On Thu, 27 Jan 2011, Michael C Tiernan wrote: > ----- Original Message ----- >> From: "Tom Limoncelli" <[email protected]> > [...] >> IMHO there are 3 levels of problems: personal, organizational, as a >> profession. The biggest problem > [...] >> Invisibility and lack of credibility in the press >> and in > [...] >> it requires community action. > [...] > > As I said before, I'm doing some rereading and catch up on this whole > topic and when I reread this message from Tom, a thought occurred to me. > I don't know if it has merit but I present it for others to consider. > > Has anyone considered the "value" of getting involved with the law > enforcement groups who deal with cyber crime? We have a unique position > in that we are at a key point in any chain of custody and/or > investigation. > > What if we offered cyber crime protection groups a chance to see what we > do, what our systems look like (bring them into our data centers to see > 500+ servers humming away at any moment, 30,000 bazillion byte storage, > etc. and help educate them in ways of combating cyber crime from a > different perspective. > > In return for all this, we can learn some of the critical things that > LEO requires us to do to protect the integrity of a cyber crime scene. > > We get positive press. > We get positive "neighborhood relations". > We get important education that maybe one of ${us} can turn into a LOPSA > published document that helps other SAs learn how to protect crime scenes. > We can put it on our webpages and tell our congress folks "See what we've > done!" giving them/us a chance to show some of our value.
the problem is that this isn't within our authority to do. allowing outside people (especially law enforcement) in to your datacenter, showing them around, explaining details of your network is something that your upper management and leagal people will probably want to think very hard about (especially if you are an organization that could be accused of being used by the government to spy on your users) David Lang _______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
