[Gllug] email logging

SteveC steve at fractalus.com
Mon Jul 11 13:18:22 UTC 2005 

Envelope information (to, from, time..) is often good enough but in many
ways this is a lost war, RIPA was passed some time ago. I think some of
the data retention instruments still have to be enacted. Oh and there
are EU things on this going through.

* @ 11/07/05 01:57:35 PM addw at phcomp.co.uk wrote:
> Below is a letter that I wrote to the BBC PM radio programme. Anyone got
> any comments just in case they do 'phone me:
> 
> 
> 
> Subject: Keeping email records
> 
> Hi,
> 
> this is completely misguided as it will not do much to stop savvy criminals/terrorists
> but will impose a cost on the 'innocent' rest of society.
> 
> Why ?
> 
> There is an assumption that *all* email passes through the ISP email servers.
> Although most people do, not everyone does. It is easy to arrange for email
> to be send direct to your home PC bypassing the ISP's email servers - I do
> this because I want to experience the day to day issues of working like this
> (I am an IT consultant). Corporations (eg the BBC) do this as a matter of
> course and I know many individuals who do this because it is fun.
> 
> OK: get the ISP to log all TCP connections to port 25 (technobabble meaning
> detect & record direct email transfers). The work/cost to the ISP to do this
> will be great. Once it is known that this sort of 'sniffing' is done, then
> the criminals will start using non standard port numbers for instance port 80
> (eg disguise email traffic as web traffic) or something else.
> 
> None of this is technically difficult to do, but hugely increases the cost
> to the ISP and the cost to the police of analysing this data.
> 
> Yes: this logging will catch naive criminals, but it would be a mistake to
> think al-Qaeda naive.
> 
> If you want to further explore what I have written - phone me on the number
> below.
> 
> -- 
> Alain Williams
> Parliament Hill Computers Ltd.
> Linux Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer.
> +44 (0) 787 668 0256  http://www.phcomp.co.uk/
> 
> #include <std_disclaimer.h>



> -- 
> Gllug mailing list  -  Gllug at gllug.org.uk
> http://lists.gllug.org.uk/mailman/listinfo/gllug


have fun,

SteveC steve at fractalus.com http://www.fractalus.com/steve/
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug

More information about the GLLUG mailing list