Canadian Police Want New Internet Surveillance Tools

danomac writes "Police agencies in Canada want to have better tools to do online surveillance. Bill C-30 was to include new legislation (specifically Section 34) that would give police access to information without a warrant. This can contain your name, your IP address, and your mobile phone number. This, of course, creates all sorts of issues with privacy online. The police themselves say they have concerns with Section 34. Apparently, the way it is worded, it is not just police that can request the information, but any government agent. Would you trust the government with this kind of power?"

Fight this now!

[gweihir]

As somebody who grew up in Germany, I have seen ample historic precedent where this kind of snooping leads. Either fight it now or explain to your children in a decade or two why you did not prevent a surveillance state, where there is no free speech and no tolerated dissent.

Re:Fight this now!

[gweihir]

Slashdot supports pseudonymity. That does not break anonymity. Your argument is wrong.

ACs are just people that it is rarely worthwhile to listen to as they do not participate in the reputation system.

Re:Fight this now!

[Jessified]

Indeed. The headline should have read: "Police Everywhere Want New Internet Surveillance Tools"

Works two ways.

[PsychoSlashDot]

Canadian citizens want to police. While we're at it, we also want new politicians.

These ass-clowns just don't get it that while laws that enable them to use new technologies are reasonable, laws that bypass established due process aren't. I don't care that computers allow much more efficient investi-trolling. You still get a warrant, or you don't get the data, in my world. Anything else - C-30 or not - is illegal to me and puts the government and police in an adversarial position relative to their constituents.

Re:Works two ways.

[PsychoSlashDot]

New, damnit. New. Not "to". We want new police.

Re:Works two ways.

[slick7]

puts the government and police in an adversarial position relative to their constituents.

It's for national security and the children. Oh, and lest I forget, if you don't, then the terrorists win.

Re:Works two ways.

[dryeo]

It's the internet bullies this week, what with that girl committing suicide and such.

Signed Sealed Delivered - Gov Whitelisting Galore!

"It sound like some people I know who "Keep getting all these virus things no matter what I do!""

Remember the Sony BMG root kit?
Remember how no Antivirus detected it? Not even Anti root kit scanners?
Remember how only one tool initially detected it?

Now consider for a moment how many other government software/firmware moles/rootkits may be lingering within millions of people's proprietary systems (hardware/software-OS).

Wikileaks published a lot of information on companies willingly selling rootkits to governments and organizations. And do I really need to bring up HBGary?

So many fools using multiple proprietary scanners on their systems, the makers of which could all be in bed with big bro, the programs and/or updates could contain rootkits, and seriously, what the fsck is up with Microsoft and Flash both having so many remote exploits being patched all of the time?

The very products you trust, imo, could be the very e-poison from which you e-drink from.

To this day I laugh inside when twits tell me their system is "clean" because they scanned it with several proprietary tools.

Face it, even on Linux the quality of the root kit scanners are piss poor. You have to boot into a separate environment (like Remnux) to evaluate the malware, but most people won't do it, they'll wipe and reinstall and rely only on signatures which can be compromised. And when they find out they have an APT which continues to reinfect their computer(s)? Would they be intelligent enough to consider a firmware (PCI/BIOS) infection which survives hard drive wipes? Do they also have infected thumb drives laying around they plug into other computers around home and/or friends/family/work?

Chkrootkit has a function to list the strings of binaries, but it's up to you to determine whether or not the content of the strings are malicious. I've tried several root kit scanners on Linux and all of them are, imo, crippled pieces of trash. The crowd will yell back at you, "But most of these require root to exploit!" No, not at all, there are hundreds of ways to exploit a Linux box, many not requiring root, but a particular program/version. I won't even bite down on the subject of ways to subvert package managers. Heck, how many Linux repositories use SSL? SSH? Torrents with established "good" check sums for thousands of packages?

And I've not mentioned Flash and Adobe Reader for Linux and the past problems with those... and the NVidia driver for Linux, had in the past, one or two severe security issues whereby a remote exploit could take over the system! (Google it. The news of one exploit was in 2006.)

Our proprietary hardware and software are both at risk, and likely subverted world wide on millions of computers by governments and select organizations. The fact it takes years until a researcher trips over a particular piece of malware which none of the antivirus companies are detecting is inexcusable.

Were I head of a commercially developed antimalware company, I'd develop a website similar to Virus Total, but instead of the users uploading single files one by one, I'd give them a FOSS program which checked every part of their hardware, embedded and manually inserted, checksum the firmware (of all media drives, graphics cards, anything with firmware) and BIOS and tear apart the results, funneling them into separate result pages, each result for each component going to its own page for comparative results, rather than building a profile on one user's system. I would offer the users the option of publishing a one page result for their unique computer, but it would be opt-in only. Yes, checksum the firmware, including the router, and demand companies publish checksums and use GPG to sign their firmware, all of this information would go to the site as described. A massive database of important, but anonymously pulled and published information.

It's just going to get worse.

On the side, I've been saying to myself for years, IMO, "When Microsoft finally starts to show signs of

Think of the cost...

[Anne+Thwacks]

A story not many minutes old //yro.slashdot.org/story/12/10/28/0531250/cash-strapped-states-burdened-by-expensive-data-security-breaches tells us that the majority of US states cannot afford to keep data secure, and also cannot afford the cost of keeping it insecure.

The obvious conclusion is that keeping data is very expensive and you should be trying to find ways not to keep more, not finding reasons to hold more!

Do not want

This law comes up for debate about once every year or two and, to date, Canadians keep shouting it down. Hopefully people up here continue to do so. I'm fine with the RCMP having access to this information with a warrant, but warrantless access by anyone is a bad idea.

Re:Do not want

The last time around, our government accuses any critics of their online surveillance bill as supporting child pornography.

free society?

As the comments of the linked article suggest, there is no reason police can't get a warrant.

Of course that would entail some pillow talk...I mean probable cause arguments to a judge, I suppose. If even this tiny bit of protection is to be stripped away then all hope is truly lost for our free society.

We need a Wikileaks

What we need is Wikileaks to reveal whose really behind it and why. Like the Swedish prosecution of Pirate Bay, where torrent tracking is equated to copyright infringement is equated to a criminal act. Wikileaks revealed this was a demand from the US during secret discussions on laws that would be passed. Interesting the discussion was between the Swedish govt and the US govt and didn't include Swedish people:

http://torrentfreak.com/wikileaks-cable-shows-us-involvement-in-swedish-anti-piracy-efforts-101207/

Interestingly, I did a search to find that wikileak link, and found this one , which shocked me somewhat and explains why they want Assange prosecuted for something:

http://www.telegraph.co.uk/news/worldnews/wikileaks/8202745/WikiLeaks-Swedish-government-hid-anti-terror-operations-with-America-from-Parliament.html

"The secret cables, seen by The Daily Telegraph, disclose how Swedish officials wanted discussions about anti-terrorism operations kept from public scrutiny. ....Making the arrangement formal would result in the need for it to be disclosed to Parliament, they said. "

Wow, the Swedish government had closer links to the Bush government (this was 2008) than it does to the Swedish Parliament.

Re:We need a Wikileaks

[xenobyte]

I was very surprised when the story of the illegal raid on TPB and the international corruption that led to it broke. I regarded Sweden as one of the pinnacles of democracy in the world and now that image was shattered forever. I now have absolutely no doubt that the rape charges against Assange are pure fiction and that strange things would happen if the Swedish police got their hands on Assange; maybe he would 'disappear' or something similar - I would not trust the Swedish government one bit anymore.

Both TPB and Assange/Wikileaks are freedom fighters in my book - fighting for the freedom of information.

C-30 will not rise from the dead.

[arthurpaliden]

The police are still pissed off that the Government basically scrapped Bill C-30 after a national outcry about it. It seems that we Canadians just did not like the idea of warrantless wire taps and that the government wanted to gain access to all our internet data stored by our ISP, again with out a warrant, and without even requiring those getting the data to be law enforcement officials. .

Why?

They can get a warrant very easily. Why do they want the power to go around that? If you have followed the HUGE outcry against C-30 you would also know that there will be no paper trail behind these requests either and politicians would also be allowed to make such requests. The current Canadian federal government is corrupt and shady and Canadians have already made it abundantly clear that we do not want this bill to pass.

Re:Why?

[MightyMartian]

Warrants make fishing expeditions very difficult, and it is fishing expedition powers the cops want.

Would you trust the government...?

[fustakrakich]

That question is pure flamebait... Put it in a Slashdot poll

Simply not acceptable

[cheros]

There is a very important issue at stake here: transparency.

The ability to breach your privacy is a privilege granted to law enforcement for the purpose of fighting crime, but it is a privilege. The use of that privilege has to have just cause, which is what the whole warrant system is supposed to check.

The UK already has a problem with warrantless intercept based on a combination of RIPA 2000 and the magic word "terrorist", and from what I hear it is abused with gay abandon. Don't go there..

Unlimited access

[fox171171]

Probably won't be that big a deal... they'll likely be as disappointed with their "unlimited internet access" as I am with mine.

No.

No. Privacy is a right (even the UN thinks so) and I will say no as many times as I have to. I believe Bill C-30 is more than a threat to privacy though, it is a threat to Canada's democracy. Strong crypto must be allowed for a digital democracy.

http://www.michaelgeist.ca/content/view/6324/125/#comments