[31792] in bugtraq
RE: Does VeriSign's SiteFinder service violate the ECPA?
daemon@ATHENA.MIT.EDU (Andrea Rimicci)
Thu Sep 25 13:32:43 2003
Message-Id: <5.0.2.1.0.20030925172659.00c6e6d0@192.168.200.240>
Date: Thu, 25 Sep 2003 17:31:10 +0200
To: BUGTRAQ@securityfocus.com
From: Andrea Rimicci <andrea.rimicci@deltasys.it>
In-Reply-To: <CED6702E8E0E6B44B5804C599531EC202802@mail3.grossprofit.com
>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
<snip>
>I'd be careful making legal arguments, but I suspect that if Verisign is
>doing anything with this data they are justifying it as being "Public"
and
>that if people are foolish enough to transmit "Private" data in a
"Public"
>medium they can't be held liable<snip>
The real threat behind this is the fact nobody else can do same business.
They are the only who can access that data on overall network, so this
service can be an abuse of their position.
Andrea
