Re: the ultimate storage solution

["Miguel Filipe" <miguel.filipe@xxxxxxxxx>]

Hi all,


On 5/23/06, Vinicius Santos <vininim@xxxxxxxxx> wrote:
>  On 5/23/06, Marcin Jessa <lists@xxxxxxxxx> wrote:
> > On Tue, 23 May 2006 08:47:00 +1000
> > "Nigel Weeks" <nweeks@xxxxxxxxxxxxxxx > wrote:
> >
> > > And then you go and put Samba on too, and undo any security
> > > encryption might have provided (if it were available).
> > >
> > > If you want a secure file repository, usable by any OS, accessible
> > > from anywhere, build a system where users log into a web-deployed
> > > file management environment, and file availability is based on user's
> > > clearance and valid login.
> > >
> > > It's about 4 hours work with PHP, Apache, and a decent RDBMS like
> > > Firebird.
> >
> > And how is apache and PHP on top of it with direct access to the
> > file system more secure than samba?
> The suggestion is geared more towards "usable by any OS, accessible from
> anywhere", rather than being more secure.

It could be more secure, you can design whatever authentication &
authorization Mecanism you require in PHP+HTTPS, instead of using the
CIFS security model.


Also, more specifications are needed..
"secure file repository"?
secure from what?

what level of security?
secure from phisical thetf?
secure from unathorized, but authenticated access?
secure from unathorized and unauthenticated access?
secure from the internet public?
secure from fires?
secure from data corruption?

"secure file repository", doesn't mean anything unless a propper
concrete specification is presented.

--
Miguel Sousa Filipe



--
Miguel Sousa Filipe