Privacy Gestures

In what is probably a meaningless gesture, i’ve decided to make a start on carving out a more private space on the internet. This is obviously at odds with me posting pictures on flickr, writing a blog, using twitter, but leaving that contradiction aside, here is the set of (random) actions that i’ve taken.

PGP Mail – sending mail on the internet is akin to sending a postcard, encrypting your mail is the equivalent of putting it in an envelope. Admittedly the envelope is somewhat stronger than usual, but the concept is roughly the same. Signing mail (using a cryptographic key) also feels like a reasonable thing to be doing as it lets the recipient know that the mail is indeed from you.

It seems reasonable to ask why i should care about this if i’m not sending mail that contains information that is of value to anyone else. My feeling at this point is that isn’t a very useful question. My intent in sending a mail to a person is that they should read it, if i want other people to read it they’ll receive a copy. If you thought the postal service was opening your mail you’d probably be upset. However, it7s quite likely that all email is being scanned (by one of many processes) and we don’t seem to care. I’ve decided that i do.

To do this i’m using:

Fortunately the webmail interface for my main mail account uses Horde, which has built in support for PGP Mail. This means that i can send and receive mail without being at my machine and have it secure. Horde also runs over https, so it’s a good bet for public machines.

Off The Record IM – although the technology isn’t as well thought out as PGP, it’s also possible to secure instant messaging. This mostly depends on being able to verify that you are really talking to the person that you think you’re talking to, and then trusting them when they present a given identity.

The OTR implementation that i’m using is in Adium.

Ad Blocking – not so much a privacy issue as a worry that years of looking at wall of advertising, a flashing and moving at rates specifically designed to be hard to ignore will turn me into either an epileptic, or worst a mindless consumer or pointless crap.

Cookie Management – despite ad blocking, my machine is littered with cookies, flash cookies, and local databases than could possibly useful. The purpose of these cookies is not (generally) to improve my browsing experience (unless you count having more and more targeted advertising stuff down your eyeballs) but to turn my behavior into a salable commodity. It seems unlikely that i’m getting close to scratching the surface of curtailing this kind of sleazy business model, but at least i can feel that i might be making things a little harder.

Google Tracking – this will probably be the most controversial. Rather than have google track my movement around the internet (google analytics) and compile a profile of me to sell to advertisers (search terms, clicked links), i’m going remain anonymous when i’m not signed into Google. Radical stuff. Depending on how hard Google wants to work for this information, it’s obviously still possible for them to gather a lot of it, but i’m betting that with all the willing throngs out there on the ‘net they’re not thinking about making the effort.

It is, as previously noted, disappointing that there are so few alternatives to Google when it comes to search. My guess is this won’t change until someone comes up with a better way (than Google) to sell the lowlights of users online lives to the highest bidder.

All in all, i’m not sure that this skullduggery amount to a great deal, but it feels good to start to get an understanding of what information is being collected and how.

The PGP Mail part feels like the part that i’d like continue to grow. If you get set up, and create a public key (and we know each other, etc) get in touch and we’ll swap keys.

6 thoughts on “Privacy Gestures

  1. Thanks for these links. I have been getting very concerned about security and privacy recently (a tad late, I admit). So, I’m researching. And changing. I wonder, though, if your privacy is violated, can you get it back? And how do you balance privacy and security with working in public?

    • Can you get it back… no probably not, but i don’t see the point of heaping more wood on the fire! Don’t we all have to reach a point where we say enough is enough? I heard today that DoJ subpoenaed the tweets of everyone who followed wikileaks. how can that possibly be acceptable to anyone?!

      As for working in public, my feeling is that you have to make at least some decisions about what to publish and what to (attempt to) keep private. Right now the default setting on the internet seems to be ‘privacy rape’ and that can’t be right… can it?

    • this probably isn’t what you were getting at, but one of the reasons that it’s so easy to collect information is that most people can’t grasp how much they are giving away… the other answer is i suppose to back slowly away from the network, ned ludd style, but that seems like defeat.

  2. You know I basically agree with all of this, even if the practical aspects of enacting it are a bit over my web IQ. That said-beyond google keyword tagging your email to suggest “Japanese Hotel Deals” and “Christian Escorts” depending on who sends the mail to whom, I don’t know that “them” amassing a profile on the generic “you”, i.e. following what you do and where you go, is necessarily a bad thing. You are a pretty cool guy who reads and writes and photographs interesting things. Better you than any Palin-ites out there to decide what is popular or not. Like it or not, the majority rules, and most often the majority are batshit crazy because they listen to what the mainstream media spoonfeed them. If we lose all traces of “Ashura 666” then we lose one more little piece of the cool web. If you go, soon we all do. The good thing about post cards is that the interloping reader doesn’t know our code. He can try to sell us something, but fuck that, I don’t think I will ever be more susceptible to adverts than I currently am, do you? By the way, the BCS National Championship is today, so I have to go buy premade mix and fritos for spinach dip, some viagra and a new Chevy truck.

    • Hmm. Nope, not trying to disappear at all. This is all about trying to maintain a little bit of control over the information that is being collected / aggregated / sold based on my behaviour.

      It may well be a futile effort, but part of the challenge is getting to understand what is actually happening and how. Perhaps all i’ll gain from this experiment is a little new knowledge as to how far past caring everyone is about about being tracked, tagged, bundled up, and sold.

Wise words...

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s