Firewall Wizards mailing list archives

Re: Legal Liability under 1986 ECPA

From: John Adams <jna () retina net>
Date: Mon, 28 Jan 2002 21:28:30 -0500 (EST)

On Mon, 28 Jan 2002, Jeff Newton wrote:

I'm pushing my company to require a signed AUP, rather than simply
posting the security policy on their intranet.  I was hoping to cite
specific court cases to management illustrating the consequences of not
obtaining employee signage.

Administrators, managment, and security analysts have supposedly been
held liable for scanning/sniffing,etc actions if employee permission
isn't first obtained as per the 1986 Electronic Communications Privacy
Act.

Does anyone have specific case references?



Include it in the employee handbook, which they usually have to sign, and
get a clause in there exempting the security engineers from litigation if
they do something to protect the corporate network ;)

-j


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Legal Liability under 1986 ECPA Jeff Newton (Jan 28)
- Re: Legal Liability under 1986 ECPA John Adams (Jan 29)
- <Possible follow-ups>
- RE: Legal Liability under 1986 ECPA Ames, Neil (Jan 28)
- Re: Legal Liability under 1986 ECPA Steven M. Bellovin (Jan 29)
  - Re: Legal Liability under 1986 ECPA Jody C. Patilla (Jan 30)
  - RE: Legal Liability under 1986 ECPA Jermaine Howard (Jan 30)
    - RE: Legal Liability under 1986 ECPA R. DuFresne (Jan 31)