Peek-a-Boo(ty) 297
Anemophilous Coward writes "Tom's Hardware has a story detailing cDc's new anonymity app, just demonstrated Sunday. Peek-A-Booty is designed to let surfers access sites blocked by government restrictions, and is essentially, a distributed proxy network. It uses a peer-to-peer model, masking the identity of each node. This means the user can route around censorship that blocks citizens' access to specific IP addresses, because the censor doesn't know they're going there. There is also a website dedicated to the project."
Good for some, nightmare for others (Score:5, Interesting)
On the good side: China. Folks over there who have to deal with the gigantic "Firewall O' Death" (also known as the "Damn it, Communism works so stop reading about how it doesn't" Firewall) can possibly use this tool to get to the outside information they need to keep spreadin' the news that "Information good."
On the other side, as a Security Manager in a bank who's sometimes asked to go find out if person XYZ has been accessing nakedhairyeyebrowedcheerleaders.com, I can see how this utility might make it impossible for me to do my job.
So I've got mixed feelings on this utility.
Easily blocked too... (Score:3, Interesting)
Isn't it ironic... (Score:5, Interesting)
The day an anonymous website gets registration info from me is the day I cross completely into PHB syndrome.
So, who is using my computer? (Score:4, Interesting)
There are risks associated with this... (Score:2, Interesting)
Furthermore, since the software acts as a proxy service, this means that anyone, anywhere could potentially be hosting controversial material at any given time.
The cDc acknowledges this, in an interview with The Register [theregister.co.uk]:
"The app can be obscured, but not hidden as you correctly point out. We are going to give advance briefings to grassroots organizations who will act as one distribution chain; risk assessment will be part of that. Obviously, if someone is already on 'state radar', they would not be a suitable candidate," cDc member Oxblood Ruffin told us.
The above is from an article dated July 2001, so it might not be entirely up to date. Still, think twice and do your own research before installing if you for some reason are afraid of having the authorities come knocking on your door.
Gang mentality? (Score:1, Interesting)
I certainly would not want to use an anonymous network where some sicko could be using your computer to conduct their crimes. Do you think the cops would really understand or care how those files got onto your computer? No. Off to jail you go.
Spooky prediction (Score:5, Interesting)
The Great Rogerborgio will make a spooky prediction. When Peek-a-Booty 1.0 reaches 100,000 downloads, a story will break that the client contains a hostile trojan that lets "evil hackers" take control of your machine, impersonate you, steal your credit card details, and screw your shrieking girlfriend in the ass while you watch helplessly, tears of frustration streaming down your shocked, betrayed face.
The story will be submitted by a "credible group of anonymous white hat hackers" and run - unquestioned - by BBC Online and - slightly questioned, at best - by Reuturs, and every other online news source will pick it up from there and spread it as gospel truth.
It will not be true. It will be Fear, Uncertainty and Doubt, pure and simple. Many interested parties will want Peek-a-Booty to fail. In fact, there are so many - governmental and industrial - that even the Great Rogerborgio cannot peer through the mists of time sharply enough to determine the culprit.
But it will happen. And remember, you read it here first.
Aims & Reality (Score:2, Interesting)
One can simply see this trend with the GNUtella network, and monitoring the search strings people send out. They're full of stuff such as "hairless pre-teen sex" and "dogs fucking women".
I'd be much more interested in running Peek-A-Booty if it had some sort of information-type limiting, but this would go against the whole basic concept of the program. I'd be glad to assist those who are oppressed, but WILL NOT help sexual predators and the like.
Maybe people who want to help those in oppressive countries should throw up rogue squid proxy servers with bandwidth rate limiting and perhaps some client access limiting (*.cn, *.ru, and soon, *.us). This is what I do and it works quite well.
I don't even advertise it, but quite a few people find it and use it (mostly people in southeast asia, actually)
Re:Good for some, nightmare for others (Score:2, Interesting)
And before you say that drones' computers don't have that kind of access, remember: it's always the higher ups that think the rules don't apply to them. How about Mr Branch Manager or Ms VP/Accounting getting their workstation compromised?
Another Diamond Age prediction true? (Score:3, Interesting)
Here is what will happen... (Score:2, Interesting)
That will be the end of that.
The End. (uggh) Nice idea though!
New trend in /. posting? (Score:2, Interesting)
Employee surfing - hard learned lessons (Score:5, Interesting)
I used to work at a company that had a very liberal internet use policy. We were pretty early adopters as far as the corporate world goes. We wanted people to use the Internet as a tool and didn't want to micromanage or scrutinize its usage.
Over the years we had to tighten our policy as abuses started to mount. The final straw was an idiot who was collecting kiddie porn and saving it on our network server! We immediately notified the police and he has arrested and prosecuted. The guy literally had hundreds of pictures carefully organized into directories to categorize them. It was obvious (1) that he had been doing it for a while, (2) he had invested a great deal of thought and time in these activities.
The company was dragged into the employee's defense trial. We spent a lot of time and money on attorneys, depositions, etc. It was a nightmare. We were forced to implement a system to control and monitor access to the Internet to insure that this type of thing did not happen again. It is one thing to get caught in that type of situation once but it can't happen again.
So we spent a lot of time and money watching and controlling Internet access. It sucks but it only takes one idiot to mess things up for everyone and there are a lot of idiots out there.
I still think that ideally Internet usage should be the employees' responsibility but in the real world things often get much more complicated.
Re:Good for some, nightmare for others (Score:2, Interesting)
I live in the Midwest and 90% of the banks that I have had interaction with have used MS based computers across the board with a mainframe running the critical stuff. I found out that a lot of banks were running online banking services with little or no firewall protection. At first I thought it was a fluke but I quickly found out it was fairly common in the smaller banks. These institutions would be fairly easy prey for someone with a little knowledge that wouldn't be hard to obtain. I admit I have limited experience in a specific locale so do what you want with my stats.
depending on source license && availabilit (Score:2, Interesting)
As far as it goes, however, Back Orifice is notable as one of the trickier trojays to ferret out