Jim,
you r fair enough in raising the legal and ethical point. I gave a wrong example. We do not intent to monitor the CVs or people looking for better jobs. We are a company who work on high security geographical data for clients. We have got people to sign the confidentiality agreements as well.
The e-mail server and LAN have been secured enough. The only thing that we intend to stop is the information about data. Even few text lines for us can be costly.
Best Regards,
Chand
-----Original Message-----
From: Jim Carter [mailto:jimc@xxxxxxxxxxxxx]
Sent: Wednesday, August 27, 2003 11:13 PM
To: Deshwal Chand
Cc: Netfilter (E-mail)
Subject: Re: Can IPTABLES be used to send alerts!
On Wed, 27 Aug 2003, Deshwal Chand wrote:
> I am using IPTABLES and Squid. I want to monitor all the traffic going out
> of this box. Suppose someone sends his/her CV from our network using his/her
> Yahoo or Hotmail account, then I may get an alert.
Another person pointed out that you could make a copy of your datastream,
using iptables facilities, and feed it to a program that you write, which
would do the analysis. But actually analysing the data would be very hard,
since you would have to understand meaning and intent, not just trigger on
text strings.
In American custom and law, monitoring users' content is not proper
behavior. At UCLA there is a specific regulation that would forbid it at
my site. Commercial web hosts such as msn.com have rules forbidding
pornographic, defamatory, illegal, etc. postings, but in the USA the custom
is that the host has to wait until someone claims to have been harmed by
the posting, before taking action. A few years ago, aol.com got proactive
about editing postings that criticized AOL, and they were severely flamed
for it.
I don't know the situation in Indian and British law, but you should
definitely consult a lawyer, as well as a spiritual advisor who can give
you guidance in proper behavior according to Indian custom, before
snooping on users to detect people trying to get a better job elsewhere.
If I were interviewing a new programmer and he/she said he left his
previous job because the employer was snooping on him, I would consider
that a sufficient reason to leave the job.
James F. Carter Voice 310 825 2897 FAX 310 206 6673
UCLA-Mathnet; 6115 MSA; 405 Hilgard Ave.; Los Angeles, CA, USA 90095-1555
Email: jimc@xxxxxxxxxxxxx http://www.math.ucla.edu/~jimc (q.v. for PGP key)