PM's and Privacy at Wilders

[Smokey]

Dear admins/mods,

I'm a bit curious.

Wilders is a pure Security Forum, and therefore my (maybe stupid) question:

Is it for a admin and/or mod possible, to get access to PM's of the forum members?

Quote:

Originally Posted by Smokey

Dear admins/mods,

I'm a bit curious.

Wilders is a pure Security Forum, and therefore my (maybe stupid) question:

Is it for a admin and/or mod possible, to get access to PM's of the forum members?

No the contents are completely private.

[Smokey]

Quote:

Originally Posted by dog

No the contents are completely private.

Ok, thanks for the fast clearance of my question

[stapp]

I am not surprised at that answer, I only wish some other forums had the same ethics.

[Paranoid2000]

These VBulletin.com threads indicate that PMs can be viewed if an admin really wants to. From a security standpoint, it would be prudent to assume that any data you submit to a forum can be accessed by its admins, though responsible ones will refrain from abuse.

Ultimately, if you want to communicate completely privately, consider using other channels (IM, email, etc) while using (strong) encryption.

[~*Nat*~]

Quote:

Originally Posted by Paranoid2000

Ultimately, if you want to communicate completely privately, consider using other channels (IM, email, etc) while using (strong) encryption.

Yep! Privacy is EVERYTHING!

Anyone want my 20 or so email-addresses ? Just to make sure...?

[controler]

Yes if you log in here your IP is logged. Everything you say is logged.
Even your so called private messages. That is why Wilders finialy went you can not post unless registered.

Yes there are some evil people lurking here but unless they register, they can not post now. They can look all they want

I was surprised the other day when a registered poster complained about me.
She thought I was an evil person. But she only comes here and posts random things in either 10F or General.

Funny girl.

con

[Smokey]

Quote:

Originally Posted by Paranoid2000

These VBulletin.com threads indicate that PMs can be viewed if an admin really wants to. From a security standpoint, it would be prudent to assume that any data you submit to a forum can be accessed by its admins, though responsible ones will refrain from abuse.

Ultimately, if you want to communicate completely privately, consider using other channels (IM, email, etc) while using (strong) encryption.

Hi Paranoid!

Aha!

I already presumed that, and therefore my question here.

With other words: Dog's answer is probably not correct.
I say probably, 'cause i'm not sure, i could be wrong, and if so, my well-meant excuses to Dog.

It's not the fact that i don't trust the admins here, Wilders is a fine community, but just because it's a well-respected security-forum i must trust on the fact that it isn't possible to anybody reading my PM's, admins included.
In what way however.

Maybe an admin can give here the pure facts about PM's and Vbulletin?

[~*Nat*~]

Paranoia or not - and excuse dear MODS & ADMINS if off topic

Quote:

She thought I was an evil person. But she only comes here and posts random things in either 10F or General.

Yes, I do post only nonsense (randomly) in 10F....but I didn't call you evil...did I ??
I don't remember !

[Paranoid2000]

I'd suggest that Dog's initial reply was based on Wilders' forum policy rather than what is technically possible with vBulletin. Given that this forum has several long-standing admins (Paul, LWM, Nick) who have shown dedication to security and privacy issues in the past, I would consider it quite unlikely that this forum would have the capability added to allow admins to view PMs, but not impossible.

[Smokey]

Dear girls and guys,

please let's try to stick at topic: "PM's and Privacy at Wilders".

IMHO this thread should stay clear, to me the topic is to important for off-topic discussions.

Thanks!

[Smokey]

Quote:

Originally Posted by Paranoid2000

I'd suggest that Dog's initial reply was based on Wilders' forum policy rather than what is technically possible with vBulletin. Given that this forum has several long-standing admins (Paul, LWM, Nick) who have shown dedication to security and privacy issues in the past, I would consider it quite unlikely that this forum would have the capability added to allow admins to view PMs, but not impossible.

I think exact the same way.

I highly respect the Wilders admins, but, like you said, nothing is impossible.

[Devil's Advocate]

Quote:

Originally Posted by controler

Yes if you log in here your IP is logged. Everything you say is logged.
Even your so called private messages. That is why Wilders finialy went you can not post unless registered.

Yes there are some evil people lurking here but unless they register, they can not post now. They can look all they want

Evil people can register too you know.

Quote:

I was surprised the other day when a registered poster complained about me.
She thought I was an evil person. But she only comes here and posts random things in either 10F or General.
con

I complained about you too!

[LowWaterMark]

vBulletin does not come with an interface for even admins to read other people's PMs. In fact, until P2K pointed it out, I never actually thought there would be a modification out there to do that. But, I suppose there are mods for just about anything.

The only admin tools provided within vBulletin that relate to PMs include a "count" of PMs by user, (probably to determine utilization and disk space needs), tools to delete all PMs by user, and profile options to enable or disable a user's ability to send/receive PMs. That's it.

But, as noted in the links over at the vBulletin.com, it certainly would be possible to "get at" the PMs if you have the right access and knowledge. Since there isn't anything in vBulletin to do it, only someone with direct server access rights could get to the database and the PM tables. People with server-side access here is very limited.

So, while it is technically possible for us to get into the database and access the tables where those would be stored, the remaining question is, do we? The answer to that is, no. I can't prove that one way or the other, of course. You either believe me or you don't. If you don't, then as P2K mentioned, simply don't send anything confidential via PM. But, also be careful and read the other part of what P2K said. Even email can be read by third-parties unless you use a good encryption tool.

[StevieO]

I'm very pleased to see that discussion has been allowed to run on this topic, as i'm sure lots of others will be too ! I hope people can be much more frank and open in future.

Taking the mystery out of things like this by providing detailed info, rather than just saying it's to do with tos and management decisions etc, makes everybody feel like they are on the same side and working together as a team, and not left floating with air.

Thanks


StevieO

[wildman]

Quote:

Originally Posted by StevieO

I'm very pleased to see that discussion has been allowed to run on this topic, as i'm sure lots of others will be too ! I hope people can be much more frank and open in future.

Taking the mystery out of things like this by providing detailed info, rather than just saying it's to do with tos and management decisions etc, makes everybody feel like they are on the same side and working together as a team, and not left floating with air.

Thanks


StevieO

I for one say thank you StevieO, I could not agree more with this post. Running a forum can not be an easy task, and while some may not believe it, I do take my hat off to them. I think I have stated before that I think Wilders in one of the best sites of it's type on the WEB, my opinion has not changed.

Thanks
Wildman


Thanks
Wildman

[Firecat]

Quote:

Originally Posted by LowWaterMark

So, while it is technically possible for us to get into the database and access the tables where those would be stored, the remaining question is, do we? The answer to that is, no. I can't prove that one way or the other, of course. You either believe me or you don't. If you don't, then as P2K mentioned, simply don't send anything confidential via PM. But, also be careful and read the other part of what P2K said. Even email can be read by third-parties unless you use a good encryption tool.

I trust the Wilders' operating staff enough to be 100% sure that no unauthorised party is looking at my private messages. The staff at Wilders' works very hard to maintain the forum's quality, and this is one of the most reputable forums in the world. I respect the staff for their efforts and thank them for all that they have provided us.

[Smokey]

Quote:

Originally Posted by LowWaterMark

So, while it is technically possible for us to get into the database and access the tables where those would be stored, the remaining question is, do we? The answer to that is, no. I can't prove that one way or the other, of course. You either believe me or you don't.

Hi LWM!

Thanks for the full clarification!

To me you don't have to prove anything, i believe you without any reservation.

Smokey

[LambChop]

I would like to clear something up

While it seems clear enough to me that no unauthorized persons would be able to view PMs --
I would like to know that if I or anyone else were to start receiving unwanted or offending PMs -- We could rest assured that Mods or administrators not only could, but would put a Stop to it?


I would hate for some evil/nasty sorts to think that just because no one else could see what they are sending out in PMs -- that they would be allowed to continue to offend without paying the consequences!

[LowWaterMark]

This is the policy and "how to" explanation regarding blocking unwanted PMs from specific members:

FAQ: Blocking PMs and Posts from specific members

It works very well.

[LambChop]

Quote:

Originally Posted by LowWaterMark

This is the policy and "how to" explanation regarding blocking unwanted PMs from specific members:

FAQ: Blocking PMs and Posts from specific members

It works very well.

Thank you so much for the reply and the info. Great to know!

[Jaws]

Quote:

Originally Posted by Smokey

Dear admins/mods,

I'm a bit curious.

Wilders is a pure Security Forum, and therefore my (maybe stupid) question:

Is it for a admin and/or mod possible, to get access to PM's of the forum members?

Smokey,

I happened to ask the same over at CastleCops last summer.

In case your interested, some interesting comments by Paul:
http://castlecops.com/postlite129445-.html

[mercurie]

Fellow Creatures,
This is interesting.

However, I do PMs like I have no privacy from Admins. and Mods.

But then again I always try to conduct myself so that it does not matter.

Now remember, truely honest, honorable people will not do evil even if they have knowledge. Remember knowing something is one thing, acting on that knowledge is another matter.

[Cochise]

I know, without a shadow of doubt and with utmost certainty, that our most excellent and caring Leaders on this wonderful Forum DO NOT READ OR HAVE FREE ACCESS TO PMs posted here............How do I know this you may ask?...How can I be so sure you may ask?.....

My answer to that is.........If they could read PMs.......



I would have been BANNED long ago......

Rest easy Dear Readers, your secrets are safe here.....


Cochise, PM'ing in Pimlico (Secretly)...

[Acadia]

I trust Paul and company to the max, however you must remember, if the FBI or another law enforcement agency subpoenaed vBulletin for records, they would have no choice but to turn everything over; of course, if you're doing something that naughty, WHAT ARE YOU DOING AT WILDERS?!

Acadia