On Friday 24 November 2006 06:47, Elizabeth Dodd wrote: > > Who is prepared to use a clinical database that is not encrypted ? > > absolutely yes. but i know that, and therefore protect the data.
Same here What's the point of database encryption if it is so simple in most instances to figure out the password to access the database? (In the case of MDW 1-2.x, in fact a matter of pen, pencil, an ASCII table and two minutes) The server needs to be physically secured. An external RAID cage is very easy to boly down and lock away. Encryption of the database achieves only two things: a) it makes third party access (eg for import/export purposes) needlessly difficult b) it slows the system down and makes full text search very difficult and ressource intensive BACKUPS are what needs to be encrypted. OTOH, I figured out that a Linksys NSLU + a 2.5" hdd remain cool enough to put them into a fireproof safe - ideal backup device for on-site backups Horst _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
