Slashdot Mirror

← Back to Stories (view on slashdot.org)

Canadian ISP Shoulder Surfing

Posted by ryuzaki0 on from the wishing-for-the-good-old-days-of-1984 dept.

1nfamous writes "Canada's Largest ISP, Bell Sympatico, has informed its customers that it intends to 'monitor or investigate content or your use of your service provider's networks and to disclose any information necessary to satisfy any laws, regulations or other governmental request.' The new customer service agreement is effective June 15, 2006."

17 of 411 comments (clear)

  1. Welcome, Big Brother by cp.tar · · Score: 5, Interesting

    I wonder how long before people start being bothered by this kind of behaviour?

    And I don't mean us, but the majority of sheeple...

    Will it be too late then?

    --
    Ignore this signature. By order.
    1. Re:Welcome, Big Brother by alshithead · · Score: 5, Interesting

      Unfortunately, I think a lot of people will look at this as the ISP participating in a neighborhood watch type program to protect everyone from the "bad" people on the internet. That's how I would certainly try to market it if I worked for an ISP that was instituting this kind of invasion of privacy. "Will it be too late then?" My cynical side says it's too late now. My hopeful side says...nothing.

      --
      I reserve the right to think for myself. Others' opinions are optional. Puppy on lap = typos...not illiteracy.
    2. Re:Welcome, Big Brother by Beryllium+Sphere(tm) · · Score: 5, Interesting

      >it's hard to argue that a vague notion of "privacy" is more important then staying alive and safe.

      There are two ways to explain this to people.

      One is that mass eavesdropping hurts real security. If the FBI is checking out Domino's Pizza then they're not checking flight schools or infiltrating violent groups. http://www.computerworld.com/action/article.do?com mand=viewArticleBasic&articleId=9000515

      The reason privacy is important is that government agencies with impossible missions tend to start hassling easy targets to make up for not being able to reach the important ones. How many of those average people have uploaded or downloaded music? How many of them realize that copyright infringers have been accused of funding terrorism?

      Without privacy and due process protections, the guy in the high rise will be in more danger of becoming a terrorist suspect than of beomcing a terrorist victim.

    3. Re:Welcome, Big Brother by jridley · · Score: 5, Insightful

      I suppose it's human to fear the unknown. And the terror age we live in is filled with uncertainty.

      People like to say "everything changed on 9/11". Well, as far as I'm concerned, the only thing that changed on 9/11 is that a lot of people with a naieve and incorrect notion of security got a rude wake-up call. I've wondered since I was a teenager (back in the 70s) why such an obviously soft and much-hated target as the US had not had a significant terror attack in many decades. OK City got us started, and was more along the lines of what I was originally thinking; absolutely anyone could have done that.

      People want their warm fuzzy fake security back. They can't have it of course, because it never really existed, but there are no end of people (in government and elsewhere) willing to exploit their desire to their own ends.

  2. Ladies and gentlemen... by Spy+der+Mann · · Score: 5, Funny

    start your encryptors.

  3. competitive advantage by mrheckman · · Score: 5, Insightful

    If you are a capitalist and believe in "the magic of the marketplace", you have to believe that this trend will eventually result in ISPs who advertise the opposite: that they don't snoop, that they dump any logs within hours or minutes, and so forth. That is, if they are allowed to do so by law.

  4. Re:So... by tomhudson · · Score: 5, Interesting
    Well, it can't be Canadian, because of Personal Information Protection and Electronic Documents Act (PIPEDA) (in force for all businesses since January 1st of this year):
    http://www.privcom.gc.ca/legislation/02_06_01_01_e .asp
    "record" includes any correspondence, memorandum, book, plan, map, drawing, diagram, pictorial or graphic work, photograph, film, microform, sound recording, videotape, machine-readable record and any other documentary material, regardless of physical form or characteristics, and any copy of any of those things.

    They're simply NOT allowed to do this without a warrant if you refuse to consent to it. Simply send them an email stating that you do not consent to their unlawful search, and cc the privacy commissioner.

    If they say "these are our TOS, don't like it, leave" - that's not good enough. Their contract is a contract of adhesion, and as such, unconscionable and onerous clauses can be struck from it. Certainly claiming a right to violate PIPEDA is one such clause.

  5. No, no, you got the fascism all wrong! by glindsey · · Score: 5, Funny

    See, there's the difference between America and Canada.

    We make sure that the customer's don't know when we're spying on them.

  6. Re:Welcome to America Junior. by Triv · · Score: 5, Insightful

    The chief difference between Canada and America? At least the Canadians get fair warning.

    June 15th, the date this went into effect, was two weeks ago, and the Globe and Mail article was posted yesterday. So either Bell Sympatico told people with little to no warning, or the Globe and Mail didn't bother to run this until everything was said and done. Either way, this sucks.

  7. Re:Free Market by NaleagDeco · · Score: 5, Insightful

    The question is: if this ends up carving a huge dent in Bell's market (which it probably won't), will the lesson be "People don't like being monitored" or "People don't like knowing they are being monitored?"

    --
    "Shoot for the moon, even if you miss, you may hit a tree"
  8. Re:Universal Encryption by goldenratiophi · · Score: 5, Funny
    Yes I do. Better yet, I can post them text-only!

    HTTP:
    /

    HTTPS:
    __

  9. Canada here, quick.. by eieken · · Score: 5, Informative

    To help you surf the web without being spyed on I recommend installing Tor then installing FoxyProxy.
    Tor takes care of the proxy encryption, and FoxyProxy lets you use all those proxies while you surf.
    Invaluable for the privacy conscious, or rather anyone living in the 21st century.

    --
    Meet new people, and kill them.
  10. Apathy rules the masses by krusadr · · Score: 5, Insightful

    Unfortunately 99.99% of internet users have no clue about encryption, they have never heard of PGP, probably don't know when they are even viewing an https page. The mass bumbles along in ignorance and any attempt to educate them is blocked by an enourmous inertia of apathy.

    It would take several years of media coverage about invasion of privacy and some high profile cases before the masses would rise from their slumber and do something about Bell Sympatico. It's the same as what the US government (and the UK government) are doing to strip away freedom in the name of security.

    It's sad but true, if you understand the issues you are in a tiny minority. Don't expect and change anytime soon.

    --
    while sco {
    wget -O /dev/null http://www.sco.com?sco=litigious%20bastards
    }
  11. Re:Universal Encryption by Doc+Ruby · · Score: 5, Informative

    No, HTTPS is just the HTTP application protocol transacted across an encrypted (SSL or TLS) TCP transport protocol. The only data passed in the clear is the IP#s of the remote endpoints. Once connected, the client requests the server send the identified object (eg. "GET /home_explosives.html HTTP/1.1") during the encrypted transaction.

    Of course HTTPS is vulnerable to traffic analysis and attacks on HTTPS itself, but proxies and tunnelling protect HTTPS even more.

    The increase in HTTPS would come from the public perception of HTTPS as more private, hindered only slightly by imperfections in the protection.

    --

    --
    make install -not war

  12. Re:Welcome to America Junior. by ablair · · Score: 5, Informative

    There are virtually no restrictions on the use of cryptography or encryption technology in Canada. Famously, this is the reason that the OpenBSD project is based in Canada and not the US - the extensive use of encryption in OpenSBD would mean that, amongst other things, if it were US-based its development and distribution would be severely curtailed. People distributing the software may technically even be arrested, depending on how stringently their laws were interpreted.

    This proposed "warrantless" internet surveillance bill will encounter a great deal of resistance in Canada, and with a minority government it's passage is by no means guaranteed. In the event that it does become law, at least people can encrypt anything & everything they send over the internet. A law such as this, however, would be challenged in the courts almost immediately here.

  13. Re:How do you trust proxies? by Wyzard · · Score: 5, Informative

    If you use Tor, you're actually going through a sequence of several proxies, using different encryption keys for each hop along the route. The first proxy in the chain knows who you are, but can't see where you're going; it can only see the next proxy in the chain. The last proxy in the chain can see where you're going, but it doesn't know who you are, because all it can see is the previous proxy in the chain. Those in the middle can't see either the origin or the destination.

    Unless an attacker manages to compromise all the nodes along your route (which changes every few minutes), the Tor network can't figure out who was going where.

  14. Re:Welcome to America Junior. by CreatureComfort · · Score: 5, Interesting


    You sir, seem to be under the mistaken assumption that this, or any other, "War on Terror" program is actually aimed at terrorists. As you point out, any real terrorists/hackers/bad guys can find a multitude of ways around all of these systems. In fact, if you are actually doing anything deliberately illegal, you must assume that you are being evesdropped on at all times, and so make all of your contacts as innocuous as possible. That's basic subversion 101.

    All of these "programs" are to make sure that those in power have something on everybody. That way when you actually do something that interferes with their agenda or makes someone with power mad at you, they can nail you on several unrelated charges and keep their actual agenda somewhat obscured.

    As to your point, this very post could, at some point, come back to haunt me. But everytime I state these very obvious facts in a public forum, it would be terribly inconvenient for me to have to "format my shit" to avoid prosecution. The problem with the GP's idea of rotating encryption, is that only works where both ends of the conversation are trusted entities. If I were in Canada, and searching the web for information on something of dubious legality, like growing strains of South American botanicals north of the 48th parallel (hey, I like orchids), this would raise a flag somewhere in a database with my name on it. If later I searched for and made posts in support of opposition candidates and positions (whoever the "opposition" of the day was), that would also go into the file. If I was later surfing "fine art" sites and a link farm popped a window with underage models up, bang. You guessed it, a note into the file. When I did something annoying enough to the monitors, they would select the most convictable of possible offenses, get a warrant for a "secret search" and "discover" illegal content on my PC. Evidence clearly substantiated by the logs provided by my ISP.

    See how easy it is. If I were actually doing anything deliberately illegal, I would go to great lengths to protect myself. It's the poor buggers that think they are within the law that will get hammered unsuspectingly.

    /paging Harry Tuttle

    --
    "Unheard of means only it's undreamed of yet,
    Impossible means not yet done." ~~ Julia Ecklar