'Today' considers data retention and IMP

[Chris Edwards]

On Fri, 9 Jan 2009, John Wilson wrote:

| However the problem would seem to be that the authorities would like
| to pour all these logs into a big database and do some pattern
| matching to try to find groups of bad people. In this scenario they
| are not going to be able to make individual requests the
| Google/Yahoo/Microsoft, etc for UK individuals who happen to have
| email accounts with them.

Yes for google/gmail, with its "always use https" setting.

However, as was discussed not long ago, the current free webmail services 
from Yahoo and Microsoft (hotmail) fall back to cleartext http once the 
login has been performed.  In theory, therefore, black boxes may be able 
to automatically figure out who's mailing who.