Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 
1384 posts

Uber Geek

Subscriber

  # 2026268 31-May-2018 14:13
Send private message

Behodar:

 

raytaylor: If the website provider says "we had a hacker or someone sharing music that came in from 100.101.102.103:14291" we can instantly say well thats customer ip address 100.101.102.103 - john doe from york street.

 

As an ISP you can do that, but I was using the perspective of a site owner. If I understand correctly, the only information I can get out of a CG-NAT IP address is the ISP that it's allocated to. Without actually contacting the ISP (which would presumably involve its own privacy policy etc) I can't get any end-user details out of a CG-NAT IP address. Please do correct me if I'm wrong!

 

 

Many businesses and other organisations have fixed IP addresses. Doing  reverse ip lookups, dns lookups and traceroutes returns a lot of information about who is at the other end. end users leave traces too which can be tracked. We got one guy who was attacking a business with DOS type spam attacks via his ip address as we then linked it to a post made in an online chat / BBS which had enough information to tie two data sets together. We contacted his isp - who told us he wasn't with them as they had banned him, then had to retract and recorrect as he was back online with them.

 

On its own an ip address doesn't tell much but if you add enough information from other sources it starts to add up - sometimes. Jo average home user not so much - unless they have kids playing online games and then the wealth of possible material increases.  Clients daughter getting some pretty nasty bullying anonymously online. We could trace an ip address but no idea who it was - until we sent an email to a likely source, with return receipt attached, and when it came back to us was could link the two - and deal with the parents and principle to get things stopped.

 

Generally dealing with a problem from a person you have to talk to the isp who owns the block and trust they will do their job. They wont however confirm if there is a person or what they do - seems to be a breach of privacy.

 

 

 

 

 

 

 

 





nunz

1384 posts

Uber Geek

Subscriber

  # 2026275 31-May-2018 14:21
Send private message

gnfb:

 

I just went to a service called Docular after downloading there a plugin for Wordpress that suggested they would provide the means free of charge to create a relevant privacy policy for ones website, to make it GDPR compliant.

 

All is true BUT when you get to the interactive template you are presented with a myriad of options, choices, selections etc. 

 

I estimate it would take a month of Sundays to figure it out and find out what xyz means and what you put where etc.

 

Forget it! I am sure the academics and professionals will salivate at all the work. Meanwhile, Joe Bloggs doesn't stand a chance!

 

So

 

If whoever is running this show over in the EU decides that they are going come down on that little Wordpress site, in little old kiwi land, apparently you get a few chances to fix it before they hit you with big fines. 

 

I'm thinking if that is the case lets wait till they bark before I jump?

 

Just a side thought I wonder if its possible to somehow ban block etc the eu from the site and if one did that would that be a avoiding the need to comply with all this BS , sorry consumer and individual protection.?

 

Ok have at me.

 

 

 

 

Yes you can. There are databases of ip blocks tied to country codes, isps etc. Also there are tools that will track an ip address, check the route it took and then report back likely location based on routing via major international gateways. If someone is connecting to you and you don't know where they are from checking the path back useually leads to international gateways and those are a much smaller dataset to work with.

 

 

 

https://wordpress.org/plugins/ip-geo-block/

 

https://wordpress.org/plugins/iq-block-country/

 

https://www.sourcewp.com/best-wordpress-plugin-to-block-countries/

 

 

 

also Antispam Bee Plugin

 

You can also kill connections using .htaccess and country codes e.g. block .cn to block china.

 

 

 

Lastly - tool here to produce routing tables etc - to block traffic from certain countries.   https://www.ip2location.com/blockvisitorsbycountry.aspx

 

 





nunz

 
 
 
 


BDFL - Memuneh
64681 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

213 posts

Master Geek


  # 2039653 18-Jun-2018 13:07
Send private message

Click to see full size

 

http://www.gitlab.com

 

GitLab's Cookie Management interface is very cool!





Tesla Model S P100DL / BMW i3 / Model 3: Feel free to private message me if you need advice buying an Electric Vehicle (EV).
If my advice has been helpful, or you just want free stuff with your purchase, use my referral link to buy your Tesla.


5385 posts

Uber Geek


  # 2039698 18-Jun-2018 13:31
Send private message

Nothing.  Our clients and providers are wholly within NZ.

 

I can't see how we would infringe and if we do the EU has no jurisdiction.





Mike

90 posts

Master Geek


  # 2039891 18-Jun-2018 16:29
Send private message

Question I have on GDPR. I'm a website developer and maintain a website for a client. Advise client they need to add a privacy policy etc. Now if they do nothing, and the EU decided to fine. Who is liable?


1384 posts

Uber Geek

Subscriber

  # 2040031 18-Jun-2018 20:59
Send private message

outdoorsnz:

 

Question I have on GDPR. I'm a website developer and maintain a website for a client. Advise client they need to add a privacy policy etc. Now if they do nothing, and the EU decided to fine. Who is liable?

 

 

Your client unless you contracted to add a gdpr policy and didn't do what you were contracted to do. Once the site is created - its all on them other than what you contract to do.

 

 

 

A good overview of what is required to be compliant is found here : https://www.hallaminternet.com/how-to-make-your-website-gdpr-compliant/

 

 

 

 

 

 





nunz

 
 
 
 


534 posts

Ultimate Geek

Subscriber

  # 2040104 18-Jun-2018 22:58
Send private message

If a user asks for their details to be deleted, do you also have to delete it from all data backups as well?

 

 


1768 posts

Uber Geek


  # 2040168 19-Jun-2018 08:19
Send private message

djtOtago:

 

If a user asks for their details to be deleted, do you also have to delete it from all data backups as well?

 

 

And do you have to provide any proof that you've deleted their data?


6733 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2040171 19-Jun-2018 08:24
Send private message

MurrayM: And do you have to provide any proof that you've deleted their data?

 

 

I hope not, because you can't contact them if you've deleted their contact details!


BDFL - Memuneh
64681 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2040172 19-Jun-2018 08:26
One person supports this post
Send private message

djtOtago:

 

If a user asks for their details to be deleted, do you also have to delete it from all data backups as well?

 

 

No, but you have to have assurances that there is a process in which at some point in the future these backups will disappear.





1 | 2 | 3 | 4 
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Arlo unveils its first video doorbell
Posted 21-Oct-2019 08:27


New Zealand students shortlisted for James Dyson Award
Posted 21-Oct-2019 08:18


Norton LifeLock Launches Norton 360
Posted 21-Oct-2019 08:11


Microsoft New Zealand Partner Awards results
Posted 18-Oct-2019 10:18


Logitech introduces new Made for Google keyboard and mouse devices
Posted 16-Oct-2019 13:36


MATTR launches to accelerate decentralised identity
Posted 16-Oct-2019 10:28


Vodafone X-Squad powers up for customers
Posted 16-Oct-2019 08:15


D Link ANZ launches EXO Smart Mesh Wi Fi Routers with McAfee protection
Posted 15-Oct-2019 11:31


Major Japanese retailer partners with smart New Zealand technology IMAGR
Posted 14-Oct-2019 10:29


Ola pioneers one-time passcode feature to fight rideshare fraud
Posted 14-Oct-2019 10:24


Spark Sport new home of NZC matches from 2020
Posted 10-Oct-2019 09:59


Meet Nola, Noel Leeming's new digital employee
Posted 4-Oct-2019 08:07


Registrations for Sprout Accelerator open for 2020 season
Posted 4-Oct-2019 08:02


Teletrac Navman welcomes AI tech leader Jens Meggers as new President
Posted 4-Oct-2019 07:41


Vodafone makes voice of 4G (VoLTE) official
Posted 4-Oct-2019 07:36



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.