[p4] Storing Confidential Files in Perforce

Simon Marr Simon.Marr at ul.ie
Fri Mar 18 03:42:27 PST 2005


Thanks for your response Paul.

If the data is encrypted in the server store, Perforce user protection 
is used and the client workspace is on an encrypted filesystem as well 
then I was thinking this would be sufficient.
I will look into SSH server though.

thanks,
Simon





Paul Goffin wrote:

>What advantage do you think you get from an encrypted filestore?
>(Perforce will still serve the data to anyone who can crack the
>Perforce passwords AND the unencrypted data will still sit
>On every users workstation anyway.  All you're really doing
>is preventing your IT guys from reading your database.  Are
>they really the problem?)
>
>If access controlls are your thing, sit your server behind
>a SSH server like this:
>
>http://www.perforce.com/perforce/technotes/note022.html
>
>Paul.
>
>-----Original Message-----
>From: Simon Marr [mailto:Simon.Marr at ul.ie] 
>Sent: 18 March 2005 09:45
>To: perforce-user at perforce.com
>Subject: [p4] Storing Confidential Files in Perforce
>
>
>Hi Newbie here!
>
>I'm interested to know what additional security measures others may have
>
>taken when storing confidential material in the perforce depot? 
>Passwords are all too easy to crack and I wondered if anyone had used a 
>file encryption method such as mounting an encrypted disk image to store
>
>the depot? If so, what were the issues and were there any implications 
>for the server daemon process and client workspace?
>
>
>thanks,
>Simon
>_______________________________________________
>Come to the 2005 Perforce User Conference, April 14 & 15 in Las Vegas.
>Learn more: http://www.perforce.com/conf 
>
>perforce-user mailing list  -  perforce-user at perforce.com
>http://maillist.perforce.com/mailman/listinfo/perforce-user
>
>
>**********************************************************************
>This email and any files transmitted with it are confidential 
>and intended solely for the use of the individual or entity to
>whom they are addressed. If you have received this email
>in error please notify the postmaster at the address below.
>ITS-Support at aepsystems.com
>
>Unless the contrary is specifically indicated above nothing in
>this message is intended to constitute an electronic signature
>within the meaning of the Electronic Commerce Act 2000 or
>similar legislation enacted elsewhere in the world.
>
>This footnote also confirms that this email message has been swept for the presence of computer viruses.
>*****************************************************************************
>
>  
>



More information about the perforce-user mailing list