FW: Encrypting data on fileserver

["Nick Vaernhoej" <nick.vaernhoej () capitalcardservices com>]

We have VPN connections in place to prevent sniffing of traffic. I am
actually trying to prevent data theft happening in case of someone
walking out with a fileserver.
Sometimes management just knows better.....

Thank you
Nick

-----Original Message-----
From: Christian.Assfalg.
Sent: Monday, May 15, 2006 12:39 AM
To: security-basics () securityfocus com
Subject: AW: Encrypting data on fileserver

Hi,

I wonder what you want to achieve with encrypting the shares?

You can, depending on the OS, encrypt the data on the disks itself. This
would be transparent to the clients, because the fileserver would
decrypt the data. In effect, this would only protect the data against
someone stealing your disk drives. I don't think this is an isue?

More interresting would probably be to encrypt the data over the
network. I guess this should at least be possivle via ssh tunnel or so.
This would protect the data against someone sniffing on your network.

However, I'd say that there are more serious threads if someone is
sniffing on your network than unencrypted fileshares.

Greetings,
Christian Assfalg