Even safe and want to ask a question, you ask a lot of input. That day customers ask me, what measures can be taken so that customers can access computer, but will not be able to allow any information from the client computer leaked, including not through MSN, QQ, ICQ and other instant communication, or be passed EMAIL, it can not in some forums, communities, BBS, a chat room through the complex system, pasting leaked information dissemination. My first reaction was : letters port, it is only open 80 ports, but said customers still will not, or will exist in the information leaks, is the only conclusion can browse the Internet, the information would not be leaked out, a client of a law firm, information security very seriously and not allow the invasion is not, nor will we allow information leaks, but I just have puzzled. If you allow access, it's contact and communication with the outside world has, how can any information leaks? Unless it is directly extracted lines. I really could not figure out why everyone Any good idea, good idea, though say, I thank the. Even safe and want to ask a question, you ask a lot of input. Regard as the server domain, the authority set up to the client. Even safe and want to ask a question, you ask a lot of input. This can be done? ? Learn-ing Even safe and want to ask a question, you ask a lot of input. :) In fact, the traditional security products can not fully meet user requirements for information security. In this background, our isolation of the network products It isolation of the network, while also providing users secure information exchange possible. Look at the beacon isolation system will be realized. Em17 : : Even safe and want to ask a question, you ask a lot of input. Mody isolation system is a beacon of information ~~~ things have never learned that handy? ? ? Even safe and want to ask a question, you ask a lot of input. Www.netepoch.com Beacon isolation and information exchange system By the network control terminal, external network control and management consoles end of three components : physical systems to the model proposed change in the network between different regional security established a TCP complete isolation of security access, an information network for the transaction object, content, the process of a strict user authentication and decoding analysis, Reconstruction of a series of information security and protection mechanisms, the basis of a complete set of building effective security solution to prevent unknown risks. Even safe and want to ask a question, you ask a lot of input. I think such a demand is almost impossible to achieve. Unless continuous network connectivity, otherwise users can always find a way to get data spread out. Of course, if the user can be placed in the general level of the wall, the isolation facilities to achieve basic safety information to prevent leaking! Even safe and want to ask a question, you ask a lot of input. --> P, the security domain is not the concept of safe areas to the division between the different regional powers. Less in the concept of playing here 's Ideas can be done this through the detection operation, operating under the acts prohibited. Many companies are now doing waterproof wall, you can understand the following. Prior to the ban is impossible, can be done after the monitoring and accountability. Even safe and want to ask a question, you ask a lot of input. Some firewall support information filtering I used the keyword filter, such filters can be "BBS" Well, not on the general forum on the Even safe and want to ask a question, you ask a lot of input. I agree with the view upstairs, only for surveillance, and would be very difficult to prevent in advance before Even safe and want to ask a question, you ask a lot of input. --> In fact, the concept is successful start advanced ah, perhaps in another product may not realize they are very mature, but the white list mechanism if it is technically mature, network security will be a new way of thinking! (Moreover, this will not be like that, then the P word is good and understanding of the technology may be relatively shallow, but we were only talking about the technology itself, the tone is really uncomfortable! : Em05 :) Even safe and want to ask a question, you ask a lot of input. Haha. . This easy, since it is a law firm for safe very seriously, then spend money, and the allocation of one computer online! Classified computer is not online, some security firms on the set! If desktop want the province money, consider putting in the hard disk can be isolated card! Even safe and want to ask a question, you ask a lot of input. Complete control, I feel very difficult, but still concern that the study ing~~~~~ --------------------------------------- Like freedom, like here Even safe and want to ask a question, you ask a lot of input. (I think you asked this question asks the customer to show that you are serious, he would ask you this question : P) I think we can reach it, we would like to use technology to control, in addition to content filtering, it is also important to establish harsh code, and to enforce stringent administrative measures, such as the staff are not allowed to a certain department (IT sector) without any downloaded software. . . Another example is to tell them, it 's Personal computer workstation but not In addition, the staff's intention, if things go from the encrypted encryption, the technology alone are relatively difficult to control bars. . Sentence must be integrated. Even safe and want to ask a question, you ask a lot of input. Synopsis action against the put, it can prohibit HIIP outward information firewall product I know this can be done inside checkpoint Prohibit the use of external mail server, and use the outgoing mail server software such mimesweeper mail inspection Prohibition qq, msn, Yahoo's Port This can be a Upstairs regarded things to think of the complicated Even safe and want to ask a question, you ask a lot of input. Even safe and want to ask a question, you ask a lot of input. Host professional work can be located by the person responsible for input and output. Other people are not allowed to use the computer does not become Even safe and want to ask a question, you ask a lot of input. Even safe and want to ask a question, you ask a lot of input. Two-thirds of technology, management 3.07. With only needs to build a new technology. . Certain requirements, technology is very difficult, but if we manage to achieve respect, it is a simple matter Fen Chang. Security that is true. Even safe and want to ask a question, you ask a lot of input. LAN confidentiality of the data now exists in the following three loopholes : 1, users can be physical agents (U disks, diskettes, CD-RW disc) out copies of the company's confidential data, the loss caused to the company. 2, through a variety of network communications, users can copy data from a company's secrets (MSN, QQ, forums, EMAIL etc.) related to copy confidential information out. 3, users can install in their computer SNIFF (a network monitoring tool), while NIC installed into promiscuous mode, we will be able to cross his interception in the local network's data, and then he read the analysis useful information to the above two methods rumor data. According to the company's local area network over three situation, in order to ensure data security, the development of the "information security experts in the Internet version," so that users can access the normal computer use, also have not been able to copy confidential information out. These specific features of the software are as follows : 1, centralized data management Centralized management of the company's data, or more than one computer, we call it increases decoding server, as well as data encryption. 2, improving the licensing mechanism These data users to be able to visit a special allocation account and password to the server if the user account number and password authentication is that the authorization to enter the environment, authorized server environment can login to check the relevant confidential information, download information and data editing changes. But authorized users can access the environment, but they can not pass any information on the physical copy of the outer media and communications tools that forced him to copy the environment can see already authorized non-encrypted data, and there is no information of any value. When the authorized users from the authority under the circumstances, he has done any document has been operating the automatic encryption. He also able to freely access and the use of any means of communication. Meanwhile, some users will not affect the environment in other authorized users of the Internet. 3, a powerful data encryption tools For data encryption security, simply look at it from two aspects, one is the encrypted data, on the one hand, the password algorithm. We use the password to the document server environment is collecting fingerprints, which are based on your analysis of the entire local network hardware to produce a string of 64-bit passwords. Even copies of documents to ensure that users will be encrypted so that it can leave you a convenient environment for the network to break out of confidential data, the encryption algorithm is used to document the high-intensity group encryption algorithms, encryption of documents. In order to prevent the transmission of network data were intercepted in the environment authorized users and server communications model to the data network, a process using a high strength encryption algorithm, you can use the SNIFF interception is a useless data encryption. 4, meticulous audit function Decoding of all servers in Canada to preserve confidential information we have related to the daily log, for example, to whom they had opened, read, delete, record keeping and other related operations. You can facilitate the preservation. Meanwhile, in order to ensure that such data is not passed to the outer printers, we also authorized a printer monitor and printer functions. Server software package is divided into three parts, plus decoder client and server nodes. Easy to operate and powerful functions. Not only can support a network can also support a number of networks of multiple servers increases the use of decoders. 5, and then embedded operating system seamless, low share of resources. 6, the accounts effective security technology. If you need or want the technology in this regard can be made for further discussion MAIL:yuhuaguo2004@yahoo.com.cn I will provide you with software and related Sectional Drawing more detailed functional statement. [ Closed window ]