On Wed, Oct 07, 2015 at 03:19:46PM +1100, Andrew McGlashan wrote:
With the metadata laws.... does anyone here have a good understanding on how we stand running our own mail servers onsite for ourselves and/or for our clients (domains owned by us and also by clients) ?
http://blog.fastmail.com/2015/04/09/fastmail-is-not-required-to-implement-th...
IANAL, but on my reading, unless you are a carrier or an internet service provider (within the meaning of Schedule 5 to the Broadcasting Services Act 1992), then the metadata laws won't apply to you or your mail server. It probably doesn't matter much because most of the people you communicate with in australia will be using mail servers subject to the metadata retention laws anyway. It also doesn't matter because unless you make a habit of deleting your mail logs several times per day (or just not keeping any at all), cops and spooks can get a warrant for anything on your machine. and if you piss them off they'll just take anything even remotely resembling a "computer" and maybe you'll get (some of) it back one year if you can afford really good lawyers for really long court cases that will probably end up at the high court before it's all resolved. note: almost everything has a "computer" inside it these days. and they don't even really need a warrant because the govt's given them the legal right to hack if they want to. and if they decide to label you a terrorist (which has a scarily broad definition), you have almost no rights whatsoever. so, try not to be brown. or politically active. and ASIO can always ask the NSA for a copy of your mail, same as GCHQ does in the UK whenever they want data they're not legally allowed to gather themselves. The NSA considers themselves above the law outside the US and ignores (or creatively re-interprets) relevant laws inside the US. and they've got the bomb, so STFU you goddamn commie terrorist. and..... i'll stop now because i'm getting depressed. craig -- craig sanders <cas@taz.net.au>