Quick off topic legal Q

[Owen Blacker]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

A sysadmin looking at logs is allowed by the Business Practices guidelines
stuff, even if it could be construed to be contrary to RIP, by my
understanding.  Obviously, sysadmin types need to look at logs, that's what
they're there for.

At what point, if any, would a sysadmin be contravening the law in this
process?

  1  User surfs websites from work, but has been encouraged to make
     personal use of the Web connexion if not busy.

  2  Sysadmin looks at logs

  3  Sysadmin follows links from logs

  4  Sysadmin makes assumptions based on user's race and user's
     browsing history (looking at sites that might imply too much
     interest in the events of 2001-09-11 and those ensuing, for
     example) and, considering it to be suspicious, contacts local
     law enforcement.

If this is too vague to answer, then feel free just to tell me so.  Answers
offlist, please, to owen@flirble.org, as this is patently nothing to do
with crypto.

Ta muchly 'n' all  :o)



O x
- -- 
Owen Blacker
Senior Software Developer / InfoSec Consultant    Wheel: Clerkenwell
See http://www.owens-place.org.uk/pgp.html -- more about my PGP keys
Sig  0xb48e805e | 0e31 ac2a 4ff2 62a0 89da  ddef 4223 99a6 b48e 805e

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.4
Comment: Due to RIP, pls check for revocation before using this key!

iQA/AwUBO9/nh0Ijmaa0joBeEQIaBwCfXwocWGkwtyz5frfmWlUOYxu6l6UAnivy
zu7F4/txhfFD54NL54wqYvEq
=t5za
-----END PGP SIGNATURE-----

_____________________________________________________________________
This message has been checked for all known viruses by UUNET delivered 
through the MessageLabs Virus Control Centre. For further information visit
http://www.uk.uu.net/products/security/virus/