[Dshield] Fed Bill Would Restrict Web Server Logs

Mark markt442 at yahoo.com
Mon Feb 20 00:01:29 GMT 2006

Perhaps Mr. Markey is concerned about the opposing
party getting access to his, ahem, "web surfing
habits" by collecting said logs and publishing them
during the next political election?

I'd really like to read this bill. It seems as a short
attempt to mirror some features of PCI - storage. Note
that I didn't liken it to PCI, so park the flames. I
would rather that they state one should remove the
identifying information to a system not of public
access. Keep the logs if you must, but park them in an
area that can't be directly accessed via the next
zero-day web bug.

Of course it could just be that he's trying to hide
his or a contributor's web surfing habits. If so, tell
Mr. Markey about TOR or some of the other means of
anonymous access.


From:	"Paul Marsh" <pmarsh at nmefdn.org>
Subject:	Re: [Dshield] Fed Bill Would Restrict Web
Server Logs
Date:	Tue, 14 Feb 2006 10:26:43 -0500
To:	"General DShield Discussion List"
<list at lists.dshield.org>

Plain Text Attachment [ Download File | Save to Yahoo!
Briefcase ]

I'd love to know what got Mr. Markeys pants all in a
bunch?  I'm not a
lawyer and nope I don't play one on TV but it looks a
little weak. 

An owner of an Internet website shall destroy, within
a reasonable period of time, any data containing
information if the information is no longer necessary
the purpose for which it was collected or any other
mate business purpose, or there are no pending
or orders for access to such information pursuant to a
court order.

What's "reasonable period of time"?
Who determines when "the information is no longer
necessary for the
purpose for which it was collected"?

Thanx, Paul

Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 

More information about the list mailing list