tegryan
asked on
Monitoring a file
We have a couple of files that we would like to monitor what happens to them. For example, if they are emailed anywhere, or saved to a floppy disk, we would like to know. Is there anyway to set up a security log for this? Or are there any programs that do this for me?
Thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Probably not as the files will be accessed through SMB networking which is encrypted. But if you monitor your email server as it sends messages, you can scan the SMTP traffic for the file name. To do this effectively, I'd probably try to setup a relay SMTP server so you can catch the messages before they actually go out. You'd have to find a way to "pause" e-mail sending from the second SMTP server, but otherwise, you'd be able to detect the messages and who sent them as SMTP is NOT encrypted. Of course if the user used some sort of PGP or something, then it might NOT be possible.
ASKER
Hmm, unfortunately that wont work. What we are trying to protect against is web based email systems, mostly. This is a tough one, because we need the users to have access to the files, but not take them home.
Thanks for your help so far, I'll leave this question open for a few more days and if remains unanswered i'll give you some or all of the points.
Thanks.
Thanks for your help so far, I'll leave this question open for a few more days and if remains unanswered i'll give you some or all of the points.
Thanks.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I don't know much about packet sniffers, but would it be possible to monitor outgoing packets for the file name or something?
Thanks.