If you did use AppSense to do this, you could either remove the *Attach*functions from the menus and command bars in their email client, or you could simply prevent the *Attach A File* dialog box from being able to browse to a pre-defined list of restricted locations.
On 4 May 2011 21:47, Jeff S. Gottlieb <[email protected]> wrote: > > > We are searching for a method to BLOCK end-users from ATTACHING and > EMAILING [sensitive] docs located on a SPECIFIC FOLDER of the share. > > > > *What we have accomplished thus far:* > > 1) Using Sophos we activated “*Device* Control” preventing end-user from > coping to Storage, Network, or Short Range devices > > 2) Using Sophos we also activated “*Data* Control”… thus creating email > alerts detailing the sender /recipient, time /date, and name /location of > attachment > > 3) All documents are converted to PDF with security options that prevent > copy /paste, and printing > > 4) End-users are NOT allowed Internet access > > > > Owners are left **totally** unsatisfied with all the above, as these > measures are not preventative enough. > > Leaving any of the end-users without ability to email is NOT an option. > > Leaving a [public] workstation open, available with access to this SPECIFIC > FOLDER, and then having no email /Internet is NOT an option. > > > > These end-users are all in the CAD design department. > > Given the nature of the business, suffice-it-to-say, one drawing in email > could represent a significant loss. > > Sadly, the owners feel they cannot entirely rely on the loyalty of > generously paid employees [with great benefits], company policies, and or > legalese. > > > > Thanks in advance for any suggestions… comments. Cheers, -J > > > > > > *EMPLOYEE Supposition:* > > Surely in created the level of sophistication placed in Sophos with *Device > & Data* Control suggests that a greater need exists to protect the > employer’s intellectual property. > > Along with these concepts, the end-users themselves have become more > sophisticated and perhaps unfortunately [these days] more-willing to place > their positions on the line. > > > > I guess if we’ve done our IT job… than the end-users ONLY option is to snap > a photo using a cell-phone. > > What then will the employer do?? Add company policy to include NO CELL > PHONES?? Imagine a world AT WORK without texting, tweeting, and the > occasional personal call??? Ouch! > > > > *EMPLOYER Supposition [slave-master]:* > > Add video surveillance too!!!! :--/ > > > > > > > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > -- "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question." *IMPORTANT: The information in this email is CONFIDENTIAL. If its contents are disclosed in any way my lawyers will swoop down from black helicopters like Seal Team Six and drag you away with a black bag over your head. They will then take you to a secret prison and make you fight to the death with other people who dared to share this email. You will be given a large bowie knife and a supply of methamphetamines while I watch the said deathmatch and wager vast sums of money on who will be the winner. If the fight becomes boring or there is a stalemate, I will release rabid dogs and my two-stone cat into the arena to liven things up a bit. If these animals become in any way docile, I will squirt them with water pistols until they become a bit more temperamental.* ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
