Bypassing Vontu

[cmerkel at gmail.com (Chris Merkel)]

I agree with Ron - DLP is an "idiot screen" and is useful for little
more. Therefore, your testing methodology should be to emulate idiots
and nothing more. (and educate any idiot who thinks it will solve your
leakage issues.)



On 10/22/09, xgermx <xgermx at gmail.com> wrote:
> Create a small TrueCrypt container, copy sensitive files to container, copy
> container to usb or email container.
>
> On Thu, Oct 22, 2009 at 10:38 AM, Brian Schultz
> <theconqueror at gmail.com>wrote:
>
> > Our security department is testing out Symantec's Vontu and I am playing
> > the guinea pig and have to try and get documents out of our company's
> > environment. I have a really basic understanding of how it works. It has a
> > span port sitting and listening to all outgoing web traffic and there is
> > also an agent that sits on desktops and watches to see if any sensitive
> > information leaves via USB drive or e-mail.
> >
> > Does anyone have any whitepapers or info regarding how it actually works
> > or
> > any tactics I should try?
> >
> > _______________________________________________
> > Pauldotcom mailing list
> > Pauldotcom at mail.pauldotcom.com
> > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > Main Web Site: http://pauldotcom.com

-- 
Sent from my mobile device

- Chris Merkel