Date: Sat, 31 Oct 2009 20:55:57 +0300 From: Vagner <root.vagner@gmail.com> To: Igor Mozolevsky <igor@hybrid-lab.co.uk> Cc: Freebsd chat Mail List <freebsd-chat@freebsd.org> Subject: Re: FreeBSD vs Russian's laws Message-ID: <20091031175557.GA8527@vagner.bsd.loc> In-Reply-To: <a2b6592c0910310939u85b2d5aud8ad380526dbe1ea@mail.gmail.com> References: <20091031061956.GA4561@vagner.bsd.loc> <a2b6592c0910310244l21949d6ao668f880784c2a85b@mail.gmail.com> <20091031141651.GA7175@vagner.bsd.loc> <a2b6592c0910310939u85b2d5aud8ad380526dbe1ea@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 16:39 Sat 31 Oct , Igor Mozolevsky wrote: > 2009/10/31 Vagner <root.vagner@gmail.com>: > > > Yes, i mean this is the law... In addition to the Federal Security Service > > checks and will deal with > > the Federal Service for Technical and Export Control (FSTEC). According > > to the normative legal documents No. ROSS RU.0001.01BI00 > > (http://www.fstec.ru/_srt/_prbser.htm) and the state registry of > > certified funds (http://www.fstec.ru/_doc/_reestr_sszi.xls) all used for > > processing and storage facilities should be certified. The site > > www.fstec.ru given a full list of legal documents on the subject. It is > > not sad it sounds - but it turns freebsd in russia will simply be > > banned:( > > Let me ask you again - *where specifically* does it actually say that > all systems that process data must be certified or compliant with a > specific standard? The Zakon is very vague on the exact criteria and > that is for a reason... The closest thing I could find to what you are > describing was on the FSTEC site in relation to *State* Secrets... > > Besides, if *all* systems that process personal data had to be > certified, you do realise that includes telephones, PBXes, PDAs and so > on?.. I think you're over-reacting... > > > Cheers, > > -- > Igor I'm afraid that is not the exact wording in the law would allow the inspectors to establish their own rules:( Also - if you look at paragraph 1.5 Regulation on certification of information sequrity requirements for information sequrity: "subject to mandatory certification means, including foreing-made, designed to protect information constituting state secrets, and *other information restricted*, as well as tools used in the management of environmentally hazardous facilities." In accordance with advice received from FSTEC - freebsd used for operations with the data containing the name and etc. is forbidden:( I'll be only too glad if my analisis of the situation is not true, but if it's still true, then from january 1, many disputes will be resolved criminal cases( -- Respectfully, Stanislav Putrya System administrator "RMK Kovsh" Ltd. IM: 328585847 mob. phone: +79525600664 email: root.vagner@gmail.com email: vagner_rider@bk.ru ---------------------------------------- ( ) ASCII ribbon campaign X - against HTML, vCards and / \ - proprietary attachments in e-mail
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20091031175557.GA8527>