<div>
I'm not sure, that could be a risk... if pointsec makes an exception, does it do it on the filename alone, or does it hash the file? If it's filename alone, bad security there... just rename any file to that exe... if it's a hash that's a bit harder, but not totally secure either.<br />
<br />
Ahh... nm this question might need to be deleted...<br />
<a href="https://forums.checkpoint.com/forums/thread.jspa?messageID=26233" rel="ugc">https://forums.checkpoint.com/forums/thread.jspa?messageID=26233</a><br />
-rich
</div>


I'm not sure, that could be a risk... if pointsec makes an exception, does it do it on the filename alone, or does it hash the file? If it's filename alone, bad security there... just rename any file to that exe... if it's a hash that's a bit harder, but not totally secure either.

Ahh... nm this question might need to be deleted...
https://forums.checkpoint.com/forums/thread.jspa?messageID=26233 [https://forums.checkpoint.com/forums/thread.jspa?messageID=26233]
-rich

<div>
<div class="content wysiwyg-content">
Hi,<br />
<br />
My company uses Pointsec Protector. I have a group of users who have USB sticks with McAfee encryption.<br />
&nbsp;If they plug the USB stick in thePointSec Protector does not allow them to run the MfeEERM.EXE that is on the USB stick (that provides the encryption log-in window).<br />
<br />
My question is, isthere a way that you can make an exception to the policy that will allow this one .exe file to be run by the user ?<br />
<br />
..If yes, i would appreciate any info on how before I go to the administrators.!<br />
<br />
thanks<br />
<br />
Paul
</div>
</div>


Hi,

My company uses Pointsec Protector. I have a group of users who have USB sticks with McAfee encryption.
 If they plug the USB stick in thePointSec Protector does not allow them to run the MfeEERM.EXE that is on the USB stick (that provides the encryption log-in window).

My question is, isthere a way that you can make an exception to the policy that will allow this one .exe file to be run by the user ?

..If yes, i would appreciate any info on how before I go to the administrators.!

thanks

Paul

PointSec Protector

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.