Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Email Retention Policy

from [rainer] Network Security [Permanent Link]
Subject: RE: Email Retention Policy
Date: Fri, 12 Nov 2004 21:10:07 +0100 
Quoting Fernando Barie <fbarie@tycoint.com>:


In some countries the e-mail are considered financial documents and the
retention is the same that the others financial documents. I suggest looking
for the law who mention the retention period of financial documents.



What would the implications be ?
Would one need to keep even the spam ?
(I once heard a story about an employee who had printed out every email he got,
including a cabinet full of spams)
What about the funny_video_with_elephant.mpg the clogg-up the mailboxes ?
What abot quotas ? I assume most sensible organisation nowadays has
email-quotas.
Though there's hardly a point about quotas (IMO) if people start to download it
to a local .pst that itself sits on a network drive, which is what happens in
the end...

Would the company have to make sure, nobody accidentially deletes a mail, e.g.
by doing something like always_bcc in postfix and dumping it into a maildir
that get's DLTed every day ?




cheers,
Rainer

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Email Retention Policy, levenick
Next by Date:  Re: FIRM -framework fo risk assessment methodology implementation, alan_willcox
Previous by Thread:  RE: Email Retention Policy, Fernando Barie
Next by Thread:  RE: Email Retention Policy, Robert Mezzone
Indexes:  [Date] [Thread] [Top] [All Lists]