-
December 2nd, 2003, 02:28 AM
#1
Member
ISP's - Invasion Of Privacy
I caught wind of a situation in which a man was arrested over something he was doing on his computer because of an employee at the ISP he was using was watching him.
1) Isn't that illegal?
2) How much do ISP's really watch?
3) Do ISP's scan packets for keywords? I imagine it's more than possible.
I just don't see how it could be legal to turn someone in with information you found while invading their privacy... but at the same time it's THEIR network... maybe it's all in the fine print.....
-
December 2nd, 2003, 03:10 AM
#2
ISP's can do whatever they want almost, as long as they mention it in the "fine print".
The command completed successfully.
\"They drew first blood not me.\"
-
December 2nd, 2003, 03:19 AM
#3
Being as I am a Network Operator (NOC) at the worlds largest dedicated Webhosting Company and ISP, I will enlighten you.
1) The way he was "Watching Him" was most likely a Packet Capture. All it takes is running ettercap on the router in front of the TNT Access Servers, and you can capture all incoming and outgoing packets. You see, these data packets are physicly going through our network at our DataCenter Colo facility, therefore you play by our rules. There is no Privacy cause your on our Network. Also, read the AUP or TOS you may find it very informative on such matters.
3) We are constantly scanning trough our Core Captures to find the most obvious malicious packets. This is automated and is called an IDS.(Intrusion Detection System) It ususally blocks DOS attacks, port scans, ect... among other tools that I will not mention we are watching 100% of the time. 24/7 365 days a year. (No Holidays Off)
It is better to be HATED for who you are, than LOVED for who you are NOT.
THC/IP Version 4.2
-
December 2nd, 2003, 05:42 AM
#4
Member
Wow! That's incredible. Scary. Do ISP's search packets for keywords... so that they might catch pedofiles or terrorists?
-
December 2nd, 2003, 06:38 AM
#5
blocking port scans? how lame
The command completed successfully.
\"They drew first blood not me.\"
-
December 2nd, 2003, 06:51 AM
#6
Senior Member
Similiar thing that I could think of that we do with our own networks, much like Dr Toker was saying is watching packet data go through. Much like when we had an outbreak of blaster in our own network (what a mess), we used Etherpeek to monitor data coming through one of our main switches. Just as simple as plugging in a laptop to the switch, and just watching the data pass through, we were able to track which were the main spreaders, and who needed to be patched. Granted, this is on a smaller scale say about 4,000 workstations and servers with many different network interfaces...I'd say you could apply it on a larger scale.
By the way, Etherpeek...neat little program. Check it out if you have some time to burn. (and money)
Creating further mindless stupidity....through mindless automation.
-
December 2nd, 2003, 06:14 PM
#7
IDS does NOT block anything. It's passive and only watches. If you have something that is actively blocking stuff then it's more accurately called an IPS or Intrusion Prevention System...
And why are you blocking port scans in the first place? If I remember correctly port scans have been found to be completely legal.
Oh, and if my company was using your company as a dedicated hosting facility and then found out that you were looking at every packet we send out then you can bet that we would drop you flat on your ass with no hesitiation. There are PLENTY of secure data hosting facilities out there that will be more than happy to not view everything we send out. As it is all of our sensitive data is encrypted for communication, but our SLA's still won't let a hosting facility view our packets.
Give a man a match and he will be warm for a while, light him on fire and he will be warm for the rest of his life.
-
December 2nd, 2003, 10:09 PM
#8
I'm not really sure I would view an ISP that records all packets inbound/outbound as neccessarily wrong. If ISP's are observing sensative packets (personal information), I can't imagine any reputable ISP would release any such information to the public. (Do I know for sure? no. Anything is possible these days). Also, should someone with mailcious intentions attempt to crack my system, I'd prefer my ISP has an account of all the transactions that transpired so they could better investigate the situation should I call it to their attention.
I guess it doesn't bother me that my ISP may record any/all of my inbound/outbound traffic. They are providing me with a service and in turn, I don't mind sacraficing some privacy for protection.
Just my input on the subject.
The object of war is not to die for your country but to make the other bastard die for his - George Patton
-
December 2nd, 2003, 10:54 PM
#9
Is is possible ISP was asked to monitor that individual as part of an ongoing criminal investigation by the police ? In Canada/US a joint operation called 'Operation Snowball'
was carried out looking for child porno rings; and they monitored some individuals to 'catch them in the act' (so to speak)
-
December 3rd, 2003, 01:00 AM
#10
Now days to expect privacy anywhere is like a pipe dream. Most large stores, and even resturants use audio monitoring and sometime even vidio as precautions against everything.
To expect privacy from your ISP (unless you are paying for privacy & secured service) is unreal.
I would only be upset, if they released any informationn they captured.
\"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
Author Unknown
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|