Dead? Hope You Left Someone Your Passwords

A reader writes "Looks like if you die, Yahoo won't grant access to family members. I know I've enjoyed reading my grandfather's letters from WWII, this could be a huge loss of history if other ISP's have the same policy." MJK points out that Slashdot has explored the notion of what happens to your data after you die.

quick!

[niko9 (315647)]

someone contact the BSD family and tell them to leave a post it note of their passwords!

Is this something you'd really want?

[Rorschach1 (174480)]

My family members are welcome to keep all the emails I've sent them. But my personal mail? That'd incriminate way too many people still living...

Re:Is this something you'd really want?

[DeathFlame (839265)]

Exactly.

Do I really want my parents seeing emails I've sent my girlfriend [or if you find that hard to believe... some 60 year old man posing as a girl]

Knowing what I've written, I'm pretty sure I'm happy that they don't get to access such files when I die. Do you want to read erotic messages your parents send to each other?

Re:Is this something you'd really want?

[kenthorvath (225950)]

Do you want to read erotic messages your parents send to each other?

Are you mature enough to understand that every person has a sexual side and recognize the beauty of such relationships? If so, then stumbling upon such correspondences can pose no permanent harm to you. You may even discover something that gives you insight into the inner workings of a dearly departed. Something that they had not the strength to disclose to you in life, or perhaps that they did not think worth mentioning.

Those whom we truly love we will understand and accept for who they are/were. Learning about their private side can only help us to celebrate their life.

I do understand the concern over the effect that such matters may have over the living (affairs, partners in crime, etc...), however criminal matters should likely be resolved anyway - regardless of one's relationship status of the criminal - and personal matters such as an affair can be treated delicately at the discretion of the loved ones who are discovering them.

Re:Is this something you'd really want?

[AviLazar (741826)]

Thats touching, but two things come to mind

1) Hey hot stuff, I am gonna ride you all night long like a dog in heat

2) Yes my wonderful lover. Our 30 year relationship, cheating on my husband has been great. He doesn't even realize that my child is really yours.

While this is worst case scenario - man it would definitly be throwing salt on the wound.

Re:Is this something you'd really want?

[drunkenbatman (464281)]

When my significant other died, it would have meant all the world for her (much) younger sister to have access to her yahoo account, for two reasons:

1. things happened suddenly, and suddenly everything left behind by that person was now precious. everything. imagine you're slipping over a cliff, and desperately grabbing at any sort of purchase you can find. it's sort of like that.

2. she associated that SN with her sister, which they would talk on and email often because her family was in australia. the idea of somehow seeing it in use by someone else was... not sure how to explain this, except it wouldn't be something one would want to experience. yes you can take the person off your messenger, and you can block the list... but it's just the idea.

I have to admit that I spent hours and hours late at night trying to guess her password, and some other things after yahoo said no, but will also admit i was one of many things I was doing to try to keep my mind busy and off of everything else.

I do recognize that there is a right to privacy, and that aspects of things might not be healthy... but it doesn't work that way when you're going through it. Your world is upside down, and what is rational and what isn't doesn't really matter. Yes, not having it isn't the end of the world... but seeing one more piece of that person just slip away into the ether, while possibly romantic to a 16 year old, is just a horrid thing to contemplate.

When you're living your life in your mid-20s, you don't think about throwing your yahoo password in your will for your significant other... or often a will at all. This isn't something I expect a typical slashdotter to understand, it's just how it is... I'll leave it at that, as I'm finding myself way outside of my comfort zone at the moment.

so

[ch-chuck (9622)]

don't keep anything you want to pass on stored on Yahoo! Next problem?

Re:so

[SuperBigGulp (177180)]

Um, I think a little sensitivity is called for. The deceased account holder was killed in (I believe) Iraq and was probably too busy doing other things to archive his email to non-volatile storage. And even if he did have time, he was in a f* ing war zone...What in Iraq is not volatile? If you did find something, wouldn't you want to encrypt it somehow in case it was lost or stolen? What would you do with that password/key?

Maybe wills should include language defining how this type of information should be handled, but for now it seems like Yahoo should step and do the right thing.

Re:so

[Buran (150348)]

And then you'll have tons of people begging for access to accounts, and then you have to deal with proof that they're dead, etc. etc.

And then there's the fact that the guy AGREED to an agreement that says that once you die, no one else has any rights to the data.

Seems to me if you're that worried about your data after you die, put a copy of the account password in a safe deposit box that your family can access via the terms of your will.

You do have a will ... right?

Re:so

[GlassHeart (579618)]

it seems like Yahoo should step and do the right thing.

What's the right thing?

Re:so

[chill (34294)]

Except that debt and tax burdens (another form of debt) don't get passed on unless they are joint. Debt usually gets claimed against assets during probate and the beneficiary gets what is left. Inhereting debt went out almost 2 centuries ago in the civilized world.

Yahoo has an explicit policy about what happens to accounts of the deceased -- they're destroyed after 90 days. More like assets in trust.

Yahoo *is* doing the right thing. His parents have no rights to, nor legitimate claim on the e-mail and should *not* be given access. If his mom doesn't have enough to remember him by already, that's her fault.

-Charles

Re:so

[Jim_Maryland (718224)]

A possible solution would be to change the authentication process a bit. Just throwing out this idea sort of quickly...

User creates an account

User defines a secondary password

Secondary password is only valid for authentication after 6 months (or some other reasonable time period) of inactivity (presumably death)

Something like this would hopefully allow for accounts to be secure until a person dies while allowing access after a defined period of time. I guess the flaws could be that most ISPs don't necessarily keep accounts active after a couple months non-payment or after a "X" days of inactivity. ISP's could offer some protection like this for an addition fee if a person really wanted to leave access after they depart the world.

Re:so

[Marxist Hacker 42 (638312)]

An extension- since you never know when any given online service is going to go belly up, NEVER use one exclusively for everything. Keep local copies of anything important (what did you THINK that 80 GB hard drive was for, your music collection?) and multiple copies of anything you put online that you want to keep.

Not even slashdot is forever, folks.

another reason

[Frymaster (171343)]

yet another reason to make your passwords the names of your children!

Re:another reason

[by Anonymous Coward]

Yes, yes. Whenever he complains, this is what I tell my son 6o11uM.

Just to be safe...

[loteck (533317)]

you can all go ahead and list your passwords under this thread, so that your family can come back and find them when you bite the dust.

This is slashdot, you can trust us.

Good idea!

[isny (681711)]

The password to the shield is....1 2 3 4 5

Re:Good idea!

[gphinch (722686)]

That's amazing, I have the same combination on my luggage!

Prepare to open the shield, and change the combination on my luggage!

Re:Just to be safe...

[Qzukk (229616)]

Passwords are too insecure, or if you choose a secure one, too hard to remember. I choose entire passphrases from movies, music, whatever, complete with punctuation.

My home root passphrase: "Open the pod bay doors, HAL."

My home user passphrase: "Think bule count one two"

Workstation passphrase at work: "Soylent Green is people."

CC Website passphrase: "Another day older and deeper in debt"

Bank account passphrase: "Blew it all on the suit."

Home Windows computer passphrase: "MAIN SCREEN TURN ON"

Re:Just to be safe...

[starsong (624646)]

That's a really great idea! I'll try this. In the meantime, here's a couple of things that have worked for me:

1) DON'T POST ALL YOUR PASSWORDS ON SLASHDOT. :)

it's a good thing the data is locked away

[circletimessquare (444983)]

i can't imagine the shame my family would experience if i were remembered by some of my slashdot comments

Re:it's a good thing the data is locked away

[Cynikal (513328)]

hehe i agree, i can just imagine my tombstone reading "R.I.P -1 troll"

Re:it's a good thing the data is locked away

[sconeu (64226)]

Nah, your tombstone would read: "Netcraft confirms it, Cynikal is dead".

I take it with me ...

[by Anonymous Coward]

My data is my data, and unless I stated otherwise in my will, it dies with me.

Also, if my relatives would have something to see in my email, I would let them read it.
After all the reason you use the yahoo mail is privacy.
Why should my privacy die with me ? (sounds funny, though)

I have to agree with Yahoo

[NotQuiteReal (608241)]

Especially with Yahoo - and other free accounts. I'd hate to go thru my loved one's free email account and see all the "Welcome to Spanky's Love Goat - your login is..."

I think keeping the contents private is prudent.

It is up to you to archive your emails and other e-stuff in a a spot that it can be found, if indeed you really want it found after you are "gone".

pr0n

[GoofyBoy (44399)]

When I die, I wouldn't want any one to find my pr0n. Someone needs to create encrypted mpeg/divx.

Or maybe I should request that I be buried with it to take to the afterlife. "Please bury me with the harddrive with the folder name 'Stuff'".

Re:pr0n

[natron 2.0 (615149)]

You don't want anyone to see what is on your hard drive? Then check out this nifty tool... http://www.snapfiles.com/get/deadman.html [snapfiles.com]

Re:pr0n

[Fizzlewhiff (256410)]

Get a pr0n buddy so if you die he comes and cleans it out before your family finds it. You die he gets yours, he dies you get his. Good way to double your pr0n collection.

Re:pr0n

[saintp (595331)]

Problem with that plan: When he dies "mysteriously" of arsenic poisoning, the motive points at you.

Re:pr0n

[lcde (575627)]

When I die, I wouldn't want any one to find my pr0n. Someone needs to create encrypted mpeg/divx.

all the passwords would be cracked in no time because they have to be easy enough to type with one hand.

HAHAH uh.

That's what your will is for

[FunWithHeadlines (644929)]

I've long thought that it makes sense now to have a rider attached to your will listing your various online personas and accounts, along with passwords, and instructions about notifying your online communities of your demise. Play in a fantasy sports league? Might be nice to let the commish know you won't be getting back to him on that trade offer. You're the talk of a discussion board? Might be nice to let your old friends know that you died but thought enough of them to have them notified of your death.

Plus think of the flaming possibilities. You could instruct your surviving loved ones to flame as much as you want, knowing full well no one can touch you in return (unless you believe you are experiencing literal flaming after death, but that's just the risk flamers take).

Seriously, put it in your will if it's important enough.

Re:That's what your will is for

[identity0 (77976)]

Hi, this is identity0's son. Dad passed away last night, and he wrote in his will to tell you that you're a frickin' moron. Your idea will never work.

Have a nice day, sir.

This is news?

[Neil Watson (60859)]

Leave the accounts and passwords in your will. Seal them in a saftey deposit box.

I had no idea...

[krbvroc1 (725200)]

Grandma: Oh my god, how many emails about viagra did he have?
Ohhh, I better contact this poor Mr. Mbutu and see if I can help him out. I didn't realize pop had friends in Nigeria.
Look at all these money making schemes? How come I never saw any of this money?
Oh dear, I had no idea pop was into asian porn...
My my, it looks like pop was corresponding with someone about Vicodin.

Perhaps its better he died...

PGP

[wk633 (442820)]

All my important passwords (along with other information such as bank account numbers etc) are in a file I encrypt with my wife's public key. If we both exit together, well, hmm. Gone forever.

Try the "Secret Question"

[Japong (793982)]

A lot of times it's fairly obvious, especially for family memebers - defaults are "What is your Mother's maiden name?" "What was your first pet called?" "What street did you grow up on?"

A sibling or parent should know any of those - which is why you should always make up your own, by the way.

Privacy after death?

[DiveX (322721)]

Do privacy rights still apply? Let us say that you die in a car accident, should your medical records and all of your personal information be available to family members? Can this not, at some point be abused by providing fake information in order to gain access to an account? If I want my family members to have access to something, then I will either tell them now, or have that data in my will or other document to be distributed by my legal representative upon my death.

If this family wants to keep the messages, then they should save them from their side of the chain. I think Yahoo is in the right in that they should not be made to give out password to those that do not control the account. They would have to deal with the expense of handling a lot of requests if even a single exception was acknowledged.

This is true.

[bannerman (60282)]

When my best friend died in a tragic hiking accident, I spent about 30 hours trying to hack his hotmail account for his family- after they found out that Hotmail was not going to give it up for us. I never did get in.

I've been heavily into the MMORPG scene over the last few years, and some of my closest friends are folks that I don't have any other contact with. If one of them was to get hit by a bus, I'd never know what happened. That would be odd. I suppose that from my side of the monitor it would be exactly the same as if they had suddenly quit playing the game and never contacted me again. That's an odd concept.

What happens to my data?

[Kjella (173770)]

They die. Encrypted, personal and not for others, whether I die or not. Quite frankly, those I know and love should have more than enough without my data. And for the great posterity, I imagine that either a) There's more than enough people who didn't keep their data private or b) I've gotten important enough to actually set up some sort of dead man's switch in my will.

It is not like this is just online. Many places in real life would also suddenly find me "missing", yet never actually go as far as to figure out what happened. Both on- and offline, those that are important enough to know would know. That'll do.

Kjella

Yahoo is doing the right thing

[netmask (8001)]

I support Yahoo's stance in this matter. While he's dead and really doesn't have a care in the world, because nothing about him besides a pile of flesh exists..

Out of respect, what if there were things he never wanted them to know? What if he was gay and having an internet relationship with some man, and his parents were anti-gay? They would then be left thinking they never knew their own son, and all of this crap.

If you want people to have access to that sort of thing, leave them access. Put your passwords in a safe or something if you MUST write them down.

Yahoo and others should not be giving access to an individuals person email, dead or alive. I don't care if the family presents a death certificate or not. You should have a reasonable expectation of privacy and deceny even after death. Let your personal life die with you.

Email should be considered property

[jay2003 (668095)]

The email or other electronic records are property just as paper letters are. By default, you don't have privacy in death as your paper letters are inherited by someone unless you leave provisions in your will for them to be destroyed. If you are a famous person, your person letters are likely valuable property.

I don't see why email should be considered any different. Yahoo's position really is that your email is not personal property. They "own" in the sense of controlling the property while it's on their servers. I don't think Yahoo's objection is really about privacy. They don't want your email to be considered property because they could then be sued when they accidently lose it, not to mention the administrative costs of dealing with probate transfers. If this was really about privacy, they could give make the disposition at death user controllable when the account is created.

I doubt this issue will be fully decided by the courts until some famous author dies and the only copy of their unpublished work in on some server somewhere and worth a lot money. Then the family will sue for access to the valuable property which they've rightly inherited through the will and the courts will be forced to decide whether ISPs can destroy property on somebody's death.

Re:Suggestion

[Gentlewhisper (759800)]

Well.. a study found that the most common password is... tata~ "password".

So at least you know what password NOT to choose!

Re:Suggestion

[sharp-bang (311928)]

My password is my cat's name (x6>B8e@7w_4). I rename it every 30 days.

Re:Hm...

[phasm42 (588479)]

Yeah, I don't think Yahoo wants to get involved in ensuring that a supposedly dead person matches up to a particular account. Imagine if Yahoo announced that they would allow this -- it would probably be abused to get access to other people's accounts, and would probably expose them to lawsuits too. They're too big to do something like that.

Re:DMS

[NardofDoom (821951)]

USB = Undead Serial Bus.

Re:DMS

[99BottlesOfBeerInMyF (813746)]

how do you tell it that you're dead when you're, well, dead?

I wrote a little program called dead man switch years ago, for just this purpose (and to teach myself Java). I imagine this is someone else's though since I only gave mine to a few friends. Mine just required that you log in to the server once every [variable] days. If you failed to log in it would optionally send a warning e-mail and then it would mail out a predefined message to a predefined address. I planned to expand it to include setting up accounts and storing files encrypted, but never got to it. I figured all those movies where people say, "If I die my computer will automatically send the files to the police" would be more true to life if there was such an app lying around to make it easy. (cron, yes, I know)

My guess is that like my program, and like a real dead man switch, it takes a conscious effort to keep the switch from being tripped.

How do you know she died?

[tgd (2822)]

Did he provide a copy of the death certificate? How do you know who it was or wasn't?

What you did was wrong, and if it wasn't illegal, it should be.

If you didn't want it on your concience, you should've passed the call up the chain of command to someone with more integrity.

Which ISP do you work for?

[raehl (609729)]

I've got a bunch of names and social security numbers, and your customer's email, if not profitable for me, should at least be amusing.

Oh, and if I could have your direct extension too, that would be nice.

In short, you exposed all the users of your ISP to fraud by allowing anyone who called you with a sob story and some previously compramised data account access they shouldn't have. But hey, as long as your CONSCIENCE feels good....

Re:Try the "Secret Question"

[3terrabyte (693824)]

And that's the moment when danheskett and taustin figured out they were friends in RL. "Dude, you're on /.!"

Re:My sister died this past summer

[MKalus (72765)]

This situation needs to be changed-when someone dies, those who are left behind have every right to access whatever they can, including their email. Everything left behind, no matter how minor, becomes invaluable in holding onto the memories of them.

I am not sure I agree with this. If I really want people to have access to things I will make sure they can.

A company like Yahoo cannot simply relinquish the login info just because you would like to have access to.

It might be your desire to know everything about that person, but in essence it is their call to make sure that you have access to it. Put it in their will or find another way, but you don't have a (legal, and moral is debatable) right to see those informations.

Yes, it sucks to lose someone and it is understandable that you want to have as much as you can, but at the end of the day shouldn't you respect the way they have lived, secrets and all?