This is a good topic, especialy for a business facing a situation as to the such, alot of people either aren't aware of the 'delete doesn't delete' factor or they just choose not to do anything about it. It surely does get alot more difficult when you have a copy of things spread everywhere. In the email case outlined here, I would suggest that the message be sent encrypted in i.e, pgp, at least this takes out the server copy, and possibly the clients (if they securely erased the non-encrypted version). I think, even farther down the road than inter-location copies, and more of an obstruction, is caching/record mechanisms. Some file systems are (maybe notoriously) known for record keeping and caching (ext3, nfs), I guess my point is, if you want to do it the right way, you have to be devoted and know what you're doing.

--K-sPecial .aware http://awarenetwork.org

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/332/31992#31992