RE: CRIME Interesting way around spam filter

From: Gunderson_Dane (dane.gunderson@private)
Date: Mon Jun 02 2003 - 11:13:49 PDT

Next message: Andrew Plato: "CRIME Reminder: Cisco Secure Agent demo, this Friday from 1-3 pm"

Previous message: George Heuston: "FW: CRIME Meeting 11 June @ 10AM @Verizon"
Maybe in reply to: Shaun Savage: "CRIME Interesting way around spam filter"
Next in thread: Ramsdell, Jack E: "RE: CRIME Interesting way around spam filter"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Well stated Mr Redshaw,

	Eventually the requirement of 'due diligence' is going to create a
burden for employers to protect employees from some forms of spam.  The fact
the courts have so frequently decided that employers 'own' your e-mail as
work product supports holding them responsible for offensive content
'allowed' to pass through.

	Cuts both ways for the boss-man.

			Dane 

-----Original Message-----
From: Gavin Redshaw [mailto:gavin@private]
Sent: Monday, June 02, 2003 10:29 AM
To: Crispin Cowan
Cc: crime@private
Subject: RE: CRIME Interesting way around spam filter


> More broadly: does the community believe that spam has become so bad
> that it can be considered a security problem?
>
> Thanks,
>     Crispin

Crispin,

I would argue:

- Most viruses have been benign and have really only impacted productivity
by taking down email systems, servers, etc while they are cleaned and
patched, not to mention the impact on the end user who has to run antivirus
software and clean out his/her mail box. Despite this, viruses are
considered a security threat.

- Spam can fill mail servers with spam to the point that valid mails are
bounced from mailboxes that are full. This can mean the loss of important
messages.

- Some of our users spend the first hour or so of every Monday deleting
spam. This is a direct impact to productivity (the nature of our business is
such that spam filters will not work for us).

- Most companies would consider theft of their product a security issue (no
matter who perpetrated the theft), but reduced productivity causes a
reduction in production for the same cost, so the net result is much the
same.

- Some spam is extremely offensive and could be considered intimidating by
some users.

In short, spam seems to have a similar impact and cost as viruses.
Additionally, if you define "security" to include any unauthorized or
malicious act that impacts a person's or organization's productivity and
hence impacts the bottom line, then spam seems to qualify as a security
problem.

Gavin

Next message: Andrew Plato: "CRIME Reminder: Cisco Secure Agent demo, this Friday from 1-3 pm"
Previous message: George Heuston: "FW: CRIME Meeting 11 June @ 10AM @Verizon"
Maybe in reply to: Shaun Savage: "CRIME Interesting way around spam filter"
Next in thread: Ramsdell, Jack E: "RE: CRIME Interesting way around spam filter"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Jun 02 2003 - 11:58:41 PDT