Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsIT Pro and developersAny ideas - give limited access windows share full of pdf's
raytaylor

3833 posts

Uber Geek

Trusted

#111113 24-Oct-2012 15:28
Send private message

I have a client - A Dishwasher / Oven / Appliance repair company that has had issues with dishonest staff in the past stealing sensitive commercial information.

They asked me if they could give access to a directory of pdf's on their server to a bunch of tablets, but prevent those files from being copied to the tablet itself or to the sd card / dropbox or any other storage medium?

I was thinking sure - a windows share accessible only over their office wifi network, but how would we prevent them from copying those pdf's to the tablet itself or micro sd card and taking them to the competition.

Any ideas?

Am thinking they may just need to give repair technicians access on a case-by-case basis to pdf's as they need them so they cant get bulk access - so it would take years to collect a couple of hundered from the thousands of pdf files they have sitting on their file server.




Ray Taylor

There is no place like localhost

Spreadsheet for Comparing Electricity Plans Here

Filter this topic showing only the reply marked as answer Create new topic
wellygary
7377 posts

Uber Geek


  #705755 24-Oct-2012 15:42
Send private message

The short answer is probably yes, 

As well as restricting the shared drive, You could also lock up the PDFs by making them unprintable and unreadable without the appropriate password, ( although I am told it is a bit of an arms race with cracking programmes vs new versions of acrobat in this regard)
 
I know that IOS 6 now gives you some pretty good ways of locking iPads down , and with "guided access" it is possible to lock out certain parts of the screen in specific applications, 

I imagine that Android may also have similar controls available.

 
 
 
 

Protect your online activity with NordVPN (affiliate link).
DonGould
3892 posts

Uber Geek


  #705766 24-Oct-2012 15:59
Send private message

20 years ago Ericsson published the service manuals for the BCS150 on brown paper. Made them really hard to read, hard to use, but a great challenge to copy.

The resulting BCS150 service manual copies were even harder to use, but still usable.

http://puu.sh/1i5JI - yip, I hit shift-ctrl-2 and screen printed this post, as I was typing it to a public web site.

In my view your client needs to sit down and have a real think about this.

They could choose to invest in making life hard for their service guys or market the whole package of their business and win loyalty from their staff.







Promote New Zealand - Get yourself a .kiwi.nz domain name!!!

Check out mine - i.am.a.can.do.kiwi.nz - don@i.am.a.can.do.kiwi.nz

freitasm
BDFL - Memuneh
76332 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #705770 24-Oct-2012 16:10
Send private message

Your client will need to push out a solution to manage devices that connect to the network. Even if it's a tablet or smartphone it must be controlled by the management solution that will push security policies - or should not allowed to connect at all.

This is how BYOD is. People will have to deal with it.




Please support Geekzone by subscribing, or using one of our referral links: Dosh referral: 00001283 | Sharesies | Goodsync | Mighty Ape | Backblaze

 

freitasm on Keybase | My technology disclosure

 

 

 

 

 

 



gzt

gzt
15193 posts

Uber Geek

Lifetime subscriber

  #705794 24-Oct-2012 16:37
Send private message

Assuming they have a Windows server already - remote desktop / terminal services is easily the best way to deal with this set of issues.

RDP clients are also available for Android. You may need to evaluate several before selecting the best for your platform.

DonGould
3892 posts

Uber Geek


  #705827 24-Oct-2012 17:47
Send private message

gzt: Assuming they have a Windows server already - remote desktop / terminal services is easily the best way to deal with this set of issues.

RDP clients are also available for Android. You may need to evaluate several before selecting the best for your platform.


What's the operational cost of that for say 3 techs over a month?

What does the tech do if they're servicing something where their xPad can't get good 3G coverage?




Promote New Zealand - Get yourself a .kiwi.nz domain name!!!

Check out mine - i.am.a.can.do.kiwi.nz - don@i.am.a.can.do.kiwi.nz

gzt

gzt
15193 posts

Uber Geek

Lifetime subscriber

  #705842 24-Oct-2012 18:32
Send private message

Good forward thinking, but read the requirements.

ubergeeknz
3344 posts

Uber Geek

Trusted
Vocus

  #705855 24-Oct-2012 18:47
Send private message

My 2c

This seems like an attempt at applying a technical solution to a human resources/legal problem.

My experience is these rarely achieve the ends they set out to achieve, and always inconvenience (read COST) everyone in the process.

I would advise the client to lawyer up and sue the people and companies who have stolen data, get his current staff to sign NDAs, and carry on.



kontonnz
137 posts

Master Geek


  #705860 24-Oct-2012 18:56
Send private message

ubergeeknz: My 2c

This seems like an attempt at applying a technical solution to a human resources/legal problem.

My experience is these rarely achieve the ends they set out to achieve, and always inconvenience (read COST) everyone in the process.

I would advise the client to lawyer up and sue the people and companies who have stolen data, get his current staff to sign NDAs, and carry on.


I have to agree with this, people will throw huge amounts of money at a security solution and overlook the simple human factor, if the pdf documents can be viewed they can be recorded, hell if I encounter a document with so many restrictions on it, i might just take a screen shot using good ol fashioned camera phone...

at the end of the day, while a technology solution might exist with rights management software etc, at the end of the day this is a human issue, not a technology issue.

raytaylor

3833 posts

Uber Geek

Trusted

  #705923 24-Oct-2012 20:54
Send private message

gzt: Assuming they have a Windows server already - remote desktop / terminal services is easily the best way to deal with this set of issues.

RDP clients are also available for Android. You may need to evaluate several before selecting the best for your platform.


We did some thinking and testing this afternoon, and came across the same answer also using the 2x client for android, and chose the Samsung galaxy note as the tablet of choice to issue to the technicians.

They currently use eee pc laptops and t-sticks to connect to the terminal server and access a restricted desktop environment that only allows them email via outlook so with the tablets, they can use active sync and access their calendar and email directly on the device.

Going forward, their terminal server environment will be modified so they dont use it for outlook anymore, they just have access to the pdf folder via a simple explorer window and nothing else - with client drive mapping disabled.

Outside the office it may be a little slow, but its still very usable for the black and white drawings that they look up. Also found changing the size of the scroll bars in the windows theme settings made it so they didnt have to use the 2x mouse - touching the tablet was quite adequate even for fat fingers.




Ray Taylor

There is no place like localhost

Spreadsheet for Comparing Electricity Plans Here

Filter this topic showing only the reply marked as answer Create new topic





News and reviews »

Samsung Announces Galaxy AI
Posted 28-Nov-2023 14:48

Epson Launches EH-LS650 Ultra Short Throw Smart Streaming Laser Projector
Posted 28-Nov-2023 14:38

Fitbit Charge 6 Review 
Posted 27-Nov-2023 16:21

Cisco Launches New Research Highlighting Gap in Preparedness for AI
Posted 23-Nov-2023 15:50

Seagate Takes Block Storage System to New Heights Reaching 2.5 PB
Posted 23-Nov-2023 15:45

Seagate Nytro 4350 NVMe SSD Delivers Consistent Application Performance and High QoS to Data Centers
Posted 23-Nov-2023 15:38

Amazon Fire TV Stick 4k Max (2nd Generation) Review
Posted 14-Nov-2023 16:17

Over half of New Zealand adults surveyed concerned about AI shopping scams
Posted 3-Nov-2023 10:42

Super Mario Bros. Wonder Launches on Nintendo Switch
Posted 24-Oct-2023 10:56

Google Releases Nest WiFi Pro in New Zealand
Posted 24-Oct-2023 10:18

Amazon Introduces All-New Echo Pop in New Zealand
Posted 23-Oct-2023 19:49

HyperX Unveils Their First Webcam and Audio Mixer Plus
Posted 20-Oct-2023 11:47

Seagate Introduces Exos 24TB Hard Drives for Hyperscalers and Enterprise Data Centres
Posted 20-Oct-2023 11:43

Dyson Zone Noise-Cancelling Headphones Comes to New Zealand
Posted 20-Oct-2023 11:33

The OPPO Find N3 Launches Globally Available in New Zealand Mid-November
Posted 20-Oct-2023 11:06








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







Norton for Gamers






RSS feeds
Main feed
Forums feed
Copyright
©2002-2023 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Affiliate links
Mighty Ape
Sharesies
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.