lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Wed, 14 Nov 2007 08:50:50 +0530
From: Raj Mathur <raju@...ux-delhi.org>
To: bugtraq@...urityfocus.com
Subject: Re: Standing Up Against German Laws - Project HayNeedle

On Tuesday 13 November 2007 15:29, Florian Echtler wrote:
> [snip]
> As a native German speaker, allow me to clarify: with respect to IP
> communication, the law mandates saving the following information for
> 6 months:
>
> - which customer was assigned which IP for what timespan
> - sender mail address, receiver mail address and sender IP for each
> mail - in case of VOIP: caller and callee phone number and IP address

The mail addresses can only be stored if the server through which the 
mail is relayed (or on which it originates) falls under the law.  I'd 
presume that's not a significant percentage of all mails sent out from 
any country.

Of course, it's also possible to track (snoop) all SMTP traffic on the 
network, but that's totally different from just keeping mail and AAA 
server logs and from my understanding that's not what this law 
mandates.

Regards,

-- Raju
-- 
Raj Mathur                raju@...dalaya.org      http://kandalaya.org/
 Freedom in Technology & Software || February 2008 || http://freed.in/
       GPG: 78D4 FC67 367F 40E2 0DD5  0FEF C968 D0EF CC68 D17F
PsyTrance & Chill: http://schizoid.in/   ||   It is the mind that moves

Powered by blists - more mailing lists