Personal computing discussed
Moderators: renee, Steel, notfred
notfred wrote:Only allow domain members to access the shared data and only join the required machines to the domain.
just brew it! wrote:Also, what's to stop someone from just plugging a thumbdrive into one of the existing PCs and copying the data? (Is he able to restrict physical access or ensure the screen is locked whenever a trusted employee is not present?)
absurdity wrote:notfred wrote:Only allow domain members to access the shared data and only join the required machines to the domain.
There is no domain, the server is a Windows 7 system.
I'm guessing this guy isn't going to want to spend a bunch of money on infrastructure. Something like MAC filtering might be the most reasonable way to do what's required without incurring lots of cost. It can be bypassed, but most people wouldn't know the first thing about it, which could make it a reasonable solution. We still don't know much about the environment, so it's hard to give very specific recommendations.
Flatland_Spider wrote:Ah, I see. Truecrypt container in a non-network accessible location with a key file, or files, that aren't in the same location as the container. Truecrypt Homepage
1) They aren't going to crack the encryption. They won't have the time or computer power.
2) They will need the key file to start the decryption process, and since the key file can be anything, good luck to them figuring out what it is if it's not obvious and they only have the container.
The owner should probably talk it out with the mechanic, and be cool if he say's he is going to leave. There is less chance of him stealing the client list if the guy is being cool about it.