How much access to 'private' data do message board/website staff have?

[telekinetic]

This was going to be put in the 'anonymous poster' thread, but I figured I would put it here instead:

Caveat: I do not use vbulletin, so what I say here only applies strictly speaking to Invision Power Board. However, it applies more generally to this and other message boards as well, and all websites that store your information more generally than that.

All moderators on my board can access the following 'semipublic' information:

• A user's full login name (if it differs from his display name)
• A user's actual email address
• A user's IP address, and any other IP addresses that user has used

As an administrator, I can access the following 'private' information:

• Read people's Personal Messages
• Read people's blog entries (be they private or not)
• Read email sent through the 'email this member' board function
• Read and recover deleted posts
• Read and revert posts to previous edits

Now, it is not convenient for me to do any of this administrative 'snooping'...it involves doing MySQL lookups on the raw database. My users are aware this 'snooping' is possible, and I have used it to resolve potential legal (and board) disputes.

The only thing that almost all board packages (and websites in general, by now) handle securely is passwords. I cannot access your password, as it is hashed, I can only reset it.

Is anyone surprised that this is possible? I would hope not...operating with the assumption of privacy online is a good way to get a nasty surprise.

Can any staff here confirm or deny that vbulletin is similar? Even if everything were hashed and stored securely, instead of stored plain text/gzipped (very unlikely), anyone with both the server FTP password and an admin login could just copy the whole board onto an offline test environment, reset your password, and log in as you, getting all the access you have without alerting you that someone has changed your password.

Can any IT staff confirm or deny their ability to access supposed 'private' data? For example, I know our IT department can easily read the email of anyone with a blackberry, but it requires logging in as someone to read regular user's.

[Cynthetiq]

I cannot confirm nor deny what you've posted here.

[Martian]

General rule of the internet: anything that's not encrypted is going to be accessible to someone. Passwords are, as a rule, stored in a hash function and not even directly accessible to admins. Other than that, if you put it out there someone has the capability to read it, and to connect it back to you.

If you're paranoid about things like email, you can use encryption. PGP is free and widely available.

On forum, it's important to keep in mind that you're a guest on someone else's space. Ideally that someone would respect your privacy except in situations where laws are being broken or rules violated, but you can't always count on that. The solution is to not put information out there that you wouldn't want widely available.

I have no idea regarding the specifics of how TFP handles these things. It has been publicly confirmed in the past that staff are able to access things like hidden email addresses and private blog entries, and I believe it's been indicated before that they can access private messages if they need to as well, although I shouldn't be considered an authority on that. Regardless, after four years of interacting in this space I feel confident in stating that the administrators here will respect the privacy of the membership unless specific circumstances force them to do otherwise (chiefly liability issues, although there may be other situations).

[Shauk]

You can actually mod the forum packages to store passwords in plaintext serverside if you wish, the users would be nonthewiser, I did it as a social engineering project and walked away with an entire music scene's passwords, I wasn't exactly ethical back then. Needless to say, the stuff people keep private is often boring and of no concern to the admin types. You might catch a few dirty messages here and there, which can potentially be exciting if you know those people in person, but it's just meaningless without personal context.

Point stands though, you're the only one who can censor yourself or find secure channels to transmit personal data such as incriminating/private photos & other forms of media.

[wooÐs]

merge

[The_Jazz]

Shauk, what does it say about me that I'm more upset by your comma splices than by you stealing faceless strangers' passwords?

Oh yeah, that the mythical stick up my ass is more metaphorical than mythical. Forgot about that....

When I came across this thread I thought I had two options - deflect with humor (see Cynthetiq) or move it out of view of everyone for staff discussion (which in reality would mean that it would never see the light of day again). As a rule - and for good reason - I don't like discussions like this because there will invariably be someone who starts railing on the staff for "First Amendment Rights" or somesuch bullshit.

Then I realized that there's a third option and one that's probably the best fit given that I know that telekinetic is a good guy, loves this space and isn't going to do anything to purposefully harm it. And that's to say that, regardless of what mods can or can't do and what admins can or can't do (and the only admission you'll get from me is to confirm that they're different), you either trust us or you don't. If you don't, then you shouldn't post personal stuff here, especially if you buy into any of the smokescreen that I throw up around myself. If you do trust us, then there we go.

[Shauk]

wow yeah, I was just on a comma roll there.

>.>

Oh well.


NOT THAT IT MATTERS BUT:
they weren't faceless strangers, I met every one of them for the years I spent DJ'ing and attending various events in which I was not DJ'ing
I am a social buttahflyyyy or something.

[Cynthetiq]

Quote:

Originally Posted by Shauk

You can actually mod the forum packages to store passwords in plaintext serverside if you wish, the users would be nonthewiser, I did it as a social engineering project and walked away with an entire music scene's passwords, I wasn't exactly ethical back then. Needless to say, the stuff people keep private is often boring and of no concern to the admin types. You might catch a few dirty messages here and there, which can potentially be exciting if you know those people in person, but it's just meaningless without personal context.

Point stands though, you're the only one who can censor yourself or find secure channels to transmit personal data such as incriminating/private photos & other forms of media.

This was a common thing done back in the BBSing days, think original message boards for those that never did dial up modems back in the 80s. The sysop would then have your passwords, and since the community was small would log onto all the other boards trying out your name and password. Once that trust is breached, that person was forever tainted within the community. Since it was small, it was a great shame.

Today, just setup another one...

The most important thing here is that we've developed a level of trust. Now I'm sure there will be one person in the community who will come forward and make a deal about being violated for privacy or something or another. We protect this space as we would any, and that may mean taking things seriously to the point where we have to look at logs and track users habits within our space. It does not mean however that we blab it among the community at large.

[Martian]

Quote:

Originally Posted by Cynthetiq

This was a common thing done back in the BBSing days, think original message boards for those that never did dial up modems back in the 80s. The sysop would then have your passwords, and since the community was small would log onto all the other boards trying out your name and password. Once that trust is breached, that person was forever tainted within the community. Since it was small, it was a great shame.

Today, just setup another one...

The most important thing here is that we've developed a level of trust. Now I'm sure there will be one person in the community who will come forward and make a deal about being violated for privacy or something or another. We protect this space as we would any, and that may mean taking things seriously to the point where we have to look at logs and track users habits within our space. It does not mean however that we blab it among the community at large.

So that was you in that black van parked across the street. You need a better disguise, the groucho glasses don't cut it.

[wooÐs]

Quote:

Originally Posted by The_Jazz

When I came across this thread I thought I had two options - deflect with humor (see Cynthetiq) or move it out of view of everyone for staff discussion (which in reality would mean that it would never see the light of day again)...Then I realized that there's a third option and one that's probably the best fit given that I know that telekinetic is a good guy, loves this space and isn't going to do anything to purposefully harm it.

*gasps and then throws down favoritism card*

Yeah and if I created this thread I'da been permanently banned, forcing me to use a proxy just so I can come back and visit.

[telekinetic]

Quote:

Originally Posted by The_Jazz

Then I realized that there's a third option and one that's probably the best fit given that I know that telekinetic is a good guy, loves this space and isn't going to do anything to purposefully harm it. And that's to say that, regardless of what mods can or can't do and what admins can or can't do (and the only admission you'll get from me is to confirm that they're different), you either trust us or you don't. If you don't, then you shouldn't post personal stuff here, especially if you buy into any of the smokescreen that I throw up around myself. If you do trust us, then there we go.

Thanks for the vote of confidence. I am glad you sussed out the point I was trying to make! If I do not trust the staff, no amount of technical safeguarding and obfuscation is enough for me to submit personal information to a mechanism they control. If I do trust the staff, the simple courtesy of having to click to view 'private' info, and trusting them not to unless they need to is enough. This goes for every website I join, not just this one.

When you go to your friend's house, does it bother you he could secretly be filming you pee, or look at your social security and credit cards while you're in the bathroom? Or do you not even think of it, because he is your friend.

[Cynthetiq]

Quote:

Originally Posted by wooÐs

*gasps and then throws down favoritism card*

Yeah and if I created this thread I'da been permanently banned, forcing me to use a proxy just so I can come back and visit.

I don't know why people feel this way, you aren't the first to make the claim. I'd state that it is far from the truth since we spend exhaustive time and staff resources to ensure that the individual is well received here.

This topic isn't a comfortable discussion for staff because most people can't seem to understand the difference in taking care of something and just accessing information for personal gain/reasons. They get emotionally involved in the "right to privacy" and not in the logistics of running and operating a privately owned space.

People have created such threads for the years we've been around. Since I installed the anonymous function, people have decried it, while others praised it.

I'm currently working on a man's laptop removing some spyware. He was kind enough to tell me that he's got some pr0n on his machine, gay pr0n. I told him that I didn't care what it was, I was interested in removing the virus. Meanwhile, knowing what I know about computers, I could easily discern and snoop about. But why? It's just more time I'd have to spend on his stuff, instead of finishing and moving onto the next task, or even going home instead of staying longer at the office.

[SecretMethod70]

If it's on a website, someone can access it. That's just a fact of the internet. Your e-mail is no different: there are people who could read it all if they wanted. Whether you trust that we adequately limit that ability and use it sparingly... well that's up to you.

[ShaniFaye]

Quote:

Originally Posted by telekinetic

This was going to be put in the 'anonymous poster' thread, but I figured I would put it here instead:

Caveat: I do not use vbulletin, so what I say here only applies strictly speaking to Invision Power Board. However, it applies more generally to this and other message boards as well, and all websites that store your information more generally than that.

All moderators on my board can access the following 'semipublic' information:

• A user's full login name (if it differs from his display name)
• A user's actual email address
• A user's IP address, and any other IP addresses that user has used

As an administrator, I can access the following 'private' information:

• Read people's Personal Messages
• Read people's blog entries (be they private or not)
• Read email sent through the 'email this member' board function
• Read and recover deleted posts
• Read and revert posts to previous edits

Now, it is not convenient for me to do any of this administrative 'snooping'...it involves doing MySQL lookups on the raw database. My users are aware this 'snooping' is possible, and I have used it to resolve potential legal (and board) disputes.

The only thing that almost all board packages (and websites in general, by now) handle securely is passwords. I cannot access your password, as it is hashed, I can only reset it.

Is anyone surprised that this is possible? I would hope not...operating with the assumption of privacy online is a good way to get a nasty surprise.

Can any staff here confirm or deny that vbulletin is similar? Even if everything were hashed and stored securely, instead of stored plain text/gzipped (very unlikely), anyone with both the server FTP password and an admin login could just copy the whole board onto an offline test environment, reset your password, and log in as you, getting all the access you have without alerting you that someone has changed your password.

Can any IT staff confirm or deny their ability to access supposed 'private' data? For example, I know our IT department can easily read the email of anyone with a blackberry, but it requires logging in as someone to read regular user's.

Actually in IPB reading emails sent using the "email this member" is a standard option in the admin cp, has been for as long as I can remember (I've used IPB since its inception). There is a mod that also sets the pm's up the same way so there is no raw data to go thru. My members are warned at sign up that I have the opportunity to do this. It's something I have utilized only a handful of times in many many many years.

Maybe because I've run forums for so long and pretty much know what admins can do that its a "given" in my mind, and not a problem for me and I tend to forget that "normal" people don't always know just what exactly they are entrusting people with. As a forum admin for many boards I own, I have a great respect for what it takes to run one and I am more than confident that the Admins here only do what is in the best interest of the community. Although I will say as an ordinary member here it DRIVE ME BANANA'S to see 8 spam posts and not be able to do anything about it lol

[The_Jazz]

Quote:

Originally Posted by Cynthetiq

I don't know why people feel this way, you aren't the first to make the claim. I'd state that it is far from the truth since we spend exhaustive time and staff resources to ensure that the individual is well received here.

And sometimes it's hard for some of us to tell what's a joke and what's not. For the record - and for a change - I wasn't the humorless one here, and I got it, wooDs.

To slip back into character for a moment, no one should delude themselves to think that they're important enough for me to spend 10 minutes ferreting out exactly who they are and what they've been up to. I, personally, really couldn't care less.

Unless, of course, I think that you're fucking with membership or abusing the system, in which case I'll be stalking you like dung beetle chasing a constipated elephant, awaiting that glorious moment when all your shit explodes.

[wooÐs]

Quote:

Originally Posted by Cynthetiq

I don't know why people feel this way, you aren't the first to make the claim. I'd state that it is far from the truth since we spend exhaustive time and staff resources to ensure that the individual is well received here.

Ok, I was kidding about the favoritism card part.

[The_Jazz]

Quote:

Originally Posted by ShaniFaye

Although I will say as an ordinary member here it DRIVE ME BANANA'S to see 8 spam posts and not be able to do anything about it lol

Let me know if you want the ability to do something about it. That goes for anyone else. We can always use more spam cleaners.

[wooÐs]

Quote:

Originally Posted by The_Jazz

And sometimes it's hard for some of us to tell what's a joke and what's not. For the record - and for a change - I wasn't the humorless one here, and I got it, wooDs.

Ok phew lol.

Maybe we should all work on a code word or something to make sure everyone knows when I'm kidding, without having to type 'j/k.'

[The_Jazz]

Quote:

Originally Posted by wooÐs

Ok, I was kidding about the favoritism card part.

If that's the only part you're claiming to be kidding about, then I'm calling bullshit, mainly because I know you know better.

[Martian]

Quote:

Originally Posted by Cynthetiq

I'm currently working on a man's laptop removing some spyware. He was kind enough to tell me that he's got some pr0n on his machine, gay pr0n. I told him that I didn't care what it was, I was interested in removing the virus. Meanwhile, knowing what I know about computers, I could easily discern and snoop about. But why? It's just more time I'd have to spend on his stuff, instead of finishing and moving onto the next task, or even going home instead of staying longer at the office.

That's an interesting analogy. Having worked full time in the field before (and doing so sporadically still), I can say that I have stumbled across or been told about some bizarre stuff on client's machines before. Gay pr0n? Pretty tame, compared to some of what I've seen. So long as it's not illegal, I couldn't care less. Knowing that a guy loves grannyswithstrapons.com really doesn't gain me anything; after he's billed and paid up, I probably won't remember his name anyway.

Professional courtesy is key in any situation where you're handling personal information. While the staff don't get paid to do what they do here, it's really the same principle in effect. They have nothing to gain by going through your private information, and I trust them to respect the privacy of the userbase here.

So now I've come full circle, I suppose. My prior post was input as an IT professional, this one is just me. I trust Halx, Secretmethod70, the_jazz and Cynthetiq. They've all become acquaintances of varying degrees of familiarity over the years, and they've all individually earned my respect independently of their position. For that matter, the same can be said about the moderator team.

You either trust them or you don't.

[wooÐs]

Quote:

Originally Posted by The_Jazz

If that's the only part you're claiming to be kidding about, then I'm calling bullshit, mainly because I know you know better.

Ok well then fine.

I have zero dupes here. Promise. For now, anyways.

---------- Post added at 05:50 PM ---------- Previous post was at 05:44 PM ----------

Don't tell the other 3 but have I told you you're my favorite admin?

[The_Jazz]

Quote:

Originally Posted by wooÐs

Don't tell the other 3 but have I told you you're my favorite admin?

Don't bullshit a bullshitter. I can read your signature. And I'm not anyone's favorite anything, unless it's "guy that just left" or "motherfucker I never have to deal with again".

In other words, don't go tearing down my carefully crafted facade of "genuine, Grade A, grain-fed asshole (see Cynthetic's signature)". It's taken me years to get people to believe that, and I won't have you tearing it down because you're bored one afternoon, missy.

[wooÐs]

Quote:

Originally Posted by The_Jazz

Don't bullshit a bullshitter. I can read your signature. And I'm not anyone's favorite anything, unless it's "guy that just left" or "motherfucker I never have to deal with again".

In other words, don't go tearing down my carefully crafted facade of "genuine, Grade A, grain-fed asshole (see Cynthetic's signature)". It's taken me years to get people to believe that, and I won't have you tearing it down because you're bored one afternoon, missy.

*swoon*



I mean, yes sir, Mr. Badass, sir.

[Martian]

Quote:

Originally Posted by The_Jazz

In other words, don't go tearing down my carefully crafted facade of "genuine, Grade A, grain-fed asshole (see Cynthetic's signature)". It's taken me years to get people to believe that, and I won't have you tearing it down because you're bored one afternoon, missy.

I don't believe your facade.

I just don't like you.

Asshole.

[The_Jazz]

Thank you for drinking the Kool-Aid, citizen. Move along and be happy that I don't get my banstick out for flaming.

[Martian]

Your banstick doesn't scare me, even if it is bigger than mine.

I wonder if I can convince Halx that you're a spammer.

[LordEden]

Quote:

Originally Posted by The_Jazz

Let me know if you want the ability to do something about it. That goes for anyone else. We can always use more spam cleaners.

Oooooo! The hobbit wants power! Come on, I need something to offset the short end of the stick I got in the height dept.

*rimshot*

To the OP: I run under the assumption that everything I think is "private" can be read by someone, so I never post anything that I wouldn't tell a friend/co-worker/random bar fly. If you figure someone is reading everything you type, then you won't put anything down on "paper" that you don't want someone to read.

[telekinetic]

Quote:

Originally Posted by ShaniFaye

Actually in IPB reading emails sent using the "email this member" is a standard option in the admin cp, has been for as long as I can remember (I've used IPB since its inception)

Yeah, you're right, it's like that on mine also. The difference was insignificant enough that I didn't think non-admins would care about it i have never checked the "email through board" to resolve any disputes, but reading PM's has resulted in a mass banning, as it confirmed a scam to try to sue the board owners in general, and me specifically.

Quote:

Maybe because I've run forums for so long and pretty much know what admins can do that its a "given" in my mind, and not a problem for me and I tend to forget that "normal" people don't always know just what exactly they are entrusting people with.

Yeah, that's exactly why I made this post. The panic about anon not really being anon didn't make sense to me based on what is known about forums by anyone who admins them.

Quote:

As a forum admin for many boards I own, I have a great respect for what it takes to run one and I am more than confident that the Admins here only do what is in the best interest of the community.

I too have confidence that the staff here will continue to do what is best to keep the board growing and evolving down the original mission path of being a place of mature and open discourse.