August 29, 1996

• Set up tcpdump logging of intruder sessions.

• We had to identify sessions through our authentication logs, start/stop tcpdump by hand. Ick.

• Also raised legal issues – ECPA?

  • Talked to our lawyer – “no”.
  • This indemnifies me (to some degree) - now its the University's problem

Previous slide

Next slide

Back to first slide

View graphic version

The ECPA (Electronic Communications Privacy Act) is a tough law to interpret, and there’s little case law to help.

Our lawyer determined, after consulting with the U.S. Department of Justice, that our actions were OK.