James Davis said: > > Sorry, you have received a message *claiming to be* from the media > > company. Are you checking? > > > > Particularly if it's email, you should be very clear that your > > customer should not rely on anything it says without outside > > verification. > > The larger anti-piracy companies PGP sign their e-mails. Whilst it's > not proof of real world identity it does allow you to build > associations of reliability of reporting with the > public-key-as-an-identity, and handle the reports accordingly.
Okay. You're clearly handling these messages with care and forethought. That's good. This thread started as advising someone who didn't know what to do. My advice would be to, at most, forward the message with "We received this message. We have no idea whether any part of it - including the sender's name - is true or false.". Certainly I wouldn't tell the person who sent it. (When I was on the ISPA Board we were trying to put together a robust process that used tests for piracy that we had verified. We also tried to get the rightsholder to pay us to pass the reports on.) -- Clive D.W. Feather | If you lie to the compiler, Email: [email protected] | it will get its revenge. Web: http://www.davros.org | - Henry Spencer Mobile: +44 7973 377646
