Sorry. I can't agree.
I used to work for a government law enforcement agency and we enforced what
you just stated. Don't steal. That's the example you just wrote and its not
"inconsistent" with the law. To put in place a security policy that enforces
this is consistent with corporate and public law, and that is to "not take"
something that doesn't belong to you.
I believe what Todd said, and please correct me if I'm mis-stating this, is
a policy that is "inconsistently more strict.."
The law says don't steal. It doesn't say what you're not supposed to steal,
it says don't steal.
Same with sexual harrassment. You can't sexually harrass someone in person,
so you shouldn't be able to in a letter, over the phone or with email.
I'm all for monitoring, I do with our firewall and have with others. But its
not something I sit there and do all day long. There is a difference between
"monitoring" and "invasion of privacy". I have no desire to know who's going
out with whom. Or who's sending email to ask someone out. Couldn't care
less. Transmitting company secrets or company confidential information is 1)
against company policy and 2) may provide the company with legal recourse in
the form of salary or work force reduction. If you invade someones
privacy...you're on your own and good luck. You should have RTFMed the law
books "before" you thought you knew
what you were doing. This is a very "hot" area of law right now. Check out
the local law library and USC section 18.
Good Luck,
Ken
> -----Original Message-----
> From: Information Security [SMTP:[EMAIL PROTECTED]]
> Sent: Monday, January 18, 1999 1:05 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Content filtering
>
> > From: Bennett Todd <[EMAIL PROTECTED]>
> >
> > Don't try and put in place security practices on electronic systems
> that are
> > inconsistently more strict than those on non-electronic systems, it
> just
> > annoys people for no benefit.
>
> You know that's not true.
>
> Reason: by barely moving one's fingers, megabytes of information
> can be stolen via email.
>
> > The job of a censor is hard, it requires careful judgement, and the
> only way
> > to be even close to safe is to err way on the side of caution, and
> even then
> > some stuff will slip through. No way in hades to automate it
> effectively.
>
> Protecting the company by monitoring firewall traffic is mandatory.
> ---guy
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
