03-20-2001, 12:17 PM
| #1 | ||
| Senior Gardener  Join Date: Jan 2001 Location: Happy-Llama-Land
Posts: 628
Thanks: 0
Thanked 2 Times in 2 Posts
 |
Hi everyone. Just wondering what the security issues are here on the forum. In particular I've seen some excellent grow-diaries and would like to contribute. However I'm a bit concerned about implicating myself in such a manner. Anyone care to address that concern? I'm sure the people posting the excellent diaries I've been reading weren't Feds, though they could be I guess, and they seem to have not been arrested yet so is it safe to post a grow diary? Would putting up pictures change that? If I had to host them at my site? Absimiliard
__________________ Cool sigs are for cool people. I'm just a llama. -Absimiliard | ||
|
|
03-20-2001, 06:40 PM
| #2 | ||
| Master Gardener   Join Date: Oct 2000 Location: Take a left at the light and a right at the rotary.
Posts: 1,013
Thanks: 0
Thanked 4 Times in 4 Posts
|
The only way you can be traced from this site is if we have the IP Logging enabled and that only happens when we have a troll that must be indentified for a formal abuse report to their ISP. The only person with access to the database storing the IP numbers gathered is Rick Garcia, the site developer. Rick is a command away from completely wiping clean the database rather than surrender the information to law enforcement. As far as posting images we will host them for you.  Just follow this link to upload an image: http://www.hempcultivation.com/upload.php3Toke it easy, Pan
__________________ Toke it easy. | ||
|
|
I'll give it a shot |
04-05-2001, 08:26 AM
| #3 | ||
| Seedling Join Date: Feb 2001 Location: outside your window!
Posts: 59
Thanks: 0
Thanked 0 Times in 0 Posts
|
but what about the remember username and password thing in these forums. that must require an ip address. so that means that our ip's are floating around doesn't it. i know it would take more than an ip to get someone, but these internet things are a little weary. can anyone clarify the whole deal with the site remembering our names and ip's? do I just have something screwed up? dyst. | ||
|
|
ip security |
04-05-2001, 04:13 PM
| #4 | ||
| Seedling  Join Date: Dec 2000
Posts: 527
Thanks: 0
Thanked 1 Time in 1 Post
| dys- Your username/password is stored in a filename referred to as a "Cookie" on your hard drive.. when internet explorer or netscape loads up the site, it automatically reads that cookie, and loads the information from YOUR hard drive into the website... cookies can't be viewed by anyone but yourself on your computer. a. skunk | ||
|
|
|
07-03-2001, 11:20 PM
| #5 | ||
| Seedling Join Date: Jun 2001
Posts: 113
Thanks: 0
Thanked 0 Times in 0 Posts
| you might want to be as clinicle and as detached in your reports as you can be, avoid the use of "I" etc dont imply that your the one growing as well, as most politicians eventually get around to slipping in a "we're not ****ing stupid" clause into their laws on evidence | ||
|
|
|
07-11-2001, 02:52 PM
| #6 | ||
| Seedling Join Date: Jun 2001
Posts: 8
Thanks: 0
Thanked 0 Times in 0 Posts
| By using your ip address the feds can track you directly to your front door. It would be in your best interest to protect your ip address while posting to any grow forum. Don't count on the sites system admin to protect you. There are 2 simple ways to conceal your ip while on the net. One way would be to configure your browser to connect to websites through a proxy server. Another way is to connect to websites by using a web-based proxy server. Sorry i don't think that i am allowed to post links to commercial sites here. So do a search for a web-based proxy and see what comes up. Free ones are hard to find, but they are out there. Cookies can be dangerous. Do a search for malicous(bad spelling sorry) cookies and your nonchalant(probably bad spellng again) atitude concerning cookies will change. The doulble click ad company is notorious for setting harmful cookies that they use to track and profile users.Never accept a cookie that is not deleted when you close your browser.It is better to type in your username and password by hand than to accept cookies. | ||
|
|
|
07-11-2001, 02:57 PM
| #7 | ||
| Seedling Join Date: Jun 2001
Posts: 8
Thanks: 0
Thanked 0 Times in 0 Posts
| One more note. When you sign up to be a member of any forum, make sure that you sign up while using a proxy and ALWAYS connect to that forum with your proxy. Posting just 1 time without using the proxy will reveal your true ip address and all will be for not. | ||
|
|
|
07-13-2001, 09:34 AM
| #8 | ||
| Seedling Join Date: May 2001
Posts: 59
Thanks: 0
Thanked 0 Times in 0 Posts
|
How nice it is to be auto logged in with a custom start up page for Marijuana.com. BUT! When you go to another site that reads that cookie. That site knows that you have been to MJ.com and will know your user name there. Futhermore, the type of cookie that that site gives you (not the good people of MJ.com) will record your movement on the net. Then when you return to that site or another affiliated site it reads everywhere you have been. beware
__________________ it's personal... it's budzness | ||
|
|
|
07-13-2001, 12:52 PM
| #9 | ||
| Seedling Join Date: Jun 2001
Posts: 8
Thanks: 0
Thanked 0 Times in 0 Posts
| Of course the mods here must tell you that it safe or else nobody would be posting. For the most part i feel like it is fairly safe to post in forums such as this, but for those people that have like 1000 posts all logged to the same ip i may be worried. Don't assume that a person is new to a forum just because the number of posts beside their name is low. In my opinion changing user names and or passwords frequently provides added protection. Remember too that even if you surf here via a proxy to conceal your ip, your isp will still know tat you were here. But the isp would not actually be able to read your posts though. As you may or may not know the fbi has a program called carnivore that can be used in conjunction with your isp to track your web movements. For the truly security conscious you should look into ip tunnelling, or pay for a service that encypts all data that is transferred as you surf the web. This should protect your idenity completely. Or you could forget about web site based forums and post to usenet anonymously. I don't think that anyone will get busted because they post or surf here, but if you are currently under investigation all your web actions is just one more thing that they could possibly use against you. I have been studying web security and privacy issues for over a year now , so i think that i am providing some good, accurate information here. I am not trying to scare anyone, but do want to let you in on some info. | ||
|
|
|
07-15-2001, 08:27 PM
| #10 | ||
| Seedling Join Date: Jul 2001 Location: yea, right.
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
| clean your cookie cache before visiting .gov websites (esp. the ONDCP website) and yer kosher.. They (.gov sites) have been KNOWN to use malicious or otherwise overt methods of gleaming information from browsers that hit their webpages to build matrices of the users who hit their site.. (To the editors of drug related sites.. MIRROR THEIR STORIES, DONT LINK!!) This advice comes from a person who has implemented software that does such things for private agencies, me.. ;) There are only three locations the feds (or any law enforcement agency) can see you are posting to a grow discussion site is.. A. the site B. your cookies/cache in you browser and C. DCS-1000/Carnivore installed at your ISP. Call your ISP on the last one, hopefuly they will tell you if they feds slapped one on them.. (Earthlink has one, btw..) And better yet, call them and see if they log the URLs you hit, some do this so they can sell it to ad companies. IF this site had their records summoned by law enforcement, the coppers would have to have a warrent to do so.. and that warrent would have to be issued with the notion of some sort of illegal activity being commited by the SITE itself. And since you agree to a disclaimer when you sign on, which nullifies the site against anything you say on this site. (including "I'M RUNNING THE LARGEST GROW ROOM THIS SIDE OF THE MISSOURI RIVER!!!") You are covered by the Digital Internet Privacy Act. (unless you say something that circumvents a copyright protection method, al la DCMA, then yer screwed) now.. i'm not a lawyer, but i do work in computer security, so if you go out and get a crappy lawyer who doesnt know internet/digital law, thats your ass... One could also put a disclaimer at the end of their postings.. Which would nullifiy you from direct legal action. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ The information contained in this electronic mail message is intended for the named recipients ONLY. It may contain privileged and confidential information not privy to public disclosure. If you are not an intended named recipient, you MUST NOT copy, forward, distribute, disseminate the contents of this message, or take any action in reliance on it. If you have received this electronic message in error please notify the sender immediately. This includes, but is not limited to collection by mass information gathering mechanisms. (DCS-1000, Network Sniffing, etc.) By not following these regulations you will be in direct violation of federal law. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ happy circumvention, bjuarez | ||
|
|
 |
« Previous Thread
|
Next Thread »
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
| New To Site? | Need Help? |
All times are GMT -7. The time now is 11:05 PM.
