I need some assistance in tracking down a specific question concerning our new F840 with release 6.1.1R2. When it's introduced into our production environment next month, it will operate in an unclassified (but sensitive) environment. If a user inadvertently saved a document classified "secret" to the filer, what is the DoD-approved method to completely wipe the file from the volume?
Thanks in advance for the help!
I need some assistance in tracking down a specific question concerning our new F840 with release 6.1.1R2. When it's introduced into our production environment next month, it will operate in an unclassified (but sensitive) environment. If a user inadvertently saved a document classified "secret" to the filer, what is the DoD-approved method to completely wipe the file from the volume?
Thanks in advance for the help!
I can't help you with the DoD stuff, but watch out for snapshots.
If a secret file gets into a snapshot, you must remove the entire snapshot to get rid of the file. You cannot remove individual files from snapshots.
Snapshots are wonderful, but they do introduce some security issues. For example, suppose a user puts some sensitive information in an unprotected file, and a snapshot is taken. Later on the user realizes his mistake and protects the file. Unfortunately, the file is still unprotected in the snapshot, so anyone can still go to the snapshot to read the file.
Steve Losen scl@virginia.edu phone: 434-924-0640
University of Virginia ITC Unix Support
-
pkeim(contr-ird) -
Steve Losen