Re: Data Theft

[Ansgar Wiechers <bugtraq () planetcobalt net>]

Please don't hijack existing threads. If you want to start a new topic:
write a new mail.

On 2010-05-21 Sumeet Narula wrote:
> we are looking for any software/firewall solution.
>  
> which  prevent the user(user is not under domain) from copying the
> data from PC/laptop to Pen drive/mail the data as an attachment.
>  
> actually our main concern is to prevent the data theft from our office
> PCs(suggest if you have some other other solution).
>  
> we require this for at least 5-10 PCs.---------

Unless you prevent the usage of mail and pen-drives entirely the user
could (for instance) simply uuencode the file and mail it inline instead
of as an attachment.

You're saying the laptop is not a domain member. Does that mean the user
in question has admin privileges? If so, there's nothing you can do
anyway.

Regards
Ansgar Wiechers
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------