data security
HI,
I would like to protect my Java programs(Complete Product) from root/users. Basicly I need to install my product to remote location for demo purpose, they have root access. Now I want protect my data from local administrator.
Is there any tools like Folder encryption available on solaris?
I would like to protect my Java programs(Complete Product) from root/users. Basicly I need to install my product to remote location for demo purpose, they have root access. Now I want protect my data from local administrator.
Is there any tools like Folder encryption available on solaris?
ASKER
could you please give some info about licsense server?
What say Stefan73 is OK !!
but you can use crypt and you have the file protect
with passwd .
Only with passwd can see the file or use.
Example:
[root@pluto:/db/xx] ll
-rw-rw-rw- 1 root other 19 Apr 22 08:42 testkrypt
[root@pluto:/db/xx] cat testkrypt
Das ist ein Test
[root@pluto:/db/xx] crypt <testkrypt >testkrypt.krp
Enter key: hier is passwd
[root@pluto:/db/xx] ll
-rw-rw-rw- 1 root other 19 Apr 22 08:42 testkrypt
-rw-rw-rw- 1 root other 19 Apr 22 08:45 testkrypt.krp
[root@pluto:/db/xx] cat testkrypt.krp
�"|:�wᦙ
[root@pluto:/db/xx] (you can delete testkrypt)
[root@pluto:/db/xx] rm testkrypt
[root@pluto:/db/xx]
[root@pluto:/db/xx] crypt <testkrypt.krp
Enter key: hier is passwd
Das ist ein Test
or
[root@pluto:/db/xx] crypt <testkrypt.krp >testkrypt
Enter key:
[root@pluto:/db/xx] ll
-rw-r--r-- 1 root other 19 Apr 22 08:55 testkrypt
-rw-rw-rw- 1 root other 19 Apr 22 08:45 testkrypt.krp
[root@dfwdba2:/db/xx] cat testkrypt
Das ist ein Test
[root@pluto:/db/xx]
but you can use crypt and you have the file protect
with passwd .
Only with passwd can see the file or use.
Example:
[root@pluto:/db/xx] ll
-rw-rw-rw- 1 root other 19 Apr 22 08:42 testkrypt
[root@pluto:/db/xx] cat testkrypt
Das ist ein Test
[root@pluto:/db/xx] crypt <testkrypt >testkrypt.krp
Enter key: hier is passwd
[root@pluto:/db/xx] ll
-rw-rw-rw- 1 root other 19 Apr 22 08:42 testkrypt
-rw-rw-rw- 1 root other 19 Apr 22 08:45 testkrypt.krp
[root@pluto:/db/xx] cat testkrypt.krp
�"|:�wᦙ
[root@pluto:/db/xx] (you can delete testkrypt)
[root@pluto:/db/xx] rm testkrypt
[root@pluto:/db/xx]
[root@pluto:/db/xx] crypt <testkrypt.krp
Enter key: hier is passwd
Das ist ein Test
or
[root@pluto:/db/xx] crypt <testkrypt.krp >testkrypt
Enter key:
[root@pluto:/db/xx] ll
-rw-r--r-- 1 root other 19 Apr 22 08:55 testkrypt
-rw-rw-rw- 1 root other 19 Apr 22 08:45 testkrypt.krp
[root@dfwdba2:/db/xx] cat testkrypt
Das ist ein Test
[root@pluto:/db/xx]
ASKER
I would like to protact folders
Hi,
when encryted, can o/s process still read this file ?? Or would they need to un-encryt this file first ?? E.g Say the file contained a list of important email's which are piped into a simple smtp client, if encrypted, does this mean that this process wouldnt work ??
Cheers
Simon
when encryted, can o/s process still read this file ?? Or would they need to un-encryt this file first ?? E.g Say the file contained a list of important email's which are piped into a simple smtp client, if encrypted, does this mean that this process wouldnt work ??
Cheers
Simon
ASKER
basicly my product will work with one user -- so I would like to encrypt folders based on that user
I would set up the demo on one of *your* systems and then allow your prospective customers to access it via a restricted user id.
Mark
ASKER
but systems belongs to customer only -- so they have root access, I need to show demo on there permises and also protect my product
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You cannot protect your product from a root user. root is always able to read all files. Even if you use ACLs to disable root from accessing your files, it won't work, because root can simply su to your demo user.
The only solution is a license server, or something similar.
Cheers,
Stefan