Feeds

BT cheerfully admits snooping on customer LANs

For the good of the customers, of course

Top 5 reasons to deploy VMware with Tegile

BT reserves, and makes use of, the right to remotely detect all devices connected to LANs owned by its broadband customers – for their own good, of course.

BT Broadband customers can expect to have their network checked any time the operator feels it needs to take a peek to help it provide the service, or when the safety of the customer is in doubt – the latter being the motivation behind the only instance where we know the capability has been used.

That happened last week, when some BT Broadband customers received letters about the kit they had plugged into their networks.

The kit in question were powerline networking (PLT) boxes originally supplied by BT. Some of the units supplied suffered a manufacturing flaw that could, potentially, expose live wires. So BT shipped out replacements back in October last year. But customers who eschewed the operator's advice (having examined the devices and satisfied themselves that they were safe) have now received letters telling them that BT's "remote diagnostic test" shows the devices are still connected and warning the customers of the ongoing danger.

PLT devices don't have IP addresses; they operate like switches, so they shouldn't be detectable from the internet. We assume that BT is getting round this issue by running a scan of MAC addresses from the supplied router, but the company hasn't confirmed that.

What it has confirmed is that "[t]here may be other circumstances in which we would carry out remote diagnostic tests of customers' equipment to make sure all is working," and that "we don't believe that consent is necessary where the testing is necessary to the service that we are providing".

Perhaps we're being cynical, perhaps BT will never decide to take a quick scan of its customers to see who has network storage attached, or an IP-capable television. Such information could, arguably, help them provide their broadband service more efficiently and thus would be allowed by BT's own terms.

BT describes the process as being similar to that offered by Microsoft with Windows Update, gently implying that we should be grateful to have big BT keeping a watchful eye on our LANs. But even Microsoft lets its customers opt out of Windows Update, or opt out of Windows entirely. BT's Broadband customers don't even know they've got the company looking out for them, and might not be so impressed if they did. ®

Beginner's guide to SSL certificates

More from The Register

next story
It's Big, it's Blue... it's simply FABLESS! IBM's chip-free future
Or why the reversal of globalisation ain't gonna 'appen
'Hmm, why CAN'T I run a water pipe through that rack of media servers?'
Leaving Las Vegas for Armenia kludging and Dubai dune bashing
Microsoft and Dell’s cloud in a box: Instant Azure for the data centre
A less painful way to run Microsoft’s private cloud
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
Windows 10: Forget Cloudobile, put Security and Privacy First
But - dammit - It would be insane to say 'don't collect, because NSA'
CAGE MATCH: Microsoft, Dell open co-located bit barns in Oz
Whole new species of XaaS spawning in the antipodes
prev story

Whitepapers

Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.