Agh… As if I don’t have enough going on already, now one of my users wants to subpeona access logs from KMorg. Getting tangled up in legal issues has always been one of my biggest fears of having a server, due to the fact that I have no money to defend myself with, and the US court system’s alarming practice of seizing servers and computers at the drop of a hat. *
Hopefully nothing will come of it, but this is stress I didn’t need right now.
* Yes, I know, all the news stories I linked to are for more serious crimes, but they’re what I found on my first two google searches. If I put some time into it, I could find better stories, but I just wanted to make my point quickly.
I'm a 30-year-old 
Don’t do it!!
You’re right in saying you have no real way of knowing what’s going on.
All you’ve got are two notes, out of the blue, from this anonymous person, claiming they’re being stalked by someone who uses your site.
How do they know this to be the case? And, if it is true, what is so key about your site that the requested information will allow effective action? Of what earthly value is an IP address and user ID in defending against a stalker?
Bottom line is … in response to this minimal, unverified information, you’re being asked to provide them with information that isn’t theirs.
Don’t do it. As you said, this person could be the stalker themselves and you have absolutely no way of knowing one way or the other.
If this is real and the person is willing to actually get a court order, let them go ahead and do so, thereby demonstrating their level of concern. In order for that to happen, they must convince someone that it’s justified. I think you need some form of verification before even thinking of complying with the request.
Frankly, this smells to high heaven. I believe this person is simply trying to con you into handing out this information on a silver platter. Else, why don’t they simply get a supoena and be done with it? Identity theft springs to mind.
January 27th, 2004 at 7:43 pm
You know, in fairness, I just re-read everything, and samsara didn’t ask for any non-public information. He only wanted to know where to send the subpoena to. True, he could have just looked it up, but it was more polite to let Scott know what was in the works.
I agree with everything else, though. Wait for legal verification that samsara is serious about things…
January 28th, 2004 at 8:49 am
Woa there! Do not give in to this at all. First you are the server owner and operator and this is a proffesional position, as well it should go without saying you are to take on the posture of a concerned, yet efficient web server manager.
Ask them for a written and snail mail letter of reqeust, this usually shuts down 99% of idiot reqeusts and it will help you ion the next steps, which are to let them know you are contacting your local LEO. When people are aware the Law Enforement Offical/Officeer is going to be involved the remaining % of idiots are removed, if you still have someone seeking this data, it is my opinion that you do just tha and do all you can to assist, but make sure you look up stasndard industry porceedure, it will cya( cover your arse) as well as you will be doing the right thing.
I hope this was of help to you.
God bless
Rev. Matthew
November 9th, 2004 at 3:54 pm