Skip to content Skip to main navigation


A consulting company that trust its employees to do great work

But how do we leak without webmail?

By johnboy 24 March 2011 22

The Register is taking a look at a recent AuditOffice report which has fingered the Department of Prime Minister and Cabinet as allowing access to webmail from departmental computers.

As noted many years ago in Yes Minister, “the ship of state is the only ship that leaks from the top”, so it’s unsurprising that the Department of Prime Minister and Cabinet is identified in the report as allowing its staff to access Webmail.

The ANAO report stated that while government information security was mostly acceptable – “generally operating in accordance with Government protective security requirements” in agency-speak – public Web-based e-mail services provide too many vulnerability vectors

It must, however, be noted that the audit only covered four agencies, there might well be others less sensitive to the machinery of State also allowing webmail access. Although in the era of the smartphone why anyone needs to use a work machine for personal mail is beyond me.

What’s Your opinion?

Please login to post your comments, or connect with
22 Responses to
But how do we leak without webmail?
Showing only Website comments
Newest to Oldest
Oldest to Newst
mp2615 10:04 am 25 Mar 11

Well this is all very interesting, however I am feeling extremely acronymically challenged.
But I know a TLA when I see one.

thebrownstreak 9:21 am 25 Mar 11

JC said :

creative_canberran said :

Fact: You’re confusing the national-security clearance ratings with the non-national-security ratings. Security-in-confidence, department-in-confidence, cabinet-in-confidence and so on, you’ll find those on internet connected terminals.

Fact: Restricted is a national security rating. In some, not all department this can be found on machines connected to the Internet, Defence being a prime example of where it IS allowed. Indeed the rules even allow restricted to be sent over the Internet legally but it is still a national security rating.

You can send higher than Restricted or In-Confidence over the Internet also, you simply need to use the appropriate crypto. The details are in the ISM.

Related Articles

CBR Tweets

Sign up to our newsletter

Copyright © 2018 Region Group Pty Ltd. All rights reserved. | | |

Search across the site