lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-id: <00c701c9500a$8af002d0$a0d00870$@net>
Date: Wed, 26 Nov 2008 16:04:16 -0500
From: AMILABS <amilabs@...online.net>
To: 'Andrew Farmer' <andfarm@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: does the aim service save chat session
	details?

Thanks Andrew, according to AOL policy and terms of use et. al.

"Your AIM information, including the contents of your online communications,
may be accessed and disclosed in response to legal process (for example, a
court order, search warrant or subpoena), or in other circumstances in which
AOL has a good faith belief that AIM or AOL are being used for unlawful
purposes. AOL may also access or disclose your AIM information when
necessary to protect the rights or property of AIM or AOL, or in special
cases such as a threat to your safety or that of others"

So I am presuming that they do store all communications only for legal or
law enforcement purposes but not for general use from the user community.

Regards...

-----Original Message-----
From: Andrew Farmer [mailto:andfarm@...il.com] 
Sent: Wednesday, November 26, 2008 3:42 PM
To: AMILABS
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: [Full-disclosure] does the aim service save chat session
details?

On 26 Nov 08, at 11:17, AMILABS wrote:
> Is AIM IM purely peer to peer or a store and forward type protocol?

It is neither. In most cases, the server forwards messages from client  
to client, but does not retain them. The client also supports a peer- 
to-peer mode, but it's rarely used.

> We need
> to determine if we can recover a past IM chat conversation that  
> occurred
> over two weeks ago. Our chat client did not have IM logging enabled  
> so we
> need to know if the "service" archives all chat conversations for law
> enforcement and legal purposes.

You'll have to ask AOL about that. If there are server-side logs, they  
are not exposed to users.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ