OpenDLP – data loss prevention tool

Viewing 5 reply threads
  • Author
    Posts
    • #5036
      morpheus063
      Participant

      OpenDLP – data loss prevention tool

      OpenDLP is a free and open source, agent-based, centrally-managed, massively distributable data loss prevention tool released under the GPL. Given appropriate Windows domain credentials, OpenDLP can simultaneously identify sensitive data at rest on hundreds or thousands of Microsoft Windows systems from a centralized web application. OpenDLP has two components: a web application and an agent.

      For more information, please visit – http://code.google.com/p/opendlp/

    • #31933
      MicroJay
      Participant

      Nice find!  I am actually in the process of looking for a DLP solution.  Unfortunately the costs are extremely high (not compared to the fines that could be subjected if data was to leak) for the devices.  I would definately need the “Future Plans” of…Perform real-time monitoring of PCs’ network cards to report outbound sensitive data.  That to me is a key feature for what I need it to do.

    • #31934
      sil
      Participant

      @MicroJay wrote:

      Nice find!  I am actually in the process of looking for a DLP solution.  Unfortunately the costs are extremely high (not compared to the fines that could be subjected if data was to leak) for the devices.  I would definately need the “Future Plans” of…Perform real-time monitoring of PCs’ network cards to report outbound sensitive data.  That to me is a key feature for what I need it to do.

      You know what’s funny… I was at an ‘organization’ meeting last year, someone was talking of DLP and managed keys (http://www.voltage.com) and I’m sitting and listening and I was 1) bored to be there 2) listening to a bunch of marketing nonsense 3) confused as to the end game…

      So you go out and purchase your fine piece of DLP (I use Oracle’s IRM Desktop), disable USB connections, remove DVD burners, throw a machine into C2 mode. Removing printing, copy and paste functionalities, heck even remove the ethernet card why don’t ya… This makes you … How secure? Sure, to a certain degree, but it doesn’t stop me from coming to work with my cellular equipped with a camera and taking snapshots. … Alright, so we no throw in policies: “Thou shall not bring thy cellular to work…” Sometimes it gets so boring and cumbersome.

      Onto the ramblings I have about the Open Source model of OpenDLP” How many people here have seen some really cool, creative and useful open source tools throughout the years raise your hands!” me, me, me! … “How many people here have seen some really cool, creative and useful open source tools go the way of the dinosaur when the developer gets bored, egos collide and now you’re stuck in limbo raise your hands!” … me, me, me…

      This (OpenDLP) for the enterprise is not something I would even play with. Small office under say 25, sure… When Murphy and his laws take over, I want support on the phone. Not having to jump on irc.freenode or a mailing list. Its a nice thought, project, work in progress whatever you’d want to call it, but I’d rather pay to sleep at the end of the day.

    • #31935
      bamed
      Participant

      @sil wrote:

      … but I’d rather pay to sleep at the end of the day.

      You mean if I pay somebody else to support their own product, I don’t have to always know everything about everything 24/7/365?

      Somebody should tell my boss this.

    • #31936
      sil
      Participant

      @bamed wrote:

      You mean if I pay somebody else to support their own product, I don’t have to always know everything about everything 24/7/365?

      Somebody should tell my boss this.

      Absolutely 😉 Open Source is good for a lot of things. I use ZenOSS, OSSIM, Nagios, etc., constantly but I’m (I’d like to think) versed enough to diagnose what’s going on when I have to. In an enterprise environment, there is often going to be instances one would need find equally versed administrators and engineers to maintain these applications. I can tell you firsthand you don’t want to run into legacy things where support is non-existent. Costs you more in the long run.

      This is an altogether different argument I’ve seen and discussed before (FOSS vs. Pay for Play). At the end of the day, you would actually lose so much money migrating people away from MS Office for Open Office. For starters there is the training involved. At the enterprise level you’re looking at potentially hundreds of thousands in lost money via lost hours because people would be learning as opposed to actually doing something productive.

      On the other hand, you’re free from licenses… So what. So you spend say $100,000.00 in licensing costs for the year… Steep price? Is it a steeper price to pay when you lost say a $1,000,000.00 account because someone consistently forgets to “SAVE AS” for Windows compatibility? Sure its nice to get stuff for “free” (if you will) but there is almost always another unforseen cost.

    • #31937
      MicroJay
      Participant

      @ bamed – I hear you loud and clear!  😉

      @ sil – What about pen and paper?  We’ll have to write a policy on no writing devices including no etch-a-sketch’s!   ;D

      On one of our last security audits, I debated on how far are we to take DLP as it all comes down to how much does a person want the info.  All they need is the pen and paper to complete their task.  (Granted, in the industry I work in, CC numbers are not worth taking!  I know there are more PII that needs to be watched for and we take it all seriously as well.)

      I guess the saying “the pen is mightier than the sword” is truth in this case!

Viewing 5 reply threads
  • You must be logged in to reply to this topic.

Copyright ©2021 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?