Is this possible? Since this feature does not comply the privary rights and sometimes privacy law. Can we override it by disabling the link?
Thanx!
Disable admin from viewing user mails
Disable admin from viewing user mails
My thoughts are that maybe it could be optional, but the person/persons administering the server can do what they like with that setting anyway.
Maybe more security levels could be helpful. For example we have one staff member who I am happy to have administer user accounts (new, deactivate etc) but don't necessarily want her to have access to domain settings or the view a users mail link.
From a mail server administrator's point of view though, they will usually have enough knowledge of mail servers to be able to view any mail they like even if this link wasn't there. We deal with that sort of thing by policy and trust of IT staff who have responsibilities with certain servers.
Policy like that might include opening a users mail as part of support with the user's knowledge that support staff were going to be in their mail account.
Maybe more security levels could be helpful. For example we have one staff member who I am happy to have administer user accounts (new, deactivate etc) but don't necessarily want her to have access to domain settings or the view a users mail link.
From a mail server administrator's point of view though, they will usually have enough knowledge of mail servers to be able to view any mail they like even if this link wasn't there. We deal with that sort of thing by policy and trust of IT staff who have responsibilities with certain servers.
Policy like that might include opening a users mail as part of support with the user's knowledge that support staff were going to be in their mail account.
Disable admin from viewing user mails
[quote user="neilmc"]
From a mail server administrator's point of view though, they will usually have enough knowledge of mail servers to be able to view any mail they like even if this link wasn't there. We deal with that sort of thing by policy and trust of IT staff who have responsibilities with certain servers.
[/QUOTE]
By right, yes. For oldtimers, they could go through the mailboxes and read all the messages. But, it would be much harder for less techie admins to look at the mails by removing the view mail button. It would be an extra effort for them to view those mails. Just an opinion though.
Would be glad if could control this feature, somehow...
From a mail server administrator's point of view though, they will usually have enough knowledge of mail servers to be able to view any mail they like even if this link wasn't there. We deal with that sort of thing by policy and trust of IT staff who have responsibilities with certain servers.
[/QUOTE]
By right, yes. For oldtimers, they could go through the mailboxes and read all the messages. But, it would be much harder for less techie admins to look at the mails by removing the view mail button. It would be an extra effort for them to view those mails. Just an opinion though.
Would be glad if could control this feature, somehow...
-
8224pepijn
- Posts: 27
- Joined: Fri Sep 12, 2014 10:14 pm
Disable admin from viewing user mails
I found the following article from the Duke law school interesting and fairly easy to comprehend:
Depending">http://www.law.duke.edu/journals/dltr/a ... r0026.html
Depending on whether you are implementing Zimbra for a public or private entity there are very different issues to deal with and the article tries to explain the differences as it delves into applicable laws, most notably the Electronic Communications Privacy Act and its rather broad exceptions that apply to employers. A good read for all of us worried about admin access and employee privacy.
Note that this article predates the Sarbanes-Oxley Act of 2002 (SOX) which changed the scene for the monitoring of corporate communications even more. See also the Wikipedia entry on SOX:
pepijn">http://en.wikipedia.org/wiki/Sarbanes_oxley#IT_Impacts
pepijn.
Depending">http://www.law.duke.edu/journals/dltr/a ... r0026.html
Depending on whether you are implementing Zimbra for a public or private entity there are very different issues to deal with and the article tries to explain the differences as it delves into applicable laws, most notably the Electronic Communications Privacy Act and its rather broad exceptions that apply to employers. A good read for all of us worried about admin access and employee privacy.
Note that this article predates the Sarbanes-Oxley Act of 2002 (SOX) which changed the scene for the monitoring of corporate communications even more. See also the Wikipedia entry on SOX:
pepijn">http://en.wikipedia.org/wiki/Sarbanes_oxley#IT_Impacts
pepijn.
Disable admin from viewing user mails
Very interesting!
Much appreciated for the link
Much appreciated for the link