維持導線治安

2009年1月9日 · 由大衛布雷得里

電子郵件監視在2009年3月生效的新的規則，意味網絡服務提供戶在英國將必須保留被送的每一電子郵件細節。公民自由小組(和據推測ISPs)言計劃是浪費金錢。雖然那說， BBC 報道GBP25m (關於$35m)納稅人』金錢將被給ISPs到幫助使系統光滑。

直接三點春天到頭腦。

首先：什麼是點？如果他們不記錄實際電子郵件內容，則為什麼麻煩根本跟蹤？

其次：電子郵件可以通過公開計算機，虛擬專用網絡被送(VPN)，代理人系統和webmail，和將是無形的對簡單地監測SMTP/POP3/IMAP郵件調動協議常規電子郵件程序使用傳送和收到信息的跟蹤系統。

第三：如果目標將減少犯罪行為，并且恐怖主義我然後有新聞為當局，真正的罪犯和恐怖分子使用加密(不同於英國的政府膝上計算機和thumbdrive用戶，它似乎)。

噢，有劍橋大學的理查很好提出的第四觀點Clayton，研究計算機安全。「那裡是到達對您和所有電子郵件演講您通過您的ISP派出每一電子郵件的紀錄」，他說，「當然包括所有發送同樣的消息到多個新聞組」。假設發送同樣的消息到多個新聞組消息(在以後 mcColo Corp。中斷)帳戶為幾乎所有電子郵件交通 (億萬每日)是一個巨額副產品在監控系統，特別是指定發送同樣的消息到多個新聞組經常犯罪內容發電子郵件!

「我在一個電子敲打調查的互聯網罪行希望看更多Bobbies*」， Claytons增加。

*Bobby -英國警察，命名對於羅伯特・ Peel，第一現代警察的創建者先生在英國。亦稱削皮器(古體)， rozzers (烤)， Plod先生或個人計算機沉重緩慢的腳步(Noddy)，或者在藍色(性別歧視)，扁平足(醫療)， Sweeney上銅或警察(自然力)，男孩(和在托德…小隊)絨毛(進攻)，穢(進攻)，豬(有些期限比其他期限進攻)， Dibble (Barberic)，

到目前為止7個反應↓

尼克 // 2009年1月9日在2:35 pm

關於Sweeney (和在托德？沉重緩慢的腳步) Sweeney實際上提到根據在新的蘇格蘭圍場的飛虎隊(專門研究與交戰的持械搶劫和暴力犯罪的大城市警署的精華分支在大城市警察地區之內在倫敦。 )名字從倫敦佬押韻的俗話獲得，表示Sweeney托德押韻與(和立場為) `飛虎隊』。
大衛布雷得里 // 2009年1月9日在2:49 pm

Yep, Nick, you’re right…I knew that, I was typing faster than my brain was working at 7:15 this morning right after this news was on BBC Radio 4 Today program…
Dave Pimlott // Jan 9, 2009 at 8:07 pm

Regarding the second point you make: no matter what precautions you take at some point your email will be sent to some Mail Transfer Agent (MTA) which *will* talk (using SMTP) to the destination persons MTA and will therefore be logged by this mythically useful system (point four is a very good point!). That is unless you run your own SMTP server and have everyone who wants to send you email connect via a VPN directly to your mail server.
David Bradley // Jan 9, 2009 at 9:04 pm

Ah, good point Dave…but either way, if you’re pgp’ing your emails there’s nothing for the spooks to read but garbage, right?
Dave Pimlott // Jan 10, 2009 at 9:11 pm

assuming that they haven’t broken PGP (which I rmember reading about is mathematically possible) then the security forces won’t know that the email contained “I like playing with Barbie dolls” but they will know who is talking to who and I believe that sometimes that can be enough for you to be investigated further.

A thought that occurred to me as I was writing - perhaps they aren’t interested in the contents of the emails as much as who is talking to who - i.e. who should we (the security forces) be looking at next. Which (to me) makes a lot more sense that archiving peoples “lolcat” emails to their mates. The security services already have a watch list so legally being able to see who is sending and receiving emails from people on your watch list would be a good way to find other potential terrorists.
Not that a Network Security bod like myself knows the methods used by the security forces….
David Bradley // Jan 10, 2009 at 11:21 pm

Yeah, they’re b*st*rds anyway, if they’re spying on the innocent. But, no I don’t think 256-bit PGP has been broken yet, has it? Got a link for the crack?
Dave Pimlott // Jan 11, 2009 at 11:27 pm

http://www.rossde.com/PGP/pgp_weak.html is a pretty good summary of the problems that have occurred and (I assume) been patched. I haven’t yet found the private key recovery paper that I’m pretty sure I read…