Re: [Wikimedia-l] PRISM
On Sun, Jun 9, 2013 at 11:05 PM, Anthony wikim...@inbox.org wrote: By access logs I meant HTTP access logs. It's pretty clear that without taking extraordinary measures, what you're editing is not anonymous. But some people are probably under the impression that what they're reading and searching (and linking from) is private. http://thread.gmane.org/gmane.org.wikimedia.foundation/49712/focus=49727 is probably relevant (if what Domas said then is still true). ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Benjamin Lees, 10/06/2013 08:13: http://thread.gmane.org/gmane.org.wikimedia.foundation/49712/focus=49727 is probably relevant (if what Domas said then is still true). While I'm not aware of privacy changing substantially, speaking of fantastic names, Kraken is going to change things a bit compared to 2010: https://www.mediawiki.org/wiki/Analytics/Kraken/Request_Logging https://www.mediawiki.org/wiki/Analytics/Kraken/Data_Formats I didn't find a human-readable overview but the gist seems to be that WMF will log the same (partial) data, but for 100 % of visits rather than 1/1000. More technical members of the list will be able to tell more from the specifications and source code. Nemo ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Federico Leva wrote: ... WMF will log the same (partial) data, but for 100 % of visits rather than 1/1000. How much more will that cause the Foundation to spend on processing subpoenas from law enforcement agencies? Will those agencies be charged for the time and organizational overhead of their requests? Will they be charged for the chilling effects on readers? How can we measure the cost of chilling effects on readers for 100% logging? I think this is a terrible idea. It's a huge step backwards to go from statistical sampling to logging all accesses. Exactly as far backwards as transitioning to A/B testing to multivariate analysis of fundraising messaging would be a step forwards. People say that donors' funds should be spent efficiently. When is the Foundation actually going to do so on both of these subjects? increasing surveillance ... does not decrease ... criminal activities. Ironically, ... increased surveillance might ... increase the number of inmates -- http://www.fas.org/sgp/crs/misc/R42937.pdf ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
[Wikimedia-l] Wikimedia CH General Assembly and 2014 Call for project
Dear all, ==AGM== Wikimedia CH had its Annual General Meeting, April the 27 this year. A new board has been elected, and will officially start its mandate June 27: President: Charles Andrès (reelected) Secretary: Frédéric Schutz (reelected nut new secretary, FR press contact) Treasurer: Bagawathram Maheswaran (reelected) Patrick Kenel (reelected, DE press contact) Gabriel Thullen (reelected) Matina Hämmerli (newly elected) Mauro Cassina (newly elected) Matina originally studied theology, became an enterpreneur (software company) and founder of care projects in India. Observed the miraculous and prospective development of community technology and culture, the internet, from the early 90's. Recognized Wikipedia as a milestone because it proofed and made visible to everybody: community and technology matches. She joined the board with the to support the organization with strong and efficient structures. Mauro, born in the 1954 in Lugano, is active in Wikimedia communities since 2005 and active mainly in Commons as he is photographer like hobby. In the real life he is the account manager for the provider of the energy and water of the town of Lugano. For his job he is also an organizer of events and he has been one of the main organizer of the Wikipedia Day in Lugano. Documents available: 2012 Annual report 2012 Financial report 2012 Auditors report DE EN ==Call for Project== Wikimedia CH launched its second cal for project last June 1st. The CfP is intend Into prepare the 2014 Wikimedia CH budget and the associated annual plan. Please note that this program plan may not be the definitive Wikimedia CH 2014 program plan, but the one included in the next FDC proposal. This year we introduce two definitions for the projects: • Volunteer driven • Staff driven The Volunteer driven projects are projects proposed by one, or a group of WMCH members, that require only financial support and basic staff support (standard Community manager support). The Volunteer driven projects should be recognized as useful for the association or the Wikimedia movement, and so it should be a community decision to decide whether or not they should be supported. The Staff driven projects are projects proposed by volunteers that require essentially staff work, or proposed by staff themselves. These projects should also be recognized as useful for the association or the Wikimedia movement, and so the community opinion is needed to decide whether or not they should be support. Eventually, the staff driven projects need to be chosen by the Board among the projects supported by the members in order to assure a good distribution of the workload between the staff. Wikimedia CH adopt the following guidelines to rules our projects: http://meta.wikimedia.org/wiki/Wikimedia_CH/Project_Guidelines The call for project will follow a 4 month process: June 1st, launch of the call July 1st, start of the community comment period July 31th, end of application August 31th, publication by the board of the 2014 annual plan on Meta September, Whole movement comments period on meta October 1st, Application to the FDC The first phase of the CfP will happen on wikimedia CH members wiki (restricted access), followed by a public comment period on META. sincerely Charles ___ Charles ANDRES, Chairman Wikimedia CH – Association for the advancement of free knowledge – www.wikimedia.ch Office +41 (0)21 340 66 20 Skype: charles.andres.wmch IRC://irc.freenode.net/wikimedia-ch ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 06/10/2013 08:49 AM, Federico Leva (Nemo) wrote: Benjamin Lees, 10/06/2013 08:13: http://thread.gmane.org/gmane.org.wikimedia.foundation/49712/focus=49727 is probably relevant (if what Domas said then is still true). While I'm not aware of privacy changing substantially, speaking of fantastic names, Kraken is going to change things a bit compared to 2010: https://www.mediawiki.org/wiki/Analytics/Kraken/Request_Logging https://www.mediawiki.org/wiki/Analytics/Kraken/Data_Formats I didn't find a human-readable overview but the gist seems to be that WMF will log the same (partial) data, but for 100 % of visits rather than 1/1000. More technical members of the list will be able to tell more from the specifications and source code. Interesting... I couldn't really find much information about the privacy concepts of Kraken, though the flow diagram suggests that the raw data (which I suppose includes the kind of data we discussed earlier, i.e. IP, time and date, accessed content, ...) is kept for 7 days until it is anonymized. Is that true? If so, it seems like a huge mistake to me. -- Tobias ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Precisely, they could ask to have CU accounts... Flo On 6/10/13 4:53 AM, Benoit Landry wrote: What information could the WMF disclose that isn't already available to some volunteers anyhow? The IP addresses of logged-in editors are visible to volunteer CUs; deleted revisions and log entries are visible to all volunteers admins. Wikipedia's inherently a pretty transparent system... , Salvidrim! -Original Message- From: Anthony Sent: Sunday, June 09, 2013 10:37 PM To: Wikimedia Mailing List Subject: Re: [Wikimedia-l] PRISM There is plenty of reason to think the government would be interested in Wikipedia access logs. On the other hand, there's very little reason to believe an organization when they say they haven't been turning over information under a top secret order which they're not allowed to tell anyone about. On Sun, Jun 9, 2013 at 10:17 PM, Nathan nawr...@gmail.com wrote: I think an official statement would be unnecessary and ill advised. It doesn't affect Wikimedia projects, there is no reason to think it does, and involving itself would be a mistake the WMF can and should avoid. On Sun, Jun 9, 2013 at 10:12 PM, Christophe Henner christophe.hen...@gmail.com wrote: My understanding is that PRISM focused on private electronic communication. I can't see a situation where we would be concerned by that. But some official statement could help put at ease people worries :) -- Christophe On 10 June 2013 03:34, Fred Bauder fredb...@fairpoint.net wrote: All edits and other actions are archived, but I would think there would be zero interest or utility to NSA. I would simply ignore the matter. Fred This is a simple question with a potentially very complicated answer. What, if any, are the implications of the PRISM scandal for Wikimedia? Does the fact that our servers are based in the US now compromise our mission either in a technical, privacy or an ethical sense? - Liam / Wittylama -- wittylama.com Peace, love metadata ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Everything passing over the internet is archived. Nearly everything done at Wikipedia passes over the internet. Fred My understanding is that PRISM focused on private electronic communication. I can't see a situation where we would be concerned by that. But some official statement could help put at ease people worries :) -- Christophe On 10 June 2013 03:34, Fred Bauder fredb...@fairpoint.net wrote: All edits and other actions are archived, but I would think there would be zero interest or utility to NSA. I would simply ignore the matter. Fred This is a simple question with a potentially very complicated answer. What, if any, are the implications of the PRISM scandal for Wikimedia? Does the fact that our servers are based in the US now compromise our mission either in a technical, privacy or an ethical sense? - Liam / Wittylama -- wittylama.com Peace, love metadata ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 10 June 2013 10:56, Florence Devouard anthe...@yahoo.com wrote: Precisely, they could ask to have CU accounts... There are people who closely monitor who has what powers. - d. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 06/10/2013 04:53 AM, Benoit Landry wrote: What information could the WMF disclose that isn't already available to some volunteers anyhow? The IP addresses of logged-in editors are visible to volunteer CUs; deleted revisions and log entries are visible to all volunteers admins. Wikipedia's inherently a pretty transparent system... The fact that the information is available to some users is irrelevant. If I send a private message through facebook, I do not want it to be read by anyone other than the receipient. Same thing if I send an email through a WMF wiki. You are right, some information is available to more than one user. That doesn't mean it should be available to some three letter agency. Checkuser is a perfect example, as we have policies and safeguards in place to make sure its use is limited to a small set of cases. It is inherently a different kind of use than what the NSA would do, if it were able to access our logs. --Tobias ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
There is plenty of reason to think the government would be interested in Wikipedia access logs. On the other hand, there's very little reason to believe an organization when they say they haven't been turning over information under a top secret order which they're not allowed to tell anyone about. Correct. If Osama Bin Laden had been editing Wikipedia, before his death of course, through some account in Pakistan, it would have been rather reasonable to respond favorable to a request for information. But plenty of reason to think the government would be interested in Wikipedia access logs No, massive amounts of information about people doing ordinary things like editing articles about Homer Simpson is kind of the opposite of intelligence; it IS the haystack, not the needle. Fred ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 06/10/2013 03:17 AM, Liam Wyatt wrote: This is a simple question with a potentially very complicated answer. What, if any, are the implications of the PRISM scandal for Wikimedia? Does the fact that our servers are based in the US now compromise our mission either in a technical, privacy or an ethical sense? I think Wikimedia should protest openly against such unethical surveillance. While previous posts have pointed out that indeed Wikipedia contains less private information than Facebook or Google, it still has a lot that should remain private. Most notably access logs of both readers and authors. Note that the Wikimedia Foundation could be gagged from informing the community about privacy leaks (https://en.wikipedia.org/wiki/National_security_letter). Free knowledge for everyone only works if everyone can safely access it without having to fear that third parties might be looking over the shoulder. It is in our core interest to ensure that the privacy of our users is respected. -- Tobias ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Tobias wrote: I think Wikimedia should protest openly against such unethical surveillance. While previous posts have pointed out that indeed Wikipedia contains less private information than Facebook or Google, it still has a lot that should remain private. Most notably access logs of both readers and authors. If Wikimedia is not involved in the scandal, then it should not get involved in it on its own accord. We protested against DDL intercettazioni, SOPA and PIPA and the 139-FZ Act in Russia (among others) because they were /directly/ threatening the very existence of our projects. However, in this case I cannot see how what the NSA might or might not have done is related to us, and I not think we should aim to introduce protest blindness (see [[banner blindness]] for reference). Should I start an AWWDPAIM (Association of Wikimedians Who Dislike Protesting Against Irrelevant Matters), perhaps? -- Tomasz ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
If the NSA, CIA, or some other spook agency is getting information off of Wikimedia servers, they don't have a CU account or anything like that. They'd have a program running at the operating system level that extracts the data in a standardised format and sends it off to some secret server somewhere where it can be collated for data mining purposes. If they have some way of getting private information, it's going to be well hidden and not something you or I are likely to (or capable of) stumbling across. Cheers, Craig On 10 June 2013 20:09, David Gerard dger...@gmail.com wrote: On 10 June 2013 10:56, Florence Devouard anthe...@yahoo.com wrote: Precisely, they could ask to have CU accounts... There are people who closely monitor who has what powers. - d. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 6:10 AM, Fred Bauder fredb...@fairpoint.net wrote: Everything passing over the internet is archived. Nearly everything done at Wikipedia passes over the internet. Encrypted, if you're using https everywhere (and Wikipedia hasn't intentionally or unintentionally compromised their certificate). ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
I don't understand this line of discussion. From an intelligence stand-point, the goal of the program seems to be communication interception COMINT through SIGAD means. From phone calls, to emails, to private and public posts. I'm not sure how that would have any bearing on Wikipedia though, the purpose there is to write an article, fix typos, add pictures, occasionally there is cross-communication between different editors. Nearly all of it is visible to the world. I read Domas' email[1] linked to by Benjamin Lees, he seems pretty clear that there is nothing hidden and discussions like this are a waste of time. This is one of the big benefit of the open culture. There is little hidden about Wikipedia, or even Wikimedia. There are no secret server logs, and I'm not sure what they would actually be of. Most of the logs are already there in revisions, and the entire copy of Wikipedia can just be downloaded without anyone's permission and inspected to death. As far as CU checks go, I think we've made a bigger deal of it on wiki than it has, in real world implication. They just pull information from the headers, that virtually any server that has a visitor has access to. If a system with a breadth like PRISM can exist and monitor virtually all communication traffic across multiple countries, - in comparison, figuring out someone's header info or extracting their browser choice and IP address would be the least useful thing to them. And then drowned between a deluge of IP addresses, most of which are already dynamic, would reveal what, exactly- a user from Russian fixed a typo today, a user from Spain likes ice cream, someone else uploaded a picture of their dog. I guess what I'm saying is, all this wouldn't be hard to do - but there is absolutely no utility any decent intelligence community can expect to gain from this, when they have access to your email accounts and phone records, this seems like a giant waste of time when 90% of it is already up there for anyone to see. The irony here is perhaps that we're having a discussion about a top-secret government monitoring program on a publicly archived indexed list, most of us using email accounts which the program actually *does* monitor, all to talk about exposure to wikipedia which has no such thing to archive, monitor or hide. Regards Theo http://thread.gmane.org/gmane.org.wikimedia.foundation/49712/focus=49727 On Mon, Jun 10, 2013 at 5:59 PM, Craig Franklin cfrank...@halonetwork.netwrote: If the NSA, CIA, or some other spook agency is getting information off of Wikimedia servers, they don't have a CU account or anything like that. They'd have a program running at the operating system level that extracts the data in a standardised format and sends it off to some secret server somewhere where it can be collated for data mining purposes. If they have some way of getting private information, it's going to be well hidden and not something you or I are likely to (or capable of) stumbling across. Cheers, Craig On 10 June 2013 20:09, David Gerard dger...@gmail.com wrote: On 10 June 2013 10:56, Florence Devouard anthe...@yahoo.com wrote: Precisely, they could ask to have CU accounts... There are people who closely monitor who has what powers. - d. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 6:21 AM, Fred Bauder fredb...@fairpoint.net wrote: Correct. If Osama Bin Laden had been editing Wikipedia, before his death of course, through some account in Pakistan, it would have been rather reasonable to respond favorable to a request for information. But plenty of reason to think the government would be interested in Wikipedia access logs No, massive amounts of information about people doing ordinary things like editing articles about Homer Simpson is kind of the opposite of intelligence; it IS the haystack, not the needle. And yet, PRISM is exactly about collecting the full haystack. And it makes sense, if you ignore the privacy implications: Collect everything in your multi-zetabyte storage device, even if you aren't going to analyze it right away. And yeah, editing articles about Homer Simpson is one thing. Editing articles about the Tea Party, on the other hand... Fred, you used to be a lawyer. How would you like the government to have access to all the Wikipedia searches (and google searches which linked to Wikipedia) done from your office? Might that not compromise your ability to defend alleged criminals? ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 8:59 AM, Theo10011 de10...@gmail.com wrote: I'm not sure how that would have any bearing on Wikipedia though, the purpose there is to write an article, fix typos, add pictures, occasionally there is cross-communication between different editors. Wikipedia is not a top traffic website from people editing. 99% of the traffic is reading/searching. We know that people's Google searches have been used against them in court. I'm not aware of any cases where Wikipedia searches have been used. But I can't imagine why they'd be any different. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 6:33 PM, Anthony wikim...@inbox.org wrote: Wikipedia is not a top traffic website from people editing. 99% of the traffic is reading/searching. Yes, and I as I pointed to the email written by Domas, that those logs don't exist. We know that people's Google searches have been used against them in court. I'm not aware of any cases where Wikipedia searches have been used. But I can't imagine why they'd be any different. Because one is a search engine and the other is an encyclopedia. If someone was researching ways to make explosives or looking for child pornography, those are grounds to incriminate. Wikipedia on the other hand is an encyclopedia. There is nothing illegal about going in to a library and looking at a physical encyclopedia, nor should there be about Wikipedia. Regards Theo ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 6:10 AM, Fred Bauder fredb...@fairpoint.net wrote: Everything passing over the internet is archived. Nearly everything done at Wikipedia passes over the internet. Encrypted, if you're using https everywhere (and Wikipedia hasn't intentionally or unintentionally compromised their certificate). But simple encryption that NSA can break at will. Fred ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
They tap directly into the internet backbone. Only if there is some particular matter which interests them which they would need our help to decipher would they contact the Foundation. There are a few things out there that I can imagine them being interested in, but very few. For example, there are small groups of people in the United States that support The Shining Path or the Naxalites. Active steps to open a military front in the United States would probably kick them into gear and they might be interested in who edited our articles on these subjects as advocates for that tendency. Fred If the NSA, CIA, or some other spook agency is getting information off of Wikimedia servers, they don't have a CU account or anything like that. They'd have a program running at the operating system level that extracts the data in a standardised format and sends it off to some secret server somewhere where it can be collated for data mining purposes. If they have some way of getting private information, it's going to be well hidden and not something you or I are likely to (or capable of) stumbling across. Cheers, Craig On 10 June 2013 20:09, David Gerard dger...@gmail.com wrote: On 10 June 2013 10:56, Florence Devouard anthe...@yahoo.com wrote: Precisely, they could ask to have CU accounts... There are people who closely monitor who has what powers. - d. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
You are right, Anthony, never assume you're not dealing with idiots. If NSA is doing doing detailed surveillance of Tea Party activists or defense lawyers we are truly well along the road to hell. Fred On Mon, Jun 10, 2013 at 6:21 AM, Fred Bauder fredb...@fairpoint.net wrote: Correct. If Osama Bin Laden had been editing Wikipedia, before his death of course, through some account in Pakistan, it would have been rather reasonable to respond favorable to a request for information. But plenty of reason to think the government would be interested in Wikipedia access logs No, massive amounts of information about people doing ordinary things like editing articles about Homer Simpson is kind of the opposite of intelligence; it IS the haystack, not the needle. And yet, PRISM is exactly about collecting the full haystack. And it makes sense, if you ignore the privacy implications: Collect everything in your multi-zetabyte storage device, even if you aren't going to analyze it right away. And yeah, editing articles about Homer Simpson is one thing. Editing articles about the Tea Party, on the other hand... Fred, you used to be a lawyer. How would you like the government to have access to all the Wikipedia searches (and google searches which linked to Wikipedia) done from your office? Might that not compromise your ability to defend alleged criminals? ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
National Security Letters have been served on Libraries. However, as we keep no track whatever off who is reading the site; it is hard to see how serving one on us would accomplish anything; we can't produce records we don't keep. I suppose a secret court order could be applied for which would require us to log readers and searchers, but that would be kind of dumb and unproductive. Fred On Mon, Jun 10, 2013 at 6:33 PM, Anthony wikim...@inbox.org wrote: Wikipedia is not a top traffic website from people editing. 99% of the traffic is reading/searching. Yes, and I as I pointed to the email written by Domas, that those logs don't exist. We know that people's Google searches have been used against them in court. I'm not aware of any cases where Wikipedia searches have been used. But I can't imagine why they'd be any different. Because one is a search engine and the other is an encyclopedia. If someone was researching ways to make explosives or looking for child pornography, those are grounds to incriminate. Wikipedia on the other hand is an encyclopedia. There is nothing illegal about going in to a library and looking at a physical encyclopedia, nor should there be about Wikipedia. Regards Theo ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 11:00 PM, Anthony wikim...@inbox.org wrote: On Mon, Jun 10, 2013 at 6:21 AM, Fred Bauder fredb...@fairpoint.net wrote: No, massive amounts of information about people doing ordinary things like editing articles about Homer Simpson is kind of the opposite of intelligence; it IS the haystack, not the needle. And yet, PRISM is exactly about collecting the full haystack. And it makes sense, if you ignore the privacy implications: Collect everything in your multi-zetabyte storage device, even if you aren't going to analyze it right away. And we give every needle a distinct and descriptive name. And yeah, editing articles about Homer Simpson is one thing. Editing articles about the Tea Party, on the other hand... Or DeCSS, or AACS, .. Or 2012 Benghazi attack, Efforts to impeach Barack Obama, Drone attacks in Pakistan, .. Or PRISM (surveillance program), Edward Snowden, Bradley Manning, .. It would be good *if* the WMF can provide assurances to editors that they havent received any national security letters or other 'trawling' requests from any U.S. agency. If the WMF has received zero such requests, can the WMF say that? There wouldn't be any gag order. https://en.wikipedia.org/wiki/National_security_letter says that the gag orders were struck down, pending appeal. That means we may have to wait a while.. -- John Vandenberg ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 06/10/2013 03:30 PM, Fred Bauder wrote: Encrypted, if you're using https everywhere (and Wikipedia hasn't intentionally or unintentionally compromised their certificate). But simple encryption that NSA can break at will. No one will bother trying to break SSL/TLS. The NSA certainly doesn't need to. They can just sign their own certificates and perform man-in-the-middle attacks. Browsers will in most cases accept those forged certificates, since the NSA can make sure that they are signed by a CA trusted by many browsers. A bit off-topic, but this talk explains everything wrong with the certificate system: https://www.youtube.com/watch?v=Z7Wl2FW2TcA -- Tobias ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
It would be good *if* the WMF can provide assurances to editors that they havent received any national security letters or other 'trawling' requests from any U.S. agency. If the WMF has received zero such requests, can the WMF say that? There wouldn't be any gag order. https://en.wikipedia.org/wiki/National_security_letter says that the gag orders were struck down, pending appeal. That means we may have to wait a while.. -- John Vandenberg I know a college librarian who used to be in Naval Intelligence. He swore up and down that should his library received such a request that he would not honor it. There is a lot of blowback to this sort of stuff not only by librarians but by people with intelligence experience. It seems very unlikely we would have received one, not only because of it being useless, but also because of the very high probability that our outlaw organization would almost certainly disclose it. Fred ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 7:31 PM, John Vandenberg jay...@gmail.com wrote: Or DeCSS, or AACS, .. Or 2012 Benghazi attack, Efforts to impeach Barack Obama, Drone attacks in Pakistan, .. Or PRISM (surveillance program), Edward Snowden, Bradley Manning, .. It would be good *if* the WMF can provide assurances to editors that they havent received any national security letters or other 'trawling' requests from any U.S. agency. If the WMF has received zero such requests, can the WMF say that? There wouldn't be any gag order. You mean like Yahoo, Facebook, Google and Microsoft did at this program's first disclosure[1]. They all denied it for the record. They also have long running campaigns about security, protecting user data and privacy. After Obama and the NSA chief admitted to it, everyone started re-examining the language of their denial and found loopholes and similarities between carefully worded responses which were written and revised by a team of lawyers. There isn't any personal data (more than IP addresses etc.) on Wikipedia to compromise. As a user, I would actually be more concerned if WMF put out a similar response along with the big guys. It would be analogous to walking in a police station and yelling I wasn't involved in that... - when no one actually knows or suspects anything. On Mon, Jun 10, 2013 at 6:59 PM, Fred Bauder fredb...@fairpoint.net wrote: They tap directly into the internet backbone. Only if there is some particular matter which interests them which they would need our help to decipher would they contact the Foundation. There are a few things out there that I can imagine them being interested in, but very few. For example, there are small groups of people in the United States that support The Shining Path or the Naxalites. Active steps to open a military front in the United States would probably kick them into gear and they might be interested in who edited our articles on these subjects as advocates for that tendency. Actually, it's still not clear the methodology they use - there are theories about lockboxes, about a beam splitter at Tier 1 service providers, or running a shadow copy from the service provider lines, or combination of those, or something else entirely. The original slide did mention upstream and downstream surveillance methods as some news stories pointed out. I have no possible way to extract who is a supporter of a cause, based on what article they edit or what they read. There can be some form of POV pushers but again there is nothing that would require this level of circumvention to use a secret government surveillance program to discern. More often than not, I and prob. a large number of editors just fix things, add something here and there and move on. They don't pay attention to the political ramifications of editing that article. The amount of false positive they would get from monitoring something like this would be several times more than anything resembling a useful and sustained pattern. Not to mention, this would require human interpretation to discern when someone supports a cause, pushes POV or just curates an article without any underlying feeling. Again, all this would be going the long way round to prove something they can easily get from a user's email, chat logs and searches- the perception of threat would also be more evident from their personal communication instead of public editing behavior. Regards Theo [1] http://en.wikipedia.org/wiki/PRISM_(surveillance_program)#Response_from_companies ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
I think the key here is not to keep more information about users than necessary. Of course, there is the question of if the NSA asks for our checkuser data. I am relatively confident of WMF's honesty here. They have been pretty concerned about user privacy in general (I am sure that there is some WMF privacy mishap that happened at some point, but I am judging by my overall sense of the organization, make of it what you will. I think it would be a good idea for the WMF legal department to make a statement (which means I need to remember what mailing list legal is, it's not a burden but I am a lazy, lazy man) On Jun 10, 2013 10:39 AM, Theo10011 de10...@gmail.com wrote: On Mon, Jun 10, 2013 at 7:31 PM, John Vandenberg jay...@gmail.com wrote: Or DeCSS, or AACS, .. Or 2012 Benghazi attack, Efforts to impeach Barack Obama, Drone attacks in Pakistan, .. Or PRISM (surveillance program), Edward Snowden, Bradley Manning, .. It would be good *if* the WMF can provide assurances to editors that they havent received any national security letters or other 'trawling' requests from any U.S. agency. If the WMF has received zero such requests, can the WMF say that? There wouldn't be any gag order. You mean like Yahoo, Facebook, Google and Microsoft did at this program's first disclosure[1]. They all denied it for the record. They also have long running campaigns about security, protecting user data and privacy. After Obama and the NSA chief admitted to it, everyone started re-examining the language of their denial and found loopholes and similarities between carefully worded responses which were written and revised by a team of lawyers. There isn't any personal data (more than IP addresses etc.) on Wikipedia to compromise. As a user, I would actually be more concerned if WMF put out a similar response along with the big guys. It would be analogous to walking in a police station and yelling I wasn't involved in that... - when no one actually knows or suspects anything. On Mon, Jun 10, 2013 at 6:59 PM, Fred Bauder fredb...@fairpoint.net wrote: They tap directly into the internet backbone. Only if there is some particular matter which interests them which they would need our help to decipher would they contact the Foundation. There are a few things out there that I can imagine them being interested in, but very few. For example, there are small groups of people in the United States that support The Shining Path or the Naxalites. Active steps to open a military front in the United States would probably kick them into gear and they might be interested in who edited our articles on these subjects as advocates for that tendency. Actually, it's still not clear the methodology they use - there are theories about lockboxes, about a beam splitter at Tier 1 service providers, or running a shadow copy from the service provider lines, or combination of those, or something else entirely. The original slide did mention upstream and downstream surveillance methods as some news stories pointed out. I have no possible way to extract who is a supporter of a cause, based on what article they edit or what they read. There can be some form of POV pushers but again there is nothing that would require this level of circumvention to use a secret government surveillance program to discern. More often than not, I and prob. a large number of editors just fix things, add something here and there and move on. They don't pay attention to the political ramifications of editing that article. The amount of false positive they would get from monitoring something like this would be several times more than anything resembling a useful and sustained pattern. Not to mention, this would require human interpretation to discern when someone supports a cause, pushes POV or just curates an article without any underlying feeling. Again, all this would be going the long way round to prove something they can easily get from a user's email, chat logs and searches- the perception of threat would also be more evident from their personal communication instead of public editing behavior. Regards Theo [1] http://en.wikipedia.org/wiki/PRISM_(surveillance_program)#Response_from_companies ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Forwarded to legal at wikimedia.org Fred I think the key here is not to keep more information about users than necessary. Of course, there is the question of if the NSA asks for our checkuser data. I am relatively confident of WMF's honesty here. They have been pretty concerned about user privacy in general (I am sure that there is some WMF privacy mishap that happened at some point, but I am judging by my overall sense of the organization, make of it what you will. I think it would be a good idea for the WMF legal department to make a statement (which means I need to remember what mailing list legal is, it's not a burden but I am a lazy, lazy man) We have occasionally made mistakes, but all checkuser requests are logged; fishing expeditions are not allowed. Fred ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 10/06/13 14:12, Tobias wrote: No one will bother trying to break SSL/TLS. The NSA certainly doesn't need to. They can just sign their own certificates and perform man-in-the-middle attacks. Browsers will in most cases accept those forged certificates, since the NSA can make sure that they are signed by a CA trusted by many browsers. With all the computing power they do have and will have they could, in theory, try to break the CA certificates themselves. They can collect and store the encrypted traffic and then at any time decrypt said traffic when they've done breaking the CA certificate used to encrypt it. It could be worth it for them in case of the big CAs. For all we know, the big CAs could have received secret court orders where they are required to hand over the certificates themselves, foregoing the aforementioned step. This incertainty due to this kind of secrecy isn't good for the mind. - Svavar Kjarrval signature.asc Description: OpenPGP digital signature ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
[Wikimedia-l] [Wikimedia Announcements] Call for community input on our trademark policy and practices
Hi all, On Friday, the Legal and Community Advocacy team posted a call for community input on our trademark policy and practices: http://blog.wikimedia.org/2013/06/07/call-for-community-input-trademark-policy-practices/ We have identified some trademark practices that we think are going well, as well as some areas that could be improved. We have also raised specific questions for discussion and seen great community engagement on this issue. To date, community members have provided excellent input on how the trademark policy can be clarified [1] and started translating our initial trademark statement [2] into German, Greek, Spanish, French, Hebrew, Italian, Korean, Russian, and Swedish to make the discussion more approachable internationally. We would like to get as many community members as possible to participate in the discussion and look forward to your comments. Many thanks for your wisdom and help with this! Yana Welinder, Legal Counsel References: [1] http://meta.wikimedia.org/wiki/Talk:Trademark_practices_discussion [2] http://meta.wikimedia.org/wiki/Trademark_practices_discussion ___ Please note: all replies sent to this mailing list will be immediately directed to Wikimedia-l, the public mailing list of the Wikimedia community. For more information about Wikimedia-l: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ WikimediaAnnounce-l mailing list wikimediaannounc...@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikimediaannounce-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Encrypted, if you're using https everywhere (and Wikipedia hasn't intentionally or unintentionally compromised their certificate). But simple encryption that NSA can break at will. No one will bother trying to break SSL/TLS. The NSA certainly doesn't need to. They can just sign their own certificates and perform man-in-the-middle attacks. Browsers will in most cases accept those forged certificates, since the NSA can make sure that they are signed by a CA trusted by many browsers. HTTPS Everywhere (which I mentioned) includes a Decentralized SSL Observatory to try to detect exactly this. If the NSA wants to keep their spying a secret, they won't do a MITM attack, because they'd get caught. I suspect if they were doing this with a significant portion of traffic, they'd have been caught by now, and that it'd be a story I would have heard of. So what's left is breaking the encryption after the fact. I'm not aware of how much difficulty this is (or even what encryption is used by Wikipedia), but it's probably going to slow the process down to where they're less likely to go on pure fishing expeditions. Once they have a target, sure, but just to make lists of people viewing certain Wikipedia articles, I doubt it. Maybe if the algorithm itself has been broken, or NSA has a whole lot of quantum computers the public doesn't know about, or something like that, but otherwise, I don't see them doing this en-masse. Storing the encrypted communications en-masse for later cracking, maybe. Or maybe I'm wrong about the difficulty of breaking Wikipedia's HTTPS. Anyone have any figures? Should Wikipedia be using stronger encryption? (A quick search shows that there might be a problem with RC4: http://nakedsecurity.sophos.com/2013/03/16/has-https-finally-been-cracked/) ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 9:09 AM, Theo10011 de10...@gmail.com wrote: On Mon, Jun 10, 2013 at 6:33 PM, Anthony wikim...@inbox.org wrote: We know that people's Google searches have been used against them in court. I'm not aware of any cases where Wikipedia searches have been used. But I can't imagine why they'd be any different. Because one is a search engine and the other is an encyclopedia. If someone was researching ways to make explosives or looking for child pornography, those are grounds to incriminate. First of all, no there isn't. Certainly not for researching ways to make explosives, anyway. Perhaps looking for child pornography could somehow be construed as attempted possession of child pornography, but even that would be stretching it. Wikipedia on the other hand is an encyclopedia. There is nothing illegal about going in to a library and looking at a physical encyclopedia, nor should there be about Wikipedia. That there's nothing illegal about it is the whole point. Were it illegal to view certain articles on Wikipedia, that the government would be able to violate the privacy of those doing so wouldn't even be a question. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 9:36 AM, Fred Bauder fredb...@fairpoint.net wrote: You are right, Anthony, never assume you're not dealing with idiots. If NSA is doing doing detailed surveillance of Tea Party activists or defense lawyers we are truly well along the road to hell. Maybe we are. It certainly wouldn't be unprecedented for the government to engage in witch hunts against certain political groups. Granted, it's more likely to be the FBI that has a file on Tea Party groups than the NSA, but still... Tea Party groups was, of course, just an example. John Vandenberg gave a somewhat larger list. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
They tap directly into the internet backbone. Only if there is some particular matter which interests them which they would need our help to decipher would they contact the Foundation. There are a few things out there that I can imagine them being interested in, but very few. For example, there are small groups of people in the United States that support The Shining Path or the Naxalites. Active steps to open a military front in the United States would probably kick them into gear and they might be interested in who edited our articles on these subjects as advocates for that tendency. Fred If the NSA, CIA, or some other spook agency is getting information off of Wikimedia servers, they don't have a CU account or anything like that. They'd have a program running at the operating system level that extracts the data in a standardised format and sends it off to some secret server somewhere where it can be collated for data mining purposes. If they have some way of getting private information, it's going to be well hidden and not something you or I are likely to (or capable of) stumbling across. Cheers, Craig On 10 June 2013 20:09, David Gerard dger...@gmail.com wrote: On 10 June 2013 10:56, Florence Devouard anthe...@yahoo.com wrote: Precisely, they could ask to have CU accounts... There are people who closely monitor who has what powers. - d. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
[Wikimedia-l] [Wikimedia Announcements] Wikimedia engineering May 2013 report
Hi, The report covering Wikimedia engineering activities in May 2013 is now available. Wiki version: https://www.mediawiki.org/wiki/Wikimedia_engineering_report/2013/May Blog version: https://blog.wikimedia.org/2013/06/10/wikimedia-engineering-may-2013-report/ We're also proposing a shorter, simpler and translatable version of this report that does not assume specialized technical knowledge: https://www.mediawiki.org/wiki/Wikimedia_engineering_report/2013/May/summary Below is the full HTML text of the report. As always, feedback is appreciated on the usefulness of the report and its summary, and on how to improve them. -- Major news in May include: - An invitationhttps://blog.wikimedia.org/2013/05/01/apply-for-an-internship-with-the-language-engineering-team/from the Language engineering team to collaborate on language-related projects; - A new Notifications systemhttps://blog.wikimedia.org/2013/05/02/notifications-launch-english-wikipedia/enabled on the English Wikipedia; - Recent developmentshttps://blog.wikimedia.org/2013/05/08/updates-from-language-engineering-changes-to-the-language-selector-new-extension-bundle-release/in language engineering, and the upcoming deployment of the Universal language selectorhttps://blog.wikimedia.org/2013/05/22/getting-ready-for-uls-everywhere-2/on all wikis; - The start of a discussion around Flowhttps://blog.wikimedia.org/2013/05/20/flow-next-generation-discussion-system/, a proposed discussion system for Wikimedia sites; - A call for proposalshttps://blog.wikimedia.org/2013/05/21/request-for-proposals-mediawiki-release-management/to manage the MediaWiki release cycle; - An experience-sharing exercisehttps://blog.wikimedia.org/2013/05/28/developing-distributedly-part-1-tools-for-remote-collaboration/by the Mobile engineering team about distributed collaboration; - Nearby https://blog.wikimedia.org/2013/05/29/wikipedia-nearby-beta/, a feature showing Wikipedia articles about nearby places on location-aware devices; - Tool Labs, which is now operational and ready to host toolshttps://blog.wikimedia.org/2013/05/30/preparing-for-the-migration-from-the-wikimedia-toolserver-to-tool-labs/migrated from the Toolserver; - A test wikihttps://blog.wikimedia.org/2013/05/30/test-features-in-a-right-to-left-language-environment/to try out new features in right-to-left languages - Tech news https://meta.wikimedia.org/wiki/Tech/News, a weekly tech newsletter to help users stay informed of technical changes going to impact them. *Note: We're also providing a shorter, simpler and translatable version of this reporthttps://www.mediawiki.org/wiki/Wikimedia_engineering_report/2013/May/summarythat does not assume specialized technical knowledge. * Personnel Work with us https://wikimediafoundation.org/wiki/Work_with_us Are you looking to work for Wikimedia? We have a lot of hiring coming up, and we really love talking to active community members about these roles. - Software Engineer - Parserhttp://hire.jobvite.com/Jobvite/Job.aspx?j=oIsbXfw2 - Software Engineer - Fundraisinghttp://hire.jobvite.com/Jobvite/Job.aspx?j=oawpXfwM - Software Engineer - Language Engineeringhttp://hire.jobvite.com/Jobvite/Job.aspx?j=oH3gXfwH - Software Engineer - Mobilehttp://hire.jobvite.com/Jobvite/Job.aspx?j=o4cKWfwG - Software Engineer - Multimedia Systemshttp://hire.jobvite.com/Jobvite/Job.aspx?j=oj40Wfw3 - Software Engineer - Multimedia User Interfaceshttp://hire.jobvite.com/Jobvite/Job.aspx?j=ohqbXfwz - Senior Software Engineer - Platformhttp://hire.jobvite.com/Jobvite/Job.aspx?j=ouLnWfwi - UX Designer http://hire.jobvite.com/Jobvite/Job.aspx?j=onImXfw8 - Research Analyst http://hire.jobvite.com/Jobvite/Job.aspx?j=oTqrXfwr - Product Manager - Platformhttp://hire.jobvite.com/Jobvite/Job.aspx?j=o3vtXfwI - Dev-Ops Engineer - SREhttp://hire.jobvite.com/Jobvite/Job.aspx?j=ocLCWfwf - MySQL Database Administratorhttp://hire.jobvite.com/Jobvite/Job.aspx?j=obMOWfwr - Director of Technical Operationshttp://hire.jobvite.com/Jobvite/Job.aspx?j=orXoXfwt Announcements - Alexandros Kosiaris joined the Technical Operations team as Operations Engineer (announcementhttp://lists.wikimedia.org/pipermail/wikitech-l/2013-May/069370.html ). - May Galloway joined the Product Development team as Visual Designer ( announcementhttp://lists.wikimedia.org/pipermail/design/2013-May/000518.html ). - Jared Zimmerman joined the Engineering Department as Director of User Experience (announcementhttp://lists.wikimedia.org/pipermail/wikimediaannounce-l/2013-May/000647.html ). - Nik Everett joined the Platform engineering team as Senior Software Engineer specializing in Search (announcementhttp://lists.wikimedia.org/pipermail/wikitech-l/2013-May/069668.html ). - Aarti Dwivedi https://www.mediawiki.org/wiki/User:Rtdwivedi, Anubhav
Re: [Wikimedia-l] PRISM
Hi, all- For your information, we have not been approached to participate in PRISM, and we have never received or honored an NSA or FISA subpoena or order. If we were to be approached in the future, we would reject participation in any PRISM-type program to the maximum extent possible and challenge in court any such demand, since this sort of program, as described in the press, contradicts our core values of a free Internet and open, neutral access to knowledge. We should have a blog post up within the next few days to discuss PRISM and our values in more detail; we will pass that along here when it is posted. Thanks- Luis, Geoff, and Stephen On Sun, Jun 9, 2013 at 6:17 PM, Liam Wyatt liamwy...@gmail.com wrote: This is a simple question with a potentially very complicated answer. What, if any, are the implications of the PRISM scandal for Wikimedia? Does the fact that our servers are based in the US now compromise our mission either in a technical, privacy or an ethical sense? - Liam / Wittylama -- wittylama.com Peace, love metadata ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l -- Luis Villa Deputy General Counsel Wikimedia Foundation 415.839.6885 ext. 6810 NOTICE: This message may be confidential or legally privileged. If you have received it by accident, please delete it and let us know about the mistake. As an attorney for the Wikimedia Foundation, for legal/ethical reasons I cannot give legal advice to, or serve as a lawyer for, community members, volunteers, or staff members in their personal capacity. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] Blocking of HTTPS connection by China
On Fri, Jun 7, 2013 at 2:31 PM, Ryan Lane rl...@wikimedia.org wrote: A very small minority of users don't have HTTPS support, or their computers are so old that it makes the site unusably slow. That's a *very* small percentage of users, though. There's also the small issue of a billion people in China who can access our site by HTTP but not HTTPS. Making *.wikipedia.org unconditionally redirect from HTTP to HTTPS would have the effect of making it completely impossible for them to read anything, whereas currently, it is only difficult to read information on certain politically-sensitive topics. HTTPS would be useful for reducing government snooping in developed countries like the UK and Australia. But it's not a solution for China (because HTTPS is equivalent to null routing) or the US (because they can use court orders to accomplish whatever they want to achieve on the server side). -- Tim Starling ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Luis Villa wrote: For your information, we have not been approached to participate in PRISM, and we have never received or honored an NSA or FISA subpoena or order. Google and Facebook both flatly denied having any relationship to PRISM, and it turned out not to be exactly true—is there any reason we should trust you more than them? Let the games begin. -- Tomasz ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Because Luis, Geoff and Stephen all know me well, and in particular they know that if they did sign up to such a programme I'd deck them :P. On 10 June 2013 23:29, Tomasz W. Kozlowski tom...@twkozlowski.net wrote: Luis Villa wrote: For your information, we have not been approached to participate in PRISM, and we have never received or honored an NSA or FISA subpoena or order. Google and Facebook both flatly denied having any relationship to PRISM, and it turned out not to be exactly true—is there any reason we should trust you more than them? Let the games begin. -- Tomasz __**_ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.**org Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/**mailman/listinfo/wikimedia-lhttps://lists.wikimedia.org/mailman/listinfo/wikimedia-l -- Oliver Keyes Community Liaison, Product Development Wikimedia Foundation ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 11/06/13 05:21, Anthony wrote: On Mon, Jun 10, 2013 at 9:36 AM, Fred Bauder fredb...@fairpoint.net wrote: You are right, Anthony, never assume you're not dealing with idiots. If NSA is doing doing detailed surveillance of Tea Party activists or defense lawyers we are truly well along the road to hell. Maybe we are. It certainly wouldn't be unprecedented for the government to engage in witch hunts against certain political groups. Granted, it's more likely to be the FBI that has a file on Tea Party groups than the NSA, but still... According to the Washington Post, PRISM is primarily operated by the FBI. The data is stored by the FBI, and the NSA requests data from the FBI on a case-by-case basis. The FBI checks each search term to make sure the person named is not a US citizen. http://www.washingtonpost.com/world/national-security/us-company-officials-internet-surveillance-does-not-indiscriminately-mine-data/2013/06/08/5b3bb234-d07d-11e2-9f1a-1a7cdee20287_story_1.html So there is a separation of responsibilities, but there is no reason to think that US citizens are better protected against snooping than foreigners. -- Tim Starling ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Tue, Jun 11, 2013 at 8:15 AM, Luis Villa lvi...@wikimedia.org wrote: Hi, all- For your information, we have not been approached to participate in PRISM, and we have never received or honored an NSA or FISA subpoena or order. If we were to be approached in the future, we would reject participation in any PRISM-type program to the maximum extent possible and challenge in court any such demand, since this sort of program, as described in the press, contradicts our core values of a free Internet and open, neutral access to knowledge. We should have a blog post up within the next few days to discuss PRISM and our values in more detail; we will pass that along here when it is posted. Thanks. Please put the draft on meta so the volunteers can review it and identify phrases which are not tight enough. e.g. we have never received or honored an NSA or FISA subpoena or order is good (and far better than I've seen from Google or Facebook), but ... does that exclude all possible orders under the Patriot Act? does that exclude orders from any U.S. Government agency? e.g. FBI? I don't know the answer to those questions, and I am sure the average reader doesn't either. It would be helpful to have a response with has both precise language and broad statements that will ensure the layman doesnt worry that WMF is dodging the question. -- John Vandenberg ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
David Gerard wrote: On 10 June 2013 18:01, Rand McRanderson therands...@gmail.com wrote: I think the key here is not to keep more information about users than necessary. In particular - at present. as I understand it, we don't keep full access logs, just 1/1000 samples. We need to not keep full access logs. I'm not sure about access log retention. I know what used to be true (that we didn't and frankly couldn't keep full access logs), but I'm not sure what the current situation is. Related to this, however, is a broader point about hiding versus deleting information. We, as a community, have gotten into a pattern of hiding (suppressing) information in our databases rather than simply removing it outright. This has advantages (chiefly reversibility), but the practice of sweeping information under the rug rather than taking out the trash can, and inevitably will, cause issues. Truly problematic usernames, edits, and logs really ought to be deleted, not simply suppressed, in my opinion. This has come up in the context of database dumps and database replication. We're basically asking for this information to one day be leaked by retaining it indefinitely (including usernames that out individuals, CheckUser logs, content buried inside page histories, etc.). MZMcBride ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
David Gerard wrote: On 10 June 2013 18:01, Rand McRanderson therands...@gmail.com wrote: I think the key here is not to keep more information about users than necessary. In particular - at present. as I understand it, we don't keep full access logs, just 1/1000 samples. We need to not keep full access logs. I'm not sure about access log retention. I know what used to be true (that we didn't and frankly couldn't keep full access logs), but I'm not sure what the current situation is. Related to this, however, is a broader point about hiding versus deleting information. We, as a community, have gotten into a pattern of hiding (suppressing) information in our databases rather than simply removing it outright. This has advantages (chiefly reversibility), but the practice of sweeping information under the rug rather than taking out the trash can, and inevitably will, cause issues. Truly problematic usernames, edits, and logs really ought to be deleted, not simply suppressed, in my opinion. This has come up in the context of database dumps and database replication. We're basically asking for this information to one day be leaked by retaining it indefinitely (including usernames that out individuals, CheckUser logs, content buried inside page histories, etc.). MZMcBride It is much better to be able to monitor oversighters than to completely remove the miniscule portion of suppressed material intelligence agencies might have an interest in. Fred ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 6:15 PM, Luis Villa lvi...@wikimedia.org wrote: We should have a blog post up within the next few days to discuss PRISM and our values in more detail; we will pass that along here when it is posted. Thanks. I do appreciate this. And it seems to be better worded than the statements of the Google and Facebook founders (which said that they had never heard of PRISM, not that they hadn't participated in it, and certainly not that they've never received a FISA subpoena). One thing I'd also appreciate is that if indeed Wikipedia access logs are not even collected in the first place (except for 1/1000 samples), that this be stated officially, rather than relying on a two-year-old comment by a single, now-former employee. Anyone who truly needs to keep their Wikipedia use confidential should, of course, still take measures to anonymize their access. But for the rest of the time, an assurance that these logs are simply not being kept is reassuring. Something in the privacy policy saying this would be best. But I've suggested this in the past, and WMF has declined on the grounds that they want to leave flexibility should they decide to do full logging in the future. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 7:13 PM, John Vandenberg jay...@gmail.com wrote: e.g. we have never received or honored an NSA or FISA subpoena or order is good (and far better than I've seen from Google or Facebook), but ... does that exclude all possible orders under the Patriot Act? does that exclude orders from any U.S. Government agency? e.g. FBI? Apparently if it's your communications records the government is after, they're more likely to use a National Security Letter ( https://ssd.eff.org/foreign/fisa) ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Anthony and John beat me to it -- I was going to second the suggestion that the sentence spend a bit of time being wordcrafted on Meta for extra eyes, to clarify things like the National Security Letters, NSL gag orders, etc. -Dan Dan Rosenthal On Tue, Jun 11, 2013 at 4:02 AM, Anthony wikim...@inbox.org wrote: On Mon, Jun 10, 2013 at 7:13 PM, John Vandenberg jay...@gmail.com wrote: e.g. we have never received or honored an NSA or FISA subpoena or order is good (and far better than I've seen from Google or Facebook), but ... does that exclude all possible orders under the Patriot Act? does that exclude orders from any U.S. Government agency? e.g. FBI? Apparently if it's your communications records the government is after, they're more likely to use a National Security Letter ( https://ssd.eff.org/foreign/fisa) ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Fred Bauder wrote: This has come up in the context of database dumps and database replication. We're basically asking for this information to one day be leaked by retaining it indefinitely (including usernames that out individuals, CheckUser logs, content buried inside page histories, etc.). It is much better to be able to monitor oversighters than to completely remove the miniscule portion of suppressed material intelligence agencies might have an interest in. Sorry, that confusion was caused by me. I wasn't speaking in the context of the NSA or PRISM or anything like that (subject line aside, of course). I was talking about the general trend of preferring suppression to (actual) deletion on Wikimedia wikis. Though to frame it as simply able to monitor oversighters misses the point, I think. Yes, it's a trade-off, but when we think of things like long-banned usernames (and their associated block log entries) that are basically vandalism, we can take the approach of hiding them indefinitely (sweeping them under the rug) or we can take the approach of eventually deleting them outright (taking out the trash). The same is true of CheckUser logs, particularly logged direct queries of IP addresses, which when viewed in a timeline, can often reveal an editor's IP addresses. This is basically private user metadata similar to the telephony metadata at the center of one of these recent controversies. We can choose to keep these logs around forever, hoping they'll never be exposed, or we can delete them after a certain period of Time. In other words, it's not even outright suppression (in the MediaWiki sense) that we should consider. Private data can't and won't stay private forever unless it's actively destroyed. Surely history has taught us this. My view is that if you continue sweeping things under the rug, eventually some dirt is going to be exposed. This related to the thread's larger point about removing liability/culpability by simply deleting things rather than archiving them indefinitely. MZMcBride ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Anthony wrote: One thing I'd also appreciate is that if indeed Wikipedia access logs are not even collected in the first place (except for 1/1000 samples), that this be stated officially, rather than relying on a two-year-old comment by a single, now-former employee. Minor point: I can't tell for sure if this is a reference to Domas, but if so, he only ever served as a Wikimedia Foundation Board member and volunteer sysadmin, never as an employee, as far as I know. Anyone who truly needs to keep their Wikipedia use confidential should, of course, still take measures to anonymize their access. But for the rest of the time, an assurance that these logs are simply not being kept is reassuring. Something in the privacy policy saying this would be best. But I've suggested this in the past, and WMF has declined on the grounds that they want to leave flexibility should they decide to do full logging in the future. I'm not sure that an empty reassurance will be particularly reassuring. It's not as though the Legal and Community Advocacy team sets log rotation/expiration times. This would have to be put into the privacy policy to mean anything of substance, I think. And I completely agree with your understanding of the current situation (the Wikimedia Foundation objecting due to concerns about future flexibility). Though I'm now remembering that there are certain staff policies that now exist (they contrast with official/Board policies). Perhaps that would be an avenue to pursue? MZMcBride ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
Federico Leva (Nemo) wrote: Benjamin Lees, 10/06/2013 08:13: http://thread.gmane.org/gmane.org.wikimedia.foundation/49712/focus=49727 is probably relevant (if what Domas said then is still true). While I'm not aware of privacy changing substantially, speaking of fantastic names, Kraken is going to change things a bit compared to 2010: https://www.mediawiki.org/wiki/Analytics/Kraken/Request_Logging https://www.mediawiki.org/wiki/Analytics/Kraken/Data_Formats I didn't find a human-readable overview but the gist seems to be that WMF will log the same (partial) data, but for 100 % of visits rather than 1/1000. More technical members of the list will be able to tell more from the specifications and source code. Kraken: the next-generation analytics platform that we'll see next generation. ;-) You and I should write the history of Wikimedia analytics. I already have notes! MZMcBride ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On Mon, Jun 10, 2013 at 10:06 PM, MZMcBride z...@mzmcbride.com wrote: Anthony wrote: One thing I'd also appreciate is that if indeed Wikipedia access logs are not even collected in the first place (except for 1/1000 samples), that this be stated officially, rather than relying on a two-year-old comment by a single, now-former employee. Minor point: I can't tell for sure if this is a reference to Domas, but if so, he only ever served as a Wikimedia Foundation Board member and volunteer sysadmin, never as an employee, as far as I know. Ah yes. I was mistaken. Did a quick look at his LinkedIn page, which said Data Performance Engineer, and negligently assumed that meant employee. I mostly agree with the rest of your post. ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l
Re: [Wikimedia-l] PRISM
On 11/06/13 10:41, Anthony wrote: One thing I'd also appreciate is that if indeed Wikipedia access logs are not even collected in the first place (except for 1/1000 samples), that this be stated officially, rather than relying on a two-year-old comment by a single, now-former employee. In October 2012, I introduced an unsampled log of API requests, including IP addresses. This was in response to a server overload caused by the API which was very difficult to isolate due to the lack of meaningful logs. The retention time is currently 30 days. This means that, among other things, search autocomplete is logged. The logs are collected at the backend, which means that Squid cache hits will not be logged. So autocomplete requests for common terms and prefixes will appear rarely. This is not a secret -- the changes that made it happen were public at the time: https://gerrit.wikimedia.org/r/#/c/24274/ https://gerrit.wikimedia.org/r/#/c/26434/ I'm sure that the other teams (e.g. fundraising, mobile and analytics) can give you details of what access logs they collect and store. In general, access logs haven't been stored due to cost, rather than for any privacy reason. Lots of smaller services (e.g. blog.wikimedia.org) store access logs. -- Tim Starling ___ Wikimedia-l mailing list Wikimedia-l@lists.wikimedia.org Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/wikimedia-l