Re: security products

["Quentin Chung@Programmer" <quentin.chung () programmer com hk>]

put it into a database it just increases the possibility on leakage.. 
more component, more risk... even web, even risky..  think about the delta of attack surface if new system involved.

you need something called DLP or end-point protection.. go and search around 
it even prevents you to "PrtSc" if you have the "read-only" right to open the file...  even offline.

BR Quentin

----- Original Message ----- 
From: "Juan Pablo Macias" <jpmacias () gmail com>
To: <security-basics () securityfocus com>
Sent: Thursday, February 19, 2009 1:12 AM
Subject: security products


> Hi everybody.
>
> A friend asked for my advice, so now i ask the experts. He has a
> windows network with many shared excel files. Some of them have
> sensitive information, information about his clients, but all of them
> are required to be shared. Each share is password protected. He is
> worried that, for example, one of his employees takes an important
> file from the shared network and sells it.
>
> Is there a way, in this scenario, to control who can access what? or
> to avoid copying files away from the shared pc, or to allow to make
> changes, but not to copy the file to another location? A possible
> solution would be to password protect or encrypt the files, but i
> don't think it would be be feasible it talking about some hundred
> files. Is there software that already takes care or this?
>
> In the long term, my suggestion would be to put all excel files into a
> formal database and implement access control there, maybe even a web
> application.
>
> What are your suggestions?
>
> Thanks in advance.
>
> Juan Pablo
>
> -- 
> To follow the path,
> look to the master,
> follow the master,
> walk with the master,
> see through the master,
> become the master