Slashdot Mirror
Apple Logging Locations of All iPhone Users
An anonymous reader writes "The Guardian reports that researchers have found a hidden file on all iPhones, iPads and any computers to which they synchronize, logging timestamped latitude and longitude coordinates of the user since June 2010. A tool is available on their website to check on your own."
Surprise!
Tracking people's whereabouts is truly evil. Wait until the divorce lawyers start subpoena them for location data to help their clients.
I get it! This way they can hunt down the iPhone 5 that finds its way into the wild...
Do you really need to invoke a government conspiracy? This is Apple we're talking about.
Look again. There is no link to upload anything only a link to download the application.
What good reason could they have for pulling something like this? I know, I know, I'm not thinking creatively and/or cynically enough. Give the caffeine an hour or so.
This is why I'm quite happy with my N900. No carrier lockability, no Big Brother bullshit, and it's a better phone to boot. As the longtime owner of two Power Macs and a 4G iPod (you know, the kind that can run RockBox, that alternative firmware that you guys hate so much) I feel compelled to tell you, Apple, to get bent.
Help protect civil rights from abuse by the TSA - visit TSA News Blog.
http://www.tsanewsblog.com
I got no problem with that *turns off phone an hides*
Still surprises me how everybody accepts that kind of cryptototalitarian shit while saying while saying "OMG SHINY APPS!!!". Next thing you know, the economy is down for good, the chinese take over, then nobody cant say crap while they get painfully raped up their sociopolitical collectives arses. Fascism? There's an app for that!
-- Home is where you eat your heart out.
So you're telling me if someone physically steals my phone or computer, and is able to break the passwords, they can see private info about me? NFW!
I assure you all that if someone were to do that, I'd have a lot more to worry about than my PC or phone giving up my travel habits.
Slashdot "libertarians": Small government for me, big government for those I disagree with. -1, I disagree with you
how are they - scratch that, we - finding out about this just now? and do the iDevices still able to report back their location even when GPS is turned off? Curious.
Evil? Then what word do we we use for the Einsatzgruppen and serial killers?
Let's put away the hyperbole before the language no longer means anything, K?
Slashdot "libertarians": Small government for me, big government for those I disagree with. -1, I disagree with you
What's your point?
Why were the people who own these products not informed? (or why was the informing done within miles of legal jargon that is the user agreement?) I have a BIG problem with this as I believe that us Canadians still have some privacy laws left.
I, for one, have nothing to hide and find this data highly interesting and potentially useful.
You got it all wrong. The idea was to offer free iXXX to Osama & friends and then use the new iCatchYou app to finish them off. Now the cat's out of the bag and they have to go back to the drawing board.
The phone logs the data for some reason.
This is then backed up when the phone is backed up.
It is never sent to Apple.
Really.
I mean, there are millions of things on the iPhone that checks your position. It gets embedded in photos. It gets uploaded to somewhere whenever you start the App you use to order pizza or check phone-directory.
Also, if Apple wanted to find you they would just send a "find my iPhone" ping to the phone.
This is a local list saved to the phone only (and then backed up).
It would be nice to know why it is there, but it does not really worry or surprise me.
Which has a handy link to get the source and see what it does to be sure that its not doing anything fishy.
Why did they make an app to just view this information? Why didn't they make one that deleted the information or replaced it with 0's? Wouldn't that have made it more secure?
This sentence no verb.
It's not like someone is going to break into your house to steal your iphone location logs. Besides, if my phone or ipad gets ripped-off, It may actually help to reveal where the thief's travels took him. Possibly implicating other theives. I think it's good that Apple is thinking ahead this way. Everyone can be an active participant in crime fighting.
Maybe this will even be enough of a deterrent that the 'other' handset manufacturers will adopt the same strategy for their devices. It could mean the end of technogadget theivery altogether. Also, this is a perfect example of an instance where Apple has pioneered another idea which will change the world to make it better, but they will never get the credit for it. Steve invented the Linux kernel you know... He and Chuck Norris.. it's all over the internet, go read it for yourself.
boycott slashdot February 10th - 17th check out: altSlashdot.org
It's impossible to determine where this data has been sent. Any app has access to it. Access to this file itself is not logged. It could be sitting on the hard drives of any number of app producers.
From the FAQ:
negative points for me =/
Well, for a wifi-only ipad, it finds nothing. Has anyone confirmed this? It sounds dubious on the face of it -- why would a device with limited storage generate an infinitely-growing log file with no clear purpose? Is there some setting in Location Services that requests this log?
Which other IT big asked them to do that?
Google? Microsoft? Oracle? (I know Oracle is quite off but they are soo.. sooo...)
You fool! This is Slashdot. If we're not seeing the End Of Freedom lurking in every shadow then the terrorists have already won!!1!!2!!
Apple has a service that allows you to find a lost or stolen iPhone. Presumably, the phone logs its position so it can upload it when asked. Nothing scary here, though the fact this data is available means people will try and extract it. My guess is that the next iOS release will wipe this data every seven days or so.
A record of the places my phone has been is kept on my phone or on the back-up on my computer. Since I assume I know where I have been I don't see a problem with it. There is no evidence that this data is being sent to Apple or anyone else.
Is buying a Harley Davidson as your first motorcycle since you were 16 at age 49 a midlife crisis issue?
And this is different from Android and possibly Blackberries in what way...? Besides, this article is quite a bit late to the party (about a years worth): http://www.intomobile.com/2010/07/19/apple-responds-to-government-inquiries-about-iphone-location-tracking/
They are either at the Apple Store, North Face or Star Bucks. Done.
Though it is a very fine distinction, Apple isn't receiving any of this information, it's simply being stored.
From the Article
As bad as some may play it, without Apple receiving this information it's simply information that is stored, not "Big Brother"/Apple monitoring your every move.
DEMETRIUS: Villain, what hast thou done?
AARON: Villain, I have done thy mother.
Shakespeare invents 'your mom'
I've checked the data on my iPhone and it's crap. Zero hits on my apartment, zero hits on my office. Hundreds of hits on places I've never visited. During a trip to the UK, I seem to have visited locations arranged on a one-kilometre grid covering most of Yorkshire and Lincolnshire -- which is odd, because I just went to my sister's house. Good luck using that for anything worhwhile.
I ran the app against my phone. It has locations that I would have only gone to on a recent driving trip. But it doesn't include the whole trip, and it includes locations that I have never been too.
So yeah, it is tracking locations, but is not very accurate. I'm not even sure it is doing it via GPS. It might be doing it via the towers, and the locations are where the base stations are for the towers. Maybe.
Apple fanbois couldn't stop bashing Google's wifi tracking, meanwhile saying Apple's ethics are superior. I for one can't wait until lawyers get a hold of this. Karmic retribution.
That brings me to an interesting point, / . is just "the ramblings of socially-inept, technology-literate news-mongers".
Okay I'm all for explaining why this is bad, but why the fuck do we insist as a group using the example of a private eye tracking down a cheating spouse for the purpose of divorce as a reason to take privacy concerns seriously? The average citizen is going to be like "Oh well I don't have to worry about that, I have nothing to hide from my spouse!" even if they are lying to themselves. The political and social leadership will be like "well then don't cheat and you'll be fine!"
WORST... EXAMPLE...EVAR...
Here's some better examples for this specific situation:
1) A burglar determining a pattern when you aren't home so they can rob your house.
2) A stalker determining the best place to attack you
3) Someone who doesn't like you smearing your character publicly simply because your phone walked by a strip club (he must have gone in, he's a sinner!!!), even though 2 blocks away is the hospice you volunteer once a week at.
Let's try to come up with better examples that make people actually care please?
"All great wisdom is contained in .signature files"
Before you all go jumping to conclusions did anyone ever think that this information exists as part of the Locate My iPhone service that Apple provides? I just checked and I don't have the file on my iPad but I do for my iPhone. I don't have the locate service enabled for my iPad. I do for my iPhone.
you kidding? Apple labels this a feature! Do you not remember that mobile me thing which tracks location? Tracking location on a cellphone is pretty trivial anyway, since you're continually connecting to cell towers it's not hard to place where you are/where you are going, generally. I believe there was a study of this from some politician in germany recently.
I thought your precious walled garden was keeping you safe, faggots.
Turns out that your every move is being tracked by the guy who fucks you in the ass...
Well, there's just *one little flaw in your statement. The data is never sent to Apple.
I guess Steve Jobs is just so insanely great that he is able to collect the data by astral projection or something.
*Two flaws actually - many owners and users of Apple products are heterosexual.
Seems interesting when you consider this along with the police story. They could yank this file and start tracing your every move.
Currently, law enforcement can track cell phones historically via cell site information. This can be useful in breaking an alibi defense, or loosely grouping a band of people together over time. This only problem with cell site information is the fact that cell site info is only recorded as the cell phone is being used. This new info has the potential to tell law enforcement where the phone, and likely the owner, was at times when the cell phone was not even in use.
As with all things cell phones, most states require a search warrant to use anything off of the phone.
As TFA notes, cell providers already store similar data
Cell-phone providers collect similar data almost inevitably as part of their operations, but it’s kept behind their firewall. It normally requires a court order to gain access to it...
Not that I condone cell providers' actions here, but Apple isn't doing anything that much worse, in terms of providing the govt with information on you.
Which has a handy link to get the source and see what it does to be sure that its not doing anything fishy.
If one has a Mac. I can't read the interesting parts of the downloaded package, so I tried to back-track to the referenced Python script. It looks like similar data is stored on Windows in \Documents and Settings\User\Application Data\Apple Computer\MobileSync\Backup, but the filenames have different suffixes and aren't in the same format.
http://technicalmusings.blogspot.com/2011/04/ios-consolidateddb-workaround-for.html
iPad WiFi only models don't have a GPS chip. The iPad 3G models do.
The file contains only unique wifi spots seen over time period, each once. In my case, that is 12k different wifi basestations, but any repeated travel is unlikely to see those points again..
mini ~/temp/x/library/caches/locationd>sqlite3 consolidated.db 'select * from WifiLocation' | wc
11907 23814 257383
mini ~/temp/x/library/caches/locationd>sqlite3 consolidated.db 'select * from WifiLocation' | cut -d '|' -f 1 | sort | uniq -c | egrep -v ' 1 '
mini ~/temp/x/library/caches/locationd>
Nothing to see here, move on..
-- pending
Has anyone figured out where the file is on the phone? They show where it's stored in your backups but I would like to find it on my jailbroken phone.
Well it certainly sounds bad if you just read the headline, but let's think though this. It seems that the phone tracks the location of the cell towers it's been connected to in a file on the device. The data is not sent anywhere, it's just living in a file. That file then gets copied to your machine every time you do a sync (since a full backup of the phone is also made at the same time).
So the question comes down to: what's the purpose of the file? Does it exist for a legitimate reason? Or something more sinister? Since the file is never sent anywhere, it's hard to see how Apple directly benefit here. Perhaps it's actually just a location services cache file or something (designed to be consumed by any application that then relies on the location service), that doesn't ever get cleared for one reason or another.
Actually come to think of it, it's the CARRIERS that benefit from this data, not Apple. It's not storing your GPS location ... just the location of the cell towers you've hit. So it's giving, essentially, a map of network load caused by your phone. Aggregated with other phones, this would be pretty interesting information to a carrier, you'd think. Perhaps carriers wanted Apple to do this kind of logging? But again, since the data isn't sent to anyone, it's still hard to see how this could be useful for anything other than a legitimate reason related to the phone itself (e.g. caching your previous locations so that it can more quickly use AGPS to pinpoint you again).
Not only that, it's logging the locations of the CELL TOWERS you are hitting, not your exact GPS-derived location. Given that this would still allow someone to find the general areas you travel or live in, but hardly useful for pinpointing you.
Exactly. They didn't add it on request of any government: they added it first and then shopped it around for favors. I wonder if Jobs presented it as "one more thing..." when asking for patent favors from the US or extra security around the factories from the Chinese.
More Twoson than Cupertino
With their phone data slurper tools (Michigan State Police Could Search Cell Phones During Traffic Stops), they could get your location database in a couple of minutes.
Apple have created and maintained their own Wi-Fi location database since iPhone OS 3.2(?) which allows iOS devices to determine their location without access to traditional GPS its kinda obvious that they need to get this data from somewhere! why are people so shocked by this? Its clearly stated in the licence agreement:
Taken from the iPHONE SOFTWARE LICENSE AGREEMENT (available at http://images.apple.com/legal/sla/docs/iphone4.pdf):
"(b) Location Data. Apple and its partners and licensees may provide certain services through your iPhone that rely upon location information. To provide and improve these services, where available, Apple and its partners and licensees may transmit, collect, maintain, process and use your location data, including the real-time geographic location of your iPhone, and location search queries. The location data and queries collected by Apple are collected in a form that does not personally identify you and may be used by Apple and its partners and licensees to provide and improve location-based products and services. By using any location-based services on your iPhone, you agree and consent to Apple's and its partners' and licensees' transmission, collection, maintenance, processing and use of your location data and queries to provide and improve such products and services. You may withdraw this consent at any time by going to the Location Services setting on your iPhone and either turning off the global Location Services setting or turning off the individual location settings of each location-aware application on your iPhone. Not using these location features will not impact the non location-based functionality of your iPhone. When using third party applications or services on the iPhone that use or provide location data, you are subject to and should review such third party's terms and privacy policy on use of location data by such third party applications or services."
This logging should be made clear in the end user license agreement. If this data is for apple-only services (like lost phone tracking), it should be protected from malicious apps and ad generating apps by policy and through encryption.
Otherwise, slashdot.org may have to make a Steve Jobs-as-Borg icon for future Apple related posts.
Only the dead have seen the end of War. - Plato
Devices that haven't had the Find my iPhone service enabled do not appear to have the file. I'd say it's a pretty reasonable proposition that the log is therefore used by the Find my iPhone service to report the device's 'last known' position and time in cases where the phone's ~current~ location can't be found (e.g. location services turned off, outside cellular coverage area with no view of the sky/no GPS, etc.)
Still a bit dodgy that there appears to be no 'expiry' time for the data though. They should change it so it deletes locations older than 7 days or something. But still, I don't think it's anything to get too worried about given that the log file is never actually sent to Apple or a third party.
I just dumped the file from my iPhone and imported it into a Google map. I had to check out the source code to the tool at TFA to figure out that the dates are based on an epoch of 2001-01-01 and not the usual Unix epoch date.
I'm looking forward to using this feature to help me track my location. Since the phone is already doing this "for free" it's not going to "cost" me any more battery power to use this log. It's not as accurate as GPS, but it's accurate enough for my needs.
Once I've got a cron job setup to offload the file from my (jailbroken) iPhone 3GS to a box on my network I'll work out how to wipe the file on the device after each upload (so that the device isn't carrying around weeks or months of my position data).
The Attitude Adjuster, I hate me, you can too.
If I had to guess (I do) Apple is recording information about cellphone towers and WIFI networks the device sees. This information is then at some point anonymized and submitted to Apple to populate/update their location database that all Mac OS X 10.6 and iOS users utilize to know their approximate location in absence of GPS.
If it is easy to access such as is suggested I agree Apple should evaluate a better way...
It is also possible that it isn't recording your location but storing tower/wifi location information for the general area you are currently in (or have visited recently) to allow quick location estimates in absence of GPS when you don't have active network access.
...but has the side effect of allowing anyone with access to the system to know where you phone is.
Well that right there is the kicker. When the phone itself logs location information in an insecure way, it opens up the information to anyone who has access to your phone and/or backups to a desktop. This can also include authors of malicious apps.
I am just looking into the file.
The database contains also a huge list of access points.
basically it seems that for each and every WiFi network the iPhone "sees" (not only if you join it, and even if the network is hidden)...the toy stores the Mac Address of the access point, timestamp of detection, coordinates (including height and accuracy), speed, ...
See table WiFiLocation
CREATE TABLE WifiLocation (MAC TEXT, Timestamp FLOAT, Latitude FLOAT, Longitude FLOAT, HorizontalAccuracy FLOAT, Altitude FLOAT, VerticalAccuracy FLOAT, Speed FLOAT, Course FLOAT, Confidence INTEGER, PRIMARY KEY (MAC));
Mine contains >50000 entries, basically I have the entire WiFi Map of Milano.... nice but, isn't this what Google was fined for doing ???
Interestingly, each and every iPhone user is doing the same "crime" committed by Google,, but unintentionally (and no, this does not seem to collect packets).
Andrea Cocito
There's only one way to see if the data is sent somewhere: it's to monitor the iPhone's input and output over an extended period. To my knowledge, no one has done that. In other words, we simply do not know whether this data is sent anywhere - and there are absolutely zero protections against it being sent. However, the way the data is stored, and the way the data is connected per user instead of per phone (being migrated across if you switch phones), makes it seems like presuming that Apple is being totally clean with this is very very naive.
If every app you download does it, the phone might as well too!
True, but even if it was being sent to Apple, I don't think it's particularly useful to them. Remember - it's logging the location of the cell towers you hit, not YOUR actual location. Given that there's only one cell tower every couple of kilometres in most areas, this is not particularly 'high resolution' data.
I've used the tool linked in TFA to examine the data on my own iPhone and you couldn't really figure precisely out where I lived or worked from the data. Only the 'general area' (e.g. 'oh the northwestern suburbs of city X'). Your phone company logs this data too as a natural consequence of providing you with service, and frankly I don't trust my phone company any more or less than Apple.
Agreed that Apple should probably address this issue (explain what the file exists for, and perhaps patch it so that you can turn it off/expire the data after X days etc.) It's mildly concerning but not enough to worry me too much. If it were logging exact GPS-derived location on the other hand, rather than cell towers, that would be bad.
(PS. the data is only connected 'per user' insomuch as you can restore an iPhone backup taken from one phone, onto another phone, if you so desire. It's not specifically being linked to you or your Apple account ... it's just that you are restoring an image taken of one phone onto your next phone, which happens to include this file. The 'new phone' becomes the 'old phone'. You may actually be a completely different user ... though that's unlikely in practice, since who's gonna use someone else's backup to restore their phone?)
Did nobody ever wonder exactly how "Find my iPhone/iPad" worked?
1) Find hidden file.
2) Generate series of bogus GPS coordinates. This list will contain daily visits to 'your' offfice at the Department of Justice.
3) Replace hidden file with your data.
4) Wait for Apple to upload the bogus report, read it and apologize for their lack of judgement.
5) ?????
6) Profit!
Have gnu, will travel.
It could be an innocent mistake.
There's no indication that any part of iOS or any app access this data directly. Yes, it may be part of Location Services or... .. it might be a vestigial database that was accidentally left in place from earlier revs of iOS when an engineer was doing some testing on the GPS capabilities and forgot to remove it or disable it. Once left in, once it made it into production, it presumably would have been maintained like any other system level database, backed up and carried across to other devices like all the rest.
Well, you aren't thinking with datamining. The cellular data is only the tip of the iceberg. Combine it with the wifi sniffing, and you can probably get things to a far greater level of accuracy. It'll take a bit of ingenuity to unify the data, but there's more than enough to establish e.g. if someone went out of their normal route to meet with someone at a certain time, or stuff like that.
I have 15-20 iPads that sync to my computer, nothing was found when I tried the linked application.
Actually come to think of it, it's the CARRIERS that benefit from this data, not Apple. It's not storing your GPS location ... just the location of the cell towers you've hit. So it's giving, essentially, a map of network load caused by your phone. Aggregated with other phones, this would be pretty interesting information to a carrier, you'd think. Perhaps carriers wanted Apple to do this kind of logging? But again, since the data isn't sent to anyone, it's still hard to see how this could be useful for anything other than a legitimate reason related to the phone itself (e.g. caching your previous locations so that it can more quickly use AGPS to pinpoint you again).
Nice logic. Except that the carriers already know with great precision where you've been anyway. They run the towers you connect to, remember?
I don't care if Apple knows where I've been, or if other apps can read this log. Is there some non-paranoid reason I should? Out of millions of customers, is Apple really going to care whatsoever if I went to the bank and then rented some porn? If some unscrupulous government agency wants your current location, triangulation should work on any cell phone anyway, as would logging GPS data.
If I really were scared of the government knowing where I've been, I wouldn't trust Apple's good-naturedness to protect me anyway--that would be moronic. TFA suggests a private detective could catch a cheating spouse with this location data, but that's pretty far over on the paranoid spectrum. So again, why should I care, given that I'm neither cheating nor afraid of the government knowing where I've been?
I am to lazy to find the link.
But Apple does that and shares the data with AT&T to help them improve their coverage service. Apparently the data is about the phone not the owner. I guess with some heavy data warehousing you can get a match but for the most part they care about in a particular area there are x number of devices that would like to have coverage.
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
I'm shocked, I tell you, SHOCKED! Long live my Mot W385!
Sorry, but gray text on gray background is making my eyes bleed.
Next, they'll be sharing it with their 'partners', and using it for direct advertising. You've already agreed to it in the terms.
Obviously you are not an iPhone user, being intentionally disingenuous, or you have not been reading how pissed off the "partners" are about Apple locking up privacy. Any app or content purchase explicitly asks if the purchaser wants to share info, and he must affirmatively approve of it each time. The idea that iPhone users have already agreed to sharing info with partners in advance is total bullshit, and any iPhone user could tell you otherwise.
Slashdot "libertarians": Small government for me, big government for those I disagree with. -1, I disagree with you
Your position can be calculated from which cell-towers are nearby. This can only be done by the phone, the carrier already know which tower you are connected to, but doesn't know which other towers you _could_ connect to, only the phone knows that, and in this case it calculates your position from it and stores it. For whatever reason..
As much as I hate to admit that the crazies are right, these things really are Stalin's wet dream: mobile devices are a wonderland of surveillance hardware. It's past time to push back on this, hard. That means two things:
1) free and open-source operating systems and
2) a public policy framework that makes this kind of data logging so terrifying and risky for companies that they really would prefer you to have control over your phone.
Here's the best shot I've seen at the software side of this:
http://arstechnica.com/open-source/news/2011/04/for-paranoid-androids-guardian-project-supplies-smartphone-security.ars
Great! Can I opt out of that if I don't want any application tracking me? Oh wait, I can't?
It doesn't matter if you have a smartphone, dumbphone, iphone, or not iphone...Every active cell phone is tracked to a cell tower at any moment, and it's recorded in the carrier's database and retained for several years. That info is easily subpoenaed by government officials (law enforcement, DHS, FBI, etc) for any kind of investigation.
The same goes for any text message you send or receive, it's all retained for years. So on the grand scale of the actual phone keeping such data.. that's not a big deal as long as it's not exposed to any 3rd party apps.
It's using aGPS. iPad 3G will do this just fine.
"Never underestimate the bandwidth of a station wagon full of tapes hurtling down the highway" -Andrew Tanenbaum
Every active cell phone is tracked to a cell tower location at every moment, and it's recorded in the carrier's database and retained for several years. That info is easily subpoenaed by government officials (law enforcement, DHS, FBI, etc) for any investigation as they see fit.
It doesn't matter of it's a smartphone or dumbphone... it's every cell phone. The fact that the phone may or may not retain such info is irrelevant, since the carriers already have that info anyways.
-1 Just Flat Wrong
http://en.wikipedia.org/wiki/Mobile_phone_tracking
If fate makes you a motorcycle, you become a motorcycle.
I see from the photo that they have the thing hooked to a phone by a wire. And the article says something about the officers asking for people to give them their phones. I suppose if you say no to the request then they would not be able to slurp data off of your phone without a court order.
I don't see where they can slurp data off of your phone behind a persons back.
Am I missing something?
In that case I'm going to take a wild stab in the dark here and figure if they have access to my computer or iPhone they already know where I am.
And before anyone gets their panties in a twist that was slightly tongue-in-cheek. I don't like the idea of my phone recording my GPS coordinates at all.
So you're telling me if someone physically steals my phone or computer, and is able to break the passwords, they can see private info about me? NFW!
I assure you all that if someone were to do that, I'd have a lot more to worry about than my PC or phone giving up my travel habits.
Or your wife knows where you went. Or the person you sell the phone to on email finds out where you live, where you work, where you vacation, and when the best time to break into your house is. Or police. Nothing to hide? Sure, if you are a US citizen, no so lucky if you use an iPhone in China or Iran, and they use it to find all the protester gathering locations.
I8-D
... on stupidity. I was thinking more Animal Farm, not 1984. The pigs in Animal Farm show much the same arrogance as the leaders of Apple.
Apples 1984 commercial was the first thing I thought of as well. The irony is almost too much to bear.
I8-D
The phone could use the data itself to make a map of towers you've used in the past, which gave the best connection and depending on the direction you are traveling when it should switch towers and what would be the best to switch to. Optimizing connection and battery by keeping a historical record of connections.
If all else fails, immortality can always be assured by spectacular error.
Stallman has spoken many times about how cell phones could be used as a tracking device. Once again, he's proven more insightful than the people that point fingers at him and make lame jokes.
This hasn't been covered yet and I doubt that this information is being logged directly on the device.
I noticed that after upgrading iPhone4 to iOS 4.3.1, that the iPod app would attempt to connect to multiple iTunes servers while I was listening to a MP3 that I purchased on Amazon.com. (This background connection didn't occur when was using iOS 4.1.) I'm not sure why a connection needs to be made to the iTunes server to play a song locally on the device that wasn't purchased from their proprietary store. I'm not sure what data is being sent as I've been too busy to research it. I searched Google and haven't found any information regarding this. I used "Firewall IP" (a jailbreak app) to block the unauthorized reporting of this playback information. (Apple may have authorized this connection, but I don't.)
Regardless of your phone, the mobile phone carriers are storing your location history by cell towers...
http://yro.slashdot.org/story/11/03/26/179257/German-Politician-Demonstrates-Extent-of-Cellphone-Location-Tracking
http://www.nytimes.com/2011/03/26/business/media/26privacy.html
Wireless providers have been storing triangulated data centrally for years. It was just never a) disclosed and b) stored on the handset. I can see why they do it on the handset.. 1) it's cheaper (storage/data wise) and 2) less liability (centralized hack/break ins/leaks, etc). This just validates many of Richard Stallman's base concerns about technology that you don't control. And Arthur Weasley's open source truism (from "Harry Potter"), "Never trust anything that can think for itself if you can't see where it keeps its brain." ;)
Tweeks
Easy. The data is stored on a phone only I use, and is synced to a Mac only I use. If the government really wanted to figure out where I was going, they'd subpoena my credit card records and look at the previous destinations on my car GPS. I don't hear anyone complaining how Garmin stores that recent data too.
I was under the impression there has been numerous monitoring of all the iPhones input/output to try to figure out why it was using up users' data plans even when not in use by them.
"To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the real-time geographic location of your Apple computer or device. This location data is collected anonymously in a form that does not personally identify you and is used by Apple and our partners and licensees to provide and improve location-based products and services. For example, we may share geographic location with application providers when you opt in to their location services."
As I said in GP post, you have to affirmatively opt in for partners to get info. They do not get it automatically via Apple's TOS.
Slashdot "libertarians": Small government for me, big government for those I disagree with. -1, I disagree with you
The carriers already have a log of this anyway, no matter which phone you use.
iphone users seem pretty happy to share this information anyway. they post geocoded pictures to twitter and facebook. they check in on foursquare and countless other networks. I think one of the main desires of the majority of iphone's demographic is to constantly share this information.
It seems more like a sound architectural decision than an evil ulterior motive. If you have an audience of geolocation-sharing hungry consumers, it seems reasonable that your product would keep a log of locations.
If you don't want anyone to be able to find out anything about you, i don't think it's wise to get any cell phone to begin with.
I don't think legality, or lack thereof, is a prerequisite for something being evil.
disapprove off
This is why it is a always a bad idea to be a spelling/grammar Nazi. You always end up being a hypocrite. The parent poster's comment was criticizing content of your post, which was worthy of criticism.
You don't even seem to understand the difference between illegal and evil. Here is a hint. They are not synonymous.
No, it doesn't. You are going to be hard pressed to find anyone on Slashdot that is going to honestly claim that someone complementing American Idol is "evil". A few people might joke about it, but no one is seriosly going to claim that it is evil.
On the other hand, huge international corporations secretly tracking their customers is quite literally Hollywod movie villain evil.
If there isn't now, I'd bet there will soon be a Bluetooth implementation of it.
"Think about how stupid the average person is. Now, realise that half of them are dumber than that." - George Carlin
Cell phones locations are tracked even when they're not at use; the carriers that are keeping that record. And they don't even need a warrant to get get those records.
This is exactly what I tried to explain, how is a wikipedia article about it proving me wrong?
One thing I might have been unclear on is that the carrier can also triangulate your position, but their accuracy is much smaller ~100m which is useless for knowning which road or house you are in. The phone can do the same in an urban setting and get an accuracy of within ~10m, in many early/cheap smart phones, this system is used instead of GPS. Not sure what the difference is but it might be that the phone can use data from all cell-towers, and the carrier only from their own.
That is the thing I was referring to.
If fate makes you a motorcycle, you become a motorcycle.
Let's see herea device I control that already knows my location because it's a sensor platform logs it. And it transfers it only to a computer I control. If I don't encrypt that file, and my computer is given to others, they can read it. Big deal. Is there nothing else on your computer or phone that's sensitive? Wouldn't the most basic of security practices be to keep your computer under your own control and not hand it out to others?
If there was evidence a location log was actually going to someone, then there would be something to talk about. Apple haters always seem to drum up a problem or conspiracy out of thin air. They'll speculate how Apple _could_ transmit the file somewhere - missing the point that Apple could transmit all your email to their servers, or your contact info, or really anything on any device. Same goes for any device manufacturer. At some point, it's just moronic - either you trust your device, or you don't. If you don't, you don't buy it.
I'd be more wary of trusting a device where the customer is an advertiser rather than the end user, but to each his own.
You really think that carriers are dependent on each customer logging their own position in able to know which towers they're attaching to?
--Jeremy
Jesus was a liberal
Thanks for the info. Minor correction, it's /var/root/Library/Caches/locationd/consolidated.db.
Why would Apple be immune from government conspiracy theories?
Oh right, this is Slashdot. You only take off your tin foil hats when you fanboi for Apple.
Support a great indie game: http://www.abaddon360.com
So the question comes down to: what's the purpose of the file? Does it exist for a legitimate reason? Or something more sinister? Since the file is never sent anywhere, it's hard to see how Apple directly benefit here.
http://markey.house.gov/docs/applemarkeybarton7-12-10.pdf
Page 6. Nothing new, really. And nothing evil either.
http://markey.house.gov/docs/applemarkeybarton7-12-10.pdf (around page 6)
This file does *not* track you. It tracks WiFi access points (and maybe cellphone towers). The data is used both by the OS for location services and for random users at random intervals by Apple to optimize their WiFi landmark databases. In this case iTunes asks you to transfer the file back to Apple (which you can accept or deny).
BTW, I'm totally disgusted by the witchhunt reflex here. Is this "News for Nerds" or "Lynchmob United"?
I suppose if you say no to the request then they would not be able to slurp data off of your phone without a court order.
It appears the ACLU asked the department to confirm that was the rule, they wont. I have been pulled over for 10 MPH over the speed-limit, and had my car searched, items taken, and my pockets cleaned out without any permission (other than I opened my door to get out when the officer asked me to.) When asked, the officers response was more or less, "so sue me." but I can't they were protected by a superior ruling from a judge that no warrant was required, because they first saw a "weapon" (softball bat well out of my reach). The extent of reaction I had available, was I could get the items excluded with the help of a lawyer from court (but the charges were dropped immediately after I requested a jury trial, no items were ever returned to me.)
Basically you will know you lost control of your cell phone, you wont see that he opened up the plastic bag your items went into, and slurped all from your phone. You will have no proof to do any legal recourse... (FYI my case was one where I had the same first and last name of a convicted felon this officer had previously had interactions with, even though the other was 2' shorter, and 100pounds lighter than me.)
The application gives me an error about being unable to find the file, but if I identify and locate it manually and open it up with sqlite manager I see that I have the database, and the table, but there are 0 rows in it.
Maybe this feature is disabled on the iPhone 4?
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
http://blog.csvance.com/?p=39 - heck, on their webpage they even have a link that Googles for "consolidated.db iphone", that finds dozens of pages dating back to September last year. Look Ma, I just discovered the Moon!
Fandroids hate facts.
GPS's take ages to start without a bit of a hint from some other database, so this is probably their solution to speeding up location based services.
Having said that... WTF? All it would need is the last recorded position. I bet some genius simply couldn't resist going all Big Brother.
Deleted
I just got an 'attaboy' from this super-hot girl I've been into for a long time and got with my boss. I can't say I'm very happy about either.
On Slashdot, "good" equals that which I agree with, and "evil" is anything I disagree with. Lametard virgins.
On Slashdot? I thought those were the definitions in General English.
Those who do study history are doomed to stand helplessly by while everyone else repeats it.
It's mainly because the government would have no use for this.
If you have ANY cell phone, the cellular company itself logs where you are using this method. All of them. For all phones. All of the time.
The government goes to the cell companies to get that data. They have no need to get it from your home computer or the phone itself, especially so when they are guaranteed the end user couldn't possibly muck with the data stored at the phone company server, as well as being guaranteed you will not notice them collecting the data. You would likely notice your cell phone or home computer being mucked with, and you knowing they are looking at that data is not in their best interest.
This is the cell tower triangulation data used for the "A" part of "AGPS". Assisted GPS. Which can be accurate "enough" in some areas.
So did you sue him?
Part of the problem is that nobody every does sue.
Dare nMc:
Did you make yourself a pain in the butt to get your stuff back?
That needs to happen too.
4 Arabic friends of mine were in New Orleans and pulled over late at night. The police started to give them some run around and insisted they all get out of the car and open their trunk etc. This went on for a bit until my friend stated that he went to Tulane Law and demanded to get all of their badge numbers. At which point the officers said, thank you for your trouble and have a good night.
If there isn't really a good reason behind the officers actions then it is up to the citizen to stand up for his/her rights and pursue them. Not doing so gets you nowhere and leads to the kind of abuses you suffered.
On a Windows system, try the following:
1. Find your iphone data files in the following location on a Windows system: C:\Users\[USERNAME]\AppData\Roaming\Apple Computer\MobileSync\Backup\[FOLDER]. Where [USERNAME] is your windows logon username and [FOLDER] could be any iphone/ipad device you've ever synced with that version of Windows. For example, I have three different folders for three different devices.
2. Locate the file named "4096c9ec676f2847dc283405900e284a7c815836" or at least it should begin with "4096...". It should also be the biggest file in the folder.
3. Download "SQLite Manager" for firefox: https://addons.mozilla.org/en-US/firefox/addon/sqlite-manager/ and open the "4096..." file.
4. In "SQLite Manager", expand "Tables" and click on a table, and on the right side, select the "browse and search" tab to see if you have any data (you should!). For me, the big ones were:
a. "CellLocation"
b. "CellLocationHarvest"
c. "LocationHarvest"
d. "WifiLocation"
e. "WifiLocationHarvest"
5. On the right side of "SQLite Manager", click on the Export Wizard tab.
6. Select the table you want under the "Name of the table" field, select the check box called "First row contains column names", and click OK. At this point, you can now open that
7. Go to: http://www.gpsvisualizer.com/
8. Under "Upload a GPS file:", select the
9. If the website complains your file is too big, open the
The IOS4 user agreement is over 15,000 words. There are books shorter than that for sale on Amazon. Your challenge is to find the 86 words that allow Apple to do this.
In truth, such unreadable license agreements SHOULD BE BANNED OUTRIGHT! If you can't say it in, oh say, 2,000 words then you can't inflict it on your customers - end of discussion.
"It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
I found the file on my phone, as another commenter posted it is in /var/root/Library/Caches/locationd/consolidated.db. I also found one in /System/Library/Frameworks/CoreLocation.framework/Support/consolidated.db that is five times as big. It also seems to contain location data from cell as well as WiFi APs. I wonder what that file is for?
Hmm. Even though my approximate whereabouts are available to law enforcement should they demand it from my carrier, I'd still rather not have the phone recording my every move. I wonder if I could rename the file and create a symlink to /dev/null in its place? I'd do it right now and find out what breaks, and rename the file back again if I kill something but I don't want to brick the phone and have to worry about restoring etc... rather keep my jailbreak.
Dude, there are AT commands to list *ALL* cell towers in range, the phone always knows its position.
The db levels are always known for each tower.
The info about its toweres ID is known.
The info about how many 'packets' away the tower is known every second.
Overall accuracy is not like GPS but isnt bad, and get be good when used while you are moving.
No power is used.
Even a 1997 GSM phone has at commands to get this data, but only now we have the power/storage to Store and compute Lat/Long.
Go google 'at commands for cell tower info'
I even used this my self years ago to record cell tower codes to a rolling CSV file every 10 seconds.
Liberty freedom are no1, not dicks in suits.
I sync my phone on a PC. Is there a PC version of the iPhone Tracker tool?
Here's the data from politician Malte Spitz: http://www.zeit.de/datenschutz/malte-spitz-data-retention
I feel so sig.
Dude, the iPod uses wifi geo location services.
Look at the sql table theres a WifiLocation table too. Bigger than the CellLocation in my iphone.
Liberty freedom are no1, not dicks in suits.
Informative, thank you. This device, and Apple software probably constitute "unauthorized access to a computer", a felony in the US and most countries. Any evidence directly or subsequently discovered in the US would be tainted "fruit of the poisoned vine".
I'm very surprised corporate lawyers at Apple & elsewhere would OK such an install without strong assurances from some govt agency like FCC, FBI, etc. Not that such assurances have any legal weight or would hold up in court. Maybe there some carefully obscured text in the Federal Register authorizing such.
Of course, Apple would try the defense "its part of the OS which was authorized", and then would be challenged what function necessary function it performed. If they couldn't prove it was necessary to the OS, then it would be a separate item needing user autherization. Doubtfully forthcoming except in the case of some [lacking] parents.
Well I tried this beasty just now and I'm finding several problems with the data. A) Bogus data points, B) Incorrect time stamps and C) a whole lot of missing data. Fundamentally, this is troubling but IMHO, given the wildly inaccurate data, it would get shot to hell in court.
Yes, a bug -- See article I guess the bug knows how to write files.
Nah. I just spend my days realizing that as always xkcd is ahead of me once again.
http://m.xkcd.com/305/
http://xkcd.com/596/
My first Journal Entry ever, in 8 years! http://slashdot.org/journal/365947/aphelion-scifi-fantasy-horror-poetry-webzine
Jepp
This file is used for what, caching maybe... my strong belive is that the phone reads this database to determine what iAds it supposed to show you. This is why it's not erased IMHO.
Appel just sends out some tags, we got an add for NewYork Area, or if you been in NewYork during last 6 months. If the phone finds this true, it downloads the specific iAd and shows it in your iAd enabled Applications.
This is my firm belief why the file exists and what it's main usage is meant for and why it's not erased. Sure some other minor usages may also be there.
Please be correct when you flame.
It's logging not tracking and there is a significant difference.
My tool is available for Windows to see hidden data your phone collects ! It's there : http://www.raphaelabitbol.info/2011/04/22/iphone-tracker-sous-windows/ Thx all !