Page 2 of 2 FirstFirst 12
Results 11 to 16 of 16

Thread: Business espionage dressed up as ISP "Privacy" policies?

  1. #11
    Join Date
    Oct 2009
    Beans
    93
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: Business espionage dressed up as ISP "Privacy" policies?

    Thanks for giving such invaluable feedback. I apologize for my delayed response.

    This is not a post seeking to fix a specific Ubuntu technical issue. It is to see if Ubuntu has reliable tools for professionals to communicate their highly valuable and sensitive intellectual property to clients (and vice versa).

    Professional law-enforcement can collect information after having obtained a court order. https://www.eff.org/deeplinks/2010/1...ls-court-holds But the emphasis is on 'professional' as in having sworn an oath that the information gathered will not be peddled to competitors and if it is, there will be severe consequences!

    Having a for-profit ISP store and “share” info could result in a motive for them to collect more revenue through peddling copied intellectual property than giving us reliable service.

    Protecting and communicating valuable intellectual property is a technical issue. Can the Ubuntu gurus (or others) help us all to find ways to remove the means and opportunity for others to peddle our data? Ubuntu would then be miles ahead of other platforms.

    THANKS!!!

    P.s.: One can change ISP's, but that is not the point.
    Last edited by Hadeda; December 15th, 2010 at 10:15 PM.

  2. #12
    Join Date
    May 2009
    Location
    Jah's Pocket
    Beans
    733
    Distro
    Ubuntu 10.10 Maverick Meerkat

    Re: Business espionage dressed up as ISP "Privacy" policies?

    The issue you are looking to face is just a matter of how the internet works; it communicates in plain text, unless you are on an encrypted line (SSL, VPN, etc). The only real way to FIX the issue is not a change in the os but a change in how sites are hosted and servers connect.

    A very simplified solution would be to have encrypted connection options to every site and server. This would have to be put into place on the servers side. An example is you can browse some sites in SSL, it atleast blocks your ISP from reading what you are reading and seeing what you submit. But this idea would also call for all servers (mail, chat, news, ftp, etc) to move to encrypted communication.

    Now another thing to think of is even this would not save you as if you are visiting a "Ristricted/Censored" site, you are still going to communicate on an IP level. Now any ISP is going to have logs of your traffic, and if they know the offending IP it is just a matter of seeing who went to it. This is how they catch people going to sites they should not be, even if the traffic is encrypted.

    Now the only way to fix that would be to have some sort of a random addressing system, but this would not work as your IP is like your internet home address. Imagine the mailman trying to deliver mail to a street full of homes with addresses that constantly change... See the delema.

    The only Faux solution would be to route ALL of your traffic over a VPN but this still has flaws as they must answer to someone too. Hope that clears it up some for ya.

    EDIT:
    On a further note, if you are just looking for a way to communicate with your home office then setup a VPN server that your road-warriors can connect to and have all your traffic go through it. This will make sure you have control over whom they can communicate with and at what level. Just keep in mind, if they are able to browse the internet through the VPN connection then your company's ISP will have access to any unencrypted data that leaves your network or is coming in to it. This is where good security policies come in and a competent admin.
    Last edited by Boondoklife; December 15th, 2010 at 10:39 PM. Reason: Added more data
    MyBlog
    Sledgehammer engineering, if it doesn't work, hit it damn hard.

  3. #13
    Join Date
    Apr 2006
    Location
    Montana
    Beans
    Hidden!
    Distro
    Kubuntu Development Release

    Re: Business espionage dressed up as ISP "Privacy" policies?

    Quote Originally Posted by Hadeda View Post
    Thanks for giving such invaluable feedback. I apologize for my delayed response.

    This is not a post seeking to fix a specific Ubuntu technical issue. It is to see if Ubuntu has reliable tools for professionals to communicate their highly valuable and sensitive intellectual property to clients (and vice versa).

    Professional law-enforcement can collect information after having obtained a court order. https://www.eff.org/deeplinks/2010/1...ls-court-holds But the emphasis is on 'professional' as in having sworn an oath that the information gathered will not be peddled to competitors and if it is, there will be severe consequences!

    Having a for-profit ISP store and “share” info could result in a motive for them to collect more revenue through peddling copied intellectual property than giving us reliable service.

    Protecting and communicating valuable intellectual property is a technical issue. Can the Ubuntu gurus (or others) help us all to find ways to remove the means and opportunity for others to peddle our data? Ubuntu would then be miles ahead of other platforms.

    THANKS!!!

    P.s.: One can change ISP's, but that is not the point.
    Encrypt the message.
    There are two mistakes one can make along the road to truth...not going all the way, and not starting.
    --Prince Gautama Siddharta

    #ubuntuforums web interface

  4. #14
    Join Date
    Oct 2009
    Beans
    93
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: Business espionage dressed up as ISP "Privacy" policies?

    Thanks again for clearing this up for me - I get the picture.

    Perhaps there is one last question.

    Does anyone know of a structured Ubuntu security course addressing above issues targeted at lay folks such lawyers or accountants?

  5. #15
    Join Date
    May 2009
    Location
    Jah's Pocket
    Beans
    733
    Distro
    Ubuntu 10.10 Maverick Meerkat

    Re: Business espionage dressed up as ISP "Privacy" policies?

    You don't need an Ubuntu centric class for this, if you check I'm sure one of the local colleges would have internet security classes available. The internet is an abstract idea which has a certain core functionality and flaws, ALL OSs are victim to them.

    If you go the route bodhi.zazen suggested, make sure that you use a strong password to encrypt the message.
    Last edited by Boondoklife; December 21st, 2010 at 06:44 PM.
    MyBlog
    Sledgehammer engineering, if it doesn't work, hit it damn hard.

  6. #16
    Join Date
    Oct 2009
    Beans
    93
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: Business espionage dressed up as ISP "Privacy" policies?

    Excellent advice, thank you!

Page 2 of 2 FirstFirst 12

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •