|
|
Privacy Patches and Packages
These patches and custom debian packages allow a system administrator to retain less data. Typically, it is not possible to control what data is retained, logged, and distributed with various internet services. By allowing you to retain less data, these patches increase users' privacy and decrease the liability of the service provider.
Data retention has become a hot legal topic for ISPs and other Online Service Providers (OSPs). There are many instances where it is preferable to keep less information on users than is collected by default on many systems. In the United States, there is currently no requirement to retain data on users of a server, but you may be required to provide all data on a user which you have retained. OSPs can protect themselves from legal hassles and added work by choosing what data they wish to retain.
See also:
- Syslog-ng
- A patch for syslog-ng to strip out specific data from logs before they are written to disk. This allows you centralized, fine grain control over all system logging.
- Postfix
- A patch to postfix to allow authenticated smtp without including the user's home IP address in outgoing mail.
- Postgrey
- This patch adds the capability to postgrey to store the IPs and emails in the greylisting database using a one-way SHA1 hash function, instead of in clear-text.
- Webmail
- Patches to IMP and Squirrelmail to prevent them from including the user's home address in outgoing mail.
- Apache
- Information about how to keep Apache from logging IP addresses (it is harder than you might think).
- Mailman
- How to anonymize Mailman a bit
- Squirrelmail
- Security plugin for squirrelmail.
|
