24Mar2008 (UTC +8) On 3/24/08, Mhac Janapin <[EMAIL PROTECTED]> wrote: > Thanks for all the reply. > I was thinking along that way Drexx. ;) Thanks for supplying the guidelines. > I don't have the hundred Euros so far because we're just a small seminary. > :( Anyways. what you posted is more than enough actually. I can start my > design from there. Thanks! > > My problem though is the techmical implementation :( > I can just scan and scan and store and store, but the overall process is > still vague in my mind. Anyways, I'm still debating if I'll include the tags > internally or externally. Oh well, time to go to my drafting table. :)
I'll try to help you save a ton of time :) In our experience consulting for a company achieve their ISO 27001 certification, one of my crew developed and secured in a week's time a document management solution using DOCman (a document management and download system for Joomla (an open source web content management system)). The securing part is the challenging part ! Check out the following URLs so you can get going right away: http://www.joomlatools.org/ http://www.joomlatutorials.com/joomla_tutorials/docman_tutorials.html http://extensions.joomla.org/component/option,com_mtree/task,viewlink/link_id,82/Itemid,35/ http://joomladocman.blogspot.com/ http://www.mambodocman.com/ Trivia: there are several good Joomla and Mambo hackers in Tagaytay, from Adventist University of the Philippines :) > On Sun, Mar 23, 2008 at 11:16 AM, Drexx Laggui [personal] <[EMAIL PROTECTED]> > wrote: > > > > I think you're off to a good start with the tools you mentioned. I > > don't know exactly what kind of documents you have, but remember to > > include the following management controls when you implement your > > stuff (guidance from ISO/IEC 27001's section 4.3.2. Control Of > > Records): > > > > a) approve documents for adequacy prior to issue; > > b) review and update documents as necessary and re-approve documents; > > c) ensure that changes and the current revision status of documents > > are identified; > > d) ensure that relevant versions of applicable documents are available > > at points of use; > > e) ensure that documents remain legible and readily identifiable; > > f) ensure that documents are available to those who need them, and are > > transferred, stored and ultimately disposed of in accordance with the > > procedures applicable to their classification; > > g) ensure that documents of external origin are identified; > > h) ensure that the distribution of documents is controlled; > > i) prevent the unintended use of obsolete documents; and > > j) apply suitable identification to them if they are retained for any > purpose. > > > > The ISO/ITR 15489 standard on Records Management may also be helpful > > to you. You'd have to buy either reference from http://www.ISO.org > > though, for a few hundred Euros. > > > > > > On 3/23/08, Mhac Janapin <[EMAIL PROTECTED]> wrote: > > > Hello guys, > > > I'm tasked to scan (to jpeg/tiff/png) all important (hard copy) > documents > > > and store them for easier searching and retrieval. > > > Any of you has done a similar project before? I'm thinking of MySQL + > > > browser for end-user-retrieval. But there might be an opensource project > > > somewhere that integrates archiving+retrieval in one system. Any help > would > > > be greatly appreciated. > > > > > > -- > > > Mhac Janapin > > > PBTS System Administrator > > > Baguio City, Philippines Drexx Laggui -- CISA, CISSP, CFE Associate, ISO27001 LA, CCSI, CSA http://www.laggui.com ( Singapore / Manila / California ) Computer forensics; Penetration testing; QMS & ISMS developers; K-Transfer PGP fingerprint = 6E62 A089 E3EA 1B93 BFB4 8363 FFEC 3976 FF31 8A4E _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
