Slashdot Mirror
ISPs Using "Deep Packet Inspection" On 100,000 Users
dstates writes "The Washington Post is reporting that some Internet Service Providers (ISP) have been using deep-packet inspection to spy on the communications of more than 100,000 US customers. Deep packet inspection allows the ISP to read the content of communications including every Web page visited, every e-mail sent and every search entered, in short every click and keystroke that comes down the line. The companies involved assert that customers' privacy is protected because no personally identifying details are released, but they make money from advertisers who use the information to target their online pitches. Deep packet inspection is a significant expansion over tools like cookies in the ability to track a user. Critics liken it to a phone company listening in on conversations."
..., ssh, pgp all the time!
DNSSec and opportunistic IPSec should put an end to the snooping and throttling once and for all.
Thats it, I say webservers move to SSL only transactions. All other plaintext transmissions should get encrypted at the endpoints transparently. Then when the government whines about not being able to find the terrorists they can blame datamining companies that paid for their election campaign. Then they can make a law that forces a back-door, which would create a need for some nifty-ass steganography which would lead to massively excessive processor and network overhead (encryption and steganography respectively) for the most basic of transactions which would lead to NSA funded algorythms to find these hidden messages which would. . .holy shit it's almost 10AM, I need to hit the sack.
If you are about to mod me down, keep in mind that this post was most likely sarcastic.
If ISPs are monitoring traffic so closely, doesn't that make them more responsible for what people are using their service for? Namely piracy.
ISPs have always been notorious for secretly compressing your images, caching your traffic, proxying stuff, slipping their own content into your web pages, etc. They look at the contents of your mail, since you can't spoof from anyone to anyone via their servers. How is this different, other than some joker gave it an ominous sounding name like 'Deep Packet Inspection' ?
I want to delete my account but Slashdot doesn't allow it.
I think the ISPs spying like this is a good thing - if indeed it can push people to use encryption more. People will be too lazy to do it by themselves without some "motivation" like this. And the ISPs doing it for advertising is a relatively harmless example. Sure beats waiting until a government decides to outlaw some major political party.
I just hope that this invasion of privacy is significant enough that businesses get offended (and they should get offended that some other company is reading most of their emails) to reach the tipping point of encrypting all their communication (email, etc); and home use will follow.
Is this the phorm system?
http://www.theregister.co.uk/2008/02/29/phorm_documents/
http://www.theregister.co.uk/2008/02/29/phorm_roundup/
Let's start turning over rocks in the private lives of telcom CEO's and see what scurries out. I'm sure they won't mind, it's in the interests of an open society and free debate, don'cha know.
Kwisatz Haderach
Sell the spice to CHOAM
This Mahdi took Shaddam's Throne
if they spent half as much time increasing network capacity at the physical layer as they do spying on customers' bits we'd all be twice as well off, and we might even have a shot at some true global parity. as it is now they've got u.s. customers all drinking from their same dwindling pool.
- js.
Comment removed based on user account deletion
Never mind that it's evil, or that it's a great step to losing their common-carrier status.
Never mind that it's a true violation of privacy.
Never mind that I block cookies pretty well and I run with NoScript most of the time and I don't see very many ads, and besides, half of the time I'm inside my employer's VPN.
But even more than that, I have seven other users in my household, half of them teenagers. If they want to sniff all of my NAT-ed packets coming out, they're going to discover that I'm a geek who has four Facebook sites, likes art and hates it, plays Runescape incessantly (the 10-year-old), likes the Wiggles, and works as a beauty consultant. So go ahead and hand me the ad for the latest XBox game (I hate games). Offer my kids server hardware, and see if you can get my wife to click on fun games to play with the Backyardigans. Oh, wait, you already do. It's called "not targeting advertising", and it's free.
So what we have is a thoroughly broken high-cost borderline-illegal absolutely-unethical service offered to advertisers in a difficult economic period. By people who we all hate a lot, and who will rapidly become targets for everything from blocking to legislative action to you name it.
I knew there would be some kind of career move for spam kings in the future. I just thought it would pay better.
I predict a less than stellar outcome for these idiots, and they deserve every painful moment.
deeplink down
deep packet clowns
show me your packets
is that a smile or a frown?
thrice cola crown
Godel the bounds
where is Gibran's appendix found?
Would were! Should is! Could be! And live a hundred times three.
Isn't this the real issue with clogging 'tubes'? How can the government and ISPs keep up with the computational resources needed to continue this as we demand greater and greater amounts of bandwidth? OK, so they could only inspect http traffic, rather than say, bittorrent traffic, but OMG what happens when 'terrorists' start communicating with other protocols?
I pay for a dedicated server (essentially colo but they provide the hardware) from a company with a decent AUP. I put linux on the server and run squid on a non-standard port, allowing connections from localhost only. Then from the machine I'm surfing from I tunnel into the squid server. Say squid is running on port 1234 and sshd is running on 4567:
ssh -f -N -L 1234:localhost:1234 -p 5678 my.squid.server.com
Configure firefox to use a proxy to localhost:1234 and all traffic is encrypted to the squid server.
Of course, I could just use Tor, which is great, but can be slow. In fact, you could run a tor server on your colo machine and have all tor traffic bounce off of the server, which would be pretty fast if you leave tor running as a daemon and dedicate a decent amount of bandwidth to the tor network.
A squid eating dough in a polyethylene bag is fast and bulbous, got me?
If everyone offered https, ( or only ) and all email is encrypted then this would become a moot point really quick.
All they would know then is where you went, not what you did. ( Tho in this country, just going there is enough to get you put in jail it seems )
Or we can all move to freenet and really stick it to them.
---- Booth was a patriot ----
There is no way this can go horribly wrong.
https://addons.mozilla.org/en-US/firefox/addon/1865
Politics is Treachery, Religion is Brainwashing
Tor is great, don't masturbate without it!
It's illegal for anyone to open mail not intended for them. The same should be done for electronic communication.
And if I hear one libertarian say we need less laws, I'll puke. It's as if they though they had a magic wand and all the troubles of the world would disappear by removing government. Unfortunately, the world hasn't worked that way since we left the caves 12,000 years ago.
---Technology will liberate us if it doesn't enslave us first.
"Dykes noted that by a couple of measures, their system may protect privacy more than such well-known companies as Google."
If I'm searching for something that I'd rather not have permanently stored on [Google's || my ISP's] servers I can always just log out, or go to another [search engine || ISP].
That sentence only makes sense one way. DPI is absolutely nothing like how Google operates. At least what Google does (storing search histories, etc) actually provides a service to the user...
If these are the ISPs (as opposed to the visited web sites) doing the spying, then how are the advertising companies involved supposed to deliver the content? Are they going to use the same "deep packet" method to inject the advertising? If the advertising delivery is away from that deep packet inspection, then how do they identify which user was interested in penis enlargement products vs. which user was interested in replica watches? Or are the ISPs going to lock-in the IP address, now?
now we need to go OSS in diesel cars
Comment removed based on user account deletion
My old ISP rolled out "deep packet inspection" in an attempt to throttle user bandwidth on ports they didn't like (including VoIP to push their own VoIP solution), they were very proud of their achievement. I was also very proud of my achievement by leaving them for a company that gives me what I pay for, not throttling ports "to enhance my user experience".
The only way to teach these companies a lesson is where possible, leave them for another company, money (and subscribers) talk, and a lack of subscribers hurts them.
Take Nobody's Word For It.
Fact is that if there is packet inspection going on, this is slowing down traffic on that one connection. Imagine now that there is many users traffic who is being "scanned", redirected or filtered, et al.
Now; has anyone else noticed that the net is getting slower and slower recently?? We already know that sites such as FoxNews.com and other similar types, have special applets that download and attempt to arrange items on the page so that you are forced to see specific adds for a specific period of time before the rest of the page; including the intended content shows into view!
There are other sites that are beginning to "fiddle" with flash ads and present them in a way that you are unable to avoid them. This is getting to be quite annoying.
Time for those magical host lists again!!
All content in this message is copyright (c) 2008. All rights reserved. RIAA is prohibited here.
And ones that don't are horrible -- unless you'd like to administer the entire network yourself...
Plus it keeps the cops from coming up with excuses to break into my house to collect evidence (ideas they can afford to patent or register before I can) more than once a week.
BTW -- if you're wondering who your main competition will be when you enter the workforce... you may be a genius or subgenius, but your competion has police and military contacts any knows everything you do, and basic security to prevent this costs $1 million dollars.
How can the article summary call defenders of our privacy critics? People who stand up for our privacy are critics? OP has a strange point of view..
Comment removed based on user account deletion
Please. The AC's don't even try anymore. :(
The difference is that in the first case, the data passes through a dumb machine that compresses, caches, etc. The result is cached like it is expected (RFC 2616 is pretty clear about that), even though it is done transparently. No need to keep logs about who downloaded what.
In this case, the data is explicitly mined, by a company interested in building a profile of each user. It doesn't say it is limited to web traffic only, only that "Nor does NebuAd record a user's visits to pornography or gaming sites or a user's interests in sensitive subjects -- such as bankruptcy or a medical condition such as AIDS.", which I doubt both on technical grounds and because it is a market and someone will want to take advantage and "The company said it processes but does not look into packets of information that include e-mail or pictures." which I think is in contradiction with other parts of the article and even if they didn't, it's a matter of time before they do.
Basically, it's the intent that counts. The ISP can intercept everything they want because they're in the middle. When they start doing so for reasons that are not part of maintaining the communications as specified (like forwarding, maybe firewalling and proxying depending on the conditions), alarms should go off.
GPG 0x1B479C78
I expect that they will combine this snooping with throttling of all encrypted (or otherwise random) looking packets.
Ian Ameline
that rabbit might take your head off
i know a lapland tale about a hole where women
got dropped off...turned my stomach a little
but i don't know, maybe the story will keep
and never repeat if the tale is told of what
fools of old kept their King a fold and a
narrative hit the street
Would were! Should is! Could be! And live a hundred times three.
If you do this in the EU. Packet pauyloads are off-limits without court order. You may not even store them.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Search for info on heartburn... get some post cards advertising the latest antacid. Search for info about Lasik eye surgery... gee handy flyers about your local providers appear.
You get the idea. If I were selling a service and an ISP offered to sell me names and addresses based on keyword searches, why wouldn't I buy that list?
This issue is a bit more complicated than you think.
Ever get the feeling the the Internet just isn't worth it anymore?
Government's idea of a balanced budget: take money from the right pocket to balance...oh who am I kidding?
standing up for our rights is the answer. unfortunately, corporations listen only to once voice, money, so hit them where it hurts.
Cancel your internet, refuse to pay your bills... boohoo, then you won't have internet? you won't have internet anyway, if they get their way.
You think these guys don't like BitTorrent, wait until everyone starts a process to spider the web to obfuscate where the fleshies are really browsing at and run that 24/7 to overload their deep-packet inspection devices.
Apocalypse Cancelled, Sorry, No Ticket Refunds
One name comes to mind after RTA: Anthony Palermo. ""I don't view it as violating any privacy data at all," said Anthony Palermo, vice present of marketing at Knology." 1. Find his adress 2. Intercept his snailmail (which later is returned). 3. Scan it and post it to our small group of Slashdotters. 4. Ask him if he thinks that this is a violation of his privacy? 5. ?? 6. Profit!
Shame on them ISPs. Makes me wanna signup to proxify, so that I can opt out of the ridiculous eavesdropping that's taking place. incase consumers don't know, here are some tools to protect yourself:
Scroogle with HTTPS, -> i use this as my primary interface for searching on google, since your search queries reveal alot of personal information and gets used for marketing purposes.
Tor Anonymity Network, with Firefox plugin to quickly enable/disable anonymous browsing.
Proxify with HTTPS, although for advanced stuff they want you to signup to their service :(
Last but not least: GnuPG, for encrypting your private data.
Time has shown that nobody will protect your privacy besides yourself. It's time for ALL Internet traffic and ALL phone traffic to be encrypted with an option to get SSL keys for each machine or phone from trusted authorities in different countries. This way a particular person asserting privacy is not labeled a terrorist, Comcast can not selectively block bittorrent, Chinese firewall is out of business and phone companies do not need immunity for spying on subscribers. IPV6 will have to be adopted anyway in the next 10 years and it included encryption, so the time is right to make both switches at once with little extra IT overhead.
The government may have the resources to break strong encryption in real time, but even the largest ISP's do not. So maybe now the FreeS/WAN project no longer sound like tinfoil-hatted paranoiacs when they push opportunistic encryption at every node. Everything gets encrypted automatically and transparently when talking between two OE nodes, regardless of the protocol.
This was their goal, but hostility and forking ensued when most people really wanted to just have an IPsec implementation on Linux. OE is still a good idea, though, and that's what they're focusing on now.
The obvious design win would be if Linksys and Netgear built OE into their consumer grade firewall/routers. Then everyone would have it, not even know it, and when large site operators started deploying it on their network edges, massive amounts of crypto would start traversing the Internet, and no one would be bothered by it.
That's really the key to good system design: add complexity, but don't bother the end user -- it's not his problem.
Tired of FB/Google censorship? Visit UNCENSORED!
and they never have been.
The masses are the crack whores of religion.
The companies don't use this for targeted per-person adversing. They use the general metrics to figure out what adword to pay more for, or what sites get more conversion, or what spelling error are most common in searches. Stuff that could help them do SEO type things. Yes, they are probably shady types trying to weasel google and other to giving them a higher rating than they deserve, but not THAT shady.
For Anonymous to target the personal information of the CEO's, CIO's and other staff of the ISP's involved.
When it is acting as your ISP, your telephone company is not governed by common carrier status. USA Today has an article today pointing out that essentially all ISP service agreements give them the right to inspect your communications, alter the contract without notice, block access to sites and terminate your service at will. For example, these agreements allow and ISP to block access to competitor web sites if they feel that the site has objectionable content like claims to provide better service at lower costs.
The problem with all the "encrypt everything" posts is that encryption costs money. Why doesn't Slashdot offer? Because it would cost them a fortune to add all the server hardware needed to meet the demand.
The problem with all of the "I dropped my ISP" posts is that in most communities you have little or no choice in broad band providers, basically the cable company and the phone company. Just like local telephone companies, broad band ISPs are effectively local monopolies and should be governed by the same common carrier rules.
What is the potential harm? How would you feel if you learned that you weren't hired for a job because your name was on a list of potentially disruptive employees who read (or even worse, post to) Slashdot?
Don't just kvetch on Slashdot. Write to your congressman and senators and tell them that this is a serious issue for you.
Statesman
Funny, while loading this page I got a "bandwidth cap warning" from my ISP, stealthily inserted into the page (Rogers Cable).
I expect nothing less from the despicable scam shop that is Rogers, but it's still kind of creepy.
For me, it's not a huge deal because I run a number of geographically diverse servers, I can VPN or proxy my traffic through any combination of them, should the need arise. Like any invasion of privacy, I'm not concerned about the marketing uses, it's the inevitable abuse that scares me, either by ISP staff sniffing passwords, or script kiddies rooting the monitoring systems (and/or the idiot sysadmin's PC).
The thing is, at this point I've given up on common sense. Things will continue to get more and more ridiculous until we reach a breaking point... the bubble will burst and there will be backlash against these invasions of privacy, but only when the common fool finally realizes their life is being tarnished by the practice.
Until then, we'll continue to be labeled as paranoids with our tinfoil hats.
-Billco, Fnarg.com
I just checked NebuAd's Privacy policy:
NebuAd products do collect and use the following kinds of anonymous information:
Now that's way out of line for an ISP to collect, let alone send to an ad agency.
We may be able to do something about this.
We run SiteTruth AdRater, which rates advertisers. We have a Firefox extension which displays a rating icon for each ad served. When an ad link goes by, and it's not in the browser cache, the extension contacts our server for a rating of the advertiser. So we collect, over time, a list of advertisers for various ad systems. We're not collecting data about users; we're interested in advertiser behavior. (You can read the source code for the plug-in, so there's no mystery about what we're doing.)
We're not currently tracking NebuAd, Front Porch, or Phorm ads; we've been focusing on the bigger players. It looks like we need to be tracking this behavior. If anyone can find ad links from those services, please post the ad link here, or mail it to "info@sitetruth.com". We need some examples so we can modify the plug-in to recognize them.
If we can collect sufficient information about this class of advertisers, we may publish their customer list, which would be useful for boycott purposes. Thanks.
its called tor.
I have a bit of history with two large service providers in the US. While I have not been involved directly with the deep packet inspection teams, I have had direct contact with all of them and helped them design networks using this technology. The technology was never sold to upper management as a way to track our users and target ads to them. It was never intended to capture a web page hit that was directed at a specific company to see what that consumer was interested in. Instead, it was always meant to monitor users (and more importantly, user aggregates) and determine what kind of traffic they were sending.
It was, and is, always about the network profile. If they find out that 10% of the traffic on the network is VoIP traffic, they want to design the network shift this traffic to have lower latency.** If they find out that 50% of the traffic is BitTorrent, they may put rules in place around such services. In my opinion, the service providers that I have dealt with do not have the technology in place to target down to the user. Also, they do not appear to be developing this technology.
**Some can argue that providers are instinctively evil and want to destroy this traffic, but I'm not going to fight this here.
Disagreeing with me does not mean you get to mod me troll.
Where are my mod points when I need them? This is *exactly* right!
The biggest barrier to getting everyone to use encryption, though, is the relative difficulty in configuring it. For example, I'm on a Mac running OS X right now. This is generally regarded as an "easy to use" OS, and one often recommended for people's parents, relatives, etc. Nonetheless, if I want to encrypt my outgoing email using the Mail.app included with the OS, what are my options? So far, the best I can do for my OS X Leopard 10.5 version is a very buggy beta of a freeware hack that adds PGP support using a GNU PGP add-on. I tried this out the other day, and discovered it crashes or fails to properly decrypt any email containing attachments, and requires the PGP key be generated with ANOTHER GNU program I have to download and run - and it, too is a little buggy. (It added a preference pane to my control panel which promptly told me was "non functional" in my version of OS X. Nice.)
If you want things like this to *really* get used by the masses, the support needs to be included with the core applications, and generation of the public and private keys needs to be done through a "wizard" that pops up at first program launch.
I've been playing with encryption programs for at least 10 or 15 years now on computers, and STILL, it seems to be little more than an afterthought for most popular software. Why isn't this made more of a priority by developers??
Some of us do not use Google mail or Google desktop search for exactly the reasons you give.
Statesman
Every datacom box supplier is developing DPI features for their products. The main driver is not targeted marketing, but QoS. When you're able to identify traffic on the application layer, it gives you a lot of extra options in determining how to route the traffic.
This way you can decide to route P2P traffic flows on best effort basis, but "over-the-top" video (eg. Youtube) flows you route through a higher quality connection. This improves user satisfaction.
That's the idea anyway, saying it's for targeted advertising sounds quite paranoid to me.
Why doesn't slashdot use SSL? Help us out here commandertaco!
Is That Any Way To Capitalize A Subject Line?
:)
Are Slashdot Comments Now Formal Titles?
Are You Writing A Book By Any Chance?
So which ISPs are doing this? What can we do to protect our selves? It sounds like it's "enabled" by a cookie placed there by your ISP or NebuAd? Would Adblock and/or PeerGuardian be enough? Implementing blocking at the home router level? What can home users actually do?
It'd be nice at least to know who's actually participating in this so we could know who to avoid.
I don't use gmail by choice because of this policy. Gmail isn't a free service, there is a cost to your privacy and if you make that choice, great. I have my own domain specifically for this reason that I'm not under the rules of another company. But for communications that I pay for, my isp thinks they can eavesdrop? Big difference between what google and the isp's are doing.
No one authorized ISPs to inspect packets for any purpose.
However if they provided their service at the same price google offers gmail in exchange for authorization to inspect packets, I'm sure there would be lots of people willing to take the deal. And I think whoever modded you insightful was on crack.
Comment removed based on user account deletion
TFA says : The opt-out systems work by planting a "cookie," What happens when you clear the cookies, oh say like I do everytime I quit firefox. Doesn't sound like much of an opt out if it only lasts a few hours.
The issue here with isps is that they are doing it with
*out* informing the individuals and *without* their express consent.
In the case of Google and gmail, Google *EXPRESSLY* informs the
users of gmail *what* Google is doing and why. Google *owns* gmail
and *no* one is obligated to have a gmail account are they now?
See the difference? One does it without regard to personal rights (evil)
and the other does is *after* informing the users of *their* services
what they are doing and why (no evil).
BTW, would it be possible to have a rule for posting comments on slashdot
that all trolls and shills need to provide a disclaimer with their posting.
It would be so much easier and more entertaining if trolls and shills would
identify themselves.
--Johnny loves Google.
Disclaimer: I'm not a troll, and I'm not a shill -- no one is paying me for
this post, nor do I work for an evil corporation attempting to subvert the
best thing that's happened to the human race: The Freedom Internet.
I think I would love to work for google, but I haven't applied for a job
with them.
The fact that the ISPs and their scummy little adpusher friends are being so quiet about the whole thing is a giant red flag. If this were really some kind of "win-win"(for somebody other than the ISP and the advertiser, for who it is a win-win), they would be issuing suitspeak press releases right and left about it. This is nothing but suck for every one of their customers and they know it. Particularly given how deeply uncompetitive the market for internet services is in much of the US, it is a dire sign that they feel the need to keep it quiet. Now we need to know who is doing it so we can figure out who to punish.
And they can get the hell off my lawn, while they're at it.
Ut-oh. The "Minority Report" retinal scanners are next.
Hmm..... my webcam looks like it has been moved a little....
No regulation needed here, just transparency. Hey, WashPost, dig up the ISP names and report them. This is just part of the ISPs' service: better, more relevant ads. I want to know which ISPs in my area do this, so I can make a more-informed choice of ISP!
Where's real investigative journalism when you need it?
I work for an ISP. I was recently involved with a project to install network taps for this very purpose. However the request was initiated from a 3rd party, ie this was not an internal project. I tried to find out more, but the people who know will not divulge the name of the 'customer'. The equipment is now installed and running in a number of locations.
Needless to say, the rest of our customer base has not been informed of this.
Hrmmm... I never got the TOS/AUP for my ISP (then again it was just switched on me when Verizon sold it)
gotta contact them, and say "Hey, what's the deal"
I will not give in to the terrorists. I will not become fearful.
SNI (Server Name Indication) support is available, though not out-of-the-box that I'm aware of. See this test site. Sadly, enabling TLSEXT in openssl (required for SNI) seems to require bumping the soname of the library, which nobody wants to do. Hence, the specs remain unimplemented for the next Ubuntu release, later this month. (It's an LTS release, which makes this especially infuriating.)
And you can't use it on any public-facing websites that you care about people going to. It's unsupported in IE6 and even on IE7 unless you're using Vista. (Though Firefox 2 and later work fine.) Because of the enormous clusterfuck that is Vista, most people seem content to stick with XP. So unless you're restricting your site to a select cadre of friends who use browsers that don't suck, SNI is dead in the water for at least a few more years.
Laws do not persuade just because they threaten. --Seneca
As I read it, the assemblage of what actions I take over the Internet is an original work composed by me. Under the Berne Copyright Convention, as implemented in the US Copyright Act (USC Title 17), it is a work authored by, and automatically copyrighted by me (post-Berne, registration is not necessary; it just ups the penalties for violations).
Distributing that record or any derivative work thereof (including summaries) is a copyright violation. And I personally have standing to sue.
Not what the WIPO had in mind, perhaps, but it's a tool they gave me...
"My opinions are my own, and I've got *lots* of them!"
You could have 10,000 domains that share a common cert provided by the hosting provider. It does squat for authentication but it does prevent snooping.
With ISPs starting to snoop, suddenly this has real value.
Combine this with 3rd-party SSL-enabled DNS, and you've got some reasonable countermeasures.
Your ISP will know you talked to dns.ssldnsprovider.com over an encrypted channel and then immediately carried on a series of conversations with 1.2.3.4 over port 443, but he won't know which of the thousands of web sites hosted by 1.2.3.4 you talked to.
Dns.ssldnsprovider.com will know you looked up the address for www.freetibetnowdammit.com but not much else.
You will be presented with a certificate for www.somebigwebhostingprovider.com that mismatches www.freetibetnowdammit.com, but freetibetnowdammit.com will explain why and say not to worry about it, as will all the other hosts residing on 1.2.3.4.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
The quick fix to this is web-sites all allowing https, ssl, and vpn connections to them. That will end deep-packet inspection, leaving only a list of web-pages visited available. gMail already allows https, but you have to ask for it.
"It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
Step 7: Don't get caught.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
It's my understanding that most shippers won't open a package unless they already suspect something or are required to by law.
If they suspect dangerous goods, they may open it to protect their planes and other packages.
If it's at a customs location, they may inspect items if they are acting on behalf of customs agents.
If they suspect illegal material, if their lawyers are smart they will get the cops or courts involved before they open the package.
What they don't do is just snoop for the hell of it, if they did, their reputation would be in shatters and there is too much competition in that industry to withstand the bad press. Unlike some industries *cough*localisps*cough*.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
[Ad in college newspapers nationwide]:
Dear college students:
Are you tired of your ISP blocking your World of Warcraft or interfering with your iTunes? Concerned that your provider's computer techs may get nosy about where you send your resumes? Call 1-800-SPOOFIT and sign up with our worldwide proxy system. We route all of your traffic through one of thousands of proxy hosts around the world. We guarentee that our bonded and insured technical team will not spoof on your traffic except as required by law or to manage technical issues, and we promise to notify you of any such incidents unless prohibited by law and we promise to not keep any data related to such incidents longer than required to solve the technical problem or required by law.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
The Sedition Act of 1798 one one of many early laws that were the beginning of the end of a government of, by, and for the people.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
Want to really screw with people's minds? Give freaks a +6 modifier then reply to all of their posts.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
Last I checked, my routers stored every packet that went through them. I think they stored them in this thing called a "buffer" :).
Mod -6 smartass.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
DPI on every packet, theirs or wholesales, throttles EVERY connection not HTTP/port 80 to 40 K/s, still chrges for 5 Mbps can't SSH, vpn, RDC or even download distros youtube grinds to a halt and the itunes store ...lol 4 gb in 2 days, back in 1999
and CBC, national TV, just started using torrents to distribute content
funy thing is, bell will aunch a movie store shortly, so they wanted to reclaim all oversold BW for their assholes and penalize 3 rd party/resellers
Live Electronic Music
As the first step in this fight could we have Slashdot on https?
hacking someones mail does'nt get you in a "pound me in the ass prison"
it gets you in a low security almost vacation like prison with lots of low risk offenders
now stop the bullshit already
The best way to generate a groundswell against these systems is for websites to warn their uers if they are on an ISP that does this. For those in the UK worried about the 'phorm' spying system, Richard Clayton has extracted some technical information from them here: http://www.lightbluetouchpaper.org/2008/04/04/the-phorm-webwise-system/ and Gavin Jamie already has a prototype Phorm detector here: http://www.mythic-beasts.com/~gjamie/
Just stumbled on the 'goog-411' 800 number on my blackberry and initially thought: cool, I don't have to pay 411 charges any more (waht a ripoff). Tried it out, and the first thing they say is 'all calls recorded'.
Thought to myself, thanks but no thanks... and then realized that my employer pays for the 411 charges anyway =)
Comcrap was 'down' all day here. Funny how my vonage service, and mail servers (using non-standard ports to dyndns mailhop, apparently mail was hit as well) were fine, though.
If what you say is possible, how can we copyright our AIM logs so we can sue any corporation that uses or reproduces it? It is possible to copyright literary art right? How might it be done?
Now Slashdot (or OSDN) not only knows all those details about you but they also know your IP addresses (one of your home internet line, one of your employer) which might very well disclose your employer and your email address - that is not publicly disclosed - which might hint at or even include your real name. Well done. :-)
The people who care about encryption are not the same set of people who care about usability. Normally I'd say your best bet is to petition some company that's known for usability to add encryption support to their products, but given the Apple experience it looks like that might be pretty useless. :)
Comment of the year
But we don't have to use gmail.
We have to use our ISP to connect to the internet and our ISP is a constent they are ALWAYS there with everything you do Google is only there when you use their service.
~Dan
An SQL query goes to a bar, walks up to a table and asks, "Mind if I join you?"
Let them gather all the information they want. I use adblock so I see no ads targeted or otherwise. Problem solved.
The people at Verisign that sell certs of course. Certs are used for several things though. Even a self signed cert can be used for encryption. Browsers though get upset if the cert name doesn;'t match the domain name to assure your are connected to who you think you are. Aside from Verisign (see authenticode fiasco) the other guy selling certs made so much money ho could take a ride into space.
Regards, Doug
--- Iran, uranium, rail gun, bomb, spies, scientists,
Now it would be a good idea to inspect, and store email to and from certain government offices, mainly the west wing of the whitehouse where we seem to be having trouble with email retention laws.
This is why I only access sites written in foreign languages which the ISPs and their advertisers cannot understand.
Sites like Slashdot.
(And I set Google to Pig Latin. O-one-nay an-cay understand-ay y-may eries-quay!)
You know. If they are doing simple text analysis, Pig Latin just might work as an encryption method.
I am anarch of all I survey.
Along with the UK's Phorm scandal the business exec types involved seem to be argueing that "not publishing/selling information tied to a particular individual" defines retaining privacy.
So they're trying to parse privacy as something that, IMO, it is not. Privacy is a basic expectation. Privacy is my choosing to write a letter and place it in an envelope - not on a postcard. Privacy is my choosing to talk to my wife over the phone and the conversation's contents remaining known only to us.
If anyone opens the envelope to read the contents, or listens in to the phone call THAT is a volation of my privacy. Regardless of if they read the address on the envelope or return address on the letter, if they see the number dialled or the number dialing. Regardless if they are to use the data collected for marketing or personal kicks. It is the act of snooping ITSELF that violates the privacy.
Now, if an ISP wants to put in their terms and conditions that you grant them some kind of right to inspect or intercept your packets that may or may not be legally kosher. But that is not the issue here. The issue is the repeated attempts to define invasion of privacy from the initial snooping in the first place to what they do AFTER snooping. and that is what we need to fight and what needs to be made clear to the media, so that when they report on these stories their subscribers also understand.
logging in but CATCHPA : Quagmire
If you don't risk failure you don't risk success.
Comment removed based on user account deletion
Maybe if ISP's move to tiered services (like they say they need to for Bit torrent) we could opt in like Gmail in return for lower prices???
--- Duey Finster http://www.dueyfinster.com
When will people start realizing that privacy invasion is a bad thing? Companies should not be allowed to sell the information. Not even after an opt-in.
Once you realise that, you should vote for politicians that suport this idea that the people are important, not the companies. Obviously this will not work in the USofA, because it is a socialist idea and both parties are already owned by the companies. Ain't it grat to have a domocracy based on two parties, so you can choose between bad or worse.
Ok, now you can mod me -1 ranting.
Don't fight for your country, if your country does not fight for you.
Not true, you are just as free to choose a different ISP as you are to choose a different email provider. The most that can be said is that switching ISPs is more hassle.
That's true, but I don't see how that changes the principle of the matter.
BTW, the "Troll" moderation should be renamed "Unpopular Opinion" as that seems to be how it's often used.
The problem with ISPs is you are very limited in choice you can only use those that are in your area and if they all jump on the bandwagon your somewhat screwed.
At least an email provider doesn't have to be in the same country.
"Troll" seems to be a very popular mod atm
An SQL query goes to a bar, walks up to a table and asks, "Mind if I join you?"
http://www.macosxhints.com/article.php?story=20050522045225980
Which then generates a nifty lock button in Mail.app. Good luck finding somebody else to send messages to, though.