Savannah W-ITS
Savannah Web-Internet Technology Solutions - What’s your passion?

Email and Web use privacy (html Beacons)

0

Today I received a couple of emails about an old issue - your privacy

Note - my guess is that *every* provider of ‘free services’ (email, email-lists/groups, web sites, etc.) is going to do their best to monetize their ’service’.  While free services sure are convenient, nice, nifty, etc - they do have a price - some of *your information*…  Keep in mind that *most* commercial web sites will have a terms of use (TOS) and/or privacy policy - you might want to review these for any site/service that you use.

Also, regardless of what any policy or TOS might say, true privacy on any computer network (the Internet, local wireless network, school network, business, government or other network) is simply not possible.  If you use online ‘free’ email services you should consider carefully what types of email you send, receive and store with the service - email is absolutely not a private medium

I previously posted about emails with embedded goodies (graphics, HTML code, etc.)  When you accept HTML formatted emails you are essentially approving the practice of tracking users (did they get the email?  did they open the email?  did they make a purchase after reading the email and visiting the web site? etc.)  I prefer text-only emails, partly to avoid too much concern for issues like this - if web beacons concern you then perhaps you should consider not using/accepting HTML messages?   :)

From the Yahoo web site (see links below):

“One of the most common uses for web beacons is in HTML-formatted messages (they are not used in text-based email, only email that looks like a web page or that includes graphical elements). Beacons are used to count how many messages are opened and how many links are clicked on as a way to measure how useful the email was…”

---------- Forwarded message ----------
Date: Mon, Jan 5, 2009 at 12:19 PM
Subject: [moderatorcentral] web beacons and groups

Even though Yahoo’s policy hasn’t changed in more than 8 years, the “web beacon issue” comes up periodically (and it appears to be happening again).

This page, which we posted more than a year ago when this issue last flared up, is still the best summary of web beacons and Yahoo! Groups:
http://tinyurl.com/beaconsandgroups
http://help.yahoo.com/l/us/yahoo/groups/original/members/privacy/privacy-16.html

You can also gets lots of information by reading through the archives of the various groups about Groups.
http://tinyurl.com/groupsaboutgroups
http://help.yahoo.com/l/us/yahoo/groups/original/ownmod/starting/ideas-01.html

<snip>
Yahoo! Groups
==========

The message below really is very old news but it popped up on the same list prior to the message above…

    The following has been making the rounds, and appears to be accurate.  Members may wish to follow the opt-out instructions found in the  message, lest Yahoo track every website you visit.
    <snip>

    PLEASE READ…IMPORTANT

    Yahoo is Tracking Group Members

    If you belong to ANY Yahoo Groups - be aware that Yahoo is now using  “Web Beacons” to track every Yahoo Group user. It’s similar to cookies,  but allows Yahoo to record every website and every group you visit, even  when you’re not connected to Yahoo.  Look at their updated privacy  statement at http://info.yahoo.com/privacy/us/yahoo/details.html

    About half-way down the page, in the section on *cookies*, you will see  a link that says *WEB BEACONS*.

    Click on the phrase “Web Beacons.” On the page that opens, on the left  find a box entitled “Opt-Out.”

    In that section find “opt-out of interest-matched advertising” link that  will let you “opt-out” of their snooping.  Click it and then click the
    opt-out button on the next page.

    Note that Yahoo’s invasion of your privacy - and your ability to opt-out  of it - is not user-specific. It is MACHINE specific. That means you  will have to opt-out on every computer (and browser) you use.

    Please forward this to your other groups. You might complain, too, but  I’m not sure if anyone is listening. I remember when they signed all  users up to get spam and we had to opt out of that a few years ago.

    Related article:
    http://antivirus.about.com/od/spywareandadware/a/yahoobugs.htm

    Share and Enjoy:
    • LinkedIn
    • Digg
    • del.icio.us
    • Google
    • Blogosphere News
    • Technorati
    • TwitThis
    • Live
    • Slashdot
    • Sphinn
    • Mixx
    • Yahoo! Buzz
    • StumbleUpon
    Posted by Dale Reagan on January 5th, 2009 :: Filed under Computer Technology, Internet Search, Media and Communications, Problem Solving, System and Network Security, Web Technologies
    Tags :: , , , , , ,

    Zena - Rails CMS & VDI Playground

    0

    CMS=Content Management System

    Rails = Ruby on Rails - a development framework using the Ruby language, Active Record, and Restful programming.

    VDI - virtual disk image (Sun Virtualbox virtual machine solution)

    Zena is described as a state of the art CMS “with a focus on usability, ease of customization and web 2.0 goodness (application like behaviour).”  There are several options for fetching this solution including a Debian VDI Playground so of course, I tried the VDI.  The ~600MB+ VDI download took a good while.  When I checked the compressed file all seemed well.  When I installed the compressed disk image all seemed well.  When I run the image it just gets ’stuck’…  It is quite likely that the VDI is/was corrupted so you may want to simply install from one of the download options:  git, svn, or compressed tar ball.

    If you are reviewing CMS solutions then you should consider viewing the Zena videos since they show the system in action.  The videos contain a bit of Apple OS graphics (as things are clicked and selected, zoomed in/out, etc.) that I found a bit distracting, however, the details are impressive.  The editing of content and code seems to be relatively easy; the downside is that yet another templating language is used to ’speed things up’; this is a common trade-off in our rush to get things done. At this point my impression is that this solution is for programmers/designers and perhaps not a good solution for non-techie users…

    After some deliberation this seems like it might be a good project for VirtualBox and Cobbler:

    1. create a VM for testing the Zena CMS  (I will use an existing, 8GB disk (VDI), 512MB RAM, Fedora 8 VirtualBox virtual machine)
    2. create a Cobbler kickstart that includes the required VM components (Web server, database, Ruby, network setup)
    3. create an instance of the VM (PXE boot - install and configure the base OS as well as Zena components) and
    4. complete any manual setup that might be needed for Zena

    It would be nice if an install script was part of this effort so I will most likely create one once all of the required steps are clear.  My Cobbler server is already configured to provide downloads (via wget and Apache) during installs so I just need to:

    1. add the Zena tar ball (and perhaps any other needed software) to the available downloads
    2. create a script to install Zena and have the same script create the database for Zena
    3. have the new VM download both the tar ball and script during the PXE boot
    4. and then have the new VM complete the install process by running the script

    Hmm - I’m not as enthused after reviewing the install information for a Debian system the required software list includes:

    • apache2
    • mysql-server
    • libmagick9-dev
    • gs-gpl
    • libssl-dev
    • gettext
    • libgettext-ruby
    • libreadline5
    • libreadline5-dev
    • zlib1g-dev
    • libncurses5
    • libncurses5-dev
    • temcap-compat
    • unzip
    • liburi-perl
    • jpeg
    • subversion
    • ssh
    • sudo
    • awstats
    • Ruby 1.8.6 and Ruby Gems
    • Image Magick

    Additional manual steps may/will include configuring Apache, Mysql and the Ruby install (the ‘gem install’ step below.)

    1. wget ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.6.tar.gz
    2. wget http://rubyforge.org/frs/download.php/29548/rubygems-1.3.1.tgz
    3. wget ftp://ftp.imagemagick.org/pub/ImageMagick/ImageMagick.tar.gz
    4. sudo gem install rake hoe gettext mongrel mongrel_cluster rmagick tzinfo syntax mongrel_upload_progress uuidtools daemons json capistrano ruby-debug –no-ri –no-rdoc

    While many of the listed components are quite common the Playground VDI is looking like a possibly less time-consuming approach... :)

    NOTE - you still have to install and configure Zena for use…. At this point I recall reading: “Installing and managing your own server running zena is for advanced users. We recommend taking an account by a zena hosting company if you feel unsure with server management.”

    The install for Zena includes just four (4) steps - looks like it might be simple once you take care of the dependancies. I will post an update if/when I get an automated solution in place (via Cobbler or other means…)

    Share and Enjoy:
    • LinkedIn
    • Digg
    • del.icio.us
    • Google
    • Blogosphere News
    • Technorati
    • TwitThis
    • Live
    • Slashdot
    • Sphinn
    • Mixx
    • Yahoo! Buzz
    • StumbleUpon
    Posted by Dale Reagan on December 30th, 2008 :: Filed under Computer Technology, Problem Solving, Unix-Linux-Os, Web Technologies
    Tags :: , , , , , ,