Security Basics mailing list archives

RE: HIPAA_Compliance

From: "Chinnery, Paul" <PaulC () mmcwm com>
Date: Thu, 8 Apr 2004 15:00:18 -0400

Ah, I think you might've gotten the wrong impression.  We only send zip files to two companies.  One zip per day for 1 
co., and 1 zip per month for the other.
The companies expect them and also the name of the file.  


Paul Chinnery
Network Administrator
Mem Med Ctr


-----Original Message-----
From: Ned Fleming [mailto:ned () kaw us]
Sent: Thursday, April 08, 2004 12:21 PM
To: security-basics () lists securityfocus com
Subject: Re: HIPAA_Compliance


On Wed, 7 Apr 2004 14:47:08 -0400, "Chinnery, Paul" <PaulC () mmcwm com>
wrote:

I would second that, Chris.  In fact, we currently use it on a limited basis.  And, for anyone who's involved with 
HIPAA compliance, it meets the technical standards put forth under the security rule.


You're not sending these encrypted zip files around as email
attachments, are you? If so, then how are you protecting yourself
against W32/Bagle-Zip? Please tell me you're using ftp.



---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

RE: HIPAA_Compliance, (continued)
- RE: HIPAA_Compliance Henry, Christopher M. (Apr 06)
- RE: HIPAA_Compliance Billy Dodson (Apr 06)
  - Re: HIPAA_Compliance David Glosser (Apr 16)
- RE: HIPAA_Compliance Robinson, Sonja (Apr 07)
- HIPAA_Compliance paralleluniverse (Apr 07)
- RE: HIPAA_Compliance Robinson, Sonja (Apr 07)
- RE: HIPAA_Compliance Chris Orzal (Apr 07)
- RE: HIPAA_Compliance Chinnery, Paul (Apr 07)
  - Re: HIPAA_Compliance Ned Fleming (Apr 08)
- Re: HIPAA_Compliance Ned Fleming (Apr 12)
- RE: HIPAA_Compliance Chinnery, Paul (Apr 12)