Jump to content
The mkiv Supra Owners Club

Internet Question - is this possible?

far

By far
in Off Topic

 Share

Recommended Posts

far Newbie

far

Posted
Posted

Well basically I have about 5gig worth of work related files which I need to be able to put online securely so other colleagues can download them remotely - problem I have is that they are quite sensitive and I dont want the info on the public domain - is there anyway to do this guys? :rolleyes:

Link to comment
Share on other sites
Lewis Newbie

Lewis

Posted
Posted

Yes mate,

 

a) a password protected http area (you can control this through .htaccess)

b) an ftp site they access with either an FTP client or through IE/Firefox.

 

Add an SSL cert and you are safer than a pair of fat nuns knickers in a fetish catalogue.

Link to comment
Share on other sites
Jake Newbie

Jake

Posted
Posted

Anything you put up for download carries some kind of security risk. It depends how much risk is acceptable to you.

 

Where you planning on hosting this data? You know it'll take you days to upload 5GB with a domestic broadband connection?

Link to comment
Share on other sites
JustGav Newbie

JustGav

Posted
Posted
A VPN for 5GB of docs? lol, I wouldn't bother.

 

And how would SSL over HTTP be much different from a VPN. Most vpn connections compress the data stream.

 

5gb is 5gb.... unless they are implementing some sort of WAFS style system, it isn't really going to make much difference.

Link to comment
Share on other sites
Lewis Newbie

Lewis

Posted
Posted
And how would SSL over HTTP be much different from a VPN. Most vpn connections compress the data stream.

 

5gb is 5gb.... unless they are implementing some sort of WAFS style system, it isn't really going to make much difference.

 

Where did file compression come from? I didn't mention it.

 

I gave him the most secure and cost effective solution. It requires no IPSEC config/Firewall changes/routing additions/access to the internal network (if there even is one!!)..... shall I go on?

Link to comment
Share on other sites
far Newbie

far

Posted
  • Author
Posted

thanks guys - I dont have any webspace of my own to host the files on, I was kind of thinking of a web based application like yousendit.com but something that was password protected.

Link to comment
Share on other sites
JustGav Newbie

JustGav

Posted
Posted
Where did file compression come from? I didn't mention it.

 

I gave him the most secure and cost effective solution. It requires no IPSEC config/Firewall changes/routing additions/access to the internal network (if there even is one!!)..... shall I go on?

 

I didn't mention file compression either, WAFS compresses the network stream between the two cache points. I agree that .htaccess and SSL is a quick and easy option, however I have found SSL is lot more CPU intensive compared to an IPSEC VPN.

 

They both provide a similar function, however with a webserver exposed, it could in time been circumvented, whereas a VPN solution will allow the serving host to be hidden and the server not even publically visible.

 

As far as cost, I use a IPCop firewall with OpenVPN running on it at home, it runs an old Pentium 3 of mine and easily handles my 20mb/1mb connection. It even runs a small webserver on an internal interface which is only accessible from the inside or on a VPN client.

Link to comment
Share on other sites
Lewis Newbie

Lewis

Posted
Posted
thanks guys - I dont have any webspace of my own to host the files on, I was kind of thinking of a web based application like yousendit.com but something that was password protected.

 

You can't really use a public fileserver and expect a decent level of security. If you really wanted to go down that route then you could always password protect a compressed file and put it up somewhere like that but TBH if someone wants access to that file they will remove the protection.

Link to comment
Share on other sites
far Newbie

far

Posted
  • Author
Posted

thanks Lewis, I understand - so if I was to choose your method what would I need to do? I may be able to get funding for this but need to understand in plain english ! :blink::blink:

Link to comment
Share on other sites
Lewis Newbie

Lewis

Posted
Posted
I didn't mention file compression either, WAFS compresses the network stream between the two cache points. I agree that .htaccess and SSL is a quick and easy option, however I have found SSL is lot more CPU intensive compared to an IPSEC VPN.

 

They both provide a similar function, however with a webserver exposed, it could in time been circumvented, whereas a VPN solution will allow the serving host to be hidden and the server not even publically visible.

 

As far as cost, I use a IPCop firewall with OpenVPN running on it at home, it runs an old Pentium 3 of mine and easily handles my 20mb/1mb connection. It even runs a small webserver on an internal interface which is only accessible from the inside or on a VPN client.

 

Not sure where you were coming from with 5gb=5gb then mate?!

They don't offer anywhere near the same funtionality. A VPN is far more versatile. Perhaps you are using a small part of functionality in a home environment but this does not translate to being the same thing. A VPN provides remote sites with virtual conections to the PN or remote site. Cost wise (for a full VPN) you would need to look at:

Routing, VPNC/PIX Firewall, AAA servers, NAS, policy management, tunnel control as well as already having a significant amount of existing infrastructure.

 

Running a couple of services at home to allow you to dial in is a completely different kettle of fish.

 

It's neither here nor there anyway as it is nothing like what he is hoping to achieve (and the same with my solution) :D

Link to comment
Share on other sites
Lewis Newbie

Lewis

Posted
Posted
thanks Lewis, I understand - so if I was to choose your method what would I need to do? I may be able to get funding for this but need to understand in plain english ! :blink::blink:

 

Which solution mate?

 

my first response would require 5GB webspace on a webserver

If you wanted to use an online file repository you would need nothing.

Link to comment
Share on other sites
JustGav Newbie

JustGav

Posted
Posted
Not sure where you were coming from with 5gb=5gb then mate?!

They don't offer anywhere near the same funtionality. A VPN is far more versatile. Perhaps you are using a small part of functionality in a home environment but this does not translate to being the same thing.

From a security point of view the end user would see the same result, ie a file access method they can use (be it SMB FTP or HTTP).

 

A VPN provides remote sites with virtual conections to the PN or remote site. Cost wise (for a full VPN) you would need to look at:

 

Routing, VPNC/PIX Firewall, AAA servers, NAS, policy management, tunnel control as well as already having a significant amount of existing infrastructure.

Agreed for a fully managed enterprise solution you are correct, however for a few users to access, there is no need to line cisco's pockets any more than we currently do. IPCop would provide a roadwarrior style function and allow them to work together on a much cheaper platform.

 

Running a couple of services at home to allow you to dial in is a completely different kettle of fish.

 

It's neither here nor there anyway as it is nothing like what he is hoping to achieve (and the same with my solution) :D

 

Oh no doubt. And this is the sort of thing that keeps us employed.

 

Another option is something called Groove from microsoft. It allows you to share a workspace containing files, calendars all that sort of thing. Being p2p based, all the users have the same workspace between them and it synchronises between the users whenever online. http://office.microsoft.com/en-gb/groove/default.aspx

Link to comment
Share on other sites
imi Newbie

imi

Posted
Posted
you could always password protect a compressed file and put it up somewhere like that

 

looking to put secure data on a public domain is a wrong start anyway.

 

having said that, for what you are prepared to do the above was the best advice.

Link to comment
Share on other sites
far Newbie

far

Posted
  • Author
Posted

what about this?

 

 

http://www.xdrive.com

 

It's hard to imagine a safer place for a file than Xdrive. Let's say you want to store files from your latest new business pitch — definitely not for anyone else's eyes. First, Xdrive uses 128-bit encryption to protect files during transfer. Then stores it in architecture that's isolated, multi-tiered and gated. Finally, your data is housed in your own password-protected vault at our World Class, disaster-proof data centers, protected by biometric locks and full-time security professionals.

Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue. You might also be interested in our Guidelines, Privacy Policy and Terms of Use.