Cryptome Accidentally Leaks Its Own Visitor IP Addresses (dailydot.com)

← Back to Stories (view on slashdot.org)

Cryptome Accidentally Leaks Its Own Visitor IP Addresses (dailydot.com)

Posted by samzenpus on Sunday October 11, 2015 @10:13AM from the have-some-addresses dept.

An anonymous reader writes with this Daily Dot story about an accidental leak of user info from Cryptome. Cryptome, the Internet's oldest document-exposure site, inadvertently leaked months worth of its own IP logs and other server information, potentially exposing details about its privacy-conscious users. The data, which specifically came from the Cartome sub-directory on Cryptome.org, according to Cryptome co-creator John Young, made their way into the wild when the site logs were included on a pair of USB sticks sent out to a supporter.

7 of 40 comments (clear)

Min score:

Reason:

Sort:

Why do they even store IP addresses? by popo · 2015-10-11 10:33 · Score: 4, Insightful

Why does an anonymous leak site even store identifying information? Isn't the best defense to never even keep the data?

--
------ The best brain training is now totally free : )
Re:Surely, you can't be serious... by RDW · 2015-10-11 10:40 · Score: 2

I always assume I am always logged by some alphabet agency and added to some bad-list for checking out the very cool stuff at cryptome.org throughout the years...
Good luck TLA, I'm behind SEVEN PROXIES whenever I access Cryptome.
Re:Why log by dmbasso · 2015-10-11 11:05 · Score: 3, Insightful

Honest question from my ignorance: how can you be sure they don't keep logs? Did they make pinky promises?

--
`echo $[0x853204FA81]|tr 0-9 ionbsdeaml`@gmail.com
goes to show by Osgeld · 2015-10-11 11:09 · Score: 5, Insightful

the robustness of any security is based on the stupidest person
"dedicated to revealing secrets" privacy consciou? by raymorris · 2015-10-11 11:28 · Score: 2

I see that the site is dedicated to spreading information that some people would prefer to keep private. They publicize things that they think should not be private, "violate the privacy" of those whom they think should have their information revealed and publicized (rightly or wrongly).
So in some sense, it's an anti-privacy site, for better or worse. I don't immediately see any indication that the operator is "privacy conscious ". Do you? Or is it more like "I think he -should- be privacy conscious, so I assume that he is"?
That said, I imagine anyone publishing just about anything would be interested in knowing how many people use the site, which types of documents get the most interest, etc. That information comes from log analysis.
Was a time every post of yours had ur IP address by Trax3001BBS · 2015-10-11 15:49 · Score: 2

Up until just a few years ago (when Google claimed the Usenet) a posters IP address was always displayed in the headers. It was no big deal.
Re:Surely, you can't be serious... by Stoutlimb · 2015-10-11 19:23 · Score: 4, Interesting

It makes me wonder why a site so concerned about Internet privacy is keeping logs in the first place.