Anonymous Surfing? 42
Just Alex asks: "I just got Comcast High-Speed Internet service, and found out that just up to a few months ago they were recording the actions of all of their users and saving it for who knows what. Now I'm thinking about getting an 'anonymous' service like anonymizer.com, but I wonder what other folks are using. Are all of these services the same? What should I be looking for? And what people recommend given their experience with them? Also, which ones play better with Linux?"
Remembering anon.penet.fi... (Score:3, Informative)
Remembering anon.penet.fi, the world famous anonymous remailer and news posting service, I can only *stress* that your anonymity will be guaranteed only as long as nobody sues to resolve it.
Re:Remembering anon.penet.fi... (Score:2)
However, something like FuckedCompany is completely different. If you post anonymously there, they don't keep server logs, and as Pud would tell you, "Sue me all you want. There aren't any logs to get your hands on."
Re:Remembering anon.penet.fi... (Score:2)
If I may, there is a strong concern rising inside me in regards to this method aswell. Once the entity that offers such a valuable and privacy protecting service has their pants down, your privacy is in jeopardy again.
Logs are something that can be generated at a future point - if the user in question would be gone after due to repetitive action of his side then logs could be installed at any point of time and have merit for the suing party.
Not expecting that he would be monitored and certainly not informed about it, the user's anonymity would be broken. And as pitiful as it sounds, history has proven that exactly these things happen.
As much as I respect people who grow services like these to protect the innocent (for god's sake, there are countries in this world where free speech is a crime!), my trust in them would be very limited. You simply cannot expect anybody to suffer all his life due to a frivolous lawsuit simply to protect *you*.
Re:Remembering anon.penet.fi... (Score:1)
As much as I respect people who grow services like these to protect the innocent (for god's sake, there are countries in this world where free speech is a crime!), my trust in them would be very limited. You simply cannot expect anybody to suffer all his life due to a frivolous lawsuit simply to protect *you*.
There are cases in THIS COUNTRY where free speech is a crime! (Don't worry. They've redefined "free speech" to only include legal things, thus decriminalizing free speech.)
uh (Score:2, Insightful)
(Note to the good folks at Verizon: I'll get my bill in the mail today, I promise.)
Re:uh (Score:1)
Re:uh (Score:2)
Though I'm impressed you managed to get the word "distributed IDS" in your post. 100% buzzword compliant! =)
Re:uh (Score:1)
Re:uh (Score:1, Informative)
And the rest is easy to take care of. If you have a decent proxy service, they should use crypto, otherwise Comcast could identify the contents of the packets you send and construct where you were going anyways. With adequate crypto, Comcast would only know that you use some anonymizer, but won't know where the packets thereafter were being directed to. They can't decrypt your packets, and your anonymizer should be off their network anyways and shaping their traffic intelligently (otherwise, if they download a 2 meg file, and send you a 2 meg file, folks sniffing will know who downloaded what).
Multiproxy (Score:1, Troll)
Why not drop the service? (Score:3, Insightful)
Sure this will be the more expensive route, but drop cable (and explain that the reason you are dropping them is that they are monitoring your surfing habits), and get DSL.
If enough people did this, the company will what they are doing or go out of business.
After all, why pay for an inferior service?
Re:Why not drop the service? (Score:2)
Re:Why not drop the service? (Score:3, Interesting)
Re:Why not drop the service? (Score:1)
Re:Why not drop the service? (Score:1, Informative)
Re:Why not drop the service? (Score:2)
who am us anyway? (Score:1)
Re:who am us anyway? (Score:1)
Which anon sites are honeypots? (Score:4, Interesting)
proxy sites are not honeypots run whatever
corps or agencies that are especially
interested in tracking users who *want* to
be anonymous?
Re:Which anon sites are honeypots? (Score:2)
Anonymous proxies (Score:2, Informative)
Someone already mentioned multiproxy [multiproxy.org]. Also check out Java Anonymous Proxy [tu-dresden.de] and Peekabooty [peek-a-booty.org]. You seem kind of new to the game of paranoia. Why not just start here [dmoz.org] and do some reading.
It's important to understand exactly what these anonymous services get you and who and what they are protecting against so take some time and realistically educate yourself to the risks and threats.
Oh, and don't forget to check out Freenet [freenetproject.org]
One more data point and question (Score:2)
"Compelled to do so by law" could mean anything from an airtight subpoena to some random LEO flashing a badge and asking nicely. Thus, this service is only useful for protecting against casual snooping. It's strong point is that it uses an ActiveX control and can easily be used on (non-locked down) public machines.
The-cloak (Score:1)
Also forgetting the little guy (Score:1)
Everyone has forgotten the small ISPs that cleared the trail for the big companies. Those usually take the "common carrier" stance and don't go all big brother.
Of course if you need an anonomizer then you have troubles on your own. Take a page from Chris Tresco's interview as seen here on slashdot.
"My advice: get out of the scene"
Unless your just paranoid.
DSL providers usually don't offer their own servic (Score:2, Informative)
the-cloak.com (Score:1)
Check them out: the-cloak [the-cloak.com].
Re: anonymisers? (Score:3, Informative)
Just a list from my site.
There is no such thing as anonymous surfing... (Score:4, Interesting)
We run a web based newsgroup service called BinFeeds [binfeeds.com] and sometimes have users who are concerned about anonymous surfing.
First point we often tell them is this. We dont care what service you use, we know who you are. Like any subscription service... you have to log in, and thus we know who we are sending the data to - unless someone stole your account. Many of our customers think that services like the anonymizer will protect them from that. In our experience, webmasters running protected sites more often run into "anonymizer-like" users actually being people with stolen accounts or who are using it for other purposes (site mirroring, etc). 75% of Anonymizer users on our service have been of that type and they (The Anonymizer owners) refuse to act (disable the account, block the user, assist in the credit fraud investifation, etc) or take months (thus we currently block all Anonymizer users). On signups, 95% of Anonymizer users are those trying to fraudulently use a credit card. We expect both from noting the increase of such errors on Anonymizer and from our own decisions, that many webmasters will be blocking such services on an increasing basis, because for us to track anonymous users is very difficult (even though I learned it is trivial from my time at a very very large ISP/Telco).
Basically, if you just dont want your ISP to have a log of where you are surfing and what you are doing, then great! Look into one and sign up for whichever service best meets those needs.
If you are worrying about law enforcement officials or a big ISP tracking usage then just surf normally.
Though they will never admit it the telcos (or fiber providers of similar technology) know exactly what you are looking at and more importantly, where you are. By "where you are" I mean that literally. Your physical address.
On CableModems as in the initial post, it may be more difficult, but under DSL, T3, T1 (DS1, which is often dual sDSL circuits nowadays) and dialup, etc, there are multiple networking protocols and layers not ever discussed. The telcos run their own network protocols and layers on their hardware that route the data for the ISP's data layer over the telco equipment.
In the past, while working for a major ISP (who owns a very large chunk of the Internet backbone and their own fiber network and telco), a person was seriously breaching our AUP terms and the law for actions he was doing using one of our customer's accounts. He THOUGHT he was anonymous, but since we owned our telco arm (and since they are all interconnected) we did a network (circuit) trace on the connection and viola! Through that we end up with the physical address (street address and number) of the loser.
Most people forget or dont realize that in order for your local telco to be able to route internet data to you, they needed your physical address to bring the wires to your house. The network hardware isnt computer based in the sense we all think and runs different protocols in a transparent fashion that doesnt make the end user think of it as anything more than a wire going to a router someplace else (like on an internal ethernet/TCPIP network), but it is not. It is it's own network on different hardware that transports the signals to "standard" network routers (Cisco, Ascend, etc). Much like NetBIOS over TCP/IP. To the user once configured, it's "Windows file sharing" and that's it, but the reality is it is running through TCPIP.
Since "we" (my former employer) ran such a large telco, a simple call to the NOC (telco) got us the info in under 5 minutes. This can be done to an active connection or to a past connection via the activity logs. Also easy to coordinate with the other telcos for cooperation since they needed us/we needed them for the telco services to work.
If you as a user or owner of a small ISP try to get that info you will get a dozen different "I dont think that's possible" or "There is no way of doing that" or "I dont know what you are talking about" answers. Just the way it works. No one is supposed to know it works that way, and few people actually seem to think nowadays - even the technical ones - about how such a system would work - or half the world would realize that any entity with enough "power" or authority can determine exactly where you are at what you are connected to, anonymous surfing, encryption and proxying aside.
Just the sad truth... even if you are on a cell phone (btw, the logs for your location when your cell phone is ON (and in some phone's cases, off as well as long as it has power) are kept for decades and have been since the late 80's at least... right down to a few hundred foot circle.
- Rob
Local Library (Score:1)
Re:Local Library (Score:1)
JAP (Score:1)
Re:JAP (Score:1)
but why? (Score:1)
- assuming I am not a huge corporation with super secrets - and we all know that they use lousy encryption and insecure mail systems, with holes in their data management setups - called mail rooms!