Re: security products

put it into a database it just increases the possibility on leakage..
more component, more risk... even web, even risky.. think about the delta of attack surface if new system involved.

you need something called DLP or end-point protection.. go and search around
it even prevents you to "PrtSc" if you have the "read-only" right to open the file... even offline.

BR Quentin

----- Original Message -----
From: "Juan Pablo Macias" <jpmacias@xxxxxxxxx>
To: <security-basics@xxxxxxxxxxxxxxxxx>
Sent: Thursday, February 19, 2009 1:12 AM
Subject: security products

Hi everybody.

A friend asked for my advice, so now i ask the experts. He has a
windows network with many shared excel files. Some of them have
sensitive information, information about his clients, but all of them
are required to be shared. Each share is password protected. He is
worried that, for example, one of his employees takes an important
file from the shared network and sells it.

Is there a way, in this scenario, to control who can access what? or
to avoid copying files away from the shared pc, or to allow to make
changes, but not to copy the file to another location? A possible
solution would be to password protect or encrypt the files, but i
don't think it would be be feasible it talking about some hundred
files. Is there software that already takes care or this?

In the long term, my suggestion would be to put all excel files into a
formal database and implement access control there, maybe even a web

What are your suggestions?

Thanks in advance.

Juan Pablo

To follow the path,
look to the master,
follow the master,
walk with the master,
see through the master,
become the master