Re: [funsec] Corporate social media rules

[Brian Greer]

I would always assume that anything you put on somebody else's site is subject 
to their editorial control, regardless of what any published rules or policies 
say.

On Jan 17, 2012, at 19:15, Rob, grandpa of Ryan, Trevor, Devon  Hannah 
rmsl...@shaw.ca wrote:

 An item for discussion:
 
 I've see this stuff in some recent reports of lawsuits.  First people started 
 using 
 social media, for social things.  Then corps decided that socmed was a great 
 way to 
 spam people without being accused of spamming.  Then corps suddenly realized, 
 to 
 their horror, that, on socmed, people can talk back.  And maybe alert other 
 people to the fact that you a) don't fulfill on your promises, b) make lousy 
 products, c) provide lousy service, and d) so on.
 
 Gloria ran into this today and asked me about the legalities of it.  I 
 imagine that it 
 has all the legality of any waiver: you can't sign away your rights, and a 
 waiver has 
 slightly less value than the paper it's printed on (or, slightly more, if a 
 fraudster 
 can copy your signature off it  [Sorry, I'm a professional paranoid.  My 
 brain just 
 works that way.]).
 
 Anyway, what she ran into today (a Facebook page that was offering to let you 
 in 
 on a draw if you liked them) (don't worry, we've already discussed the 
 security 
 problems of likes):
 
 We’re honoured that you’re a fan of [us], and we look forward to hearing 
 what 
 you have to say. To ensure a positive online experience for the entire 
 community, we may monitor and remove certain postings. “Be kind and have 
 fun” is the short version of our rules. What follows is the longer version of 
 rules 
 for posts, communications and general behaviour on [our] Facebook page:
 
 [fairly standard we're nice people marketing type bumpf - rms]
 
 The following should not be posted on [our] Facebook pages:
 
 Now, some of this is good:
Unauthorized commercial communications (such as spam)
Content meant to bully, intimidate or harass any user
Content that is hateful, threatening, discriminatory, pornographic, or 
 that
 contains nudity or graphic or gratuitous violence 
 Content that infringes or violates someone else’s rights or otherwise 
 violates 
 the law 
Personal, sensitive or financial information on this page (this includes 
 but is 
 not limited to email addresses, phone numbers, etc.)
Unlawful or misleading posts
 
 Some of it is protecting their brand:
Competitor material such as pictures, videos, or site links
 
 Some has to do with the fact that they are a franchise operation:
Links to personal [agent] websites, or invitations from [agents] to 
 connect 
 with them privately
 
 But some it is limits freedom of expression:
Unconstructive, negative or derogatory comments 
Repeat postings of unconstructive comments/statements
 
 And, of course, the kicker:
 [We] reserves the right to remove any postings deemed to be inappropriate or 
 in 
 violation of these rules.
 
 Now, it's probably the case that they do have the right to manipulate the 
 content 
 on their site/page any way they want to.  But, how far can these rules go?
 
 ==  (quote inserted randomly by Pegasus Mailer)
 rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org
 (sqrt(-1)) before (2.71828), except after (186,242 miles/sec)
 victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
 http://blogs.securiteam.com/index.php/archives/author/p1/
 http://twitter.com/rslade
 ___
 Fun and Misc security discussion for OT posts.
 https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
 Note: funsec is a public and open mailing list.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Corporate social media rules

[michael.blanchard]

Well, it's just like any other socmed page, they have the right to remove any 
posting for any reason or without reason...  it's their page, they can do what 
they wish or allow what they wish on it...  I don't' think there are any 
legalities involved, I don't' even think that the rules have to be there...

 Now that doesn't mean that you can't go ahead and say that their product or 
service is a piece of steaming poop on YOUR page :-)

Michael P. Blanchard
Senior Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
Office of Information Security  Risk Management
EMC ² Corporation
32 Coslin Drive
Southboro, MA 01772


-Original Message-
From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org] On 
Behalf Of Rob, grandpa of Ryan, Trevor, Devon  Hannah
Sent: Tuesday, January 17, 2012 7:15 PM
To: funsec@linuxbox.org
Subject: [funsec] Corporate social media rules

An item for discussion:

I've see this stuff in some recent reports of lawsuits.  First people started 
using 
social media, for social things.  Then corps decided that socmed was a great 
way to 
spam people without being accused of spamming.  Then corps suddenly realized, 
to 
their horror, that, on socmed, people can talk back.  And maybe alert other 
people to the fact that you a) don't fulfill on your promises, b) make lousy 
products, c) provide lousy service, and d) so on.

Gloria ran into this today and asked me about the legalities of it.  I imagine 
that it 
has all the legality of any waiver: you can't sign away your rights, and a 
waiver has 
slightly less value than the paper it's printed on (or, slightly more, if a 
fraudster 
can copy your signature off it  [Sorry, I'm a professional paranoid.  My brain 
just 
works that way.]).

Anyway, what she ran into today (a Facebook page that was offering to let you 
in 
on a draw if you liked them) (don't worry, we've already discussed the 
security 
problems of likes):

We're honoured that you're a fan of [us], and we look forward to hearing what 
you have to say. To ensure a positive online experience for the entire 
community, we may monitor and remove certain postings. Be kind and have 
fun is the short version of our rules. What follows is the longer version of 
rules 
for posts, communications and general behaviour on [our] Facebook page:

[fairly standard we're nice people marketing type bumpf - rms]

The following should not be posted on [our] Facebook pages:

Now, some of this is good:
Unauthorized commercial communications (such as spam)
Content meant to bully, intimidate or harass any user
Content that is hateful, threatening, discriminatory, pornographic, or that
contains nudity or graphic or gratuitous violence 
 Content that infringes or violates someone else's rights or otherwise 
violates 
the law 
Personal, sensitive or financial information on this page (this includes 
but is 
not limited to email addresses, phone numbers, etc.)
Unlawful or misleading posts

Some of it is protecting their brand:
Competitor material such as pictures, videos, or site links

Some has to do with the fact that they are a franchise operation:
Links to personal [agent] websites, or invitations from [agents] to 
connect 
with them privately

But some it is limits freedom of expression:
Unconstructive, negative or derogatory comments 
Repeat postings of unconstructive comments/statements

And, of course, the kicker:
[We] reserves the right to remove any postings deemed to be inappropriate or 
in 
violation of these rules.

Now, it's probably the case that they do have the right to manipulate the 
content 
on their site/page any way they want to.  But, how far can these rules go?

==  (quote inserted randomly by Pegasus Mailer)
rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org
 (sqrt(-1)) before (2.71828), except after (186,242 miles/sec)
victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
http://blogs.securiteam.com/index.php/archives/author/p1/
http://twitter.com/rslade
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.