ISP's - Invasion Of Privacy
Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: ISP's - Invasion Of Privacy

  1. #1
    Member
    Join Date
    Nov 2003
    Posts
    71

    ISP's - Invasion Of Privacy

    I caught wind of a situation in which a man was arrested over something he was doing on his computer because of an employee at the ISP he was using was watching him.

    1) Isn't that illegal?
    2) How much do ISP's really watch?
    3) Do ISP's scan packets for keywords? I imagine it's more than possible.

    I just don't see how it could be legal to turn someone in with information you found while invading their privacy... but at the same time it's THEIR network... maybe it's all in the fine print.....

  2. #2
    Senior Member br_fusion's Avatar
    Join Date
    Apr 2002
    Posts
    167
    ISP's can do whatever they want almost, as long as they mention it in the "fine print".
    The command completed successfully.


    \"They drew first blood not me.\"

  3. #3
    AntiOnline Senior Medicine Man
    Join Date
    Nov 2001
    Posts
    724
    Being as I am a Network Operator (NOC) at the worlds largest dedicated Webhosting Company and ISP, I will enlighten you.

    1) The way he was "Watching Him" was most likely a Packet Capture. All it takes is running ettercap on the router in front of the TNT Access Servers, and you can capture all incoming and outgoing packets. You see, these data packets are physicly going through our network at our DataCenter Colo facility, therefore you play by our rules. There is no Privacy cause your on our Network. Also, read the AUP or TOS you may find it very informative on such matters.

    3) We are constantly scanning trough our Core Captures to find the most obvious malicious packets. This is automated and is called an IDS.(Intrusion Detection System) It ususally blocks DOS attacks, port scans, ect... among other tools that I will not mention we are watching 100% of the time. 24/7 365 days a year. (No Holidays Off)
    It is better to be HATED for who you are, than LOVED for who you are NOT.

    THC/IP Version 4.2

  4. #4
    Member
    Join Date
    Nov 2003
    Posts
    71
    Wow! That's incredible. Scary. Do ISP's search packets for keywords... so that they might catch pedofiles or terrorists?

  5. #5
    Senior Member br_fusion's Avatar
    Join Date
    Apr 2002
    Posts
    167
    blocking port scans? how lame
    The command completed successfully.


    \"They drew first blood not me.\"

  6. #6
    Senior Member
    Join Date
    Oct 2003
    Posts
    111
    Similiar thing that I could think of that we do with our own networks, much like Dr Toker was saying is watching packet data go through. Much like when we had an outbreak of blaster in our own network (what a mess), we used Etherpeek to monitor data coming through one of our main switches. Just as simple as plugging in a laptop to the switch, and just watching the data pass through, we were able to track which were the main spreaders, and who needed to be patched. Granted, this is on a smaller scale say about 4,000 workstations and servers with many different network interfaces...I'd say you could apply it on a larger scale.

    By the way, Etherpeek...neat little program. Check it out if you have some time to burn. (and money)
    Creating further mindless stupidity....through mindless automation.

  7. #7
    Senior Member
    Join Date
    Mar 2003
    Posts
    372
    IDS does NOT block anything. It's passive and only watches. If you have something that is actively blocking stuff then it's more accurately called an IPS or Intrusion Prevention System...

    And why are you blocking port scans in the first place? If I remember correctly port scans have been found to be completely legal.

    Oh, and if my company was using your company as a dedicated hosting facility and then found out that you were looking at every packet we send out then you can bet that we would drop you flat on your ass with no hesitiation. There are PLENTY of secure data hosting facilities out there that will be more than happy to not view everything we send out. As it is all of our sensitive data is encrypted for communication, but our SLA's still won't let a hosting facility view our packets.

    Give a man a match and he will be warm for a while, light him on fire and he will be warm for the rest of his life.

  8. #8
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    New Jersey
    Posts
    718
    I'm not really sure I would view an ISP that records all packets inbound/outbound as neccessarily wrong. If ISP's are observing sensative packets (personal information), I can't imagine any reputable ISP would release any such information to the public. (Do I know for sure? no. Anything is possible these days). Also, should someone with mailcious intentions attempt to crack my system, I'd prefer my ISP has an account of all the transactions that transpired so they could better investigate the situation should I call it to their attention.
    I guess it doesn't bother me that my ISP may record any/all of my inbound/outbound traffic. They are providing me with a service and in turn, I don't mind sacraficing some privacy for protection.
    Just my input on the subject.
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  9. #9
    Senior Member
    Join Date
    Aug 2001
    Posts
    267
    Is is possible ISP was asked to monitor that individual as part of an ongoing criminal investigation by the police ? In Canada/US a joint operation called 'Operation Snowball'
    was carried out looking for child porno rings; and they monitored some individuals to 'catch them in the act' (so to speak)

  10. #10
    Macht Nicht Aus moxnix's Avatar
    Join Date
    May 2002
    Location
    Huson Mt.
    Posts
    1,752
    Now days to expect privacy anywhere is like a pipe dream. Most large stores, and even resturants use audio monitoring and sometime even vidio as precautions against everything.
    To expect privacy from your ISP (unless you are paying for privacy & secured service) is unreal.
    I would only be upset, if they released any informationn they captured.
    \"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
    Author Unknown

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •