Last week I sent out a note wondering about the Feds forcing security companies to whitelist police spyware (either through a court order or old-fashioned coercion): http://www.politechbot.com/2007/07/12/dea-key-logger/ Subsequently, a colleague at CNET and I did a survey asking 13 of the top anti-spyware vendors, including Symantec, McAfee, IBM, and Microsoft, three questions: 1. Have you ever had any discussions with any government agency, not counting conversations related to a lawful court order signed by a judge, about not detecting spyware or keystroke loggers installed by a police or intelligence agency? 2. Is it your policy to alert the user to the presence of any spyware or keystroke logger, even if it is installed by a police or intelligence agency in the absence of a lawful court order signed by a judge? 3. Have you ever received such a court order signed by a judge requiring you to cooperate with law enforcement authorities in terms of not detecting government-installed spyware or delivering government spyware to your users? The short answer is that we received "No" answers from all 13 companies to the second question. But not all would reply to the third. The article with the summary of the survey is here: http://news.com.com/2100-7348_3-6197020.html The actual survey results, verbatim, are here: http://news.com.com/2100-7348_3-6196990.html -Declan _______________________________________________ Politech mailing list Archived at http://www.politechbot.com/ Moderated by Declan McCullagh (http://www.mccullagh.org/) ----- End forwarded message ----- -- Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org ______________________________________________________________ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE