Title: Bitcointalk.org Privacy Question Post by: SoCalSlam on August 29, 2012, 01:33:22 PM I value my privacy and I want to know what information is safe on this forum, even from admins. If I deletes a post, is it really deleted? If I delete PM, is it really deleted? etc. Please someone give me the information as to what is saved and what is not. Thank you.
Title: Re: Bitcointalk.org Privacy Question Post by: SoCalSlam on August 29, 2012, 02:02:41 PM Four moderators and no one can help me?
Title: Re: Bitcointalk.org Privacy Question Post by: Raoul Duke on August 29, 2012, 02:08:46 PM I would say nothing is deleted for good as soon as it touches the database.
But don't take my word for it. theymos will answer you for sure. Don't complaint about people who don't have definite answers not giving them to you. Title: Re: Bitcointalk.org Privacy Question Post by: SoCalSlam on August 29, 2012, 02:20:02 PM I am not complaining, but I apologise for my impatience. So then it's safe to say that nothing is safe and nothing is private here?
Title: Re: Bitcointalk.org Privacy Question Post by: BadBear on August 29, 2012, 02:23:28 PM I am not complaining, but I apologise for my impatience. So then it's safe to say that nothing is safe and nothing is private here? You should assume that nothing is safe, yes. Deleted posts can still be seen by admins, cannot be seen by moderators nor users. Deleted pms will be deleted, but the receiver would still have a copy which he could share with admin via report to admin. They could also be accessed via the (encrypted) database backups if nothing else. Title: Re: Bitcointalk.org Privacy Question Post by: SoCalSlam on August 29, 2012, 02:33:39 PM You should assume that nothing is safe, yes. Deleted posts can still be seen by admins, cannot be seen by moderators nor users. Deleted pms will be deleted, but the receiver would still have a copy which he could share with admin via report to admin. They could also be accessed via the (encrypted) database backups if nothing else. By they, do you mean deleted posts or deleted pms or both? Title: Re: Bitcointalk.org Privacy Question Post by: CIYAM on August 29, 2012, 02:42:29 PM By they, do you mean deleted posts or deleted pms or both? I think it would most likely be both as presumably they are both stored in the DB. Title: Re: Bitcointalk.org Privacy Question Post by: BadBear on August 29, 2012, 02:43:08 PM Yes, both.
Title: Re: Bitcointalk.org Privacy Question Post by: SoCalSlam on August 29, 2012, 02:47:43 PM Quote Deleted pms will be deleted, but the receiver would still have a copy which he could share with admin via report to admin. In the case where both the sender and receiver delete the pm, it is still accessible through the database backups, yes? Thank you all for the help. I am starting to understand how it works around here. Title: Re: Bitcointalk.org Privacy Question Post by: CIYAM on August 29, 2012, 02:55:36 PM Thank you all for the help. I am starting to understand how it works around here. Nothing to do with this site in particular - any Forum that uses a DB (and are there any that don't?) will always have the entire history of anything stored in the DB in the DB log (this is how DB's that support ACID tx's work). Even if the log is truncated after every backup it is common practice to backup the current log along with the DB so that if all backups have been kept then it is always possible to do a complete rebuild of the DB from an initial DB and all the backed up logs. Title: Re: Bitcointalk.org Privacy Question Post by: BadBear on August 29, 2012, 02:57:06 PM Quote Deleted pms will be deleted, but the receiver would still have a copy which he could share with admin via report to admin. In the case where both the sender and receiver delete the pm, it is still accessible through the database backups, yes? Thank you all for the help. I am starting to understand how it works around here. Like he said, that's the way it works on any forum. Everything is accessible from the database, and yes that would include pms. It's always safe to assume that nothing you post on a forum (or the internet) can be removed entirely. Title: Re: Bitcointalk.org Privacy Question Post by: imsaguy on August 29, 2012, 02:57:53 PM Thank you all for the help. I am starting to understand how it works around here. Nothing to do with this site in particular - any Forum that uses a DB (and are there any that don't?) will always have the entire history of anything stored in the DB in the DB log (this is how DB's that support ACID tx's work). Even if the log is truncated after every backup it is common practice to backup the current log along with the DB so that if all backups have been kept then it is always possible to do a complete rebuild of the DB from an initial DB and all the backed up logs. That will depend on how long the backups are kept as well. If its only a rolling 4 weeks, for example, and the logs are also truncated after 4 weeks, realistically, there's a 2 month window. Title: Re: Bitcointalk.org Privacy Question Post by: CIYAM on August 29, 2012, 03:00:04 PM That will depend on how long the backups are kept as well. If its only a rolling 4 weeks, for example, and the logs are also truncated after 4 weeks, realistically, there's a 2 month window. True - it very much depends upon how long backups are kept (for my own systems I have backups going back 10 years but perhaps they don't burn backups to CD-R for this forum). Title: Re: Bitcointalk.org Privacy Question Post by: BitBlitz on August 29, 2012, 03:44:50 PM If you want absolute assurance of what information is persistent -- just assume that anything you send or post could be copied, recovered, and/or reposted by someone else.
Title: Re: Bitcointalk.org Privacy Question Post by: koin on August 29, 2012, 05:28:04 PM Four moderators and no one can help me? i'ld ask for a full refund if i were you. it's safe to say that nothing is safe and nothing is private here? it probably works like this. if the admin wants to know something that was ever posted, pm'd or accessed, presume this is available online or recoverable from backups. if the admin is being forced to divulge something that was posted, pm'd or accessed (e.g., if given a subpoena), then a retention policy would be produced and any records beyond that are no longer accessible. Title: Re: Bitcointalk.org Privacy Question Post by: theymos on August 29, 2012, 05:51:09 PM Deleted posts are almost never removed from the database. A PM is removed from the database if the sender and all recipients delete it.
Full database backups are created daily, and all global moderators and admins can download the (encrypted) backups and implement their own rotation policies. Title: Re: Bitcointalk.org Privacy Question Post by: Bitsky on August 29, 2012, 06:42:57 PM Deleted posts are almost never removed from the database. A PM is removed from the database if the sender and all recipients delete it. Encrypted as in "they can download the backup to have it at multiple locations, but it's useless for them because they don't have the decryption key",Full database backups are created daily, and all global moderators and admins can download the (encrypted) backups and implement their own rotation policies. or encrypted as in "they can download and unpack the backup to read through everything, including PM's, because they too have the keys"? If it's the second, then this is a huge privacy and security failure. Title: Re: Bitcointalk.org Privacy Question Post by: theymos on August 29, 2012, 06:49:37 PM they can download the backup to have it at multiple locations, but it's useless for them because they don't have the decryption key This. Only me, Gavin, Satoshi, and Sirius can decrypt it. Title: Re: Bitcointalk.org Privacy Question Post by: casascius on August 30, 2012, 05:35:52 AM If you want privacy, just use PGP.
Title: Re: Bitcointalk.org Privacy Question Post by: DeathAndTaxes on August 30, 2012, 05:43:08 AM If you want privacy, just use PGP. This. I send and receive GPG protected PM everyday. Nobody can read them except the person(s) with the appropriate private key. Title: Re: Bitcointalk.org Privacy Question Post by: policja71 on August 30, 2012, 07:38:15 AM nothing in plaintext is private on the internetz
Title: Re: Bitcointalk.org Privacy Question Post by: RB26DETT on August 30, 2012, 08:52:49 AM Web crawlers are not new and one is built into a very common browser.
Title: Re: Bitcointalk.org Privacy Question Post by: rontus on August 30, 2012, 12:19:59 PM Web crawlers are not new and one is built into a very common browser. Do you mean Chrome? And built by Google? Title: Re: Bitcointalk.org Privacy Question Post by: DeathAndTaxes on August 30, 2012, 01:04:29 PM nothing in plaintext is private on the internetz This is another good point. Even if the admins internally deleted posts/messages and ensured no lingering data in backups and periodically destroyed the archive media to prevent recovery it doesn't really matter if the website ends up in the public cache of search engines. If you want something to be private use technology which keeps it private (like GPG). Title: Re: Bitcointalk.org Privacy Question Post by: imsaguy on August 30, 2012, 02:48:22 PM nothing in plaintext is private on the internetz This is another good point. Even if the admins internally deleted posts/messages and ensured no lingering data in backups and periodically destroyed the archive media to prevent recovery it doesn't really matter if the website ends up in the public cache of search engines. If you want something to be private use technology which keeps it private (like GPG). The pms aren't google indexable unless you're giving the google spider your credentials. Title: Re: Bitcointalk.org Privacy Question Post by: gbl08ma on August 30, 2012, 03:08:08 PM Just act under the assumption everything you send to the Internet is not private (sometimes, even passwords!) and cannot be fully deleted (just like you can't go back in time and mute what you said IRL), and you'll be fine (or you'll become a maniac, not sure...).
|