have put
> personal information on the system.
>
> After the first couple of months of security incidents at Salomon,
> they began issuing global email broadcasts saying that a new security
> package "Internet Risk Management: email facility" had been installed,
> and that Internet email traffic was actively being monitored.
>
> They did so again and again.
>
> I think they sent out a memo to everyone too.
>
> Security incidents NEVER stopped.
>
> Major violations occurred again and again and again and again...
>
> I have come to realize that the number of security incidents a firm
> has is not related to how often they warn their employees not to send
> proprietary/confidential information out via email.
>
> The number of security incidents is a function of the number of
employees.
>
> If you are a big computer-based firm (banks, brokerage, insurance etc),
> then you are guaranteed to have a huge amount of
proprietary/confidential
> files flowing out of your Internet connection via email.
>
> Even if you tell them again and again that it is monitored and they will
> be fired for misuse.
>
> Even if you fire people.
>
> Even if you prosecute them.
>
> It appears to be just like the general population and regular crime.
>
> All sites' management expressed confidence that repeated warnings and
> firings would soon stop the proprietary/confidential transfers.
>
> It turned out to b
