Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
The Internet Yahoo! Politics

Yahoo Becomes First Company To Disclose FBI National Security Letters (tumblr.com) 74

Yahoo has disclosed receipt of three national security letters (FBI requests for data that Yahoo is typically barred from sharing) and published redacted copies of the letters online for anyone to see. The company says that the move "marks the first time any company has publicly acknowledged receiving an NSL following the reforms of the USA Freedom Act." The bill was created last year allowing companies to gag orders relating to National Security Letters. Engadget reports: It takes some doing to get permission to acknowledge the receipt of a letter, too -- Yahoo says that the FBI needs to review if the nondisclosure provision is still necessary for each specific NSL before allowing a company to publish it, and even then certain information needs to be redacted before being made available to the public. Still, when companies do get these gag orders lifted, it allows them to notify the investigated parties that the FBI was looking into their data, and it's a big win for transparency overall.
This discussion has been archived. No new comments can be posted.

Yahoo Becomes First Company To Disclose FBI National Security Letters

Comments Filter:
  • WTF does this mean? (Score:2, Informative)

    by Anonymous Coward

    "The bill was created last year allowing companies to gag orders relating to National Security Letters."

    That sentence in TFS makes absolutely no sense.

    • "The bill was created last year allowing companies to gag orders relating to National Security Letters."

      That sentence in TFS makes absolutely no sense.

      I have to guess that it should say "allowing companies to challenge gag orders" or something like that.

  • "big win" (Score:2, Insightful)

    by Anonymous Coward

    Not only is this banal, monosyllabic expression now so diluted as to be meaningless, it's really, really not a "big win" for transparency if individual arbitrarily secret letters secured on the basis of absurd penalty can be exposed to the public long after they have ceased to be relevant.

    It's not even a small win.

  • Marissa Mayer must really be on her way out. She rolled over for them often enough. [offthegridnews.com]

    • The FBI thinks that yahoo is still relevant . Hurrah !!! they should throw a party.
    • by Anonymous Coward

      Yahoo had already lost their lawsuit attempting to defend against it. They were the only company to do so, and if I remember correctly they paid a hefty financial burden in the process (wasn't it millions of dollars in penalties to the US government for attempting to withhold said information?)

      It was even mentioned here on slashdot.

      Point is Yahoo has shown more respect for privacy than any of the much bigger companies have. And while my usage of them has dwindled, I still trust them more than the alternativ

  • by Anonymous Coward

    All the letters really say is that we want info on xxxxx@yahoo.com (actual emails are all censored), we want every scrap of info you have, and that you can't tell anyone about this and shouldn't block their account unless you tip them off.

    Everything else looks like non-specific boilerplate, so it's amazing it took so long to publish these, when they might as well just have handed out the NSL form template without filling it in.

  • First Ammendment (Score:3, Insightful)

    by Anonymous Coward on Wednesday June 01, 2016 @07:25PM (#52229663)

    How is a gag order like this in the first place not a violation of the First Ammendment?

    • by afidel ( 530433 )

      National security exception, same reason we have FISA (the rubber stamp court).

      • by Anonymous Coward

        The FBI has no jurisdiction over national security. They are a federal police force. By mandate everything they have the authority to do by themselves is purely domestic.

        Or in another way, what does the contents of a citizen's search history in regard to a domestic crime have to do with the security of the nation as a whole? Are petty criminals such a dire national security threat worthy of suspending the fundamental rights of third parties?

        • The FBI has jurisdiction in several matters that might lead to NSLs. Terrorist acts are federal crimes, as are other things that might involve NSLs such as espionage.

          Anything touching classified information can land in their lap as well. In fact, most of it will, as local law enforcement generally will not have clearance.

    • The constitution is just a piece of paper.

  • I don't understand the redacting methodology of these letters. Various pieces have been redacted, including the NSL number in the upper left of almost all the pages, but they left it at the end of one of the paragraphs, and also on the first page. Why redact it in some places but not others? Are they morons? (Occam's Razor would imply yes)
  • Yahoo the first company to get completely destroyed by "terrorists" in an overnight terrorist attack.

    FBI issued a response moments after, "If you tell anyone about our requests, the terrorists win. We Warned them against this.
      Look at what happened to yahoo..... Anyone else interested in telling others what we asked for?"

    The FBI director when questioned was quoted as saying "fugeddaboutit" and called for his man Vinnie.

    • Putting on my tin-foil hat, perhaps this is why Yahoo spent an extra $500,000 [nypost.com] on security just for her and family.
      • Yeah, that's the most generic and uninteresting paranoia I've seen lately. The FBI doesn't assassinate people for taking them to court.

        It is vastly more likely that she received some personal threats. With the company being broken up and sold off, there are probably a lot of disgruntled employees.

        Especially with her $160M golden parachute, plus a potential bonus from the sale.

  • Yahoo may be the first since "the reforms of the USA Freedom Act", but the Internet Archive fought and won back in '08. [wired.com] I'm pretty sure Slashdot covered it when it happened, but I'm too lazy to hunt down the link.

    It's not clear to me if the USA Freedom Act made this harder (in which case, why are we calling them "reforms"?) or easier. That would make this story a lot more interesting.

    (The EFF has the Archive's slightly-redacted NSL [eff.org] on file, for anyone who's interested in comparisons.)

  • by Anonymous Coward

    The 1st letter is dated March 29th 2013 is NSL 13-371110, the 2nd letter is dated August 1 2013 and is NSL 13-365658. Assuming the letters are produced sequentially 5452 letters were sent in the 126 days between the two 2013 Yahoo letters at the rate of ~43 letters/day. If the sequence continues through to 2015, an additional 49412 letters were sent during the 667 days between August 2013 and May 2015 at the rate of ~74 letters/day.

  • I was pleased to note that they do consider subject lines as data ("content"), but the status of email addresses isn't so clear.

    Envelope addresses are clearly metadata, but there are also addresses in the data part of an smtp transaction. RFC 5321 vs RFC 2822, I think.

  • by Alain Williams ( 2972 ) <addw@phcomp.co.uk> on Thursday June 02, 2016 @02:23AM (#52230871) Homepage

    after some period. As I understand it the whole point of keeping the existence of a NSL secret is to stop the crook/whoever from being alerted to the police/whatever investigation into him. So: once the crook is locked up there is little reason to keep it secret. There is also an argument that the NSLs should be disclosed at the crook's trial.

    I do understand that matters are more complex, a crook could be part of a gang and investigations into other gangsters could be hampered by disclosure that is too early.

    There should be an assumption in law that all NSLs should be disclosed after some time, eg 10 or 30 years. It would be up to the police to argue that disclosure should be delayed in particular cases.

    Above I talk of crooks, much the same arguments apply about terrorists, paedophiles, etc. Ditto: police to be FBI, NSA, etc

    • There should be an assumption in law that all NSLs should be disclosed after some time, eg 10 or 30 years.

      The rights of the people to know have to be balanced against the need for security, but 10 to 30 years is way too long. Five years might be a good upper bound. If you can't move a problem forward in five years such that we can talk about it, we probably need to talk about it.

  • This TOTALLY makes up for the all-encompassing digital surveillance throughout the western world that is a pneumatic nail gun hammering our coffin shut forever

  • by nuckfuts ( 690967 ) on Thursday June 02, 2016 @05:41AM (#52231421)

    Here's what the letters [umblr.com] asked Yahoo! to hand over:

    • Subscriber name and related subscriber information
    • Account number(s)
    • Date the account opened or closed
    • Physical and or postal addresses associated with the account
    • Subscriber day/evening telephone numbers
    • Screen names or other on-line names associated with the account
    • All billing and method of payment related to the account including alternative billed numbers or calling cards
    • All e-mail addresses associated with the account to include any and all of the above information for any secondary or additional e-mail addresses and or user names identified by you as belonging to the targeted account in this letter
    • Internet Protocol (IP) addresses assigned to thi3 account and related e-mail accounts
    • Uniform Resource Locator (URL) assigned to the account
    • Plain old telephone
    • The names of any and all upstream and downstream providers facilitating this account's communications
    • The above-listed information from "inception of the targeted account to the present" if this request cannot be processed as presently written

    We are not directing you to provide, nor should you provide, information pursuant to this letter that would disclose the content of any electronic communication. Title 18 United States Code 2510(8) defines content as "any information concerning the substance, purport, or meaning of" a communication. Subject lines of e-mails are content information and should not be provided pursuant to this letter.

In order to dial out, it is necessary to broaden one's dimension.

Working...