This has been split from http://www.ptsdforum.org/thread7272.html as off-topic.

About that... I hope I'm not coming accross as rude or out of line, but why am I still not allowed in the PTSD Only room? I was told I was denied access for legal reasons. What is so special about that place that I still haven't been granted access?

Because we are talking about YOU!

(Just kidding)

Upstream, nobody is getting access to any private areas at present, carer or PTSD. It will not change until some things are sorted out, none of which will be discussed publicly or privately for legal reasons.

I have to be honest, Anthony, the words "will not be discussed publicly or privately for legal reasons" really scares me, when we are talking about an entire section of this forum, a forum on which I post.

I'm sure it's my paranoia, but I really have no idea how to interpret that, except that it makes me feel like people are being preyed upon.

All I am going to say is that those who have access are safe and fine, those who do not will not be getting access until some matters are sorted out first.

I may even close the areas down and find a more thorough method in which to determine a persons actual identity for security purposes off allowing them access to private and personal content.

I cannot discuss this topic further at this time.

Fair enough.

I understand. Thanks, Anthony.

Anthony:

I know you are the 'techie guru' - is there anyway you can use IP addresses as a filter? You don't have to answer, it just popped into my head and didn't know if it was possible.

IP's are useless as you can use a proxy to surf anonymously and cloak your location. I will be researching security methods over the coming months though.

How about paypal?

Uhh okay Anthony that is just freaky. What ever it is.. I hope you get it all sorted out okay. .....

bec

Whatever it is . . . I really appreciate your looking out for us, Anthony. Thanks.

Hodge

Ok, I have processed the long list of private requests tonight for both PTSD and Carer, though only very few met my criteria for entry. Those who where rejected, it does not mean you should run away or feel rejected, its not about a judgement against you, but about how I perceive your posting history and content. Very few process each time. All you have to do is keep posting and reapply at a later date for reassessment.

I am quite stringent on access to private data and have only processed tonight because some resolution in other areas has been obtained.

Please note: all private access will require a reauthorisation process at some date after discussion with private and public members to help determine an appropriate security process for authenticity and access requirement verification.

Anthony,

Does this affect our trauma diaries at all? Will everything be wiped out when you do the security update?

nor

Nothing will be removed.... only access will change. Some may have to request their diary moved if they do not meet enhanced security measures.

It was simple and easy to read each person long ago and determine legitimacy of the person. Now though, with near 500 active members and more registering daily, it is becoming a lot harder to read each person and determine whether they are legitimate or just trying to get access to something they don't have.

End of the day.... the privacy of all those who have access and have posted private matters about themselves away from the public are at risk I feel if I do not implement a more stringent application process. It will need to incorporate written and documented aspects of each member, something like a written application with supporting documents sent to me, with further followup procedures to verify personal details. I may even incorporate the requirement off an actual written diagnosis with the physicians contact details for formal verification. I am not sure yet, but security needs to be enhanced before something does go wrong.

When I first joined and learned of the "moderated member" idea, I thought it was a bit strict, simply because I'd never seen it before. Then I quickly realized that for our privacy and safety, it is a good thing. My husband (who usually hates rules of any kind, lol) actually said something like "I am glad they have that. It shows they are serious about who can come in there." I commend the effort to keep things safe and private here!

I would add however that I think requiring a doctor's verification is going a little too far. I have learned all my life never to send personal information to people I know from the Internet. I think a written diagnosis or doctor's contact details falls under that category. If not for his videos, Anthony could be a purple giraffe for all we know. :p Do we get any verification back that the folks who run this forum are for real?

Good point, Lucky Laser...it is not safe for any of us to be sending private information like that to any website.

My concern is that Anthony might get a subpoena for this information... right now I can't think of a situation where this would happen, but then again I've seen lots of wacky stuff that I never would have expected.

Thanks.... yes, I do agree that measures can be harsh, though if I did move to such a thing for the private area access, not the normal get out of moderation type stuff, there would be a formal and legal agreement which I would have to agree with for privacy concerns.

Moderation for new members stops a lot of issues coming into the forum to begin with. It stops 99% of trolls, 99.9% of spammers, it finds 99% of predators, etc. It has a good success rate of weeding out those who are here legitimately to those who go from forum to forum, community to community looking to cause trouble. It works, its proven. Forum manufacturers build such systems into the forum for these exact reasons, because they receive the feedback from all forum owners who have the same problems. This is how such systems come to light in the first place, through the owners reporting back to the software manufacturers. Get enough reports from thousands of owners, a problem exists that software can fix easily.

I may move to what some use to verify online, in that you must send certified true copies of three identification forms, ie. license, bank card, utilities notice, something that verifies yourself and your location. That is quite normal to do across the Internet, though obviously companies who use it also have a standing privacy document outlining the use, filing and destruction of such personal information.

Anonymity is fine as a member of this forum... though when you talk about having access to specialised areas of the forum that are not public and contain very personal information that people put there for a good reason, privacy from spouses, loved one's, friends, co-workers, etc.... that information must be protected by strict application and anonymity goes out the door in relation to member - myself.

Currently it is strict once entered, in that by having access you automatically agree to not copy, transcribe, replicate or remove any content from such areas. Doing so will see a person in legal matters, regardless their location in the world. Privacy here is an issue, and it is the issue that is important because they are private areas for the security and safety of those members. It is free, not paid, but privacy must still be adhered.

Thanks for fleshing that out Anthony. I tend to be one of those people who is afraid of sending any information to anything that isn't as well-known as Amazon. Even though I understand the reasons for it (and I figured you just meant the private access), it still makes my stomach knot a little. Internet security has always been a topic of interest for me. :)

Yes I totally understand the need for security, but I'm like Lucky it is kind of scary to send personal information via the internet. That is why I don't use my real name. However, I don't mind giving my real name to anthony, but sending bank cards and stuff really freaks me out.

I'm not really hiding from anybody. My husband isn't controlling or super nosey and I have participated in real-life group therapy where everyone knew my real name. Of course it was confidential. The thought of someone finding my story on the internet and recognizing it is me and then reading about my inner-most thoughts is quite frightening though. I tend to write more than I would ever verbalize.

I'm sure it will all work out.

Your welcome Lucky....

My concern is that Anthony might get a subpoena for this information...
That is already covered in the legal policy which the barrister included for that reason, because I have no choice if I am legally ordered to hand over specific information about a member that could be contained in a private area, however; saying that, firstly such things are not handed out so easily about private medical (mental health) information, secondly, the person would have to be verified first for me to hand it over, or proof of such verification has occurred before I could legally hand such over.

It is catered, though I doubt would occur unless someone left their computer login open for another to view in the first place to even know what was contained in such an area. Security and privacy doesn't just stop with me, it includes the members who have such access to ensure they maintain their security end of things, being to log out after their session and ensure they are securely logged out if using a public computer or non-secure system, ie. work.

I should highlight though especially to new members, your already not hidden from me. I see all your personal information, your ISP, I can trace you anywhere, i can see if you use any manipulative techniques, etc.... so whilst you do have anonymity from members and the public, you don't really do so from myself. You would be quite shocked what I can see and what digital footprint you leave behind in coming to this forum, any forum, surfing the Internet period.

End of the day though, all members will still have the choice of either participating publicly in all those existing forums, or providing what set security standards are employed to gain access to private areas. You are not forced to provide such details, you simply will never have access to a private area here to hide your information from the public eye. People cannot have it all ways... in that I just cannot guarantee I have done everything possibe to protect the private data in private areas without the implementation of strict security measures.

Trauma Members diary is an example, being it is hidden from the public and search engines, but all you need to do is register to view the content. That is not secure, it just isn't as public, but still available by registering as a member. The private groups require manual authenticated access to view the forum and information, hence no registered member can see it unless they have gone through the same security measures. Currently those measures are my ability to view a persons information for legitimacy.... then make a decision based on my life experience. It would still be at play that way with extra security measures, have no doubt, but further verification IMHO is required.

I upgraded to a dedicated server with higher security... so hardware is more secure than most hosted sites already. A professional hacker though could get through it without much pain.... but those people are few in the world and have better things to do than hack Internet forums.

Gee, Anthony, you sure put a lot of time and energy into all this. I know nothing about computer technology. Other forums have required my real name and contact info. Of course, they were forums that did not contain such personal information as this. You knowing my identity is absolutely not an issue with me. Hell, if you're in the area; stop by for coffee.

All I can say is.....work your magic....I'm sure it will be fine.

IMO, the more security, the better. I keep getting mini-panic attacks just thinking about the possibility of someone I know finding the stuff I've written in this forum. (Or an even worse senario: one of my students!) I know that there are already securities in place, so my fear is (for the most part) unfounded. BUT, if there are ways to make this forum even more secure, even if that means me giving more personal information to Anthony/other administrators, then I would welcome it.

DITTO!

Cindy

I am very happy that Anthony has upgraded and has made the forum more secure. We say some very personal things in here, so the more secure, the better, and the more calm I am.

Maybe the private areas should require a small fee be paid for access, that way you have a paypal trail. Pay Pal has contact with banks and the banks already have all sorts of unpleasant procedures to handle fraud with...

I know it wouldn't solve the greater problems, but what about an addition that someone must have been an active member for a year or so here, and have made enough posts to be eligible to apply for the private access? Similar to the system you have with moderation that is for starting to post in the public area. This is for private access. Sure, it would keep some people who might otherwise benefit from posting about things they don't want public from being able to do that for a while, but overall I'd imagine a lot less impact from something like this than if you required the whole scheme. Retina scan and blood sample for access next?

I mean, implement a system to actively test users credibility in advance to any private area access. One with enough time to observe and expose deceitful users. More time for all sorts of things that would catch the fakers. And in the end, its already you right to refuse anyone access. Just my opinion but try making it much harder to gain access first, and if problems remain then think about the other things.

Wow... not been here for a while... not sure what's going on, but I'm glad that any steps being taken towards more security are being taken. If you feel that this is necessary, then it's for a reason. I'm all for it. I'd be happy to send you details of who I am and whatnot, I have nothing to hide. I certainly don't want anyone reading my private posts if there is cause to believe private areas need to be more stringently protected.

It's ironic. My privacy was invaded the other week actually. Two people who I know got into my bedroom and onto my laptop and had a snoop about... It's not nice, and the damage both psychologically and otherwise can be huge. So I'm glad to read this thread actually.

Anyway... hope whatever the problem is gets sorted soon, Anthony.

I think that is one thing on the top of my mind also Lisa.... in that people who have nothing to hide often don't have any issue providing such verification as long as they know or have some legal assurance that protects that verification process. I have never had an issue providing such documents online, and have had to do so with certain things, like even getting a server you must prove your identity, even though you pay for it, you must prove who you are so they can decrease fraudulent activity upon the web now. Sure, there are still some countries where you can go be as fraudulent as you like, but the majority of western society countries now require such verification for these exact reasons.... to prove you are who you say you are because the web otherwise allows you to be very anonymous.