-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Verner Kjærsgaard wrote: > Fredag 17 august 2007 14:35 skrev Dave Howorth: >> Verner Kjærsgaard wrote: >>> Fredag 17 august 2007 12:27 skrev Dave Howorth: >>>> Verner Kjærsgaard wrote: >>>>> Hi list, >>>>> >>>>> - as I'm going to use OpenSuSE for this one, so it's not completely off >>>>> topic. I think. >>>>> >>>>> - In Denmark a new law is being enforced by the 15th. of September this >>>>> year. It states that all internet activity must be logged, if you run a >>>>> hotel or similar. I do. >>>> Do you also have data privacy laws in Denmark? If so, I would think you >>>> need to be quite careful with guarding access to these logs. If you have >>>> professional societies in Denmark (Dansk Dataforening or Dansk Selskab >>>> for Datalogi perhaps?) they may have guidance on how to comply with the >>>> law. >>>> >>>> Cheers, Dave >>> All technical aspects aside, I do agree. A law like this is terribly >>> problematic. It opens up for who knows what. >>> >>> It does require a court order for the police to get to the records. But >>> still... >> I wasn't so much thinking about police access but abuse by others. I >> guess you will need to provide physical and other security to prevent >> your staff or other guests or intruders from accessing logs that may >> contain personal details of guests. >> >> Cheers, Dave > > Yes, that's a problem also. I was thinking of loggin to a remote server > (hosted) in Germany...making direct access a little harder. >
Apart from the additional logging requirement the configuration I suggested of using a proxy/mail relay/cache DMS tied to being the only machine that can communicate externally on certain protocols is probably the best solution in your case. Your are effectively running a public access network where the barbarians are not just at the gate, but probably carousing in the city as well. Firewalls have limited value in this context, as it quite possibly the bad guys are already in. I would take steps to ensure that your business systems are on a separate network, or if that is not possible strongly firewalled from the guest network. In the main this is not just about government requirements it is also about protecting you, your hotel and your hotel guest from the effects of other peoples criminality and/or stupidity. The kind of information which is probably being asked for (who connected to what and when) is not really for preventing terrorist or criminal activity, but is used to gather intelligence. If you read some of the commentary by some academic workers in this area there is a suggestion that some elements of the security community are already exploiting known security weaknesses to collate such material. All such legislation does is legitimise this activity and pass the bill on to the business community... Awaiting the knock on the door :-) - -- ============================================================================== I have always wished that my computer would be as easy to use as my telephone. My wish has come true. I no longer know how to use my telephone. Bjarne Stroustrup ============================================================================== -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFGxrOhasN0sSnLmgIRApADAKDydkMv3FKt1nYWLwIGSg5hxNKmaQCeK6cG zcGiZjnCy/8AhTKOnk9h8yc= =xq58 -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
