I don't blame them. It's one of the few ways of keeping secrets inside.

But as one person who used to screen email for a company, most of the email is porn and just crap like the above post says. We did fire one person for spending company time writing short stories that he emailed out. Even after being warned, he persisted. Idiot.

Most of the stuff I caught just revealed who was with who, who was gay, and who was having fights with their siggys (significant others).

Interesting reading no doubt. Tough to know all the good info and have to keep it to yourself....I certainly don't miss viewing all the porn (those folks stopped after a first warning, so we never fired anyone for that).

Just keep your personal life at home. Even if you're not caught, all your email is on tape somewhere. I had enough dirt on just about everyone to get them in serious trouble or fired. DON'T BE STUPID!

Oh, and I caught a few credit card #s too. What people will put in email just amazes me! (To those of you out there who paid for my new Harley, thanks!)

just kidding.

I wish I could get a security job like this. I definitely have the skills, but the problem is that it's hard to show that you're trustworthy on a resume. What I've always told people is that while the stuff I can dig up on them makes their brain flip and their heart skip a beat, I don't DO anything with it, nor do I get some sort of sick satisfaction out of it. I used to find it intriguing, but now I've seen the worst of the worst and all I do is report what I find. I have no interest otherwise.

I would highly suggest that if you have the technical skills, to get a military clearance or something. I wish I would have cause I would probably be making some money in the private sector by now.

At least where I was the military hires contracters for alot of IT work as well as using thier own people. While the contracters seem to be paid more it's not that reliable. While I was working with some of them the military decided not to renew thier contract. They were trying to save money was the situation it seems. So if some other contracter offers a cheaper service, your job may be up at the end of the contract.

I would assume it was cheaper. They get what they paid for, the new admin was incompetent (or so I heard). Other people like electrical engineers and such were on the same contract, I didn't hear about those replacements skill level.

Edit:
lol, I guess you ere wondering what I was replying to

Wow... This my friends is the problem with the 'hacker' mentality. The unsatiable quest for knowledge blinds us. I used to suffer from this problem: Just 1 more certification and I will *definately* get my dream job. Not. Yorn, buddy... Go into business for yourself. TODAY is easier than ever. Start with home and small business users where no one will even ask for your "credentials." Ontop of that, as your build experience and respect in the community you add value and name recognition to your services. At some point, even the big guys won't care how much formal education you have. The money is there for the taking... GO GET IT. Hell, after reading this posts on this board I my mind is about to explode with ideas that I may be able to profit from.

I know what you're thinking.. "But exp0sed, I have never run my own business.. Where do I start?"

Well it's a good thing you asked. Most states do not require anything more than some form of common business license to form a 'Sole Proprietorship' ('Sole Proprietor' means individually owned, i.e. you are the single owner). Get yourself a DBA and advertise in a local paper for your services. Create a website and setup an adwords account. The business will start slowly but before long you be be up to your elbows with money and you will be begging me for more ideas on HOW TO KEEP that extra business

You can start a service business such as this for well under $100 if you can learn to think creatively.

Good luck, man... Want some more ideas (this goes for anyone)? Shoot me an email: unknown[at]techtrack.org - The security inudstry is wide open. A organized group can easily enter in and make a load of cash. I mean.. C'mon.. It's the only industry where street cred is worth more than a degree. Look at any number of the hacking groups who have been snatched up and acquired by major companies... Remember the l0pht?

That could be you!

exp0sed
email:unknown[at]techtrack.org


p.s. this was my first post, yay!

in order to read their electronic communications the company have to make a policy stating that all email/net surfing is monitored? for not beeing sued for invasion of privacy?

//offtopic
exp0sed is right, im in the process of starting my own business (i still keep my day job cause i have plenty of time to work from there).... i like the ideea of beeing my own boss

It seems like they should atleast inform you that they monitor your email but I can think of atleast a dozen or so stories where people have used their company email for personal use and lost their jobs. Such as people applying for jobs online and emailing resumes, and when the company finds out they usually get fired. It seems like courts side with the companies in these cases because they are private networks for business use only. Generally these people do not know they are being monitored which is why they used that email account to submit the resume to begin with. It's a questionable tactic but I think companies these days (especially IT companies) are under more and more pressure also to insure their networks are not being used for illegal purposes, such as spam or distribution of warez..... I guess the point is that if you dont *own* the network you don't have privacy and employers can do what ever they want. That or there is some fine print buried in the 'new hire packet that states network communications are subject to monitoring... and lets be realistc.. How many people read their new hire packets thoroughly?


just my thoughts....

- exp0sed

When you start your business, don't forget to ask what your liability is. Some folks have lost their homes and everything else due to the liability. Just make sure how ever you incorporate that your liability is limited.



Many companies have such policies, but wading into these waters is risky for companies. You have to be able to prove that you treated everyone the same; otherwise, you can't fire BILL for doing X and keep SALLY, even though she did X also.

The problem with filters is that you are more liable as a company when you DO KNOW what people are doing, especially illegally, BUT don't do ANYTHING about it.

For example, if you know JON is viewing porn, but don't do anything, and ALICE (who is usually busy with sending cryto messages to BOB) sees the porn one day while walking by JON's cube and files a complaint, the company is more liable for ALICE's damages cuz they knew JON was a pre-vert (so to speak).

My advice is to only monitor for stuff that hurts the business explicitly, like emailing confidential data in plaintext over the Internet. Porn doesn't hurt the company explictly unless ALICE sees it and files a complaint (although if JON is surfing porn 8 hours a day, that's explicit, but you just say to JON that his Internet use is excessive, and leave it for that. Fire him for excessive use and leave the porn out, if it comes to that).

Note to my fellow conservatives: No, I am not going soft on porn, and I do not support it. I am merely looking at the issue from a business perspective, which is how do I protect my company without exposing it to undue risk? Companies are not usually interested in moral opinions unless the money backs it up, which is to say, morals don't matter, just the money. You cannot server both morals and money. You just have to decide which way to "go to the mattresses," a la the Godfather.