+ Reply to Thread
Results 1 to 5 of 5
  1. Senior Member /usr's Avatar
    Join Date
    Dec 2003
    Location
    West Virginia
    Posts
    1,776
    #1

    Default A few questions I haven't been able to find..

    I just have a few questions that I haven't been able to find the answers to.

    Does S/MIME automaticaly encrypt outgoing mail or encrypt messages/files?

    What is the SQL Security model? I haven't been able to find what I'm looking for in any links.
    Reply With Quote Quote  

  2. SS -->
  3. Ancient Relic.......
    Join Date
    May 2003
    Location
    Somewhere in Time....
    Posts
    3,442

    Certifications
    Security+, A+, Network+, MCDST, DCSE, CST, CNST
    #2
    I don't know much about Security, but.....this may help....

    http://www.developer.com/tech/article.php/721441

    http://www.sqlsecurity.com/DesktopDefault.aspx
    Reply With Quote Quote  

  4. Senior Member /usr's Avatar
    Join Date
    Dec 2003
    Location
    West Virginia
    Posts
    1,776
    #3
    So...is it objects, access, and users?
    Reply With Quote Quote  

  5. Member
    Join Date
    Mar 2004
    Posts
    59

    Certifications
    CISSP, CCNA, MCSE, SEC+
    #4
    S/MIME

    I can share how it works from my experience using it just to give you some practical knowledge. My client is ms outlook 2003.

    I have a digital ID from verisign (trusted CA) and use it to sign all my e-mails. This satisfies non-repudiation so the recipient knows the e-mail truly originated from me.

    The recipient receives my digitally signed e-mail and adds me to his contacts which includes attaching my digital cert. At this point, he has the option of encrypting messages addressed to me.

    Not sure how to answer your question about s/mime automatically encrypting outgoing messages. If I select a couple of check-boxes in my outlook client - it will always attempt to encrypt outgoing messages. Outlook will first verify if I have the recipient's cert. If not, it'll complain that I can't encrypt the message and will go out as clear text.

    If your question was worded as 'Can outgoing e-mails be automated to encrypt messages using s/MIME?' I would say sure.

    Wow, I'm getting flashbacks about the sec+ exam in the way questions were somewhat wordy.

    Good luck!

    -Xevious
    Reply With Quote Quote  

  6. Junior Member
    Join Date
    Mar 2004
    Posts
    16

    Certifications
    Network+, Security+, Server+
    #5

    Default SQL Security Model

    I'm planning to sit the Sec+ exam myself shortly. I have been watching several Sec+ forum posts for the past month and a half. I've been researching every subject matter that others have seen questions on, but that many authors fail to include in their publications.

    Your same question has been asked in a few posts, so it caught my attention, especially since I have not seen any book discuss it. Some go into a little spin about database security, but not a bloomin' thing is mentioned about the model SQL uses.

    It took a bit of digging around at several sites, but according to the sources I found, it seems the SQL Security Model uses Discrestionary Access Control based on......Users, Objects and Actions.

    Users: Consisting of user authentication at the time of login.
    Objects: Consisting of Tables, Views and Columns.
    Actions: Consisting of SELECT, UPDATE, INSERT and DELETE commands.

    Hope this helps.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks