Persistent, temporary, invasive and illegal cookies

not-so-sweet Cookie stories

Yahoo! cookies and Navbar cookies

Click the button to
return to Main Site

Links to others who write about cookies

Review of Geocities cookies

Junkbusters.com

Report of an FTC Workshop

Electronic Privacy Information Center

Form Test Results for NetscapeCookie

Yahoo!'s Persistent Cookie documentation

Protection and Identifying

Several utilities are available to filter and manage the cookies you come across the internet. Here are some:

CookieCop Plus

WebWasher

The Privacy Net

The Privacy Net provides an excellent summary of most Privacy Protection Software. This software deals with anything from cookies to tracking your email address, IP address and building your own individual firewall. There's also a very interesting demonstration process of what happens in the cookie process, and how much information outsiders can collect abnout you and your computer.

Home Page

Software

About companies tracking you

Steve Gibson
Are you being watched when you download? Depending on what download program you use, someone may record every bit you take.
[ full article ]

If you use the RealNetworks RealDownload, Netscape/AOL Smart Download, or NetZip Download Demon utilities in their default configuration . . .
EVERY TIME you use one of these utilities to download ANY FILE from ANYWHERE on the Internet, the complete "URL address" of the file, along with a UNIQUE ID TAG that has been assigned to YOUR machine, and — in the case of Netscape's SmartDownload only — YOUR computer's individual Internet IP address, is immediately transmitted to the program's publisher.
This allows a database of your entire, personal, file download history to be assembled and uniquely associated with your individual computer . . . for whatever purpose the program's publishers may have today, or tomorrow.
[ full story ]

"Anonymity is a shield from the tyranny of the majority. It thus exemplifies the purpose behind the Bill of Rights, and of the First Amendment in particular: to protect unpopular individuals from retaliation -- and their ideas from suppression -- at the hand of an intolerant society." [ read ]

Are you anonymous?

Here's a safe experiment by privacy.org. Click on this link to see how much information can be collected from your visit to the site you arrive at after clicking the link.
http://anonymizer.com

Cookie Error

Try this Yahoo! link and get some Yahoo! information about cookies. It ONLY works if you are NOT logged in with a Yahoo! ID. So log out first:

Cookie Error

Spyware Control Act

Sen. John Edwards, D-N.C., has introduced legislation that would force software manufacturers to notify consumers when their products include "spyware," bits of code that surreptitiously transmit information about the user's Web surfing habits back to the software company.
[ full story ]

Steve Gibson's PROJECT-X

Steve Gibson is someone who is intensely busy with cookies and tracking issues. I look forward to more news from him. From his projects:

PROJECT-X's display will expose crucial information that's been hidden inside your computer by people who have their best interests in mind, not yours. You will learn that an important truth has been kept from you by others who have been in control, until now. And it's likely that you'll be concerned by what you learn -- which is why this information has been deliberately kept out of sight. You may be a bit unnerved by what PROJECT-X shows you about your own computers, but I believe you'll want to know what's really going on in there, and you'll agree it's better to know, than not.
[ read article ]

Curt Angeledes

Curt Angeledes is someone else who is busy identifying cookies using various browsers, also those which have not "adapted" to the special Yahoo! cookies. Have a look at his page!
Cookiepics

A demo cookie

Gotcha! This is an example of what sort of information cookies can collect during your visit to a Site

Here is a demonstration of a non-invasive cookie, sent to your computer by the privacy organization. It tells you that it has found your computer's IP address. It will NOT do anything with that information. It just shows how easy it is to send you a cookie.

Cookie Lawsuit

In news just at hand (November 2000) a lawsuit is reported at Internetnews.com and the Denver Post, that Matchlogic faces a Privacy Law Suit. Here are the links to the articles about the case.

[ Internetnews ]

Yahoo!, cookies and Navbar cookies

So lets talk cookies. Everywhere around the Web, cookies are being sent to your computer. Advertisers send you cookies, hardware companies send you cookies, software companies send you cookies, and even hackers may try to send you cookies. In the least intrusive of cases, they would like to know how often they get you to visit. They would like to know what browser their visitors are using, how often you come back, and where else you go. It helps them in their corporate quest for profit, target marketing, building a profile of who goes where on their websites, and building a profile of where you, if you ever become their customer, go and visit.

Here's a cookie warning from my browser, Netscape 4.73. It is sent by "hitbox.com", an advertising company that has a little box on the bottom of ringsurf.com pages:

hitbox.com sends out a cookie to your computer

You can see how "persistent" the cookie is: it expires on November 10, 2001, because that will be exactly ONE YEAR later than I captured it.

Yahoo! cookies

Now, let's look at another one:

Yahoo! cookie sent to ALL WebRing domains at Yahoo!WebRing

This one is sent to you when you access, with your login name at Yahoo! completed, the Yahoo!WebRing domain. It will be sent TO ALL servers in the domain WebRing by Yahoo! This time Yahoo! does not tell you when the cookie expires.

Now, here is an example I have a problem with:

This is one of FIVE cookies, sent to you, when you access a Club at yahoo!, after you have logged in. This cookie stays lurking around ion your computer for ten years. Sorry, nine years, five months and four days. Firstly, in the trashcan society of today, it is NOT likely that I still use my old computer (it's an old 486/66Mhz, and yes, I made my entire Web Site with it!) ten years from now. Secondly, it is unlikely that I will still be interested in the Yahoo! Club where I captured it in 2010. Thirdly, and most importantly, I wonder whether this is a legal thing. What does the Federal Trade Corporation say about this? Are there rules about cookies? Is there legislation in place about cookies?

The FTC, legislation and what happened till now

The FTC, the Federal Trade Corporation, has assumed some responsibility for issues relating to cookies, and tracking banners, adds, and bugs on the internet. It has left many companies free to decide for themselves what they should or should not do because there is a large element of self-regulation in the industry. This sets the FTC partly free from control. The Yahoo cookie, for example, has been identified as a "special category" cookie in the past.

The cookie warnings which pop up in my browser will only pop up if I set my warnings 'up' in Netscape. Internet Explorer has the same option to switch warnings off. Some argue that both IE and Netscape have colluded with Yahoo!, one of the largest Internet compoanies around the place, so that Yahoo! can maintain its invasive practices without too many problems.

How safe is your information with Yahoo! ?

"Over the past year, Yahoo! has been inundated with subpoenas issued by companies seeking the identities of individuals anonymously posting information critical of the firms and their executives. Without notifying the targeted users, and without assessing the validity of the legal claims underlying the subpoenas, Yahoo! systematically discloses identifying information such as users' names, e-mail addresses and Internet protocol addresses. Yahoo! is unique among major online companies in its refusal to notify its users of such subpoenas and provide them with an opportunity to challenge the information requests". [ read summary ]

Is Yahoo!'s "persistent cookie" the worst offender?

While I looked around for information for this page, I came across articles in several places. I found this thirty-seven year cookie warning popping up at CNN's article "How Hackers protect their identity"

The cookie sent by http://cnn.com/TECH/computing/9901/25/hacktracts.idg/index.html

Now, I don't even think of this as outrageous. I think of this as plain stupid. Why make your visitors paranoid, if they have their cookie warnings up "high", like I did when I went to write this page, by sending this cookie that expires in 2037, when I'm well past my eightieth birthday?

eGroups: ringmgr

When I log on to egroups, I have an easy time. No matter how long I have been away from my home computer, egroups recognises me. Of course, they pay-off is a cookie which communicates with my computer to recognise my email address and other details. Have a look here:

eGroups cookie

It is evident that my date of birth is an identifier, and by means of coding my birth year, egroups can confirm some details. At least this is announced in the cookie details.

Additional risks: The Yahoo! Navbar

Anyone can start a WebRing at Yahoo!. It takes about three to four minutes to create a new Ring. The Server Side Navigation Bar, the "token" of the Ring, gets served up by Yahoo!WebRing to the sites of all the members of this Ring. This SSNB, the Navbar, can have an image in it. The Ringmaster can upload this 50 x 50 image to the Yahoo! servers, or send his / her own, from any other server on the internet.
Hackers could very interested in sending cookie to your page. After all, how great would it be, if they could send many many people a cookie which is the first link to them, assisting them to access your computer... You may have files which may be useful to crack certain programs, you may have passwords, you may even have credit cards.... Get the drift? Here's the same cookie as the one in the left hand column, the "Demo Cookie", but sent to you with the Navbar. This Ring was created especially to demonstrate how easy anyone could send you cookies with the Navbar system.

Roll-your-own

Under this invitation someone suggested to their Ring members and the outside public to make your own Navbars, in order to stay free from any danger to be dished up a cookie or other tracking devices through the Yahoo!WebRing Navbar.

Cynthia Higginbotham

Navbars dishing up Cookies

Evidence is starting to emerge of cookies inserted in Navbars. Someone has suggested that Yahoo! inserts cookies hosted on non-Yahoo! servers, but the verdict is still out on this; it may be that the servers themselves track the movements of outgoing images. I have two examples of cookies appearing at James S. Huggins' Wazillion Navbars Project Page, a good testing prooject because of the hundreds of Navbars it loads (see my Page One). The cookies are sent by www.members.tripod.com and www.libertysurf.com.
Click to view the screenshots of the cookies. The Banned From Webringnews Ring Navbar (see below) serves up a non-invasive demonstration cookie by www.privacycenter.com. [ libertysurf ] [ members.tripod ]

WebRing Home - About - Privacy

Banned From Webringnews Ring by banned_from_webringnews

[ Join Now | Ring Hub | Random | << Prev | Next >> ]

Disclaimer:
The Javascript which produces the Server Side Navigation Bar has for this page been converted to a html table. My small Web Site server is usually faster and more reliable than the server of Yahoo!, the largest dot.com company. The cookie is unaltered, and remotely served by www.privacycenter.du.edu

Entry / Exit Page	Page One	Page Two
Page Three	Page Four	Page Five Protest Navbars
A Letter to Sage Weil	About Cookies	In Retrospect

( top )

image provided courtesy of Holidays4Fun

We proudly support Ringsurf for no profit

with thanks to all contributors!

views expressed on this page and the linked pages are not neccesarily the views we endorse.

click here to return
to Healing Spaces®

Jessys Journal | Shades | Anniversary Invitations | Testamentalb | Free Flash Games