Re: Tracking Confidential Files - solution?

From: Karl Levinson [x y] mvp (levinson_k_at_despammed.com)
Date: 08/14/04 

Date: Sat, 14 Aug 2004 11:13:53 -0400

For this scenario, I would simply search all the hard drives for files of
that name. To do that, use a script that connects remotely via windows
networking and the NET USE command and search, or set up a script that runs
locally on each computer [less reliable] either in the user's logon script
or via a scheduled task / the AT command.

Of course, if a file were renamed, it wouldn't show up in your search. But
you don't seem too concerned about that in this scenario. To fix that,
you'd often try to compare file checksums, but those wouldn't match if the
file were changed in any way.

If you have Active Directory, SRP Software Restriction Policies can prevent
certain files from being executed by certain login IDs or computers without
permission.

"SBC" <SBC@discussions.microsoft.com> wrote in message
news:52EC6709-1813-453E-989F-31275FC60067@microsoft.com...
> We have recently been asked whether it was possible to track confidential
> files that may be temporarily copied to a workstation from a share and
> inadvertently left on the workstation.
>
> We have several shares that contain confidential files. Sometimes, an
> application specialist will need to copy these files down from a share to
a
> user's workstation to troubleshoot and/or resolve an issue. They should
> remove the file from the user's workstation once they are done; however,
> being the imperfect beings we all are, they may sometimes forget.
>
> In this case, we would like to be able to track the files somehow and then
> run a query daily or weekly to find these files and delete them.
>
> Using SMS, it would be relatively easy if we were dealing with files that
> were known and unknown files were never introduced, but that will not be
the
> case from what I have been told. That is, new files will probably be
created
> frequently. However, the shares in which these files are located will
remain
> constant.
>
> Is there a method or application that can be employed to track files
> originating in a share and then delete these files (preferably
automatically)?
>
> Thanks!
>

Relevant Pages

  • Re: Redirect computers to a specific OU by IP Address
    ... Getting the IP address of the workstation is easy if you are running the ... COMPLETELY lock them down until an admin put them into the right OU. ... I'm in the process of disabling computer accounts that have not been ... My biggest problem is that I just dont know where to start the script ...
    (microsoft.public.windows.server.active_directory)
  • Re: Redirect computers to a specific OU by IP Address
    ... Getting theIPaddress of the workstation is easy if you are running the ... script from the workstation. ... COMPLETELY lock them down until an admin put them into the rightOU. ... used for approx 180-240 days (as there is over 1000 computer accounts ...
    (microsoft.public.windows.server.active_directory)
  • Re: Me Too
    ... I did my testing of the script on my own XP ... Which could be tight on a server like SBS (though mine has never shown ... any service to take for a normal shutdown. ... this reg edit change made to a workstation would ...
    (microsoft.public.windows.server.sbs)
  • Re: Need to automate workstation tasks
    ... Microsoft Online Support ... |> workstation will be logged off unless the user performs some activity. ... | You would need to script that as you cannot trigger that by using Group ... | human solutions than taking several technical actions. ...
    (microsoft.public.windows.group_policy)
  • RE: Looping in Test::Harness
    ... Each script tests a specific scenario on my web site. ... scenarios that I want to test multiple times with different data ...
    (perl.beginners)