Mastering the Internet
Florian Weimer
ukcrypto at chiark.greenend.org.uk
Sun, 03 May 2009 19:09:32 +0200
* Pete Mitchell:
> Roland Perry wrote on 3-05-09 15:13:
>> An order is only required if the CSP resists a polite request to install
>> a permanent intercept capability.
>> It's not illegal to install one, just [currently] to operate it without
>> warrants to extract content from communications.
>
> Hang on ... that one's from Orwell, am I right?
No, most routers deployed on the Internet already have that
capability. IPFIX/Netflow export functionality is very common, and
there are also monitor ports and (E)RSPAN, which provide payload
access. I think that for diagnostic purposes, capacity planning etc.,
it's also legal to use them.