I'd be interested to hear if any of the personal data collected at crypto download sites are ever actually requested by or sent to the feds.
You know, the pre-download screen in place for everything from PGP to SecureCRT that has downloaders affirm they're not from Libya etc. -- Greg PS: I've put unpublicized mirrors of various crypto software on my servers at UNC, mostly for class demos. As far as I know, the regulations that make commercial sites want to collect export control data are vague enough that the sites are, essentially, self-regulating. On Mon, Dec 10, 2001 at 09:36:24AM -0800, John Young wrote: > > According to the New York Times today the US Customs > Service will be asking businesses to report "suspicious" > customer requests for a range of threatening technologies, > including "encryption devices." > > For publication we'd like to hear of examples of Customs > contact about informing on crypto customers or about > reporting downloads of free crypto if the request covers > that as well: how the contact was made, the terms of the > request, whether the reports are to be confidential, and > any other useful information on broadening crypto controls. > > Cryptome offers most of versions of free PGP from 2.62 > through 7.03 as well as a directory for getting numerous > crypto programs around the globe. No record is kept of > downloads. > > http://jya.com/crypto-free.htm
