I have a situation where a cerain data file can be opened with notepad. This is a real pain because that certain file has name and ssn of customers in it. What I would like to do is deny access to that certain file by a user wanting to open it with anything other than the program designed to open that file. If anyone has ideas or has done this before all input would be greatly appreciated.
Well the stem of the issue is that the software vendor states that ALL the possible areas where data was available were encrypted. We have spoken with them about the problem, so they are now aware of it. What I don’t know is how long it will take to fix the issue or if they even will fix it. It is all a numbers game I really don’t want to get into on this site. The bottom line if one of these units winds up in the wrong hands it is a huge fine per customer. The data file should have been encrypted, and I am just trying to cover my end of the wood pile whether or not they fix it. As far as permissions, they have to have the ability to write, create, edit , etc etc to use this software. I don’t write the rules, just have to work around them. You all know how it is.
Thanks again
PS I would love nothing more than to lock these units down but it isn’t possible under the current setup of software.
How about creating some groups (either local or network/AD), then use CACLS to set the appropriate permissions for each group. Another approach is to use EFS encryption.
There should be some way to complete this task without jamming up the program. If we try to encrypt the file or folder, it would need something to tell it to switch between encrypt or decrypt as the file was being opened or closed. I am by no means a wiz at encryption suites. We have tried several with no joy. I would not hardly rely on the end users to make sure the file was processed correctly.