Canadian ISP Shoulder Surfing 411
1nfamous writes "Canada's Largest ISP, Bell Sympatico, has informed its customers that it intends to 'monitor or investigate content or your use of your service provider's networks and to disclose any information necessary to satisfy any laws, regulations or other governmental request.' The new customer service agreement is effective June 15, 2006."
Welcome to America Junior. (Score:4, Interesting)
The chief difference between Canada and America? At least the Canadians get fair warning.
Clearly, the Canadian government is going to have to work on that...after all, we can't tip our hand to the terrorists, right? These things must be kept secret, because unless they're explicitly informed, the terrorists will have no reason to believe their internet access is being tracked, just as they had no reason to believe that their phone calls may have been bugged and their financial records traced, that is, until the meddling fourth estate decided to educate them, much to the peril of all freedom-lovers.
(Sorry....my sarcasm button was stuck there for a while...)
I've said it before [slashdot.org], and I'll say it again: it's time to start encrypting everything. Just one question...anyone out there familiar with the current legality of crypto in Canada?
Re:Welcome to America Junior. (Score:3, Interesting)
Doesn't work everywhere. In England, isn't it illegal to not provide encryption keys to the police if they request now?
Re:Welcome to America Junior. (Score:3, Funny)
Re:Welcome to America Junior. (Score:4, Informative)
Re:Welcome to America Junior. (Score:4, Interesting)
Simple. Generate a new set every session. As long as they're cached in memory only, you'll never know the keys or be able to provide them to law enforcement.
Re:Welcome to America Junior. (Score:3, Interesting)
Re:Welcome to America Junior. (Score:3, Insightful)
If you generated a new key every session what would be the point of keeping all that random data (because by throwing the key away every day everything you do is lost)?
Re:Welcome to America Junior. (Score:3, Insightful)
Where would you get that assumption from? The story is about data transmissions over the Internet. The original responder replied that we should "encrypt everything" to prevent this. I don't see any method of interpreting the matter other than, "Generate new keys for each Internet session."
Re:Welcome to America Junior. (Score:4, Funny)
Re:Welcome to America Junior. (Score:3, Interesting)
As for LiquidCooled's comment - exactly why would you keep anything incriminating on your computer after you just talked about performing a terrorist attack on someone? None of that data, except the actual attack plan, is of any use. And odds are, if they're SM
Re:Welcome to America Junior. (Score:5, Interesting)
You sir, seem to be under the mistaken assumption that this, or any other, "War on Terror" program is actually aimed at terrorists. As you point out, any real terrorists/hackers/bad guys can find a multitude of ways around all of these systems. In fact, if you are actually doing anything deliberately illegal, you must assume that you are being evesdropped on at all times, and so make all of your contacts as innocuous as possible. That's basic subversion 101.
All of these "programs" are to make sure that those in power have something on everybody. That way when you actually do something that interferes with their agenda or makes someone with power mad at you, they can nail you on several unrelated charges and keep their actual agenda somewhat obscured.
As to your point, this very post could, at some point, come back to haunt me. But everytime I state these very obvious facts in a public forum, it would be terribly inconvenient for me to have to "format my shit" to avoid prosecution. The problem with the GP's idea of rotating encryption, is that only works where both ends of the conversation are trusted entities. If I were in Canada, and searching the web for information on something of dubious legality, like growing strains of South American botanicals north of the 48th parallel (hey, I like orchids), this would raise a flag somewhere in a database with my name on it. If later I searched for and made posts in support of opposition candidates and positions (whoever the "opposition" of the day was), that would also go into the file. If I was later surfing "fine art" sites and a link farm popped a window with underage models up, bang. You guessed it, a note into the file. When I did something annoying enough to the monitors, they would select the most convictable of possible offenses, get a warrant for a "secret search" and "discover" illegal content on my PC. Evidence clearly substantiated by the logs provided by my ISP.
See how easy it is. If I were actually doing anything deliberately illegal, I would go to great lengths to protect myself. It's the poor buggers that think they are within the law that will get hammered unsuspectingly.
Re:Welcome to America Junior. (Score:3, Interesting)
i am so stoked that there a
Re:Welcome to America Junior. (Score:3, Interesting)
They did try to sneak in an innocent until proven guilty (you have to prove you don't have them) but it seems that justice isn't *quite* dead here yet.
Re:Welcome to America Junior. (Score:3, Insightful)
Apathy rules the masses (Score:5, Insightful)
It would take several years of media coverage about invasion of privacy and some high profile cases before the masses would rise from their slumber and do something about Bell Sympatico. It's the same as what the US government (and the UK government) are doing to strip away freedom in the name of security.
It's sad but true, if you understand the issues you are in a tiny minority. Don't expect and change anytime soon.
Re:Apathy rules the masses (Score:5, Insightful)
Re:Apathy rules the masses (Score:4, Insightful)
Re:Apathy rules the masses (Score:3, Insightful)
So tha
Re:Welcome to America Junior. (Score:3)
This doesn't bother me (assuming it's a court order, and not just a cop knocking on your door!)
If a judge feels that there is enough evidence to issue a "data warrant", then I'm probably not the object of random searching.
If all my internet traffic is encrypted, and my personal data on my computer is encrypted then I know that I won't get 'profiled' or any other such nonsense. If on the other hand they have reason to believe (
Prove I haven't given you the keys. (Score:3, Informative)
Re:Welcome to America Junior. (Score:5, Insightful)
The chief difference between Canada and America? At least the Canadians get fair warning.
June 15th, the date this went into effect, was two weeks ago, and the Globe and Mail article was posted yesterday. So either Bell Sympatico told people with little to no warning, or the Globe and Mail didn't bother to run this until everything was said and done. Either way, this sucks.
Re:Welcome to America Junior. (Score:2)
Re:Welcome to America Junior. (Score:3, Informative)
Re:Welcome to America Junior. (Score:3, Informative)
the reason why openbsd holds their hackathon in canada is because of crypto legislation (or lack thereof). here's my source: http://en.wikipedia.org/wiki/Hackathon [wikipedia.org]
Re:Welcome to America Junior. (Score:5, Informative)
This proposed "warrantless" internet surveillance bill will encounter a great deal of resistance in Canada, and with a minority government it's passage is by no means guaranteed. In the event that it does become law, at least people can encrypt anything & everything they send over the internet. A law such as this, however, would be challenged in the courts almost immediately here.
Not just in Amerika - Kanada likes it too! (Score:3, Insightful)
Both of your assumptions are likely to be proven false.
Although the current Conservative government is a minory government, they have been reading/swaying public opinion rather well and some of their other recent announcements have been met with everything from total apathy to considerable support.
For example, hot on the tai
Re:So don't use Sympatico (Score:3, Insightful)
You do realize that it was the Liberals who first proposed this, and the only reason it didn't pass under their watch was that they couldn't ram it through before they self-destructed, right?
I've posted before on here, and I'll say it again:
All political parties suck. They're all a bunch of elitist bastards who'll tear away at your rights for their own pork-barrelling ends, and writ
Welcome, Big Brother (Score:5, Interesting)
I wonder how long before people start being bothered by this kind of behaviour?
And I don't mean us, but the majority of sheeple...
Will it be too late then?
Re:Welcome, Big Brother (Score:5, Interesting)
Re:Welcome, Big Brother (Score:5, Insightful)
In general terms, they feel that mass monitoring, arresting people on security certificates and all the other things that I feel are an invasion of my privacy and liberty were perfectly acceptable.
It's "think of the children" applied to "think of our security".
I suppose it's human to fear the unknown. And the terror age we live in is filled with uncertainty.
After much discussion, I think they see my point of view, though they still maintain that "something" must be done. And if that "something" infringes on liberty that's still a cost they are willing to bear.
So, sadly, in my limited experience, the sheeple are not going to be bothered any time soon...
Re:Welcome, Big Brother (Score:3, Insightful)
If you start mentioning paralells to a certain European country in the mid 30's, I'm sure that'll turn their heads. It's frightening, really.
Re:Welcome, Big Brother (Score:4, Interesting)
Re:Welcome, Big Brother (Score:5, Insightful)
People like to say "everything changed on 9/11". Well, as far as I'm concerned, the only thing that changed on 9/11 is that a lot of people with a naieve and incorrect notion of security got a rude wake-up call. I've wondered since I was a teenager (back in the 70s) why such an obviously soft and much-hated target as the US had not had a significant terror attack in many decades. OK City got us started, and was more along the lines of what I was originally thinking; absolutely anyone could have done that.
People want their warm fuzzy fake security back. They can't have it of course, because it never really existed, but there are no end of people (in government and elsewhere) willing to exploit their desire to their own ends.
Damn Straight (Score:5, Interesting)
The way you look at the world changes when you grow up like that. I could see the truth that most Americans never think of. I knew who the next likely enemy was after the cold war ended. I knew our intelligence agencies were ill equipped to fight the new threat (And still aren't.) I knew that just about the entire world likes to hate America. I knew it was only a matter of time before there was a major terrorist attack in the USA. I know that it's only a matter of time before there'll be another one.
Most Americans seem to have become complacent again. They'd rather live in ignorance, and they like to think that the government is proetecting them. They keep telling themselves that. "Oh it'll be all right, the government is protecting us." Ask someone who knows what the government's been up to, though, and you'll find that it's more by luck than by skill than we haven't had a big successful attack since 9/11. I don't care what your politics are, the level of incompetence displayed at all levels and on all sides should disgust you.
Re:Welcome, Big Brother (Score:4, Funny)
Re:Welcome, Big Brother (Score:5, Insightful)
Because it works every time. Century after century.
Re:Welcome, Big Brother (Score:5, Interesting)
If I were American, I for one, would welcome our new Slashdot Party Overlords.
At least the memes used here would be refreshing after the centuries-old slogans.
On the more serious side, I think you're wrong in saying that plenty of people are bothered by it - just because we're the majority on Slashdot, it doesn't mean we have a significant mindshare in general population.
We are few.
And even though lots of us would like to do something, I know that no-one normal would trust me if I went into politics.
They'd just think of me as everyone else who goes into politics.
I have a life to live.
Re:Welcome, Big Brother (Score:3, Insightful)
Perhaps we're few in terms of the general population. But consider: it doesn't take much to get the ball rolling. No one heard of Howard Dean outside of Vermont but when he went to run for President in 2004 and used the Internet to gather donations in a run at the grass roots vote
Re:Welcome, Big Brother (Score:5, Interesting)
There are two ways to explain this to people.
One is that mass eavesdropping hurts real security. If the FBI is checking out Domino's Pizza then they're not checking flight schools or infiltrating violent groups. http://www.computerworld.com/action/article.do?co
The reason privacy is important is that government agencies with impossible missions tend to start hassling easy targets to make up for not being able to reach the important ones. How many of those average people have uploaded or downloaded music? How many of them realize that copyright infringers have been accused of funding terrorism [p2pnet.net]?
Without privacy and due process protections, the guy in the high rise will be in more danger of becoming a terrorist suspect than of beomcing a terrorist victim.
Re:Welcome, Big Brother (Score:3, Interesting)
If we don't succumb to extreme measures and forfeit privacy and liberty there is some possibility that Bad People (tm) will do Bad Things (tm) to innocent people.
If we grant the state absolute power over our lives there is a guarantee that this power will be abused and they will do Bad Things (tm) to innocent people.
I'll take my chances with the
Re:Welcome, Big Brother (Score:5, Insightful)
"Conservative" Sock Puppet replaces "Liberal" Sock Puppet.
One of the easiest ways is to set things up so the candidates must spend large amounts of money on advertising to win an election. The second that happens, only corporate stooges will be among your choices.
Good riddance! (Score:2, Interesting)
They keep getting worse and worse. (Score:2, Interesting)
Re:They keep getting worse and worse. (Score:2)
A couple of years ago we were all debating about same-sex marriage and medicinal marijuana. Now it seems these issues have been pushed aside in favor of copyright issues and how much money goes to the military.
What the hell has changed?? What is happening this fine country?
Oh right...
Harper.
(Ps. I used to actually not mind the guy.. but now.. I dunno. Starting to get a bad impression..)
Re:They keep getting worse and worse. (Score:4, Insightful)
So... (Score:3, Insightful)
Re:So... (Score:5, Interesting)
http://www.privcom.gc.ca/legislation/02_06_01_01_
They're simply NOT allowed to do this without a warrant if you refuse to consent to it. Simply send them an email stating that you do not consent to their unlawful search, and cc the privacy commissioner.
If they say "these are our TOS, don't like it, leave" - that's not good enough. Their contract is a contract of adhesion, and as such, unconscionable and onerous clauses can be struck from it. Certainly claiming a right to violate PIPEDA is one such clause.
Re:So... (Score:3, Interesting)
Basically, you have very little privacy protection against the government.
Re:So... (Score:3, Interesting)
That's rather useless when you need an in-service procedure.
Additionally, a lot of them are taking patients from the US, who can't afford American rates.
Funny. I see plenty of Canadians coming to the U.S. for treatment they can't get in a timely fashion in Canada.
As for American rates, they are dirt cheap when compared to the taxes one has to pay in Canada for service that is no
Re:So... (Score:4, Interesting)
And the reason they're doing it is rather obvious - the parent company (Bell Globealmedia) want to try to "enhance" their other properties:
Re:So... (Score:2)
*Please note: "Canadian laws" and all laws therein are overruled by USA laws and **AA influences -- "USA, protecting the world from the world by going after everyone in the world!".
Ladies and gentlemen... (Score:5, Funny)
Re:Ladies and gentlemen... (Score:4, Interesting)
I started doing this since my ISP's wholesaler was using transparent proxy caches that would actually strip ads from websites and then insert their own in their place. I bitched loudly over that one and they removed me from the proxy list but it was enough to make me take control of my surfing via a SSH tunnel to the servers I operate. The bonus is I can also access content supposed to be only available in the US (like www.sho.com or the ABC online Lost episodes).
My ISP has since switched wholesalers to a more sane variety but I still keep the tunnels going.
Universal Encryption (Score:5, Interesting)
Re:Universal Encryption (Score:5, Funny)
HTTP:
HTTPS:
Re:Universal Encryption (Score:5, Informative)
Of course HTTPS is vulnerable to traffic analysis and attacks on HTTPS itself, but proxies and tunnelling protect HTTPS even more.
The increase in HTTPS would come from the public perception of HTTPS as more private, hindered only slightly by imperfections in the protection.
competitive advantage (Score:5, Insightful)
Re:competitive advantage (Score:2)
Re:competitive advantage (Score:3, Insightful)
-Todd
Free Market (Score:4, Insightful)
Of course, the point is moot... All ISPs cache data to a certain extent. And all governments can strong-arm or bribe companies... It's just that this particular ISP is being honest and saying, "Yea, we'll hand your stats over."
Re:Free Market (Score:5, Insightful)
Re:Free Market (Score:4, Interesting)
Re:Free Market (Score:5, Insightful)
Yeah, so...here in Western Canada, I have my choice of 2 broadband ISP's (the two major players bought up all smaller competitors)... the cable company (Shaw) or the phone company (Telus).
I had a cable modem, but they overloaded the segment in my apt building and my FPS ping times went to hell (120+ms min, unplayable at all peak hours).
So, I switched to using DSL from the phone company.
So, in a case like this, if my ISP does such a think, and where I really don't like being monitored, my choice is to ?
The barrier to entry into such markets is *far* too high for any smaller competitors to get established.
Re:Free Market (Score:3, Informative)
Re:Free Market (Score:3, Insightful)
Yes there are rules for these companies allowing competitors to make use of the infrastructure, but this is (a
Re:Free Market (Score:3, Insightful)
company should change their name too (Score:5, Funny)
But then again...it is a Bell company....after the AT&T thing, I expect nothing less.
No, no, you got the fascism all wrong! (Score:5, Funny)
We make sure that the customer's don't know when we're spying on them.
Re:No, no, you got the fascism all wrong! (Score:2)
God, I'm so em'barrassed.
Re:No, no, you got the fascism all wrong! (Score:4, Insightful)
So... How many Americans do you know that would tell you, "Gee, the government can obtain my ISP records if they want? I didn't know that!"
I would contend that Americans, in general, probably have an overexagerated idea of what the government can / can't do thanks to Hollywood and rumor. The "man" isn't quite as "fascist" as you think. Try living with real fascism, as my parents did in Cuba for 40 years...
Re:No, no, you got the fascism all wrong! (Score:4, Interesting)
I'm a little confused by your question, though; I'd say quite a few people I know would say they're aware their ISP and phone records can be obtained, because it was just all over the news. Is it happening to everyone? No. But the fact that it can, and the government thinks this is okay, is what frightens me. If your parents lived in Cuba for 40 years, they probably understand that the mentality of "we're going to spy on everyone, and if you're innocent, you have nothing to worry about" is one aspect of how fascism looks in its infancy.
Re:No, no, you got the fascism all wrong! (Score:3, Insightful)
Failing to be vigilant against it is how "real fascism" is allowed to happen!
*sigh* (Score:4, Funny)
Retroactive by 13 days? Isn't that just a kick in the face. Sure, you can cancel right now, but then they'll just look through that data out of spite. After all, you're no longer a customer and they no longer have to abide by their privacy policy.
Not such a huge concern? (Score:4, Interesting)
if they snoop and give it away to anyone in violation of those laws class action suits will follow.
Re:Not such a huge concern? (Score:5, Informative)
Basically, Bell is doing this to comlpy with the privacy laws. They're keeping your http logs (like every ISP out there), and now they're just following through on their obligation to tell their customers why they're doing it and who could possibly see it. Should they ever actually release your information, they still have to have a court order, OR your signature on a contract that specifically says who you're authorizing the release of information to, and what that third party intends to do with your information.
Someone correct me... (Score:5, Interesting)
Now, if courts did uphold that monitoring and logging IMs, and presumably other means of electronic communication, is covered under the call recording notification laws, would this not create a dilemma for the ISP that is monitoring (and presumably logging) network traffic of users, which would include IMs and e-mai, when their users begin to communicate with individuals from the states who live in one of those 12 states that require both parties to consent?
I am fairly certain on the court ruling I mentioned, I even jokingly added a warning to people in my status message, but I am not sure if this ruling was ever contested or of my full interpretation of the law that follows.
Re:Someone correct me... (Score:5, Funny)
On Slashdot, I can pretty much guarantee this... =)
Modernization of Investigative Techniques Act (Score:3, Insightful)
I can only imagine how they formulated such a modern concept:
What's the next step?
This is bad news for Canada. Here in the United States, we have strict privacy laws which protect us from such intrusive "techniques"
International Precision & Recall (Score:3, Interesting)
I would like to see the false positives and true negatives that result from these arrests. That is, I would like to see a two by two matrix such that:
Breakdown of arrests from statute blah The bottom left square & upper right square would give you an idea of:
You have no privacy on the net (Score:3, Interesting)
Bad people do exist on the net and use its power for their own ends. This has always been the case. Especially in the black and white areas we all can agree are bad, like using the net to lure kids. The dicey part is who gets to decide what is "bad" in the grey areas and that has also always been the case. It ain't going away.
Canada is swinging much harder to the right (Score:3, Insightful)
' Bell Sympatico has informed its customers that it intends to "monitor or investigate content or your use of your service provider's networks and to disclose any information necessary to satisfy any laws, regulations or other governmental request."...A spokeswoman for Public Safety Minister Stockwell Day said no decision has been made on the bill, known as the Modernization of Investigative Techniques Act. But she noted that Day has spoken to telecom industry officials and legal experts about bringing it forward as early as the fall session.'
This means Sympatico users are agreeing to disclose to the government whatever Bell feels like disclosing! No mention has been made of getting a warrant,etc....to prove that this should be carried out for a specific reason. There's no real mention of disclosure criteria.
On a side-note - Stockwell Day is a bit of a dingleberry - a creationist who believes the earth was created 5000 years ago....the sharp swing to the right has begun in Canada....looks like the terrorists are winning when our freedoms start to get whittled away, bit by bit....
Re:Canada is swinging much harder to the right (Score:4, Insightful)
This legislation was first introduced by the liberals last year, so it isn't just because of the more right wing conservatives.
Customers terms of service (Score:3, Funny)
Canada here, quick.. (Score:5, Informative)
Tor takes care of the proxy encryption, and FoxyProxy lets you use all those proxies while you surf.
Invaluable for the privacy conscious, or rather anyone living in the 21st century.
Why? (Score:5, Insightful)
Stating that you will disclose information that is required by law is obvious. But disclosing information that you are not allowed to disclose and do not have to disclose, makes no sense. I can see no benefit to the company. What gives?
Privacy (Score:3, Funny)
Question (Score:3, Interesting)
The funny/sad thing is (Score:3, Insightful)
Well, now it's too late. Total Information Awareness is upon us and all of our communications by phone/cell/computer are being listened in on and filtered through. There really is nowhere go but downhill. You watch. Within 5 years all foreigners visiting the US will have to have GPS enabled chip implants. Within 10 all prisoners will have them. Within 15 it will be a Felony for any US citizen to remove/disable their chip implant. Anyone want to join me while I go live in cave somewhere?
I just cancelled... (Score:3, Interesting)
Re:I just cancelled... (Score:3, Interesting)
How do you trust proxies? (Score:3, Insightful)
Re:How do you trust proxies? (Score:5, Informative)
If you use Tor [eff.org], you're actually going through a sequence of several proxies, using different encryption keys for each hop along the route. The first proxy in the chain knows who you are, but can't see where you're going; it can only see the next proxy in the chain. The last proxy in the chain can see where you're going, but it doesn't know who you are, because all it can see is the previous proxy in the chain. Those in the middle can't see either the origin or the destination.
Unless an attacker manages to compromise all the nodes along your route (which changes every few minutes), the Tor network can't figure out who was going where.
Re:How do you trust proxies? (Score:3, Informative)
Canadian's you have another alternative (Score:3, Informative)
So, in modern Canada ... (Score:3, Interesting)
It may not be long before North Americans are using encrypting proxies in China to gain access to content on the 'web. (Okay, we'd likely use South American or European servers, but hey that's not as controversial, is it?)
I might have to investigate going back to the cable companies for my broadband access.
If you're using sympatico... (Score:3, Informative)
Don't let the ISP see? (Score:3, Insightful)
Re:Welcome... (Score:5, Funny)
Bob: Hi, I'm Bob Mackenzie, this is my Big Brother Doug.
Doug: How's it going eh?
Bob: Not good, eh. Cuz, we still haven't gotten our two-four for findin' that mouse in the beer bottle yet, have we?
Doug: No, eh. It was like, the thing that is in Bottle 101 is the worst thing in the world.
Bob: But didn't we make Strange Brew in 1983, not 1984, which was like, one year later eh?
Doug: Oh, take off!
Re:Welcome... (Score:3, Funny)
Re:Personally.. (Score:3, Insightful)
My turn:
I'd rather have the government sneak into my house while I'm on vacation than have my family whisked away to a detention camp and killed.
Don't justify the bad with the worse.