- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - OpenVMS
- >
- Re: Prevent copying files
Operating System - OpenVMS
1753460
Members
4631
Online
108794
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-09-2006 11:18 PM
тАО07-09-2006 11:18 PM
Prevent copying files
Consider files being readable from anywhere (locally (TYPE, EDIT) or remotely (in case of NFS mounted disks, or accesable by Samba or Advanced server). However, I would like these files be unmodifyable by any of these access methods unless privileged. Even more, I would like to be these files non-copyable as well. That implies: not accessable for copying it to any other location, including printers, other disks and locations (inclusing FTP and similar), and not even copying it via an editor (load file, save it under a different name (and location).
Is there a (VMS-native) way to be able to do so?
Is there a (VMS-native) way to be able to do so?
Willem Grooters
OpenVMS Developer & System Manager
OpenVMS Developer & System Manager
6 REPLIES 6
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-09-2006 11:26 PM
тАО07-09-2006 11:26 PM
Re: Prevent copying files
I think, that if the files are readable, it would be impossible to prevent users from copying them to a local location.
To prevent modifications should be possible with file protection.
regards Kalle
To prevent modifications should be possible with file protection.
regards Kalle
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-10-2006 12:13 AM
тАО07-10-2006 12:13 AM
Re: Prevent copying files
Willem,
You can prevent access to files with protected subsystems.
http://h71000.www7.hp.com/doc/732FINAL/aa-q2hlg-te/aa-q2hlg-te.HTMl
As I read it, you can prevent COPY, FTP and others to read the file while allowing TYPE and EDIT. However, this is only usable if you restrict all but real file viewers (not able to do save as).
May be better to prevent all access except when done with a real file viewer (you can write yourself).
Never used it, but hey, I work in a bank.
Wim
You can prevent access to files with protected subsystems.
http://h71000.www7.hp.com/doc/732FINAL/aa-q2hlg-te/aa-q2hlg-te.HTMl
As I read it, you can prevent COPY, FTP and others to read the file while allowing TYPE and EDIT. However, this is only usable if you restrict all but real file viewers (not able to do save as).
May be better to prevent all access except when done with a real file viewer (you can write yourself).
Never used it, but hey, I work in a bank.
Wim
Wim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-10-2006 12:53 AM
тАО07-10-2006 12:53 AM
Re: Prevent copying files
I think if you can read with TYPE then the output of TYPE could be redirected therefore copying the file. Also what about terminal emulators - if they display a file then it is potentially saved in the terminal emulator session history file and therefore a copy exists.
Why do you want to prevent the copy - Security, as always, is a people problem.
Why do you want to prevent the copy - Security, as always, is a people problem.
____________________
Purely Personal Opinion
Purely Personal Opinion
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-10-2006 01:13 AM
тАО07-10-2006 01:13 AM
Re: Prevent copying files
Willem,
Protected subsystems would work with regards to the access from the OoenVMS side.
Unfortunately, it is nearly impossible to control the other side of the connection. Screen scraping of data from the client side is virtually unknowable. This has figured in some discussions about data privacy following incidents such as the one involving the US Veterans Administration.
Security measures must always be considered with the knowledge that the precautions and preventitive measures have limitations, and an awareness of what those limitations are.
- Bob Gezelter, http://www.rlgsc.com
Protected subsystems would work with regards to the access from the OoenVMS side.
Unfortunately, it is nearly impossible to control the other side of the connection. Screen scraping of data from the client side is virtually unknowable. This has figured in some discussions about data privacy following incidents such as the one involving the US Veterans Administration.
Security measures must always be considered with the knowledge that the precautions and preventitive measures have limitations, and an awareness of what those limitations are.
- Bob Gezelter, http://www.rlgsc.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-10-2006 01:56 PM
тАО07-10-2006 01:56 PM
Re: Prevent copying files
Willem,
You might be able to do this with a protected subsystem controlling access to the source data, but only presenting it to clients transformed into some kind of graphical format, presented via a web server as HTML with caching and right click disabled. You may also need to to introduce some noise to inhibit screen capture and OCR. However, it would NOT necessarily inhibit printing the graphical result.
Of course, no matter what you do, you can't prevent someone from simply transcribing, or even photographing the data off the screen.
You might be able to do this with a protected subsystem controlling access to the source data, but only presenting it to clients transformed into some kind of graphical format, presented via a web server as HTML with caching and right click disabled. You may also need to to introduce some noise to inhibit screen capture and OCR. However, it would NOT necessarily inhibit printing the graphical result.
Of course, no matter what you do, you can't prevent someone from simply transcribing, or even photographing the data off the screen.
A crucible of informative mistakes
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-08-2006 08:28 AM
тАО10-08-2006 08:28 AM
Re: Prevent copying files
I know it doesn't exist, but it would be a nice feature. IIRC, CDD had (has?) mentioned the ability to specify COPY as a allowed fnction in an ACL and it would be cool to have something like that in the base OS.
Willem Grooters
OpenVMS Developer & System Manager
OpenVMS Developer & System Manager
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP