Published: Tuesday 26th December, 2006 | Author: Steve Kerrison
printer friendly layout 
discuss in the forums 
email to a friendStudents at the University of Bristol have recently been warned of the dangers of posting to social networking websites. They aren't the first to hear these warnings, and they won't be the last.
Prof. Nigel Smart of the Computer Science Department at the University of Bristol has expressed his concern at the worrying trend of people giving up their privacy on the internet via social networking websites. He told HEXUS: "I am concerned that from some of the posts I have seen, by colleagues, students and others, that there is a deep societal problem emerging of people giving up their privacy without realising it".
There's little point in worrying about ID cards, RFID tags and spyware when more and more people are throwing away their privacy anyway. And the potential consequences are dire.
Just about anyone can read what's posted onto social networking websites like MySpace and FaceBook. 'Anyone' includes the intended audience of friends, but potentially relatives, teachers and employers too. And much of what is posted can never be deleted. I don't need to point out that Prof. Smart's fears are well-founded and that this is bad news, do I?
People have been posting stuff onto the web for years, though, so why is privacy suddenly a bigger problem for a larger number of people? Three or four years ago, it was all about chat rooms and forums. Both have a level of anonymity by default; you can choose your handle and only talk about what you want to, truth or lies... nobody will know.
Chat rooms are all but dead and buried now, amidst fear of sexual predators and other unsavoury types. However, forums continue, by virtue of their more topic-focused and moderated nature.
Then came what some people like to call 'Web 2.0'. On that wave of "let's pretend we've upgraded the Internet, LOL" came the social-networking websites... along with those terrible pages of drivel people like to call 'blogs'. It became cool to talk about mundane things and show other people what had been happening in your life. In essence, all the chat room goers had something to do once again.
So where's the problem in that? People treat users on their social-networking 'friends lists' just like their normal friends. They'll chat to them, share details from their lives, show them photos... do stuff friends do. People are comfortable with that. Problem is, they're too comfortable.
Bitching down the phone to someone about somebody else is a fairly common occurrence amongst friends, so socially, it's quite acceptable to do the very same with online friends, right? Yes, except unlike a phone call, it isn't private. Interestingly, you could probably get away with it in a chat room; they were essentially anonymous, but social networking is much more personal; the anonymity is all but gone. Fancy being sued for libel? How about initiating a police inquiry, or an investigation by the board of your educational establishment? It could happen, if you say or post the wrong things.
Once something appears on the Internet, it's almost impossible to remove. Within minutes, chances are a search engine will crawl it, then that search engine will cache it, so that even if the page changes, the original content will still be there, for a while, at least. Then there are archiving systems like the Way Back Machine. Once the page is on there, it doesn't matter what changes are made... it's archived. Of course, this assumes that pages are accessible by anyone, which isn't always the case, but that doesn't really matter.
It's easy to get an account with almost any social-networking site, and we've learned from chat rooms, it's easy to pose as somebody else. It's easy, then, to get added to a friend list (especially with the 'more friends the better' attitude of current social-networking sites). Suddenly, that 'friends only' stuff is pretty much public.
As these sites continue to grow in popularity, so too does the value of the information on them to parties other than those directly involved. Parents can see what their children really get up to at Uni'. Teachers can see what their pupils really think. Potential employers can profile applicants based on their online braggings and other shenanigans. While much of the content might be taken humorously amongst friends, other parties might not see it that way.
Profiling a person by their online activities need not be a long and arduous task entailing reading their boring blogs and examining all their FaceBook pictures, either. If somebody can write 1000 lines of code to scan MySpace for sexual predators, someone else can apply the same principals to profiling a single person.
Social networking users need to take a step back and think about just what they're posting onto the Internet. It'll probably be too late for a number of people, and it'll take a lot more 'victims' of the lack of privacy before most users actually start heeding these warnings. Just beware that anything posted online to your friends now, could very easily come back to haunt you in days, months, or even years to come.
My name is Steve Kerrison. I don't have a FaceBook account, or a MySpace login. I do have a blog, but it's work-related.
Update: The Slashdot effect. No, I'm not talking about site slowdown, we did just fine, thanks :). As you might have guessed, this article was featured on Slashdot. The end result is a number of comments on Slashdot with different takes on this issue, some quite the opposite of mine. So, if you're still not sure what side of the fence you want to be on, have a read at what some of the Slashdot community think. We have, of course, also got a discussion thread in the HEXUS.community, into which you may want to submit your own two pence-worth (just be careful how much personal information you give out!).
Copyright © 1998 - 2010, HEXUS.net. All rights reserved. Terms, conditions and privacy information.
HEXUS® is a registered trademark of HEXUS Limited.
2010, the year of...
IE7 Search
Firefox 2 Search
HEXUS.community :: your right2reply
Reading this reminded me about a friend of mine who said to me that he had heard that all search engines cache webpages and data posted on sites like MySpace was stored for a very long time. I just looked at him, and was like err?! ...Didn't you realise that all your personal information posted on sites like MySpace was publicly accessible and stored for long periods of time?.. and he honestly didn't.
So I can totally understand the point you're putting across in the article. It may well take several 'victims' to really highlight the issue. It would seem like common sense, but to many they are completely unaware.
;)Quote
I'm glad I use a completely separate email for these sites than I use on my CV and I don't have my last name entered either.
I think that sort of thing will only get you so far, because someone determined can combine several factors and do detective work.
For example, I have used the same pseudonym on a number of other sites such as slashdot and youtube, and at times been fairly opinionated, so if they wanted to someone could do quite a lot of research on me. It would probably not take much more effort to join the dots and get back to my real meatspace identity.
In my case I have included in my profile that I live in Reading (that has a population of about a quarter million) and work for Nokia (A company of 60 thousand employees), so that should not narrow things down to much for an attacker, but some people are not so vague.
A college of mine has two pre-teen daughters who regularly go online, and he has told his that online they live 'near London, England' and never more specific than that. I think that especially for anyone vulnerable such as children, deliberate vagueness should be the rule, and we should think carefully about how much people can deduce by considering many factors. In my case, there are plenty of people who live in Reading and work at Nokia, but probably only 200 or so who do both. That is enough for me, but if I added any more factors someone could probably deduce who I am.Quote
Ok so someone can know a load of stuff about me, but I think the chances of someone going out of their way to find out exactly where I live and then attack me are pretty slim.
For non casual stuff I do have a different email address though google my name I come up and it'll easily associate with my username, which is my username for way too much stuff really. I don't think I have written anything on t'internet that could put me in trouble though.Quote
http://www.hexus.net/content/item.php?item=7499
Not if they think before they click submit... ;)Quote
Chat rooms are all but dead and buried now, amidst fear of sexual predators and other unsavoury types.
They are?
There are 16604 users and 83864 invisible on 28 servers.
thats over 100,000 people that dissagree with you there, and thats at 2:17am, and not even the biggest network, sure the likes of aol/yahoo may be dead as someone else said but who in their right mind ever used those anyway? IRC was around before the internet, and isnt likely to die out any time soon.Quote
Reply