[unisog] - data tool

jc jcraig at ucdavis.edu
Mon May 11 22:53:04 GMT 2009


EFS can be deployed so that an admin can be denied from accessing the
data in the files.  While she could technically take ownership of the
file and defeat NTFS ACLs, the proper use of EFS (i.e. provided the
admin isn't a DRA, can steal certs and keys, etc) would prohibit
access to data.

-jc

On Thu, May 7, 2009 at 11:55 PM, Christoph Sprongl <ch at it-austria.net> wrote:
> Hi,
>
> looking for a tool either encryption or good ACLs unfortunatly for a
> Microsoft env., to make sure that only a specific group can share
> documents.
> Objective is that a sysadmin is really not able to look into the data.
>
> TrueCrypt encrypts containers, only one person can access the data.
>  FreeOTFE does have problems if data got accessed parallel -> data corrupt.
>
> Any ideas more than welcome!
>
> christoph
>
> _______________________________________________
> unisog mailing list
> unisog at lists.dshield.org
> https://lists.sans.org/mailman/listinfo/unisog
>



More information about the unisog mailing list