Video Screencast Help
Security Community Blog
Showing posts tagged with Data Loss Prevention (Vontu)
Showing posts in English
Neil Christie | 26 Apr 2010 | 3 comments

I want to create this blog to start sharing ideas on how different customers of Symantec products are using them to create a compliance framework.  I am going to explore the two main areas of my expertise, but would invite anyone using any other Symantec products to inject comments where appropriate. 

The two products that I am going to focus on are as follows:

- Symantec Control and Compliance Suite Version 9 (CCS)

- Symantec Data Loss Prevention Version 9 (DLP)

I will be sharing as appropriate the road traveled for our compliance program.

The first mile on the compliance highway includes the following:

- Install and configure DLP discover to create an inventory of where sensitive data resides
- Install and configure CCS and run Center for Internet Security (CIS) baselines across relevant technologies in use
- Create seperate CCS Standards for each technology based on CIS
- Remove and modify CIS...

mariapeter12 | 16 Apr 2010 | 1 comment


Are you unable to start any application or access data on Linux computer? Are you getting library errors while starting any application or retrieving data from the hard drive? This behavior may take place due to corrupt or missing library files of your Linux operating system.

In such situations, you must replace the damaged library files to keep your system functional. It leads to critical data loss situations and needs Linux data recovery to be fixed, if you do not have an updated backup in place.

As a practical example of this problem, you may encounter the below error message when you run any application on Linux operating system-based computer:

“Program name: error in loading shared libraries: lib xxx…so. X: cannot open shared object file: No such file or directory.”

After the above error, the application starting process gets terminated improperly and it cannot be used further.

Grounds of...

mariapeter12 | 13 Apr 2010 | 2 comments

Like every other operating system, Linux computer also contains a system or boot volume, which is used to boot your system. Boot device is one on which all the boot files and Linux operating system are installed. In some cases, you may encounter boot errors while trying to start Linux-based computer. This behavior may occur due to missing or damaged boot files. In such cases, Linux system refuses to boot and you can not access the data stored on your Linux hard drive. It leads to critical data loss and needs Linux Data Recovery.

When you try to boot your Linux computer, you may receive the following warning message:

"EXT2-fs warning: mounting unchecked fs, running e2fsck is recommended"

After the above error, when you run 'e2fsck' utility, you face further error messages that resemble the followings:

• TivoMaster:/var/tmp$ e2fsck -y /dev/hda7 e2fsck 1.06, 7-Oct-96 for EXT2 FS 0.5b, 95/08/09 e2fsck: Bad magic number in...

benr | 02 Apr 2010 | 0 comments

Symantec Data Loss Prevention 10.5 was released on Friday, March 26, 2010.  It introduces new capabilities that will help you take control of unstructured data, enforce social media policies, secure private clouds, comprehensively manage endpoints, and deploy data loss prevention globally.  You can read about our release highlights below or attend our upcoming webcast to learn more.   
 
Upcoming User Webcast
Symantec Data Loss Prevention Data Insight can help solve the data protection problem for unstructured data by giving you insight into usage patterns and access permissions. Data Insight is the newest addition to Symantec Data Loss Prevention for Storage that includes Symantec Data Loss Prevention Network Discover and Network Protect  Click to register for the webcast on Wednesday, April 7, 2010...

benr | 09 Mar 2010 | 2 comments

 Introducing Symantec Data Insight Technology – Combining Data Loss Prevention & Storage Management

Symantec announced the launch of Symantec Data Loss Prevention Data Insight, a new technology that enables organizations to improve data governance through insights into the ownership and usage of unstructured data, including files such as documents, spreadsheets and emails.  Data Insight will be the first and only data loss prevention solution to deliver an integrated data owner and remediation capability.

 

How Can It Help You?

•          Is it a challenge to find the people or groups responsible for unstructured files?

•          Do you need to investigate data leaks?

•          Do you need to track and log data access for compliance?

•...

jjesse | 06 Mar 2010 | 0 comments

 

In an article on searchsecuritytechtarget.com, author Rich Mogull opens up his recent article "Five endpoint DLP deployment data security tips" with the following comment:

"Deploying endpoint data loss prevention is probably the most fear-inducing step in any DLP project."

I would like to argue that with Symantec DLP this may not be true.

Mogull makes very valid points in 4 out of 5 of the statements. However the second point is where I would like to argue that Symantec DLP eases deployment of the Endpoint agent. Symantec DLP leverages the Management Platform (formerly known as Altiris Notification Server) to help distribute the agents. I covered the DLP v9 Integration Component in a...

Marie Coon | 01 Feb 2010 | 1 comment

There are many issues users encounter when trying to deploy a new system. This is no different for Symantec Data Loss Prevention users. There are several ways to get help with these issues before contacting technical support:

1) Through the Symantec Connect Community, which has a private group set up for DLP customers, and

2) The other way is through the Symantec DLP Knowledgebase, which can be accessed here for all DLP customers: https://kb-vontu.altiris.com

Here are a few of the issues you can find answers to:

1. Occasionally, you may install or update an agent and see that the agent status remains red. You can view the online help within your DLP installation, or visit the DLP knowledgebase: KB 47980: Agent status troubleshooting...

jjesse | 24 Jan 2010 | 0 comments

Last year, the company I work for was asked to be one of the partners that Symantec has that can sell and consult on professional services for Vontu.  So my boss sent me to training and told me that I would be taking the lead on that product for the company.  So I became team lead of no one and added yet another hat to my already busy schedule and life.  Don’t take me wrong, I love my company, but I had a lot of hats I was wearing at ITS.  I was Director of Training, DLP Lead, and Practice Principle for Michigan and Ohio.

Let me take a break here and describe what a Practice Principle is.  ITS is run a bit like a law firm.  There are partners and also a managing partner.  (There is the managing Partner, my boss Wade, and several other partners who are mostly silent.)  A practice principle is someone...

jjesse | 15 Jan 2010 | 0 comments

While learning DLP I recently ran into a problem... I lost all of my reports and the bigger deal I could not access any incidents in the system.  So I started basic troubleshooting, were all of the services running?  Did something crash?  Nope everything was running correctly, all of the services were running and even after restarting all of the Vontu related services just to make sure.  In a bit of a panic, I turned to the all powerful google but couldn't come up with anything. (This post will hopefully be indexed by google to jumpstart my memory.)

After a quick call to someone who knew more then I did, the answer was simple:  License expiration

So if you ever run into this problem, verify when your licenses expire, if they have you will need to get a new license key and then restart the correct Vontu services

jjesse | 07 Jan 2010 | 1 comment

 In an Information Week article dated December 21, 2009, titled "The Dark Side of DLP," the author argues four reasons why DLP implementations are more involved then what they should be. I have attempted to briefly respond to those points, however my experience with DLP is based on Symantec's DLP product. These 4 points are: •Policy

This is the starting point of any DLP implementation, a DLP product will only find data based on the policies you write. And as the article states "[s]ome policies are fairly obvious – there's no good business reason for an employee to upload a spreadsheet full of Social Security numbers to his Facebook profile." Any DLP product you are investigating should have prebuilt templates, if it doesn't run for the hills. The other key to a good DLP product is you should not have to learn some form of...