Montana City Requires Workers' Internet Accounts

justinlindh writes "Bozeman, Montana is now requiring all applicants for city jobs to furnish Internet account information for 'background checking.' A portion of the application reads, "Please list any and all, current personal or business websites, web pages or memberships on any Internet-based chat rooms, social clubs or forums, to include, but not limited to: Facebook, Google, Yahoo, YouTube.com, MySpace, etc.' The article goes on to mention, 'There are then three lines where applicants can list the Web sites, their user names and log-in information and their passwords.'"

WTF

[Jaysyn]

They are seriously asking for people's passwords? If this some kinda of social engineering test where if you actually put them down you fail?

Re:WTF

[emudoug42]

Ok, new plan:

1) Make up phony job.
2) Put up lots of "now hiring" signs.
3) Ask for online account information, passwords.
4) Massive credit card fraud -- chances are people use the same passwords for everything
5) PROFIT!

Re:WTF

[e9th]

The ad is actually for positions in their sister city, Bozeman, Nigeria.

Re:WTF

Or:

1. Head to Bozeman
2. Social engineer city employees (I hear they're all "easy")
3. Own the network
4. Profit!!!

Re:WTF

[oldspewey]

I don't even know how to put my objections into words - I don't know where to start!

Start on Slashdot ... that's what the rest of us do.

Re:WTF

[sloth+jr]

I'm living in Bozeman, great community - and believe me, there's a ton of uproar here about this. I spoke this morning with the city's HR department, trying to get a hold of our city attorney. This has certainly done a lot of damage to our credibility as a tech friendly city (there are strong optics and software/service companies already operating here).

Re:WTF

[cayenne8]

I see MANY of the posts on here bitching about them asking for PASSWORDS...and rightly so.

However, my beef is WAY more basic than that...why the hell are they asking for my internet information for in the first place!?!?

It is no ones business what websites I have up, or what forums I participate in...

What is this, the electronic version of submitting to a drug test?

Re:WTF

[Lavene]

no problem, my password is hunter2

(I know I know... redundant... but still absurdly funny)

Re:WTF

[CecilPL]

Many of these sites have Terms of Service stating that you are not to share your account information, including passwords, with a third party.

Since we all know that breaking a website's TOS is a felony, any applicant who fills this form should be thrown in jail.

And whoever designed the application form should be charged with aiding and abetting a felony.

Re:WTF

[TheSpoom]

What is this, the electronic version of submitting to a drug test?

Yes. Absolutely.

This is the definition of the slippery slope. Employers have been able to get random drug tests an accepted and even expected part of every job; now that they've completed that goal, it's time to test the waters even further out.

Make no mistake about it, employers who use such tactics want to control their employees lives, plain and simple. They figure that they can make sure nobody in the company does anything even remotely controversial by basically putting a tracking device on their employees' social lives.

And to them, like all employers who would subject me to such non-employment related screening, I say a big, hearty fuck you.

Give away your password...

[__aagmrb7289]

If they are able to hire people with these policies, then they are hiring people that they deserve, and those being hired are getting what they deserve. I honestly cannot envision going into a job interview and writing down, on a piece of paper that will end up who knows where, all of my user names and passwords, for every account I have on the Internet. I have trouble envisioning the idiots who would do so, but I'm guessing they look like the people who came up with this policy. And they deserve each other.

Unpopular

[mlingojones]

According to the online poll accompanying the article, 98% of respondents think it's an invasion of privacy.

That's as big a landslide as it gets, folks.

Re:Unpopular

[Red+Flayer]

That's as big a landslide as it gets, folks.

Well, technically, no. It could be 99% [1].

I mean, I get your point, but on a site filled with pedants, most of them highly attuned to mathematics, perhaps that wasn't the best choice of words.

[1] 99% is as big a landslide as it gets. 100% would mean the land was falling, not sliding. Assuming that the percentage in a landslide victory correlates to the slope of the surface the land is sliding along.

Oh crap... I've opened the door for the pedants to tar and feather me as well, haven't I?

*exchanges tinfoil suit for flame-retardant suit*

Re:Unpopular

[hampton]

How are there even 2% that don't consider it an invasion of privacy?

They're the trolls who loudly proclaim "if you're not doing anything wrong then you have nothing to hide" regarding every privacy issue.

Re:Unpopular

[Red+Flayer]

D'oh.

Apparently, the third rule is that vikings don't have to close html tags.

Re:Unpopular

[Red+Flayer]

Of course Vikings care about significant digits. Typically it requires four digits on each hand to grip a two-handed battle axe effectively. So I can lose one digit from each hand, no worries, as long as it wasn't a thumb -- I'll still be drinking mead from a skraeling's skull.

But if I lose any more than that...

See, significant digits fully explained by a Viking. What is it with you people, thinking Vikings don't have or need an understanding of the finer principles of mathematics as relating to raping and pillaging?

Worst Policy EVAR!!! EVER EVEN!!!!

[Derekloffin]

That is just plain moronic. You do NOT ask for people's passwords ever. That's bloody ridiculous. You'll get a total of two types, liars who give you nothing or fakes, or idiots you actually give you this info.

Real Opportunity

[stoolpigeon]

1. Create Account with social site
2. Put name and password on app
3. Wait for it to be leaked and abused
4. Profit!

No need to get a job - this is like money in the bank.

My Klingon Keyboard

[iron-kurton]

I just told them that even if I wrote down passwords, they are all written in Klingon and are only usable on Klingon keyboards, so they would be of no use to them. I was hired on the spot.

Sorry, we are going to have to let you go.

[Tilzs]

It has come to our attention that you lied or omitted information on your employment application. We have found out that you neglected to mention that you registered at creative.com 8 years ago to download some drivers and 3 years ago at dvorak.org/blog when you posted "get of my lawn".

What else?

[swb]

Maybe my bank access info?

Keys to my house?

Maybe a beaver shot of my wife?

Re:What else?

[iamhigh]

Maybe my bank access info?

Keys to my house?

Maybe a beaver shot of my wife?

No. No. Yes, please.

Re:What else?

[swb]

You might want to check my bank balance and a pic of my wife before you make that decision.

Yeah, pretty sure that's breaking the law

[elrous0]

There is a LOT of stuff that prospective employers can't ask you (race, sex, family status, disability, etc.). One of those things is asking you about social organizations you belong to (presumably because someone could derrive illegal information from this like your age, nationality, religion, etc.). Asking for your Facebook/Myspace/etc. information would almost CERTAINLY fall under this (since things like age/sex/etc. are standard categories on most social websites, and this information is supposed to be basically anonymous) and is really opening them up for a rather impolite visit from the EEOC.

I suspect that, in these hard times, it's just that no one has bothered to file a claim against them yet.

Re:Passwords?

[Morlark]

Ah, but it's perfectly safe. When you write your password out on the application form it comes out as ******!

Biased towards people who violate rules

[Ironica]

Most of those sites (if not all of them) probably state in the TOS that you are not to share your login information. So... they're asking people to violate their agreements, and won't hire people who refuse. For example, Facebook's Terms section 4 item 6 states "You will not share your password, let anyone else access your account, or do anything else that might jeopardize the security of your account."

Brilliant. If you want to bribe a city official, go to Bozeman, because they only hire people who violate policy.

City jobs are a bad thing?

[spun]

Is there any level at which collective action (otherwise known as 'government') is a good thing? What is wrong with city jobs? Would you have the private sector take over all functions of government, on all levels? I would think, at the very least you would be in favor of a public police force to protect your property. No matter how many guns you have, someone has more, and is more willing to use them than you are. Fire departments are nice, too. As are public roads. In fact, I can't think of many things that city governments currently do that the private sector could do better. The private sector exists to give you as little value for your dollar as you can be convinced to accept. The government is an agent working on your behalf.

Re:City jobs are a bad thing?

[iamhigh]

The private sector does EVERYTHING better, because it is done voluntarily. They don't force you to make a decision against your will.

WRONG! The private sector does not do things well when it requires massive integration and cooperation among many different groups to make a decent solution. Roads are the easiest example. Could you really imagine privately constructed, maintained and designed roads? One block this way, the next a different way. Would the private police and fire not do their job if you hadn't paid them? Isn't that covered under RICO?

Look, I'm all about free market, but to say everything is better in the private sector is just about as dumb as any other blanket statement (including this one).

Re:Passwords?

[spydabyte]

Obligatory bash quote: http://www.bash.org/?244321

Re:Slashdot Account

Ah fucking god damnit! You bastard, gave away my account information!

Re:I call FUD

[YrWrstNtmr]

Its on the Background check form.

Re:As offensive as this is...

[mcgrew]

It's only going to deter people with average or above intelligence.

You know what to do

[stbill79]

I've just contacted the Montana ACLU Here

The article links to a video interview with Greg Sullivan Bozeman City Attorney here (right side of page), who defends the policy.

His Contact info:

City Attorney Greg Sullivan gsullivan@bozeman.net 406-582-2309

What I just emailed off to Mr. Sullivan

Greg Sullivan

Your city's requirement for job applicants to provide a list of all personal internet memberships, logins, and passwords has recently come to my attention. I have just requested that the Montana ACLU investigate this policy as it seems a severe invasion of privacy. I have always appreciated the state of Montana's noble defense of the Constitution, exemplified with recent decisions by the state to support 2nd amendment rights. Your city's applicant policy is the exact opposite of what I'd expect from the state of Montana, and I would urge you to seriously reconsider this requirement.