On an off-topic note, PGP has a feature that will allow you to view an encrypted (file/message) but not save or print. The creative amongst us could modify the source and recompile, but ....
-----Original Message----- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 4:37 AM To: [EMAIL PROTECTED] Subject: RE: Permissions: read but don't copy [7:31128] This is clear, thanks Pierre-Alex -----Original Message----- From: Windows NT/2000 Discussion List [mailto:[EMAIL PROTECTED]]On Behalf Of Kayne Ian (Softlab) Sent: Tuesday, January 08, 2002 3:08 AM To: [EMAIL PROTECTED] Subject: Re: Permissions: read but don't copy [7:31128] Content filtering isn't the issue here. If the user opens a document on the server and has to traverse the firewall to get it, the firewall will evaluate the request based on it's ruleset. If it finds the request is valid it will allow the data to be sent (ie: the document downloaded to the pc). At this point the user is able to copy and paste on the local machine, which is outside the control of the firewall. Content filtering only works to control what data you receive, not what you do after you've got it. Ian Kayne Technical Specialist - IT Solutions Softlab Ltd - A BMW Company > -----Original Message----- > From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] > Sent: 07 January 2002 16:44 > To: [EMAIL PROTECTED] > Subject: Re: Permissions: read but don't copy [7:31128] > > > Hi Daniel, > > You are right on the second point. The only way (that I know of)to > accomplish the requirement is to deny the users the > permission to write to > their hard drive. Windows 2000 does have a very granular security, > unfortunately, the way it is setup, if you can read a file > from a server, > you can also copy it to your machine. --- As Andy explained, > since I have no > control over the users' machine, I am stuck unless I use a web base > interface (see previous messages)-- > > One the first point, I am not so sure. My understanding is > that content > filtering does look inside the packets (application layer) > and uses what it > sees to filter traffic. > > Any firewall expert want to comment? > > Pierre-Alex > > -----Original Message----- > From: Daniel Cotts [mailto:[EMAIL PROTECTED]] > Sent: Monday, January 07, 2002 10:32 AM > To: 'Pierre-Alex J. Guanel' > Subject: RE: Permissions: read but don't copy [7:31128] > > > Firewalls make decisions based on IP addresses and port > numbers. So that > doesn't look like a good candidate. > I would think that W2K would have your solution. (I am in the > dumb user > category with MicroSoft). Cannot you set rights on files or > folders? Is your > problem that they can do either a copy or a "cut and paste" > once they can > read the file? Just thinking out loud - it would seem that their local > machine would have to be severely > restricted - as in a dumb terminal. > > > -----Original Message----- > > From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] > > Sent: Monday, January 07, 2002 6:19 AM > > To: [EMAIL PROTECTED] > > Subject: RE: Permissions: read but don't copy [7:31128] > > > > > > Can a Cisco firewall do this? > > > > Pierre-Alex > > > > -----Original Message----- > > From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] > > Sent: Monday, January 07, 2002 6:07 AM > > To: [EMAIL PROTECTED] > > Subject: Permissions: read but don't copy > > > > > > Hi all, > > > > I am running Windows 2000 Advanced Server. > > > > I would like to allow users (Windows 98 / Windows 2000 > > Professional) to read > > a file, > > > > but prevent them to copy it electronically to their desktop. > > It looks like > > Windows 2000 does not > > > > have the permissions to accomplish this. Has anyone done > this before? > > > > Thanks, > > > > Pierre-Alex > [EMAIL PROTECTED] > > > > -------------------------------------------------------------- > ------------ > The WINNT-L list is hosted on a Windows NT(TM) machine running L-Soft > international's LISTSERV(R) software. For subscription/signoff info > and archives, see http://peach.ease.lsoft.com/archives/winnt-l.html . > COPYRIGHT INFO: > http://peach.ease.lsoft.com/scripts/wa.exe?SHOWTPL=COPYRIGHT&L=WINNT-L > ******************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering to the intended recipient, be advised that you have received this email in error and that any use of the information contained within this email or attachments is strictly prohibited. Internet communications are not secure and Softlab does not accept any legal responsibility for the content of this message. Any opinions expressed in the email are those of the individual and not necessarily those of the Company. If you have received this email in error, or if you are concerned with the content of this email please notify the IT helpdesk by telephone on +44 (0)121 788 5480. ******************************************************************** -------------------------------------------------------------------------- The WINNT-L list is hosted on a Windows NT(TM) machine running L-Soft international's LISTSERV(R) software. For subscription/signoff info and archives, see http://peach.ease.lsoft.com/archives/winnt-l.html . COPYRIGHT INFO: http://peach.ease.lsoft.com/scripts/wa.exe?SHOWTPL=COPYRIGHT&L=WINNT-L Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=31258&t=31128 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
