August 8, 2006 5:01 PM PDT

FAQ: Protecting yourself from search engines

(continued from previous page)

Q: OK, Ixquick.com is fine and all that, but I want to keep using my favorite search engine. How can I protect my privacy while doing that?
The first thing you should do is clear the cookies that are set by search engines--those let the company correlate your repeat visits. In Firefox, go to Preferences and select Privacy. There you have the option to delete cookies and even prevent search engines from ever setting them again. (Unfortunately, not all Web browsers offer this option.)

Let's say you're using Google. Add "google.com" to Firefox's list of cookies-not-allowed sites. Be warned: That prevents you from using options like personalization or Gmail, which is why you might want to keep another browser like Opera, Safari or Internet Explorer around to do those things.

If you're really worried, go to Anonymizer.com and sign up for one of its anonymous browsing options (they're primarily for Windows users). Tor is another option. It's a pain, but protecting your privacy may well be worth it.

Q: Excluding Ixquick, what information do other search engines collect?
We surveyed the search engines in February of this year and asked them precisely that question.

The rough overview: Given a number of search terms, they can produce a list of people (identified by Internet address or cookie) who searched for a given term. Second, given a collection of Internet addresses, they can produce a list of the terms searched by the user of a given address. That effectively creates an electronic dossier of an individual.

Q: Who can get access to my list of search terms?
Well, prosecutors in criminal cases certainly can. And it's likely that even lawyers in civil cases--divorce attorneys, employers in severance disputes--eventually will demand that Google, Microsoft, Yahoo, AOL and other search engines cough up users' search histories.

Q: Has this happened before?
Almost. A North Carolina man was found guilty of murder in November in part because he Googled the words "neck," "snap," "break" and "hold" before his wife was killed. But those search terms were found on Robert Petrick's computer, not obtained from Google directly.

Q: How are Internet addresses handed out? Do people always have the same one?
It depends. Many DSL and cable modem providers allocate Internet addresses only when they're in use (the methods are called DHCP and PPPoe). Those IP addresses can change frequently.

Other IP addresses tend to be fixed. Faculty and staff members at universities, and employees of corporations, are more likely to have fixed Internet addresses.

AOL Search is a unique case. Because AOL users tend to be logged in when using it, AOL will know who you are--assuming, that is, that you provided accurate information when signing up for its service.

Q: If Google knows I'm connecting from a dynamically assigned Internet address of 192.1.1.1 one day, and 192.2.2.2 the next day and 192.3.3.3 the third, how can it link my queries together to create that dossier?
This is where "cookies" come in. A cookie is simply a device for a Web site to recognize people the next time they return. Google, Yahoo, AOL and Microsoft all set cookies by default. (Microsoft's expire in 2016; Yahoo's in 2010; Google's in 2038. AOL sets a third-party cookie that expires in 2011.)

In the above example, Google.com would set a cookie for whoever's connecting from Internet address 192.1.1.1 the first day, and then figure out that the same Web browser is connecting from 192.2.2.2 and 192.3.3.3 the next two days. If people are logged in to their Google account, this makes the process even easier, of course.

Q: How long do companies keep records of my search terms?
In our survey, Microsoft, Google and Yahoo all said they keep data as long as it's necessary, which could mean forever. Microsoft did add that they are "looking at ways" to provide users with the option to delete their search histories, and Yahoo made a similar statement. It's unclear how long AOL keeps it.

Previous page
Page 1 | 2

See more CNET content tagged:
America Online Inc., search engine, privacy, FAQ, Time Warner Inc.

20 comments

Join the conversation!
Add your comment
Ixquick.com as Meta-Search... come on
I would hardly classify Ixquick.com as a meta-search engine. Most of the results are generated from PPC search engines. Even though the site is putting the results from sponsored search separate it still gives you results from PPC engines like overture and always chooses to link to the site using PPC engine and not an organic result URL.
Posted by far_desi (1 comment )
Reply Link Flag
Unclear on the concept
The writer needs more familiarity with the issues involved. He
says about Ixquick:

"The Netherlands-based company proudly says it doesn't keep
records of its users' Internet addresses. In other words, it does
save search terms, but the company says it's unable to link them
to any person, unique ID number or Internet address."

"'I'm a firm believer in the privacy cause,' Ixquick.com CEO
Robert Beens said in a recent interview with CNET News.com"

Beens, too, is unclear on the privacy concept. As the AOL
scandal showed, just the list of searches alone can be enough to
identify who is searching. AOL released no more info than Beens
collects, yet it was enough to reveal the searcher's identity.

NONE of these people - and that includes reporters - can be
trusted to have thought the privacy issue through and have a
competent grasp of culture, technology, legality, and yes,
mendacity.
Posted by reybar (7 comments )
Reply Link Flag
A very clear concept
Dear Reybar,

Your comment is not correct.
Just a list of searches alone can not breach your Privacy.
AOL released not only search terms, but also unique 6 or 7-digit user numbers.
These user numbers made it possible to combine the otherwise completely random search terms into unique user profiles.
Without this "glue" ,the millions of individual search terms would have been relatively harmless.

Since Ixquick.com deletes its user's IP address from its log-files there simply is no "glue" to build a user's profile.
This safeguards the Privacy of Ixquick.com users.
Posted by Robert E.G. Beens (3 comments )
Link Flag
Thanks Reybar and Mr. Beens.

I believe Reybar's concern is valid. Why does a search engine need to save serch terms at all? If there is a list of an anonymous person's search terms, there is a way to find out who those belong to; MSNBC did that and found a person based on only search terms with no user identifiable information at all (no ip address, name, or anything).

The solution to a true anonymous search engine is a search engine that doesn't save search terms or pages visited.
Posted by mdcnet87 (1 comment )
Link Flag
Easy, don't use AOL
Anyone who is stupid enough to use AOL deserves to have their search history posted anyways.
Posted by bobby_brady (765 comments )
Reply Link Flag
Privacy notme.com
Complete privacy and security at the website visted, they have no way of identifing you, nor any way to pass Cookies, Trojans, a Virus or any kind of Spyware to you.

Complete privacy and security from any PC or device connected to the internet that you happen to be using at the time with absolutely no way for the PC to track where you have been.

Complete privacy and security on your credit card statement.

And, there is absolutly no software needed, it is ISP based, so it works from any and all PC's today!


This new Patented technology is an "Indirect Portal", not a proxy, an will change how users surf the internet forever. Why? You need to do nothing except surf from NotMe when you want complete and utter privacy. The way the internet used to be way back when.
Posted by Steve Hirst (21 comments )
Reply Link Flag
Privacy notme.com
Complete privacy and security at the website visted, they have no way of identifing you, nor any way to pass Cookies, Trojans, a Virus or any kind of Spyware to you.

Complete privacy and security from any PC or device connected to the internet that you happen to be using at the time with absolutely no way for the PC to track where you have been.

Complete privacy and security on your credit card statement.

And, there is absolutly no software needed, it is ISP based, so it works from any and all PC's today!


This new Patented technology is an "Indirect Portal", not a proxy, an will change how users surf the internet forever. Why? You need to do nothing except surf from NotMe when you want complete and utter privacy. The way the internet used to be way back when.
Posted by Steve Hirst (21 comments )
Reply Link Flag
password thieves
they just log all your information and sell it to hackers
Posted by baswwe (299 comments )
Link Flag
notme.com is rabbit hole
You don't even give a decent link! If this thing is so great, then WHERE is a DECENT link to it? If it's not just FUD, then cough up the LINK. :|
Posted by btl-jooz (81 comments )
Link Flag
Use a search proxy and forget about it
Search proxies rock and they dont allow the engines to collect your data so theres nothing to report on.

Try it its free anyway. <a class="jive-link-external" href="http://www.blackboxsearch.com" target="_newWindow">http://www.blackboxsearch.com</a>
Posted by talledega500 (23 comments )
Reply Link Flag
Use a search proxy and forget about it
The only way around this privacy stuff is to use a search proxy. The engines cant collect or report on anything that way.

And its FREE. <a class="jive-link-external" href="http://www.blackboxsearch.com" target="_newWindow">http://www.blackboxsearch.com</a>
Posted by talledega500 (23 comments )
Reply Link Flag
proxy's are useless ...
they do nothing to the PC. The history in the PC is recorded all over the place. Proxy's don't address that. You can erase everything, buy a program that will clean the PC out... but you can't do that from work, or your friends lap-top. A 'Indirect Portal" leaves no trace anywhere Period without any pain... not even a need to set IE Explorer to accept proxy's. THE USER DOES NOTHING except surf from notme.com from whatever PC they happen to be on at the time... Complete Stealth both sides. The history records
notme.com/getme:url13567.aspx When U close the page the link recorded is expired. The site visited has zero clue who you are... and zero way of identifying you. You don't even need virus protection nor spyware protection... can't get one =)

Proxy's are a joke...an Indirect Portal is the only way of achieving Complete Internet Stealth. notme.com to find out more...
Posted by Steve Hirst (21 comments )
Reply Link Flag
proxys work
The info that was handed to the govt by all the major search engines without your consent, and the info AOL published has nothing to do with YOUR local PC. It has to do with network based data collection.

Proxies dont keep someone from breaking into your house and your computer. They keep you from unwittingly participating in a fight for your personal information surrendered without you knowing it over a network.
Posted by talledega500 (23 comments )
Link Flag
AOL is doomed...
I downloaded their free AOL, it installed a ton of unwanted crap, slowed my computer to a crawl and then it started to lock up.

I uninstalled everything and am never using AOL.

That company screwed up majorly. I would fire all the company executives who are reposible for these problems on the spot immiediately and the dumb ass CEO.
Posted by rmiecznik (224 comments )
Reply Link Flag
and the coolest part
If you use NotMe to break any laws Period, we will identify you in a snap.Think g-mail. Its important the users, normal people who want to do nothing... but, expect total privacy and security have an outlet for it. This technology is ISP based, works from anything you have connected to the net and is simple to use and totally effective.

Why does a normal person need to worry about getting information they deem sensitive. They do, and many people do not want AA or The Herpes Cafe or the Aids Hotline or RAINN in their histories yet need the help desperately...

done

Notme.com go wherever you want and no one will ever know, unless you break the law...
Posted by Steve Hirst (21 comments )
Reply Link Flag
IP's Are Often Static
If you use a router and you don't turn it off and have Comcast it's likely you will have the same IP for years. You don't need to be on some special network. If you go into your router and change the MAC address you will get a new IP. Some routers allow you to copy the MAC address of your PC's NIC instead of sending the MAC address of the router. Comcast will then give you a different IP.
Posted by good_nicks_taken (56 comments )
Reply Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot

Discussions

Shared

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.