From owner-freebsd-isp@FreeBSD.ORG Sun May 15 13:09:48 2011 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5C483106566B for ; Sun, 15 May 2011 13:09:48 +0000 (UTC) (envelope-from freebsd-isp@m.gmane.org) Received: from lo.gmane.org (lo.gmane.org [80.91.229.12]) by mx1.freebsd.org (Postfix) with ESMTP id E32278FC0C for ; Sun, 15 May 2011 13:09:47 +0000 (UTC) Received: from list by lo.gmane.org with local (Exim 4.69) (envelope-from ) id 1QLaqL-0001oC-Re for freebsd-isp@freebsd.org; Sun, 15 May 2011 14:54:45 +0200 Received: from c-82-209-158-57.cust.bredband2.com ([82.209.158.57]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 15 May 2011 14:54:45 +0200 Received: from mc by c-82-209-158-57.cust.bredband2.com with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 15 May 2011 14:54:45 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-isp@freebsd.org From: Michael Cardell Widerkrantz Date: Sun, 15 May 2011 14:54:32 +0200 Organization: Temple of the Moby Hack Lines: 61 Message-ID: <86ei402kfr.fsf@brain.hack.org> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Complaints-To: usenet@dough.gmane.org X-Gmane-NNTP-Posting-Host: c-82-209-158-57.cust.bredband2.com User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.3 (berkeley-unix) Cancel-Lock: sha1:qzs5dGhwSbEPuuWwxRXtUME++Dg= Subject: Re: Teleommunications data retention / 2006/24/EG X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 May 2011 13:09:48 -0000 "Jon Otterholm" , 2011-02-22 14:30 (+0100): > As a member of EU, ISP's in Sweden are now force to comply with > 2006/24/EG from 2011-07-01. > > In short we have store information about our customers communication > with the rest of the world - and we are not happy being forced to do > this. > > In Denmark ISP's have done this for a while and (as to my knowledge) > they are using Cisco Netflow to do this. Denmarks implementation of the law is overkill compared to what the directive actually says. The Swedish law doesn't require this. I haven't looked into the final law text but I did an analysis of an earlier text in my blog (in Swedish, I'm afraid): http://hack.org/mc/blog/datalagringsdirektiv.html In short, if you are a provider that falls under the LEK law https://lagen.nu/2003:389 and are registered with the PTS as such a provider you are supposed to store: - Telephony: + Numbers and or IP addresses if it's IP telephony, but *only* if it's bridged to POTS. + Registrated user. + Timestamp. + Endpoints. and some extra stuff if it's a cell phone. Note that straight SIP to SIP, Skype or any other IP-only telephony is not covered. - Mail and SMS + Adresses. + Registrated user. + Timestamp. - Internet connection (probably PPP/PPPoE/IP over cable, DHCP, et cetera) + IP addresses + Registrated user + Timestamps. + Endpoint addresses (things like switch port and used MAC address) All this might already be covered by your ordinary logs. You might have to store them longer to be compliant with the new law, but that's probably the only thing you have to do. There's no need to use Netflow or peek at the actual traffic, AFAIK. Note, though, IANAL. -- http://hack.org/mc/ Use plain text e-mail, please. OpenPGP welcome, 0xE4C92FA5.