Post Process

Everything to do with E-discovery & ESI

Archive for the ‘Employee Practices’ Category

An Education on ESI and Records Management: Schools need a lesson plan for E-mail

Posted by rjbiii on November 2, 2008

Michael Osteman has posted a story that cites a recent survey showing some interesting numbers:

* 62% of school administrators revealed they do not have a district policy regarding e-mail communications between themselves and teachers.
* 68% of these administrators revealed they do not have a policy regarding e-mail communications between themselves and parents.

And a big one:

The survey also revealed that 90% of schools had not yet created a plan to be in compliance with the new amendments to the Federal Rules of Civil Procedure (FRCP).

Not really all that surprising, but nevertheless, always something of a jolt when see such high numbers in black & white.

Posted in Articles, Data Management, Data Retention Practices, email, Employee Practices | Leave a Comment »

Husband’s Hate-filled e-mail costs Wife her Job

Posted by rjbiii on July 16, 2008

We at Post Process have said it over and over again. Employees cannot treat their e-mail accounts at work as their own personal e-mail accounts. In the latest example of obviousness (a word typically associated with patent law), a husband’s death-threat to a Professor of Evolutionary Biology, sent from his wife’s e-mail account at work, has cost his wife her job.

Professor P.Z. Myers, a self-described rabid atheist, wrote several posts expressing disgust over the reaction of Catholics concerning the attempt by a Central Florida student to leave a Communion service with a wafer used for the Eucharist. Mr Myers’s posted, in an article entitled “It’s a Frackin’ Cracker!“:

Here’s a story that will destroy your hopes for a reasonable humanity.

Webster Cook says he smuggled a Eucharist, a small bread wafer that to Catholics symbolic of the Body of Christ after a priest blesses it, out of mass, didn’t eat it as he was supposed to do, but instead walked with it.

This isn’t the stupid part yet. He walked off with a cracker that was put in his mouth, and people in the church fought with him to get it back. It is just a cracker!

Catholics worldwide became furious.

Would you believe this isn’t hyperbole? People around the world are actually extremely angry about this — Webster Cook has been sent death threats over his cracker.

Myers continued:

Wait, what? Holding a cracker hostage is now a hate crime? The murder of Matthew Shephard was a hate crime. The murder of James Byrd Jr. was a hate crime. This is a goddamned cracker. Can you possibly diminish the abuse of real human beings any further?

The post drew angry reactions from Catholics, and presumably followers of other religions. Many of these called for Myer’s employer, the University of Minnesota, Morris, to remove Myers from his post. Bill Donohue, President of the Catholic League, released a statement:
Catholic League president Bill Donohue responded as follows:

“The Myers blog can be accessed from the university’s website. The university has a policy statement on this issue which says that the ‘Contents of all electronic pages must be consistent with University of Minnesota policies, local, state and federal laws.’ One of the school’s policies, ‘Code of Conduct,’ says that ‘When dealing with others,’ faculty et al. must be ‘respectful, fair and civil.’ Accordingly, we are contacting the President and the Board of Regents to see what they are going to do about this matter. Because the university is a state institution, we are also contacting the Minnesota legislature.”

Some emails threatened Myer’s safety. In response, Professor Myers began to post the entire content (including e-mail header information) of the most egregious of the lot, including this one:

Subject: your short life
Date: July 13, 2008 8:07:31 AM CDT
Received: by with SMTP id y5cs262374anc; Sun, 13 Jul 2008 06:08:03 -0700 (PDT)
Received: by with SMTP id o15mr14501258qbr.56.1215954482483; Sun, 13 Jul 2008 06:08:02 -0700 (PDT)
Received: from ( []) by with ESMTP id u2si9779510pyb.16.2008.; Sun, 13 Jul 2008 06:08:02 -0700 (PDT)
Received: from ( []) by (UMN smtpd) with ESMTP for ; Sun, 13 Jul 2008 08:08:01 -0500 (CDT)
Received: from ([]) by with ESMTP id 5202711.34123806; Sun, 13 Jul 2008 09:07:31 -0400
Received-Spf: neutral ( is neither permitted nor denied by best guess record for domain of client-ip=;
Authentication-Results:; spf=neutral ( is neither permitted nor denied by best guess record for domain of
X-Umn-Remote-Mta: [N] [] #+HN+NR+OF (I,-)
X-Mimeole: Produced By Microsoft Exchange V6.5
Content-Class: urn:content-classes:message
Mime-Version: 1.0
Thread-Topic: your short life
Thread-Index: AcjkaTBIDzgwGOqkTNCCBD35Hlh9EA==
Content-Type: multipart/alternative; boundary=”—-_=_NextPart_001_01C8E4E9.68CD4469″


what I would like to know is how did you even
get a job at a collage.

when you are obviously a moron.
How would you feel if nice folks starting ranting against
Fags, and atheist like yourself.

well sir, you don’t get to blaspheme and walk away from this.
You have two choices my fucked up friend, first you can quit your job for the good of the
children. Or you can get your brains beat in.

I give you till the first of the month, get that resignation in cunt

This e-mail, including attachments, may include confidential and/or
proprietary information, and may be used only by the person or
entity to which it is addressed. If the reader of this e-mail is
not the intended recipient or his or her authorized agent, the
reader is hereby notified that any dissemination, distribution or
copying of this e-mail is prohibited. If you have received this
e-mail in error, please notify the sender by replying to this
message and delete this e-mail immediately.

Hmmm. Not too smart, eh? The header with the company name, and the footer with the disclaimer add a kind of surrealistic edge to the situation. Of course, if I’m the company from whence the message originated, I’m probably not too happy about this. Indeed, 1-800-Flowers, was not amused:

An employee of has been fired after an e-mailed death threat was linked to her account.
The crudely worded e-mail was sent Sunday to Paul “PZ” Myers, an associate professor of biology at the University of Minnesota Morris, who is known for his criticism of religion and creationism. It was one of several hostile messages he had received following a controversial July 8 blog posting. The address on the e-mail showed that it came from Melanie Kroll at, an online floral delivery service.

The final twist here, is that Mrs. Kroll evidently didn’t send the message at all. Her husband confessed to doing it:

The fact is, that this email to the so called professor, was sent by an angry male catholic, who was very upset after reading that some crazed person in a position of responsibility, charged with teaching children biology, had been encouraging people to steal and desecrate the body of CHRIST, which for Catholics is represented by the Eucharist.

I know this to be true, since I wrote the original email to this so called teacher.

Was the tone of the letter terse, and did I say I would beat his brains in, yes I did.

I wrote this in the same way one does when saying “I’ll beat your ass”, “or kick I’ll kick your butt”
or other such niceties used by members of the unpolished masses, such as myself.

Of course, death threats are no laughing matter, and this one seems to have been an empty one. For some reason, people seem to forget that much of their online activities can be tracked. In this case of course, Mr. Kroll may not so much have “forgotten,” it, but was more likely completely unaware of it. Mrs. Kroll said in one of these articles that her browser launched directly to her job’s e-mail account, meaning the couple may have used the account for all of their personal on-line correspondence. Not a good idea, ever, but especially when one intends to threaten the safety of another.

Posted in Articles, email, Employee Practices | Leave a Comment »

Airline blames executive’s “porn purge” for deletion of evidence

Posted by rjbiii on September 26, 2007

Uh oh. This isn’t good:

Mesa Air Group said yesterday its chief financial officer went to great lengths to permanently delete computer data sought by Hawaiian Airlines to cover up his interest in pornography.

In an evidentiary hearing held yesterday before Hawaiian’s lawsuit against Mesa goes to trial, the operator of the interisland airline go! said it discovered that CFO Peter Murnane had been browsing adult Web sites.

It also said Murnane was solely responsible for deleting data from his three computers and that the company had given to Hawaiian all the deleted data.

How far did Mr. Murnane allegedly go in his cover-up attempts? A computer forensics expert explains:

Jefford Englander, a computer forensics expert from Phoenix-based Lightstone Solutions, spent about 90 minutes on the stand yesterday detailing how he uncovered multiple instances of deleted files that he could not identify. He also uncovered signs the computer clock had been manipulated — including files that appeared to have been modified before they were created.

Now, to be sure, this all must be substantiated. Mr. Murnane has his own side to the story, and as everyone knows, things aren’t always what they seem. But it doesn’t look good.

Posted in Articles, Computer Forensics, Employee Practices, Spoliation | Tagged: , , | Leave a Comment »