Logging and Privacy
The logging that occurs on a web server can compromise user privacy by providing a history of the users visits to a site. In addition to recording which IP addresses (which may uniquely identify a particular user) visited, which web page, and the time and date, some browsers provide more information such as the name and version of the browser program used for the access, the users email address, and other details. Perhaps more damaging to individual privacy are browser history, favorites or bookmark lists, and the cache of visited pages maintained on client machines, detailing the most recent pages accessed by that user, and the ones theyre most interested in (favorites). It is, thus, no surprise that utilities are available to clear these sources of information about a users browsing habits.
Assisting with this logging can be web bugs, which are small URLs (often 1-pixel images) designed for automatic retrieval when a user visits a web page or reads an HTML-based email message. When retrieved, they trigger log entries (as would any URL retrieval). Web bugs can legitimately be used for statistical analysis or may be used to track a specific person. You can find out what web sites use web bugs by installing the free Bugnosis software on Internet Explorer211. More information about web bugs is available in the Bugnosis FAQ.212
Correspondingly, there are also web sites such as http://www.anonymizer.com, http://www.the-cloak.com and http://www.idzap.com, specifically set up to allow users to view the contents of other sites anonymously, without revealing their IP address or other identifying information to the site.
Why worry about anonymity on the web? The issue of Identity theft has become enough of an issue that the US Federal Trade Commission has set up a toll-free hot line @ 877-ID-Theft.
212. Web Bug FAQ, http://www.bugnosis.org/faq.html
Home - Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.