Escaping the internet panopticon

anonymity, bloggers, internet No Responses »
May 222010

Infrastructures

I’ll be returning to looking at the whole take back parliament thing later, but I’m still digging there so meantime I thought I’d pull together a few bits on something that I’m more familiar with. The Devils Kitchen has a link to an excellent article on the Panopticon Parliament which coming so close on the heals of Charlotte Gore’s article about the new front in the battle for liberty – prompted me to revisit an old bug bear of mine. Whilst we’re fighting tooth and nail (or at least letter and blog) to curtail the state intrusion into our lives, we’re at the same throwing our data at private companies (when they’re not just taking it), whilst demanding decentralisation of our authorities we opt to use an increasingly small number of providers for our internet activities. Now I do know there is a difference in that we can at least notionally choose who to use on-line with far more freedom than we can change our laws and government, and there’s nothing stopping someone becoming the next facebook or google. However these on-line behemoths don’t exactly go out of their way to let us know what they’re up to, and with so much data concentrated in so few hands it does make the governments job an awful lot easier if they chose they wanted to get their hands on that data.

So perhaps it’s time we looked at once more decentralising the internet (as it was designed to be) and avoid making the same mistakes on line as have been made in the real world, perhaps it’s time to take back some control and independence whilst it’s still fairly easy.

If you don’t think this is a significant issue, let’s just look at a few recent “mistakes” made by google and facebook. Not so long ago the google toolbar was caught transmitting data when disabled, more recently Google street view cars were found to have been collecting wifi network traffic when they only intended to collect enough data to uniquely identify everyone’s wifi router (they’ve currently stopped deleting that data as it may be evidence) and to round it up facebook have been giving user names to advertisers. So aside from that sort of mistake there is the designed centralisation of internet usage that companies like google push for as part of their business plans – the more they know about us the more adverts they can sell. So let’s consider just how much data google could amass if they felt like it or were asked to do so. There’s the obvious data source of the google search engine, but if you avoid that how many pages do you visit that are signed up to google analytics and so are passing back your data to google anyway? Of course if you use google mail, or blogger then you’ve consented to let google have your data and use it according to their dynamic privacy policy, and if you use google wave don’t count on anything you say ever being deleted. But even that is just the tip of the iceburg if you choose to use the google DNS servers then google can track everything you even thing about looking at, and I would ponder how long till those servers are used by default in some mobile phones and home ADSL boxes. If you’re logged into any google service then in theory all this data can be linked.

But tying this back to my recent subject of interest you don’t even need to be google to track people to this extent, if you were running a popular on-line campaign and providing icons or widgets for people to put on their websites you could get a reasonable amount of tracking data. The EFF have recently demonstrated that your browser may be uniquely identifiable even if you change IP address, and that data can be combined with the browsing history your browser gives away. I’m not of course suggesting that anyone is doing this, and I do use quite a few of these services myself. Interacting with people on line without touching these services is these days quite difficult, and if you’ve many less paranoid friends the inconvenience of not using these services is distinct. So just like in the panopticon prison where the fear of being observed tends to make you confirm, the desire to not be socially excluded acts as a pressure to sign up to numerous data collectors and give away data bit by bit in exchange for more pretty icons. Foursquare is a wonderful example of this by letting you call yourself “mayor of X” they’ve got people to voluntarily track themselves in the real world.

So what to do about this, well as I’ve said before run your own servers, and encourage the move to decentralised services. Why have accounts on every networking site when OpenID (much as I lambast it) or it’s like could allow for self control of login data, if the work being done at OStatus gets adopted then independent sites can get all the benefits of social networking but in a distributed fashion. Trying to make this a reality is the Diaspora project* (hat tip SamizData). If such things get supported then we can use whatever independent provider we choose or even run our own home servers (You can now get a plug computer that is quite usable as a low traffic server). With Governments getting less and less keen on not having the internet firmly regulated, the only sensible direction to preserve our current freedom of association and expression is away from large global providers of social networking and other services. Or we can look at the situation where to even print something on the printer on our desk we send it to google first, or perhaps to a government archive instead purely for our own good. Ultimately the choice I suppose is if we want to pay for the services we own with cash or with a loss of privacy so that people can make the money to run those services by selling our details to someone who will pay cash.

* Disclosure I’ve chipped in to support the Diaspora project.

Update There’s also an article about how the private sector are invading our privacy over at Big Brother Watch

Posted by Giolla at 23:39 Tagged with: , ,

Erasing David - someone should

Civil Liberties, anonymity No Responses »
May 042010

If you’ve not seen the film “Erasing David” and intend to watch it and don’t want it spoilt then please stop reading now, as I’ve just finished watching it and really the man problem couldn’t erase an etcha-sketch without assistance – so I feel the need to rant and highlight a “few” of the mistakes he made.

Continue reading »

Posted by Giolla at 23:30 Tagged with: , , ,

Viewscreens are coming

Civil Liberties, anonymity, internet, technology, terrorism No Responses »
Mar 292010

This post is going to link to quite a few old articles as every time I’m about to write it something new adds to the pile of stuff that needs to be included. So it’s time I accepted the pace of things happening is just too fast and I should try to tie a few bits together knowing it’s all going to be out of date before I hit publish.

The Government has a love hate relationship with the Internet, it loves the amount of data and control it could give over us but hates the fact that it allows people to talk to each other and exchange ideas. As such they have to pursue a multi-pronged approach to the Internet, make sure that everyone is connected and then make sure they control what we do and see. It sounds fanciful I’ll admit but sadly it does rather add up.

Consider that the Government wants as many people on line as possible which makes sense as they also want us all to have our very own personalised website for dealing with the government (H/T Old Holborn) – perhaps with links to online terrorist reporting or other such important civic tools. If you’ve not got a computer they’ll buy a laptop for you, which will probably have webcams which if activities in the US are anything to go by, which will be used to monitor you for “improper behaviour”. Perhaps as is already happening with CCTV cameras operators monitoring your behaviour will issue a warning. Of course I’d fully expect these personal websites to feed into CRB checks, and for security purposes you’ll no doubt (after a few suitable scares) need an ID card to login.

To make things even more like ” 1984″ housing estates are being built with their own Broadcasting channels and giant TV screens, to go with all those screens being installed in schools and doctors surgeries (along with yet more CCTV cameras), showing government information films.

The other main prong as mentioned is control, well:

Falling back to using old fashioned post to communicate and thus avoiding the internet won’t I’m afraid help.

Meanwhile out in the real world we’re already being made to walk through check points when wandering around our cities during police “lock downs”. To put aside any concerns over exaggeration as to how bad things have got even the Information Commissioners Office are saying “that we are in fact waking up to a surveillance society that is already all around us.”. Just to make that surveillance easier the Government is working on tracking us via our mobile phones, even with out that it’s already very difficult to disappear.

All in all it does rather add up to a quite unpleasant state of affairs

Posted by Giolla at 21:05 Tagged with: , , , , ,

Details of a little walk

Civil Liberties, activism, anonymity No Responses »
Oct 192009

It’s that time of year again when it seems like a terribly nice idea to go for a gentle stroll through the heart of the fair city of London, in the good company of a group of like minded people in the traditional walking gear of a mask and cloak.

Note that unlike the “procession” that will be taking place a few days prior, this is just a gentle stroll, not a protest, not a demo or anything as uncivilized as that. It is just a group of like minded people exercising their right to go for a walk in the attire of their choosing.

Full details can be found over at Old Holborns, and if you like that sort of thing I’ve created an un-official (though as this isn’t an organized event I’m not sure how you’d have an official event page) event over on Facebook

As OH says though, don’t bring a phone, don’t bring ID, just bring your outfit cash and a camera.

Posted by Giolla at 14:23 Tagged with: , , , ,

The Times and NightJack again

activism, anonymity, bloggers No Responses »
Jun 182009

Off to a folk festival tomorrow and with luck I’ll not get stabbed again, though if I do the police in Leicester are wonderful as is the hospital ( Which should be more than enough for the voyeur and hacker Parick Foster to fearlessly expose another unimportant blogger). When I return I’ll update all of the Times links to use a URL shortener to break google linking. In the meantime a few things relating to the whole sorry NightJack affair that I’d hate to go unnoticed. In shock news Tom HarrisMP agrees with Guido that as the Times dislikes anonymous articles so they should cease thier anonymous leader columns, I’m not sure I’m entirely convinced and mr Finkelstein certianly isn’t utterly different a group effort he says. Which I think is possibly a point though I hope that means that the Times will cease to quote all anonymous “sources close to…”, and it’s also worth noting in case of any future legal need that he’d not object to everyone involved in any times leader being exposed.

Should someone decide that there was a public interest in knowing the precise details of how an individual leader was drafted (similar to the very obvious public interest in knowing the identity of a police officer publishing case details on the web), then they might wish to launch a journalistic investigation into that leader
And should they then print what they found, I wouldn’t object at all.

Presumably with photograph and all, and I do hope all those involved with such leaders are equally agreeable to such a deal.

Finally via Old Holborn it would seem that Inspector Leviathan Hobbes would quite like to meet those responsible for NightJacks exposure.

For the record if by any strange chance I ever happen to be in the same hostelry as NightJack Inspector Hobbes, Inspector Gadget, PC Bloggs, < ahref="http://coppersblog.blogspot.com/">PC Copperfield or any of our anonymous public service bloggers who let us glimpse inside the establishment, then I owe you a pint.

Posted by Giolla at 22:26 Tagged with: , , ,

Patrick Foster quoting "sources"

activism, anonymity, bloggers No Responses »
Jun 172009

As that odious hacker and voyeur Patrick Foster seems to no longer feel that anonymous sources aren’t a good thing. I’m sure that with some encouragement he’ll shortly be clarifying who the sources are in the following stories, purely due to public interest of course:

Sources on both sides say …

A source close to the show said…The Metropolitan Police said ….

BBC sources said …

. A No 10 spokeswoman said …

A spokeswoman admitted…

Those close to the show insist…

Sources close to Goody’s family said…

Articles found from his entry in Journalisted and that’s just back till late march. I got bored after a while so I’m sure there are plenty more worth commenting on to ask him what his sources were.

Posted by Giolla at 18:30 Tagged with: , ,

NightJack update and round up

anonymity, bloggers 1 Response »
Jun 172009

Following the Times notable victory over decency yesterday they’ve graciously allowed NightJack to respond in an article I can’t help but feel is very reminiscent of a communist show trial where the accused is allowed to publicly confess their sins and misdemeanors. The tactics he describes the Times using are also very reminiscent of those used to expose Girl with a one track mind, so they definitely have form on this one. speaking of having form it would seem that the Mendacious Patrick Foster, that fearless journalist so desperate to move on from the celebrity pages he’s prepared to sacrifice the career of a decent man to do so, also has form for hacking and covertly filming people having sex – which I think clearly tells us his views on peoples privacy. Whilst as many have pointed out no one has a right to privacy and on the internet probably not a lot of expectation of it either, that still doesn’t make the Times actions in any way justifiable. However there is one very slim upside from this as noted by Anna Raccoon there is now some precedent for investigating and publishing identifying material relating to a serving police office as prohibited by the counter terrorism act 2008.

Update
Daniel Finkelstein responds, and another Times journalist expresses mixed feelings.

Round up of other blogs
Continue reading »

Posted by Giolla at 13:35 Tagged with: , , , ,

NightJack exposed for the vanity of the Times

anonymity, bloggers, internet No Responses »
Jun 162009

Until he stopped writing it I used to very much enjoy NightJacks view of the police, and his guide for decent people is invaluable. Now however thanks to The Times and that champion of free speech Justice Eady, the only way you’ll get to read his words is if you stumble across them in a cache somewhere. Despite having ceased blogging a while back, to go and write a novel, the Times felt that it would be a good thing to let everyone know who he was. This has already resulted in him getting written warning from his force and as his views were honest and not always full of praise for the higher echelons of the force, I suspect it won’t do his career and general work life much good.

Sadly I fear that Justice Eadys ruling was the correct one, though I’m not sure I agree with him that blogging is essentially a public business, and I definitely don’t agree that just because a blogger is a member of the police that automatically makes there real identity a matter of public interest. The story in the Times though seems to be without merit. I’ve no idea if this is part of a retaliation from the main stream media against those nasty upstart bloggers as some suggest. There’s nothing to be done to undo this situation, though if NightJack does ever publish a novel I’ll be buying it, in the meantime as Iain Dale asks will the Times cease to quote unnamed sources “close to…”, we can also as Hopi Sen suggests write to the Times to share our opinion of their actions. I am sadly sure, again as Iain Dale suggests, that this will have an impact on other bloggers and commentators involved in the justice systems and other organs of the state. I would though second the thought that it should also have an impact on who might want to talk to the Times, whilst I’m unlikely to ever have anything of interest to say I do know that in the unlikely event I do I won’t be saying it to the Times and who knows I may yet be at a demo and see something of note.

Oh and if anyone happens to know anything much at all about Patrick Foster of the Times Old Holborn feels it would be quite in the public interest for such things to be shared.

Update: The Independent knew but didn’t tell who NightJack is. (Tip of the tifter to Woman on Raft)

Posted by Giolla at 19:13 Tagged with: , , ,

Chicken Little rules the roost

Civil Liberties, anonymity, internet, laws, technology No Responses »
Apr 062009

I’ve been reading a lot of posts regarding how ISPs will be logging every web site we visit and all of our e-mail based on an eu directive that came in to force today. I’ve also read the UK legislation and the EU directive and as far as I can make out it’s all bollox! No really it is.

The only source for the belief that ISPs will be logging web pages I can find is an article in the telegraph it isn’t in either bit of legislation. Well not unless it’s been very sneakily snuck in, in something that’s not yet online and that no one has referenced. In fact nothing that isn’t already logged will be logged, what has changed it how long the logs are kept for.

Your ISP already logs when you connect to them and what IP address they give you, if you use their mail servers they log who you send mail to and from. This is routine and is currently thrown away after a month normally never looked at unless there’s a problem. I used to look at it a lot when I worked on the abuse desk of a large well known UK ISP, and the bit they’re logging half of it’s easily forged in an way undetectable from those logs. I am quite prepared to accept this is the thin end of the wedge, but at the moment the blogosphere (gods I hate that phrase) is raging against phantoms of it’s own imagining.

There is a circumstance where ISPs might log the web sites you go to, if they force you through a proxy server, or if you choose to use a proxy server. This is however very easy to detect.
1) Go to http://find-my-ip-address.net/ make a note of what it says your IP address is.
2) Check what your IP address is on your computer if they don’t match you’re going through a proxy server. Or you have an ADSL router which is giving you a private ip address.
(Private IP addresses start 192.168., 172.16 or 10. )

If you’re running windows you can find out your IP address by opening a cmd prompt and typing ipconfig look for the lines saying
IP Address. . . .

So your web browsing habits are safe, and you can make your email safe by using an email provider in a more friendly location. Or run your own get together with some mates, bribe a geek with beer and pay 10 quid a month for a virtual server you have complete control over.

There is a lot you can do easily to reduce what they can see, but at present your web access isn’t an issue. I’d be more worried about the retention of cell phone data including call location especially in light of events at the G20 summit (“We know you called X who was outside the bank of England whilst you were at the climate camp at 11:30, now why was that?”).
For the thicker end of the wedge take a look at:
Obama’s Surveillance State Targets PCs, Laptops and Media Devices and Should Obama Control the Internet?

For the record apart from working for a few years at an ISP, I’ve also worked with most of the large UK celco’s and currently run mail for over 60 domains on my own servers, amongst a few other things.

Update Sorry the independent is also reporting that Personal web data to be stored for a year, but again only in headline and paragraph one not in the details.

Posted by Giolla at 22:34 Tagged with: , , , ,

Data retention starts today

Civil Liberties, anonymity, internet, laws, technology, terrorism No Responses »
Apr 062009

For those of you that may not have been paying attention the EU directive on data retention comes into force today. This means that from today your ISP will be required by law (The Data Retention (EC Directive) Regulations 2009) to retain data regarding your use of “internet access, internet e-mail or internet telephony” for a year and make it available to the government on request. Technically the regulations use the wonderfully imprecise phrase:

(a) in specific cases, and
(b) in circumstances in which disclosure of the data is permitted or required by law.

so I think on request is probably a fair interpretation.

Ignoring the much simpler aspects regarding telephone calls where all telephone companies must record, who you called, when and for how long as well as in the case of mobile providers your location at the time. From the internet side of things they’ll be recording:

  • your IP address
  • Access time and duration of access (This to my mind shows up pre-broadband thinking, the longer your connection is online the less useful this data).
  • Who you’ve sent email to and when
  • Who you called via internet telephony (skype etc.) and how (Unless they snoop all your traffic which isn’t required I suspect this one applies to the internet telephony provider rather than your ISP

Of course this only applies to “public communications provider” run your own servers in conjunction with some friends and then you won’t be logged, use email providers outside of the EU and you won’t be logged (well not under this law at least). If you have a broadband connection log of as little as possible to reduce the utility of the logs and don’t use your ISP for email, as at the very least you can make it harder for them to join the dots. Also of course it’s worth noting that the original directive states
This Directive relates only to data generated or processed as a consequence of a communication or a communication service
so if you use services configured not to generate logs then nothing has to be kept.

Before we blame the EU however it’s worth remembering that it was our Government that asked them to create this rule see this Telegraph article for more background. Though the directive doesn’t contrary to that article seem to actually require that they record the websites you visit. The good news is that the ISPs and Telco’s shouldn’t put up their prices because of this, the bad news is that’s because the government our using our taxes to pay them to spy on us.

Further note despite what Anna Raccoon says and the Various comments (Same article posted to two locations), there doesn’t seem to be any requirement for usage of websites to be logged, it does seem to be “only” VOIP, email and connection to the internet that is to be logged. However if you fancy some spook baiting even though it’s probably not needed or useful then the Landed underclass has some good tips. Some Tory Lords at least are concerned about how this came into effect and where it’s going.

Will update this with further commentary as I stumble upon it, and will correct my interpretation of what is to be logged if I find an explanation of why my interpretation is wrong.

Update Further commentary:
A rather poor interpretation and udnerstanding of the directive from Himmelgarten cafe (hat tip: Charlotte Gore

Update 2
In response to the article from Himmelgarten cafe linked to above it occurred to me that it might be of interest to show people what the logs being retained typically show:

2009-04-06 17:46:02 Message-id <= sendinguser@address H=sending-hostname P=esmtp S=3115
2009-04-06 17:46:02 Message-id => <receiving-user@address> R=userforward T=address_file
2009-04-06 17:46:02 Message-id Completed

The interesting bits are the time stamps and the bits in blue, the bit in red is very trivial to forge. Also when he states that “No help is being offered on paying for the additional storage space.” that would appear to be at odds with what is stated in the directive, but for small email providers it isn’t a huge burden if you only consider the disk space and not back up facilities as each message only takes in the region of 0.5 kb to log.

Posted by Giolla at 13:17 Tagged with: , , , ,
Older Entries
© 2010 Anonymong Suffusion WordPress theme by Sayontan Sinha