SPRINT and privacy

>Techgeek wrote
> SprintPCS's computer systems also have (which I do NOT have access to)
> software that tracks what accounts I look up in the billing system,
> what MSLs I look up, what inventory I do maintenance on (receiving,
> returning, transfering, etc), any reports I run, what phones I try to
> track (movement though various inventories though SprintPCS), etc..
> along with tracking software to monitor web usage and email usage.


They only way you can be monitored in the billing system as it existed
before I left was to modify any item in the system or attempt to add to
it.

Also there are ways to directly access to web proxies and anyone who can
plug in a windows box can set up the proxies and surf at Sprints expense
( I know, I've seen it done. That is how people I know still get
streaming music off the internet)

[posted via phonescoop.com]

---

› See More: SPRINT and privacy

Besides, you would be supriesd how many unsecured wireless networks
exist. Good Luck.

TechGeek <[email protected]> wrote in article
<[email protected]>:
>
> Nomen Nescio wrote:
> > *>And for your information, using an alias doesn't protect you too
> > much,
> > >people can easily trach where and who you are just by your IP
> > address.
> >
> > Really?
> >
> > Try.
> >
> > I bet you $10,000 that you will not be able to determine within one
> > year's time the IP address of
> > the machine that this post was originally sent from.
> >
> > If you can manage to get a hold of transit information from seven
> > different remailers in seven
> > different countries, none of which keep logs of any kind ... then you
> > will have my everylasting
> > respect and I know a company that would be willing to pay you several
> > millions of dollars per year
> > for your talent.
> >
> > You cannot trace the IP address of any Internet user who desires
> > privacy, and knows what he/she is
> > doing.
> >
> > Are you sure you are a "Tech Geek"? *
>
> There are programs that can track masked IP addresses, no matter how
> many countries you run it though. I know people who use them. I've
> seen them used.
>
> Oh, and its also against the TOS with most ISPs to mask your ISP or
> re-route to hide your true IP address, its under "hacking".
>
> --
> Posted at SprintUsers.com - Your place for everything Sprint PCS
> Free wireless access @ www.SprintUsers.com/wap
>

[posted via phonescoop.com]

>There are programs that can track masked IP addresses, no matter how
>many countries you run it though. I know people who use them. I've
>seen them used.

WTF are you talking about???

Now, you're just making **** up, Tech Geek. What about all that credibility and respect stuff
you just talked about? This post was a real cred-killer as far as your "tech" knowledge goes,
IMHO.

When something is sent through properly run remailers, the IP information from the preceeding
machine is not "masked", it is completely and 100% STRIPPED from the post.

You've seen nobody, nay, NOBODY, trace the original IP address of a post through a
cypherpunks/mixmaster remailer chain. That, I can garantee. There exists no program that can
do it. All reference to the IP address ceases to exist once it hits the first remailer and the
log is wiped.

Tell you what, send this post to the "people you know". If withing 12 months you or they can
post the originating IP address of the machine that THIS POST was sent from (one guess only, you
can't start from 0.0.0.0 and start guessing upwards), then $10,000 is yours. And like I said, I
do know a company that would be willing to pay a very large sum of money to hire these people.
If it can be done, it should be easy money. I give you permission to post my IP address, name,
phone number, social security number, and anything else you can find.

Why continue to yap about it? If you say it can be done, then I want to see it done.

By the way. It can't be done. You can't do it. There are no "programs" that do this. Nobody
you know can do it. And, you've never seen it done.

>Oh, and its also against the TOS with most ISPs to mask your ISP or
>re-route to hide your true IP address, its under "hacking".

I believe it's against the TOS to "falsify IP information for the purpose of denial of service
attacks, spamming, to threaten or harass etc" ... things along those lines. It's not against
any TOS's that I know of to hide your IP address simply for the purpose of privacy.

According to you, one would have to beleive that is against the TOS of "most ISP's" to post to
support groups such as alt.sexual.abuse using a private remailer. We would also have to believe
that anyone who uses the Anonymizer or Megaproxy or any of the myriad of other privacy proxies
is violating the TOS of their ISP.

I think you're wrong on this point too.

Like I said, i've always enjoyed your posts, but I will have to admit that my confidence in you
is shaken by some of the nutty claims you've been making here lately.

You are correct. One can't track IP addresses that arent there.

There are other ways of identifying posters however.

>You are correct. One can't track IP addresses that arent there.
>
>There are other ways of identifying posters however.

Of course.

If they volunteer information, or give enough little identifying tidbits over a period of time,
chance are that you can can make an educated guess as to who the person might be. Maybe you can
even look at what they post on other groups to get more pieces of the puzzle.

If someone said "I have three lines, and the coverage in area code 215 stinks on my startac, but is
decent on my i300, and coverage is medicore on my a500". Then later says "I am on the $30, 300
minute plan with vision active on two phones that I got through retenion on February 2", then they
post on a regional newgroup that "Cable reception in my house on Apple street sucks" ... someone
with access to the Sprint computers probably could do a little detective work and figure out who
that person is.

My point is that there are no technological ways to trace someone's IP address if they are really
determined to hide it.

If they open their mouth, then good old fashioned research, psychology, and social engineering is
going to give them away.

I guess the moral of the story is: If you want to remain anonymous, then watch what you say.

In article <[email protected]>, Serg=
ei=20
[email protected] says...
> So whatever Sprint posts on its website about security of your personal=
=20
> informnation is in error, to put it politely.
>=20

Whatever else is wrong here, this is simply not true. Sprint's policy is a=
bout=20
releasing your information to third parties, and about how it is protected =
in=20
transmission to SPCS. *Nowhere* in that policy does it say internal employ=
ees=20
cannot access account information without your express permission. That wo=
uld=20
render Collections' job impossible, as well as that of any loyalty departme=
nt=20
or group we have operating.

Whatever problems there may be with what was done, this has nothing to do w=
ith=20
privacy policies.

--=20
-+-
R=D8=DF
O/Siris
I work for SprintPCS
I *don't* speak for them.

In article <[email protected]>, ben [email protected]=
rg=20
says...
> If you have a malicious employee at Sprint, he can get all of your
> information, yes.
>=20

There are certain tasks that require unfettered access to customer records.=
If=20
not CC, then Collections, or Loyalty/Retention. At some point, even if you=
=20
monitor and enforce, a malicious employee is always going to be a danger. =
=20
That's not just true at SPCS.

--=20
-+-
R=D8=DF
O/Siris
I work for SprintPCS
I *don't* speak for them.

In article <[email protected]>, Serg=
ei=20
[email protected] says...
> Or is it all a charade when a CSR asks for=20
> your passcode?
>=20
>=20

No charade. You simply misunderstand what that password is for. It's not =
an=20
access code. It's a verifier if your identity to us. Its our way to belie=
ve=20
that you really *are* you when you call in.

--=20
-+-
R=D8=DF
O/Siris
I work for SprintPCS
I *don't* speak for them.

> If you want to remain anonymous,
> then watch what you say.

Like don't brag in the Verizon news group how you tried to get someone fired?


======
I don't work for Sprint
I can be honest

>Like don't brag in the Verizon news group how you tried to get someone fired?

And if you are on the investigating end, realize that the "Nomen Nescio" remailer is used by
hundreds of thousands of people worldwide (if not more), and doing a mere search on that moniker is
possibly the most inane, inaccurate, and ineffective way on the planet to try and identify a
particular user.

You'd have a better chance of identifying someone by simply picking an IP address in accordance
with the numbers drawn by the state lotto, than by doing a seach on a public remailer name/address.

I saw someone make this mistake a couple of weeks ago on this very newsgroup. Claimed that
"Nomen" used to work at Radio Shack, and made a whole bunch of odd racial statements, and wanted to
have sex with a cat and some other whacky stuff. They seemed proud as punch of the dirt they had
found. Anyway, this wannabe superslueth came on there with all kinds of "incriminating evidence"
against "Nomen", only to be thoroughly schooled on what remailers where, and was made aware of the
fact that many thousands of "Nomen's" exist. So, instead of the Perry Mason "ah-ha gotcha!" moment
that the gentleman expeted, the poor internet search engine Sherlock Homes was formally schooled,
and exposed to be the techo-newbie with less than a full clue of what's what that he really was.

Kind of one of those "it's better remain silent and be though an idiot than open your mouth and
remove all doubt" things.

I would estimate that a solid 90% of all Usenet posters are not nealy as internet-savvy as they
believe themselves to be.

I think this is why so many people spend so much of their time chasing their tails while trying to
identify people who have decided to protected their privacy.

So, consider this yet another helpful hint to those out there that feel like playing Dick Tracy.

It ain't that easy.

> Like don't brag in the Verizon news group
> how you tried to get someone fired?

William Bray, huh.