dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
920
share rss forum feed


a101

@spcsdns.net

Being spied on by the internet service provider/Company!?

Is that possible? And what can be done to protect the machine from the internet service provider! Switch them? go with someone else ok? But can a software firewall help???


ltsnow
Premium
join:2006-04-08
Valdosta, GA
kudos:1
From what I understand, of course, they could look at every page you go to, but who's going to take the time and why would they? Now if you commit a crime then they could be ordered to go through your logs. Nothing is going to stop them from having access to your records. Of course, you can use a proxy that redirects your isp address, but from what I have seen they are extremely slow.


Blackbird
Built for Speed
Premium
join:2005-01-14
Fort Wayne, IN
kudos:3
Reviews:
·Frontier Communi..

1 edit

1 recommendation

reply to a101
It's as Itsnow has noted. What "could" be done and what "is" being done are most often two different things. An ISP, since they are a man-in-the-middle, "could" inspect the contents of every packet flowing to and from your system's Internet connection, in which case, unless the contents flowing both ways are encrypted, they "could" observe what you and the site at the other end were both seeing. In any case, an ISP can and does certainly read the traffic's packet headers to discern where the traffic is going to or arriving from, even if the packet contents are encrypted - after all, the header information has to be openly available to correctly route the traffic to its proper destination. By using a good anonymizing proxy that encrypts traffic, one can (at least to a first order) hide contents and end-destination-IP information, but the fact that you linked to the anonymizer IP itself could and will be recorded, and the contents/end-destination protection will only be as good as the encryption employed (which normally is SSL/TLS over an https connection) and the integrity/trustworthiness of the proxy provider (since he, too, is a man-in-the-middle who can see the traffic both ways before/after encryption).

As to what an ISP "is" doing generally is something entirely different. Unless they've been served with a warrant/court-order (or have gotten in bed with a spook agency), they should be leaving your traffic alone - and probably are, since the burden of broadly snooping through customer traffic would be very daunting for very little or no payback of any kind. The ISP is required to keep connection records for all customers which can be inspected by the authorities, and which indicate what IP your assigned IP communicated with and when, but that's the extent of it.

If you want the contents to be extremely secure, you have to encrypt it yourself with a very robust encryption scheme that only your communication partner has access and keys to use as well for his decryption and return encryption. Then only you and he can read the contents, though his IP could still be read from the packet headers unless the traffic was routed through an encrypted anonymizer proxy (which, of course, means his IP is only as securely hidden as the anonymizer techniques and integrity allow).
--
“The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money.” A. de Tocqueville


NormanS
I gave her time to steal my mind away
Premium,MVM
join:2001-02-14
San Jose, CA
kudos:12
Reviews:
·SONIC.NET
·Pacific Bell - SBC
reply to a101
said by a101 :

Is that possible?

Spying on your traffic as it moves on their transit network is possible.

And what can be done to protect the machine from the internet service provider! Switch them? go with someone else ok? But can a software firewall help???

Protecting the computer and protecting the traffic are two different actions.

Protecting the computer just requires your own firewall appliance, which allows you to block inbound connections/intrusions.

Protecting your traffic will require encryption; and, possibly a VPN. For most users, this introduces yet another party one must decide to trust.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

redwolfe_98
Premium
join:2001-06-11
kudos:1
Reviews:
·Time Warner Cable

1 recommendation

reply to a101
it is a question of what you mean by "being spied on"..

your ISP is not interested in spying on you.. it is the government's spying on you that you should be concerned about..

and it makes a difference, where you live and what you are doing.. there have been some stories where the governments of some muslim countries had rigged some ISP's to enable them to spy on people, because of their concern that some of the people were conspiring to overthrow the governments..


dib22

join:2002-01-27
Kansas City, MO

1 recommendation

said by redwolfe_98:

and it makes a difference, where you live and what you are doing.. there have been some stories where the governments of some muslim countries had rigged some ISP's to enable them to spy on people, because of their concern that some of the people were conspiring to overthrow the governments..

and some secular democratic countries as well

»www.eff.org/node/55813


SweetNoob

@optonline.net
reply to a101
if i am correct i think under the new homeland security act after 9/11 all your internet activity is recorded and logged....


a101

@spcsdns.net
reply to NormanS
just to be more specific...I would like to protect the traffic from the retards and not from the goverment! The goverment doesn't know what the local retards and haters are doing behind their back!

HELLFIRE
Premium
join:2009-11-25
kudos:18
reply to a101
said by a101 :

Is that possible?

If you value your sleep at night, don't look up deep packet inspection on your search engine of choice then because
it is VERY possible.

As to what can be done about it, all the previous posters have provided some very good suggestions.

Regards