How Can We Take Back Our Privacy?

Privacy has become a huge issue. We get free (or cheap) and useful services in return for information about us and the potential uses of this information are becoming more frightening over time. If you don’t have anything to hide you might think this is OK, but what if someday someone will make use of the information you shared to do something you don’t approve of? The problem is that you can’t take it back. You can’t have your information withdrawn to get your privacy again, not even if you give up on the services that you got in return.

So I’ve been wondering if there’s a way, without legal assistance, to create a software mechanism that would allow us to take back our privacy. For example, let’s say I decide to close my Google account. I would like then all the data Google has on me to become undecipherable to them or to anyone else.

Unfortunately my thoughts on this led me to realize that this is a lot like DRM, which has failed miserably so far as people find the keys required to decipher the information eventually. But I’m still wondering whether this could work somehow.

My Home WiFi Is No Longer Free

Ever since I had a wireless router I’ve been sharing my WiFi network with anyone who could find it. It had a web-only restriction, but that’s just because I didn’t want anyone using file sharing and using up all the bandwidth. Yesterday, however, I password protected and encrypted my home WiFi network.

The reason is the latest unveiling of Firesheep, a tool for HTTP session hijacking that works over open WiFi networks. The only protection against Firesheep is using secure HTTP (https://) with every website, but I don’t think I’m that meticulous to remember this all the time. And yes, I know about the extensions that help with that.

On the other hand, it’s probably a better idea to start using https everywhere just to be on the safe side.

p.s.

Sorry, neighbors.

Croatia Wi-Fi Rant

I’m tired of the Wi-Fi situation here in Croatia. Even if you pay for a connection, it’s a crappy one that won’t let you upload stuff at a reasonable rate. I’ve been struggling to find a good Wi-Fi spot since I came here, and so far found only one (in Zadar.) Maybe tomorrow in Dubrovnik.

Screw it… I’m done trying to upload stuff for today. Going to write today’s post offline, take a shower and go to bed.

An Observation On Online Check-In

When I’m abroad I keep trying online check-in, only to be reminded again and again why I don’t use it: I don’t have a printer. That’s a deal breaker for me, since I prefer to have hard copies of my travel documents.

Yesterday the same thing happened: I started the online check-in procedure, chose a seat that was different than the automatic selection and proceeded until I was reminded that I need to print something. I cancelled the operation and later went to the airport. At the airport I used a self-serve check-in machine instead of going to the counters. To my pleasent surprise, the selected seat was the one that I chose, not the automatically assigned one!

This means that using the online check-in system you can choose a seat even if you don’t complete the entire procedure. I think I’m going to give it another try (if I get the chance) on my next flight. Also, I wonder what would have happened had I gone to the counters. Would they still assign me the same seat?

YouTube’s Front Page Sucks

I’m not in the habit of ranting about free online services, but I really want YouTube to become a better website because I think it has a lot to offer me when I’m looking for something to watch.

So what’s wrong about YouTube’s front page? You can add and remove “modules” but most of them are completely useless:

  • Most Popular shows one video from each category and can’t be customized to show more or less videos from a specific category. A quick glance tells me non of those videos interests me, so I have to click “view all”, for which I don’t need this module at all.
  • Spotlight is a periodic module currently showing videos with the theme “Merry Christmas”, blatantly ignoring the fact that I’m in Israel and have never taken interest in Christmas videos.
  • Recommended for You is based on a sub-standard recommendation engine. I honestly expected more of Google – this module shows videos based on the titles of my previously watched videos. I can do string searches for my favorites myself, thank you very much. What I would have expected is same-genre kind of recommendations, which would expose me to new performers/comedians/bands, not ones I already know.
  • Featured Videos is the most irritating module and it cannot be removed! Right now it’s showing me four different Israeli videos even though Israeli videos comprise about 1% of my YouTube activity, and despite the fact that I set my location to “Worldwide” instead of “Israel”. Even more upsetting is that YouTube chooses news-related videos and I try to avoid news as much as I can.

The only useful modules for me are Subscriptions and Recent Activity because I have total control over them and are the “social network” features of YouTube, which actually make sense.

My Oldest Email Messages

  • ISP (from my local mail archive at home):
    • Date: February 1, 1998
    • Subject: a Vocaltec Internet Phone license I got as a gift from my now-deceased Canadian relative. Using this software we had a lot of enjoyable video conversations over the Internet. I also found a lot of stories he sent me over time.
  • Hotmail:
    • Date: March 16, 1999
    • Subject: registration confirmation from Serials 99. I believe I can still use it :)
  • Yahoo!:
    • Date: October 2, 2003
    • Subject: a message from an old acquaintance who found me online. This is from the short period of time in my life when I tried to switch from Hotmail to Yahoo! Mail. Once I got a Gmail account, I ditched Yahoo! Mail for it.
  • Gmail:
    • Date: August 11, 2004
    • Subject: “welcome to Gmail” message explaining how Gmail is different

I’m an Internet dinosaur.

איך אומרים? קול או כל

קבלתי הזמנה לחתונה. בהזמנה היה כתוב “כל ששון וכל שמחה”. זה נראה לי מוזר: תמיד חשבתי שזה “קול ששון וקול שמחה, קול חתן וקול כלה”. חיפוש מהיר בגוגלך של “ששון שמחה חתן כלה” מגלה שאף אחד לא באמת יודע. למעשה, תוצאות החיפוש הראשונות מראות שלוש וריאציות שונות

  • קול ששון וקול שמחה, קול חתן וקול כלה
  • כל ששון וכל שמחה, כל חתן וכל כלה
  • קול ששון וקול שמחה, כל חתן וכל כלה

אז איזה מהוריאציות נכונה? עכשיו נראה לי שהאחרונה הכי הגיונית, אבל אפשר להגיד שכולן הגיוניות במובן מסויים.

Enabling Public Wireless Access With ZoneAlarm Z100G

A while ago I got as a gift a wireless router – a ZoneAlarm Z100G. When I got it at first I defaulted to securing the wireless network from public access (by following this article). Then I thought about it a little and decided to be nice to my neighbors who want to access a wireless network. I mean – why not? Sometimes I try to find a wireless connection with my laptop and it’s very frustrating when I realize that all networks are secured.

Still, I only wanted to enable web access to outsiders using my connection. I don’t want them to use file-sharing on the account of my very limited upload bandwidth.

The “trick” to configuring such a setup is using the rules system (select the “Rules” tab under the “Security” main menu item.) On my network I have a desktop connected to the router with a network cable and a laptop that I occasionally connect through WiFi. Both computers are defined as known network objects and are named “desktop” and “laptop”. See how that is done in the documentation on how to add a network object in the Z100G (hopefully the link is still valid when you’re reading this) or simply click “Help” in your router’s main menu.

The rules I use are as follows (the order of the rules matters):

  1. Allow, source WLAN, destination WAN (Internet):Web Server
    This allows the public web access to all.
  2. Allow, source desktop, destination ANY:Any Service
    This allows my desktop computer access anything.
  3. Allow, source laptop, destination ANY:Any Service
    This allows my laptop computer access anything.
  4. Now there are a bunch of forwarding rules I use for file-sharing and SSH access to the desktop. They are not related to this topic, but it’s important that they will come before the next rule.
  5. Block, source ANY, destination ANY:Any Service
    This blocks all other traffic.

Note that this configuration is very restrictive – with my current rule configuration, if I try to connect another computer with a network cable to the router it will not get any access and I will have to define it as a network object and specifically add a rule for it like I did for my desktop (rule #2). You can be less restrictive with the rules, for example by replacing the last rule with 2 less strict rules just for WLAN (blocking all access to and from the WLAN) and an additional rule to allow anyone who is connected with a cable to access the internet (after all, you probably trust that computer if it’s physically connected to your router.)

A nice feature in the Z100G router is that the wired and wireless LAN are separate. You have to bridge them to allow them to access one another. For security reasons, I bridge the networks only when I have to. When I’m done with the bridge I remove it.

Another important setting is to not allow different wireless stations access one another. Unfortunately here the default is to allow such access. The setting to disable this is in Network->My Network->Click Edit next to WLAN->Click “Show Advanced Settings”->Change “Station-to-Station traffic” from “Allow” to “Block”.

Hopefully I correctly configured my router to allow public web access only. If you think I made a mistake, please let me know in the comments.