-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Marcus,
Milanez, Marcus wrote:
> I know.. This is quite difficult to address...
>
> Have your company adhered to SOX already?
Erm... correct me if I'm wrong, but SOX is all about public disclosure
of bad things happening. There are no preventative
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Marcus,
Milanez, Marcus wrote:
> Microsoft seems to have a good solution for that. The 'keys' are
> associated with na specific domain account... What do you think:
> http://msdn2.microsoft.com/en-us/library/ms995355.aspx
I don't see this as a soluti
All the solutions I ever heard of boil down to two approaches:
1) The secrets are stored in the computer, and protected by filesystem
permissions. This is what you have now. Ensure that the
filemode/ACL/whatever is correct to prevent unauthorized access to
the files containing the s
