the way, in my state, it's not a problem with the AG.

Re:Federal wiretapping charges?

[Happy+go+Lucky]

We have all heard that "ignorance of the law is no excuse", but in Maryland there was an exception to the law IF you didn't know it was illegal to record the conversation.

At least in Colorado, it's not an issue of exceptions. Ignorance of the law ("Mistake of Law" is the term used in our statute) is essentially no excuse. The only way to claim that you didn't know is if you can show a different provision of law which explicitly authorized the conduct.

Neither here nore there, however. There's a separate category: "Mistake of Fact," to use the Colorado term. That protects you if you knew the laws governing your situation, but there was a fact or circumstance which you did not know, and that fact or circumstance converted a lawful act on your part into an unknowing violation.

The classic example is buying a used stereo at a swap meet and it turns out to have been stolen. If a reasonable person should have known it to be stolen, then you've committed a crime ("Theft by Receiving," some states call it "Possession of Stolen Property"). However, if there was no reasonable way for you to know that the stereo was stolen, then you're in the clear.

IANAL, natch. If you're in one of the 49 blighted states or dumb enough to take legal advice from /. I can't help you.

Re:Federal wiretapping charges?

[jackbird]

Couldn't

"This call may be monitored or recorded for quality assurance purposes."

be taken as giving the caller permission to record the conversation? Would such a pigheadedly concrete interpretation of that sentence hold up in court?

Re:Federal wiretapping charges?

[anagama]

Wouldn't it be fun, a little device that intercepts all calls and says:

"All telephone conversations with Joe Blow are monitored. If you do not agree to these terms, hang up now. If you would like to be connected to Joe Blow, press '1' now".

If nothing else, it would virtually eliminate machine dialed calls from getting through.

Re:Federal wiretapping charges?

Federal wiretapping laws only apply to interstate communications. State wiretappings laws apply to both intrastate and interstate communications.

This is why

[lxs]

This is why you should always check your keyboard cable on your work-PC.

Not only does it keep you secure, but you might score a brand-new keylogger for free.

What a contradiction!

[windex]

According to this politech posting by bernieS, it appears that the feds are going to be doing a little bit of double backing.

It raises an important question, I think: are keyloggers wiretapping devices? They don't involve telecommunications lines directly, so can they be considered in the same class?

Some food for thought.

Re:What a contradiction!

[SmackCrackandPot]

A keyboard is a two way communication device. The inputs are the keys you press, and the outputs are the num lock/caps lock and scroll lock lights. In theory, you could use a keyboard to communicate with another person using Morse code with the space bar to send and the num lock light to receive them.

Re:What a contradiction!

For the feds, that's the problem with this whole thing. If they go after the guy for illegal wiretapping, they admit that this sort of thing is wiretapping. Then they have to abide by their own rules for wiretapping when they decide to do this kind of thing.

I personally hope that this goes through, if only because it'll make the feds play nice, or let us do something about it when they won't.

Re:What a contradiction!

[spacefight]

But then, you could use every toy laser pen as a "communication device", or even more: you could use the highway as a communication line (just send cars in morse code over it)... just kidding.

Re:What a contradiction!

[nacturation]

In theory, you could use a keyboard to communicate with another person using Morse code with the space bar to send and the num lock light to receive them.

In practice, though, you'd likely use the alphanumeric keys conveniently provided for just this purpose.

Re:What a contradiction!

yeah, but if you tap morse code on the spacebar then their keyloggers are useless unless it also records the time between keys

Re:What a contradiction!

In theory, you could use a keyboard to communicate with another person using Morse code with the space bar to send and the num lock light to receive them.

Hello Randy! How's the weather in the Philippines?

Re:What a contradiction!

I personally find it remarkable there's someone as ignorant as you posting to ./

By prosecuting this guy, the Feds, in no way, take a hit with regard to their own wiretapping efforts.

The law simply does not apply to those with the necessary warrants. ...dumbass

Re:What a contradiction!

[Otter]

I suspect both of you guys are taking a geek perspective instead of looking at this the way a judge would. The user was engaged in communication and her words were being monitored. Whether the interception happened in the NIC, the keyboard or in Tempest interception of the monitor emissions is probably irrelevant. (Not that I don't understand both your points, but simply don't think the court would approach it that way.)

Re:What a contradiction!

[_LORAX_]

Obviously you missed the parent posting's point.

In New York federal investigators used a search warrant ( sneek and peek ) to install a keylogger on a mob boss's computer to steal his pgp keys. They DID NOT HAVE A WIRETAP WARRANT. You can now see the contradiction inherent in this prosecution. Go after this guy and possibly let a mob boss off on appeal because the information they used to convict him is now tainted.

Of course if they had gotten a wiretap warrant in the first place this would not have been a problem, but they did not have the evidence to get wiretap only a search warrant they have differnt levels of proof of illegal doings

Re:What a contradiction!

Discovering the information is tainted after the fact is not grounds for a retrial.

Even if someone is sentenced over a crucial piece of evidence, and the evidence is later found to be falsified, it's not an automatic retrial. Strange but true. Once you're found guilty, it's not enough to later be found not-necessarily-guilty. You have to be proved innocent.

Re:What a contradiction!

Discovering the information is tainted after the fact is not grounds for a retrial.

I'm not as familiar with U.S. law as I used to be, but what you're saying doesn't sound correct to me. Whether or not it is accurate, the feds are not going to be happy about removing one of the less red-tape-entangled means they have for infringing upon our rights. And that's what I was getting at before.

Even if someone is sentenced over a crucial piece of evidence, and the evidence is later found to be falsified, it's not an automatic retrial. Strange but true. Once you're found guilty, it's not enough to later be found not-necessarily-guilty. You have to be proved innocent.

That's one of the great injustices of our system. Even when convicts are proven without a doubt to be innocent (typically using DNA testing), they have to go through another trial to prove their innocence. Twenty years in prison, and then sticking around for another few months at least to get a new trial after you've been proven innocent? That's quite a double whammy from the injustice system.

Re:What a contradiction!

[jhoger]

I wonder if running tcpdump would be considered wiretapping. Certainly more applicable than a keystroke logger.

It sounds like he went to far...

[MyNameIsFred]

While his heart may have been in the right place, it sounds like he went to far. Once the class action suits started, once the state of Calif. started investigating, there was very little need for his cloak and dagger actions. The courts could have done the work. If he felt that they were tampering with evidence, destroying evidence, or not providing everything the courts demanded he could have come forward. In my view, he put his own neck on the line in a wreckless way.

Re:It sounds like he went to far...

Where is this place called "far" you mention? And why did he go there?

Oh, so it's "okay"

[the_skywise]

He was collecting the names of all the insurance company's clients... So uh... so he could notify them of their ability to join the class action lawsuit!

He was... he was helping the government investigate a corrupt company, yeah! He was James Bond! Saving the innocent from themselves!

Yeah... he had no intention whatsoever of joining a competing company and stealing the client list.

Good.

"In what prosecutors say is the first case of its kind, a former insurance claims manager was indicted on federal wiretapping charges for allegedly installing a keystroke logger on another employee's computer ..."

Good. It is not the decision for just any man to make, on when to invade someones privacy. (Most) Laws exist for a reason. This man broke one. Hopefully he'll spend some time in jail.

Wiretap law - 18 USC Section 2511

[sczimme]

Read all about it here.

Re:Wiretap law - 18 USC Section 2511

I didn't see any exceptions for employers, either.

Certainly contravenes EU law

[heironymouscoward]

The EU convention on cybercrime, which is law in most (all?) EU countries since 2000 prohibits the interception of private electronic communications. A key logger would certainly fall into this category.

However, there have been very few convictions under these laws, only a couple of "hacking" cases in the UK afaiaa.

It's not only about domestic/workplace espionage. Spyware vendors (a species that rates somewhere between slimemolds and spammers) use similar techniques to spy on and report back on people's use of their computer.

This guy is an idiot.....

[Doc+Squidly]

....He got busted when he call the company to get the device back!
Not the smartest thing to do. He deservse whatever he gets.

Re:This guy is an idiot.....

[I+confirm+I'm+not+a]

Ah, but if we start basing justice on lack-of-smarts, there's no telling who'd end up with what they "deservse" ;)

Re:This guy is an idiot.....

[transient]

Reminds me of a guy here at work who asked our backup administrator to restore his stash of porn on our file server. He lasted about 30 minutes after that.

Insurance Company

[dr.+chuck+bunsen]

I think we all know who the real bad guy is. But this guy was asking for it. On the bright side, perhaps we will get some kind of ruling out of this to clarify the keylogger-wiretap legal grey area. Related Article

What if...

[RandoMBU]

They were to apply federal wiretapping laws to spyware? If an unauthorized piece of software transmits information about my activities to a third party without my knowledge... that sounds like wiretapping to me.

Re:What if...

[DaHat]

In the majority of those cases, you as the user are agreeing to the installation of the spyware.

There is nothing wrong with monitoring yourself.

Remember, this case is about an individual installing monitoring other people with out their consent or knowledge.

In theory, if spyware were installed with out a note in the EULA saying so, and no other "I agree to let you know everything I do and where I go"... then yes, you could get them for wiretapping.

Yeah!

[the_skywise]

I better go with a wireless keyboard! That'll stop people from capturing my keystrokes!

Re:Yeah!

Does anybody know how secure a bluetooth wireless keyboard is? They are supposed to use encryption.

Re:Yeah!

They probably use ROT-13 "encryption" -- or is that too 1337 for them?

Re:Yeah!

[carm$y$]

I better go with a wireless keyboard!
Why stop halfway? go completely wireless - keyboard, mouse and wifi. I hear WAP really rocks... :)

Re:Yeah!

[tigersha]

Yeah, and you plugged your wireless keyboard into you computer through a plug which, funnily, stuck out from the case unlike the mouse plug. Weird, that.

Re:Yeah!

[MikeFarrington]

Not if it is a Bluetooth keyboard.

I've used a keyboard logger

[spidergoat2]

We had a consultant (former employee) work at a branch office. The owner said to keep an eye on them. I want to the branch office and told every employee that I was installing a keyboard logger and why. When the consultant (former employee) logged on, they had no idea they were being tracked. I discovered they had a back door account and were logging into a supervisor account. Good or bad, I discovered the holes in my system.

Lessons learned...

I have to agree that this sort of behaviour is absolutely inevitable in nowadays everyday life. In the past it was called "social control" where small communities monitored each other's behaviour to see if somebody wasn't stepping out of line. If they would, due psychological force could be executed to get them in line again ("gossip"). Now this practice has mainly gone away simply because there are less and less small communities, and thus we need to monitor other people by different means. Ofcourse, in due time virtual communities will take over the "social control" thing in a comparable way, but it's not there yet.

In the meantime, we shall have to rely on the usual methods of camera's, microphones, keyloggers and traitors. I think we can learn a lot from former Soviet-Russia and sortlike countries that have executed this behaviour in great practical ways...

? Re:Just slightly OT

[cascadingstylesheet]

I can't think of anything that's terribly legal. I knew there was a reason I never do anything important on publically-accessible terminals. I guess it's a nice device to own if you're a bad parent with a tinfoil hat.

How on earth would just using the device make you "a bad parent with a tinfoil hat"?

Contrary to kid's beliefs, most parents have little interest in snooping on whether your friend Monica likes Jeff and also got new shoes, or whatever. However, it would be nice to have some forensic material available to save your ass if you get involved with something stupid.

Re:? Re:Just slightly OT

[Liselle]

How on earth would just using the device make you "a bad parent with a tinfoil hat"?

I will give you the benefit of the doubt and assume that you misunderstood what I said, instead of only hearing what you wanted to hear. I said that it's a device that a bad parent with a tinfoil hat might find useful. Not that using the device makes you a bad parent with a tinfoil hat. Is the difference clear?

Read the AC's comment below mine, he/she states the point you're looking to refute: clicky.

Re:? Re:Just slightly OT

Your message implied that the only legal use for the device was for a "bad parent with a tinfoil hat", which is just a shade away from saying "using the device in any parenting capacity makes you a bad parent with a tinfoil hat". Arguing otherwise is just petty semantic bullshit.

Re:? Re:Just slightly OT

[cemaco]

Children are supposed to be supervised. These days your eyes and ears might not be enough. Some parent might feel they need extra tools to help keep track of their kid. At least they are trying, which I think is better than the alternative. Personally I would prefer the kid not have NET access were someone can't physically keep an eye on him, but I would not condemn the use of a key logger as an alternative either.

Yes, but...

[the_skywise]

I vaguely recall an old slashdot article that said the encryption was pretty weak, if not already broken.

Just slightly catch-22

Now you're a "bad parent with a tinfoil hat" if you take effective measures to monitor or control your kid's internet use (at least as far as the computers you control goes)?

I thought you were a "bad parent" if you just let your kids go willy-nilly wherever they wanted unsupervised. Now if you monitor them, you're also bad. What's the solution - no internet access period?

I'd say if you're that interested and concerned about what your kid is doing, you're most likely a great parent. Granting unlimited freedom isn't good parenting. Apathy isn't good parenting.

btw, it's hardly "tinfoil hat" material to believe that your kid might encounter something you wouldn't want them to see on the net. In fact, if you believe the unfettered net is appropriate material for unsupervised children, I think you're the one who is probably wearing Reynolds Wrap.

We haven't yet seen the results of what the silver internet-in-hand generation will be like, anyway, so your notions are ass-borne, not based on observation.

No, that is NOT wiretapping

[sczimme]

Wiretapping involves capturing information that is being sent (i.e. is already in transit), meaning the tap is between points A and B; spyware [generally] initiates and handles its own sessions, meaning points A and B are different. Spyware usually sends metadata as well: "information about [your] activities" != the actual keystrokes that were sent.

I posted this link earlier in the thread. You might want to go there and read about wiretapping.

Re:No, that is NOT wiretapping

[maximilln]

Point A could be legitimate user space programs stored in a physical location on a memory chip, point B could be the legitimate PCI bus holding the network card. Wouldn't spyware, from an electronics viewpoint, be between Points A and B?

Tight Security

[DrugCheese]

So he just walked over and installed it on her PC. She should've had xlock running while she was away.

Re:Tight Security

[maxwell+demon]

And how exactly does running xlock prevent anyone from putting hardware in between keyboard and PC?

Re:Tight Security

[DrugCheese]

By obviously not reading the article first ...

thinkgeek disclaimer?

[circletimessquare]

so when is the disclaimer going up at thinkgeek?

http://www.thinkgeek.com/gadgets/electronic/5a05/

disclaimer: please do not buy this product and use it for what you think you were going to use it for, thank you... same with that x10 camera you were thinking about too, while we're at it

Consent

[Detritus]

While they may have consented, did they really have a choice about the matter? They have to be in school. They may not be able to pass their classes without the use of the computer.

As adults, they may be presented with similar policies. Only this time, they have the "choice" of consenting or losing their job.

The law, in its majestic equality, forbids rich and poor alike to sleep under bridges, beg in the streets or steal bread.

-- Anatole France

Re:Consent

[ratamacue]

The law, in its majestic equality, forbids rich and poor alike to sleep under bridges, beg in the streets or steal bread.

What a misleading statement that is. Sleeping under bridges and begging in the streets are both acts of non-aggression, i.e. peaceful conduct. (Unless we are talking about excessive harrassment or trespassing on private property, which I don't believe we are.) Stealing, on the other hand, is clearly an act of aggression, i.e. an initiation of force.

Just what kind of a message are we trying to get across here?

Re:Consent

[STrinity]

While they may have consented, did they really have a choice about the matter? They have to be in school. They may not be able to pass their classes without the use of the computer.

Of course they don't. They're students. When were you ever given a choice in school -- "Well, you can read The Scarlet Letter, or you can play with your gameboy." This is no different from teachers walking around the classroom to make sure everyone's doing their assignment.

Re:Consent

It sounds to me like the general idea being expressed on the forum is that we (I also work in the tech department for a public school) should allow the student free reign over their computers to do whatever they want. If they want to create or deploy virii, then that's ok. That's how the student chooses to express him or herself, and we should encourage that. If a student wants to look at porn all day, regardless of how offensive other students might find it, that's ok too. Our tax dollars should go toward providing a porn and game network for the students. True, the kid may have to use the machine to pass his or her classes. Does that mean that we shouldn't be watching for abuse? When a kid logs onto hotmail and sends a threatening letter to a teacher or student (happens all the time) we have to find out who did it, and take action. If we don't, we can get sued for not protecting our employees and student from harassment. We might also identify a student who is going to go on a shooting rampage soon. I don't believe that CHILDREN have any right to privacy other than what ADULTS choose to provide them. That means that if a parent wants to log a CHILD's internet activities, that is the parents right. If the schools want to search every locker in the school, more power to them. If we want to make sure that some punk isn't playing doom on the internet, thus using bandwidth that some other student could be using for research...well...I can tell you that I sleep soundly at night.

And this idea that good parenting will prevent your kid from doing something wrong is crap. All kids mess up, it's our job as parents to be up on what their doing. It's just like the anti-drug commercials say...you gotta know who, what, where, when, why, and how about everything your kid is doing.

Re:Consent

[Ironica]

Stealing, on the other hand, is clearly an act of aggression, i.e. an initiation of force.

No, robbery is. Stealing is often done by stealth, without any aggression whatsoever. Consider the mugger vs. the pick-pocket. They may accomplish the same ends, but only one does so by aggression.

Just what kind of a message are we trying to get across here?

That the things we are forbidden to do are often things that some must do to survive, while others have no reason to do them at all. So laws are more easily abided by the privileged.

Re:Consent

[ratamacue]

We're not on the same page.

There are exactly 2 modes of human interaction: voluntary, and involuntary. Every possible human interaction must fall under exactly one of these two categories. I used the term "aggression" to describe involuntary interaction. (This is common terminology among liberty-leaning or libertarian groups.) Physical force is obviously an act of aggression, but by no means does an act of aggression HAVE to include physical force.

With that, stealing is clearly an act of aggression, because it is conducted on the principle of involuntary interaction. (If it was voluntary, it wouldn't be stealing.)

WTF?

It's illegal for an employee whether or not they are currently employed for a particular company to install a keylogger, but it's perfectly legal for an employer to do the same thing? An employer using the disclaimer that an employee may be observed at work using logging such as this would make it legal? Poppycock!

Not really...

[sczimme]

I don't recall if it was KEYKatcher or another product, but when recovering data from the dongle one could choose to view the raw keystrokes (the potentially munged data you mentioned) or the end result, i.e. all the typing with backspaces, etc. applied, so instead of "fooo^Hbar" you would see "foobar". I don't know how CTRL-{C|X|V|B|U|I} and other combinations would be represented - guess I better buy one and find out. :-)

Robin Hood

[JSkills]

First off, there are a couple of links to articles describing what happened, the Security Focus article was the most informative.

So we've got this guy working for an insurance company who decides to inform the Dept. of Insurance that they are cancelling policies unlawfully. This is a good thing and brave of him to do it. Hopefully his motivations were purely good and not just because he was pissed he didn't get a raise last year or something.

And let's face it, insurance companies are the some of the worst kinds of organizations in corporate America. They collect huge sums of money via premiums - that are based in people's fear that something terrible could happen. And then as soon as you need them (you have an accident, someone in your family gets ill, etc.), they immediately initate every effort to not pay you in your time of need. I know it's how they do business, but it's a disgrace. I have experienced this first hand more than once ...

Back to the story, the guy then plants a keystroke logger on a secretary's PC in order to collect further info for his crusade and to aid lawyers in a class action suit against his company. He obviously crossed a line here. And in the middle of this, he finds himself fired (curious). So he asks a former co-worker to retrieve the logger for him? And of course being a good insurance company employee, she rats him out.

I applaud his intentions, if they were indeed based in fairness and the public good. He did get carried away for sure by planting the bug. But I can't believe the stupidity of (1) admitting he planted it to a former co-worker and (2) expecting her to help him retrieve it and f--k the company she still worked for. I guess he really was a bit of a dreamer ...

Re:Robin Hood

[swb]

So we've got this guy working for an insurance company who decides to inform the Dept. of Insurance that they are cancelling policies unlawfully. This is a good thing and brave of him to do it. Hopefully his motivations were purely good and not just because he was pissed he didn't get a raise last year or something.

Actually, I don't *care* if his motivations were good or not. I think it serves as a good warning to companies like this that not only do they have to have lying scumbags as employees, they need to constantly bribe them to be lying scumbags or they'll get turned in.

This should be a great motivation for not being theives. I agree with your complaints about the insurance industry, although I will admit to having good experience with my car insurance carrier in a recent accident where I wasn't at fault and the party who hit me wasn't insured at all.

Re:Robin Hood

[JSkills]

Good point about the moral issue. If the company is doing people dirty, then they deserve to get reported. I just find people who get too wrapped up in getting revenge on their job a little creepy. p. Glad to hear of your good experience with your car insurance. Just don't get any major illnesses and you'll be fine ...

Software keyloggers

[maximilln]

Why do I get the impression that this article specifically avoids mentioning software keyloggers? Whether or not they're currently illegal under the law shouldn't they be?

Ain't That A &!^(#

[dnoyeb]

Aint that a bitch.

I was just thinking last year how stupid these insurance companies were for always sending cancellation notice as opposed to a bill. (I live in Michigan.) So when I actually get a cancellation notice I don't know if its simply a bill, or an actual cancellation notice.

I have never received a bill from an insurance company, only cancellation notices, and I've been with at least 5 different ones. What more info is needed? we know they do this.

For those who didnt RTFA, Ropp was trying to get the list of people who they pulled this fast one on, from the companies password protected (DMCA anyone?) database.

More power to you Ropp. If the government mandates one must buy something, that thing should be heavily regulated by the government. racket.

Re:Ain't That A &!^(#

[Motherfucking+Shit]

I was just thinking last year how stupid these insurance companies were for always sending cancellation notice as opposed to a bill. (I live in Michigan.) So when I actually get a cancellation notice I don't know if its simply a bill, or an actual cancellation notice.

I have never received a bill from an insurance company, only cancellation notices, and I've been with at least 5 different ones.

I did RTFA (and a more detailed one at MSNBC).

Not being a resident of Michigan, I'm interested, could you elaborate a bit here? You state that when your insurance company sends you something, you don't know whether it's a bill or a cancellation notice. Then you seem to contradict that by saying you've had at least 5 insurance companies, and none of them have ever sent you a bill. Doesn't it stand to reason, then, that if you receive something from your insurance company, it's probably a cancellation notice?

I've only dealt with four insurance companies. My life insurance is through Prudential, and once a year, they send me a bill along with a statement of my policy. My car insurance used to be through Farmer's, who would send me a bill every month, but when I happened to be a Bad Consumer(TM) and paid late twice within a 12 month period (G-d forbid!), even though I'd been insured with them for years, they dropped me like a bag of hot rocks. Most recently, I've dealt with Geico, which I prepaid for a 6 month car insurance term. They haven't sent me anything.

I don't have the luxury of health, medical, or dental insurance at this point. Those used to go through Blue Cross Blue Shield, but it came straight out of my paycheck, so I never heard anything from them aside from the "OK, we paid $X on your appointment, you owe $Y" letters I'd get after going to the doctor.

When any of my insurance companies send me something, I open it up, and look to see whether it's a bill or a cancellation notice. This is a serious question, is there something unusual about the insurance laws in Michigan? Do they not have to bill you?

I hate insurance companies just as much as you do, but something just sounds weird about your post. If they send you something and you don't know what it is, why not open it and find out?

Re:Ain't That A &!^(#

Watch out for geico, if you thought Farmer's mistreated you, pray you never need geico to ever help you.

No fair to kids

[weierstrass]

Life sucks using a crippled Windows machine!

Without command.com, how are these kids ever going to learn?

weierstrass

My keylogger experience

[kwandar]

I was working for the President of a company who seemed to have information about others that left me wondering. So, I ran a program, (I believe it was Spycop), to scan for anything nefarious on my computer. Nothing found, fortunately.

However I shared this program with a colleague and she ran it and found a keylogger that would send emails from her company laptop, to a blind email account. He apparently had a thing for her roomate, a former employee, and was using this to spy.

My colleague was shocked that this would happen, but as it appeared to have been non-functional for a while due to internet login issues, she didn't say anything, and I told her what to delete to kill the program from running.

That way, any deletion of the software could at least appear to be accidental.

That does it!

[theLOUDroom]

From now on, I'm only doing text input with charmap!

Sure it may be a little slower, but hey, I'm paid by the hour!

Almost .... there ...

[Jahf]

Should keylogging a co-worked be illegal? Yes (though if it is done by your employer and you signed consent then no, just like phone monitoring ... free will works both ways).

Should keylogging be considered wiretapping? NO. It is a distinctly different technology and all lumping things together does is make it easier to confuse the issue the next time someone wants a warrant to do something -similar-.

Keylogging, network interception and a whole host of other things are still quite different from basic phone taps. They should be given a distinct category that can be properly defined.

If anything, the expectation of privacy on the line between your computer and your keyboard is MUCH higher than any expectation people have today for phones (when was the last time you started typing and realized someone else was typing on your computer as well ... VNC not included :).

Plus, you can't expect that by listening in on a phone you are going to regularly hear someone's social security # (my bank uses it for my login id ... idiots), their credit card # (amazon), or their root password. Keylogging is far more invasive.

In the end I think the guy should be penalized more than wiretapping, but not -as- a wiretapper.

Re:Almost .... there ...

[victorvdl]

IANAL, but I do know that making new laws to cover such things takes a considerable period of time. So meanwhile, it is probably the best idea to cover it under wiretapping laws and give the maximum penalty.

Re:Almost .... there ...

[Jahf]

That leads to a lackadaisical structure at best, where it may never be created since it fit into the exist mold (however poorly) and a downright travesty at worst, where the government responsible for the legislation refuses to fix it because it gives them better loopholes.

Besides, a large portion of the law is created through judicial precedent. If the judge is willing to force a new category it may be unique today but will become the basis for new law tomorrow.

how can you tell if KeyK. is running?

[Petronius]

can someone post some info on how to detect the app? (my empl is blocking access to the site).

Re:how can you tell if KeyK. is running?

[Crash+Culligan]

can someone post some info on how to detect the app? (my empl is blocking access to the site).

First off, see if your employer doesn't want you getting any information about the program. They might try to prevent this by blocking access to the si... oh, wait...

Re:how can you tell if KeyK. is running?

[Delta-9]

Look at your keyboard cable. This device is a hardware device that sits between your keyboard connector and the socket on the back of the PC. About the size of a ps/2-to-USB adapter.

Speaking of which, that would be a great way to hide this little device. Make it a PS/2 to USB adapter with the KeyKatcher built in.

Of course these are useful.

[nurb432]

While i dont that exact product, i did log application useage at a previous job.

It would tell me every application that was run. Later a report was reviewed for unautorized useage of applications... ( which is a bad thing for network security, and is against our AUP the employees sign when hired )

Thats useful in the business world.

You also have cases where employees are sending out harassing email's.. So you log their activities ( with HR's approval ) to help prevent law suits against the company.

Re:Panties in a bind

[mrtrumbe]

Yes, it is quite resonable to monitor kids at school. In fact, I would hope that my kids were supervised the majority of the time while at school (depending on their age, of course). Teachers should know what the kids are doing and prevent kids from doing inappropriate things. The thing is, supervising kids takes a lot of work, just like being a good parent. The two jobs are actually very similar, at least in the amount of attention and care that should be given to the kids. And in the case of a teacher, they are being paid to not only teach the children, but to appropriately supervise them.

All of this is a far cry from using electronic spy tools to secretly monitor the children's activities. What kind of message does it send to the kids? "Be good! Because if you don't, we are always watching. No matter where you go, we are watching!" Is that really the lesson we want to teach the children? Be good, not for the sake of being a good person, but for the sake of not getting caught.

And that is the difference between appropriate supervision and eletronic surveillance. With the former, the goal is to teach the children, mold them by example and through good leadership, and let the keep their individuality and allow them to experiment within appropriate bounds. With the latter, its simply trying to keep kids away from things which *could* be bad for them.

In short, if a school thinks it needs to install this kind of electronic monitoring system, I think it is indicative of a lack of appropriate supervision and/or quality teachers.

My kids' teacher should know what my child is doing (approximately) without resorting to spying.

Taft

Thank You!

[vertical_98]

If you're relying on a keystroke logger to clue you in to children who have problems with any of these issues then let it go. You're already too late.

While I think Columbine was sad, I don't think gun control/key loggers/video monitoring would be an approtiate answer. I do think responsible parents are a great answer.

I am not a great parent. I try to be a responsible parent, and make sure my children are behaving/polite/safe/etc. It is alot harder these days, I think, then when I was 10 or 12. If I did something wrong, like shooting soda cans in the backyard with my shotgun (we lived in a semi-rural area), when my parents weren't home. The neighbors would have said something to my parents (there by fixing the problem). Not today!!! No sir, we call the police or family services. You dare try to make your child obey by swatting their butt with your hand. You, sir, are a child abuser!

I have no problem with parents using keyloggers to monitor their children, but what 12 year old needs to have ICQ/AIM? I also believe that parents should monitor their children's activity on the web. (History?) I have a local start page with all of the pages, my kids would need to go to.

Ode to a generation that is completely self-absorbed until the last possible moment when "DANGER WILL ROBINSON" is blaring over loudspeakers.

I'm more worried about the government that knows whats better for our children, then we as parents do.

Thanks for the post!
Vertical

Re:Thank You!

[maximilln]

-----
I'm more worried about the government that knows whats better for our children, then we as parents do.
-----
That contributes to your point that it's a lot harder to be a responsible parent these days. All of this Big Brotherism is self perpetuating. Today it's keyloggers, tomorrow because of two or three misinterpreted keylog sessions, the government will be confiscating and raising all children from birth. All you need to do is go to work 60 hours a week to pay taxes and feed the stock market scam which keeps a small portion of people very comfortable.

Re:Just slightly OT (A Bit Deeper Than Security)

[m.h.2]

This goes a bit deeper than the knee-jerk reaction that _always_ follows events like the ones you've described. Although, I'm sure that the reaction by school districts nationwide, to the incident in Columbine made most high schools seem more like prisons to the students, this type of monitoring has become necessary because of tort law rather than criminal concern. Because the school/corporation is responsible for damage done by a student using its computers, and can be financially (and maybe criminally)liable for that damage (not to mention the negative publicity), it is IMPERATIVE TO ITS SURVIVAL for the entity to monitor and control that activity. This is not so much a case of infringed liberties as it is a case of our society (in general) shunning responsibility for its actions and always wanting to point the finger at somebody else. The ill effects of tort law don't just end there. Living in Massachussets, I can't go to the local bar and have more than a few drinks before I'm shut off because some judge decided that if I get in a car accident on my way home and cause damage, injury, or death, the bar is at fault and can be sued! This notion would set our Founding Fathers' heads spinning much faster than a breach of "liberties. "

Not that I think that wholesale monitoring is a good thing (For one thing, it wastes resources that could be put to better use), but I'm loathe to start accusing public and corporate entities of trying to control us, when it is WE who have forced them into this situation with frivolous lawsuits. If judges would stop holding the owners of facilites responsible for their misuse by the users, there would be no need for any of this.

Re:Panties in a bind

[Mulletproof]

"All of this is a far cry from using electronic spy tools to secretly monitor the children's activities. What kind of message does it send to the kids? "Be good! Because if you don't, we are always watching."

Like in class, like at lunch, like at recess... Sorry, but I fail to see the cause for massive paranoia here. It's not as if they're devoting an entire department to the electronic monitoring of these kids. It's more than likely just one, maybe two people at most who probably have other jobs. Child oversight is a fact of life for schools. No part of it is designed to be private. The whole notion that there is should be any privacy on campus is absolutely ludicirs.

Yes, they will be watching. THAT'S THERE JOB. To give ou an eductaion and keep you out of trouble. You can have privacy off campus or be smarter than the watchers. I was. But to actually expect any is stupid.

Does this contradict the Scarfo case?

[Dr.+Blue]

Seems like the feds are contradicting themselves (I guess that's not a huge surprise). In the Scarfo case, the FBI claimed they didn't need a wiretap approval to put a keystroke logger on Scarfo's computer because they were only monitoring internal communications between the keyboard and the computer. Thus it wasn't a wiretap.

Now the government is prosecuting someone for doing the exact same thing. Has anyone else noticed this contradiction, or am I missing some important distinction?

Re:Does this contradict the Scarfo case?

[GPLDAN]

No, you are right on track. So far, nobody in this thread has talked about whistleblower protection laws, or previous court cases regarding the act of keyboard logging. I am going to look into it, because I think you are right.

Re:Does this contradict the Scarfo case?

[_LORAX_]

Yes,

For those that don't know...

In New York federal investigators used a search warrant to physically alter Scarfo's computer to install a hardware keyboard logger so that they could retrieve his pgp passwords This search warrant was a sneek and peek. They then went back in a month and took the computer on another search warrant.

At no time did they have a wiretap warrant, they claimed that they didn't need one. This case seems like they are contradicting themselves in several ways. By prosecuting this grey hat, they may be giving Scarfo grounds for an appeal of his conviction based on the fact that the evidence was tainted.

The reason this is important is that the requirements are more stringent for a wiretap warrant then for a search warrant, if they had had proper evidence they would have use it to get a wiretap, but they didn't.

Re:Does this contradict the Scarfo case?

[evilviper]

In the Scarfo case, the FBI claimed they didn't need a wiretap approval to put a keystroke logger on Scarfo's computer because they were only monitoring internal communications between the keyboard and the computer. Thus it wasn't a wiretap.

Sorry, but you missed the boat. In that case, the key logger was designed so that it would be DISABLED when it detected an internet connection. A keylogger that doesn't disable itself will capture keystrokes being sent over the internet, which then becomes a wire-tap.

Re:Does this contradict the Scarfo case?

That was a hardware keylogger correct? How the hell would it know if you are connected to the Internet?

Re:Does this contradict the Scarfo case?

[evilviper]

That was a hardware keylogger correct? How the hell would it know if you are connected to the Internet?

To answer this question, I went back and read through the 11-page PDF again.

Nowhere does the FBI agent say that it was a hardware keylogger. In fact, he is fairly vague, saying only that their "KLS" may include multiple hardware/software components.

Now, if it was a hardware-only device, it's not hard to figure out a way to detect if the serial port is active. You would just have to run a wire from the keyboard port to the serial port with the modem to do so. However, if it was software, dectecting whether the modem was active would be very easy.

Alternatively, if it was a combination of hardware and software, the software component could tell the hardware component to start recording keystrokes only when it detected that no internet connection was present.

In any of those 3 cases, there are simple and feasable ways to detect if the modem is active. In addition, the FBI agent's testimony is under-oath, so I find it unlikely that he would have lied to the court.

So, I think there is plenty of reason to believe the claim, and very little reason to suspect that the claim is false.

I think Benjamin Franklin said it best

[Knetzar]

"They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety."

What about a bookbag IN the locker?

A container, in a container... The school may be able to look in the locker because they own it, but can they look inside the bookbag inside the locker even though they don't own the bookbag?

Thank god were not China

How much you wanna bet that if this was a story about how the Chinese government was doing the same to internet cafe users, we'd be hearing braying about human rights and so on?

Its fascinating how the same faults in our enemies are lauded when we do it.

Require an internet license

Dear god, think of the children. WON'T SOMEBODY THINK OF THE CHILDREN?

OK. I will. Children should be barred from using the internet. You wouldn't send your children out on the streets and back alleys to play with any stranger they might encounter would you?

Then why turn them loose on the internet and expect others to do the watching for you. Get Real and learn how to take parental responsibility for your "mistakes".

And there should be an internet license required with a minimum age and technical exam. Lets get these babies and twits off the internet... NOW!

Many keyloggers have passwords

[airherbe]

For example, KeyKatcher "listens" for a user specified password, which should be a series of characters never typed inadvertently. When these keys are pressed, then the device "types" out a menu, allowing configuration and logged-text retrieval from the device. -Jonathan

Great Idea

[darllikesdong]

I also run a keylogger on each of my employees' computers. It's a great way to get free new porn passwords.

Kernel or device level keyloggers? (software?)

[legomad]

How do you detetct these low-level keyloggers/Trojans ..etc? Most scannner apps only scan the application level.

Re:Kernel or device level keyloggers? (software?)

[cbr2702]

KeyKatcher is a hardware device, so you'd look along your keyboard cable. As for low-level software, you might be able to have the system track all appropriate api calls, but there are a lot of legitimate reasons to track what the user types. (Such as displaying it on the screen...)

Remeber the FBI case? Key loggers aren't wiretaps

At least the court found they weren't covered by wiretap laws when performed by the FBI. So why should it count as wiretapping when it's not the government? It seems like some other law would have been better to prosecute under -- maybe electronic trespass or something similar.

Wiretapping laws: is a keyboard cable covered?

[yppiz]

I am curious whether the wiretapping law they're talking about is specific to phones, to person-to-person communications, or to any wire that carries signals.

If the latter, I'm going to unplug my toaster, as it's intercepting the 60Hz signal from my power company.

--Pat

Re:Just slightly OT (A Bit Deeper Than Security)

[cayenne8]

"Living in Massachussets, I can't go to the local bar and have more than a few drinks before I'm shut off..."

Hehehe...well then...c'mon down to New Orleans, we're on the opposite end of the spectrum. Bars open pretty much 24/7, you can buy boozed 7 days a week, heck, we have drive through daquiri bars, and the bars down here give you 'to go' cups to take your drink with you when you leave the bar.

It was only recently that they even passed an open container law for the car...but, there was a loophole in that it only applied to the driver..so, if you got pulled over...just hand your drink to a passenger, no problem. I think they 'may' have fixed that one...

I'm spoiled...not having to go cups at other bars in the country sucks...you have to chug your drink before you can leave...

:-(

Backup

[Beryllium+Sphere(tm)]

It's a (crude) way to save the typing you did on your great American novel after your disk crashes.

Didn't this guy watch Mission Impossible?

[SpaceShaver]

"As always, if you are killed or captured the secretary will disavow any knowledge of your actions. This tape will self-distruct in five seconds" (Tape bursts into flames.)

Boy I'm glad you don't run things

That is overly simplistic thinking. Why should he be prosecuted under this specific law and not other laws? The world's not black and white. There are different ways to achieve the same goal.

I am specifically suspect of this action because the FBI has previously claimed that keyloggers are not wiretaps and thus they should be able to use them without a warrant. So now they are saying that when other people do it, it is wiretapping. See what I mean about simplistic thinking? If you don't consider a wider view you run into horrible inconsistancies. We call that hypocrisy.

Should be no diffrent then TDD

[zakezuke]

Among the deaf... TDD is still somewhat popular to communicate with others... after all a traditional telephone is pretty worthless. If one were log / monitor a TTD terminal... this would clearly be a form of wiretapping. I've always found it most annoying the cost of a TDD compatable modem vs the cost of a regular modem.

What seems to be more popular among the deaf these days is instent messenging. After all for the cost of a dedicated TTD terminal you can buy a full blown PC easily. It makes sense to get net access so you don't even need to tweek with your modem to set it to auto answer... just use the existing clients already on the market and communicate with anyone you damn well please.

Assuming that a TDD terminal is protected from wiretapping the same as a telephone, after all it is not only a telephony device but also a communications device, why would we even consider a PC any diffrent? Even if we are talking about just a keystroke logger... you put your self in a position to not only monitor what a person does that may not be communication related, but you can see what they communicate as well.

He can't infringe anyone's privacy like that

Only the government can infringe the right to privacy like that.

Note: Patriot Section 213 does not sunset.

[MacDork]

In New York federal investigators used a search warrant to physically alter Scarfo's computer to install a hardware keyboard logger so that they could retrieve his pgp passwords This search warrant was a sneek and peek. They then went back in a month and took the computer on another search warrant.

I'm burning mod points to say this, but I have to add that the sneak and peek warrant was itself objectionable. If allowed to do this, how different will the FBI be from the KGB or the Stazi? Politicians from both sides of the aisle had been trying to sneak this by us for years. Patriot finally gave them what they wanted, and the provision does not sunset.

I've been fired too!

[deweywsu]

I recently got fired from an electronics engineering company in the town of Pullman, WA. I feel like I was treated unfairly, in that I was fired because I agreed to an electronic use policy that stated that the computer I used and anything send from it was able to be monitored. About 11 months ago, I broke up with my girlfriend. I really loved the girl, and hoped to clear up misunderstandings that led to the breakup. However, as these things go, sometimes the prettiest of comments are not said to one another. She said some things I don't think any person should hear. Sadly, and I'm not proud of it at all, I said some things back (of course wanting to uphold my pride, not really thinking that at the time I was only shooting myself in the foot, not only with what little was left of our relationship, but the fact that I was doing it from a company computer). About 3 weeks ago, my hard drive failed. I called our IS department, who came out to deliver a new drive. I erased the old one after I had transfered my files off it. Shortly therafter, they came to pick it up, saying they didn't want it to get into circulation again since it was damaged. Someone must have been thouroughly bored and decided to start a little investigation of my personal data by reconstructing what was on the drive. (Although I deleted files, I didn't reformat...my bad). Shortly after dropping off the old drive, I was told I was fired, because the company had viewed conversations to my ex that were automatically logged by MSN messenger. I'm still quite perterbed that they pulled this out almost a year after it happened. Also, the point was brought up...what gives them the right to monitor a computer, whether they own it or not, when they certainly can't do that with a phone?! How much of our lives are to remain ours, and private when we go to work? The reason they gave was that it put the "company's servers at risk". Hmm. Okay. Obviosuly not that much if nothing has happened, and it's been a year. I wrote the owner of the company, who I greatly respected, who handed it back to the HR department, who verified that they would not re-hire me, despite my personal life issues that led me to do this. On one hand, I see their point in not re-hiring, in that if you do it for one, you give grounds to have to do it for all. From another though, does this stink a little of improper HR and IT practices to anyone but me? -J

You think Dvorak is secure

[quintessent]

I type everything in ROT13. They'll never catch on to that.

I can see it now . . .

[Amiasian]

Ten years from now:
**Keylog**
>Call transop received ...
Chocolate ration down ten percent. ...

____________________________________________
Wi ll be viable evidence in trials against
doubleplusungoodthinkers.