Controlling Access To And Backing Up The Ifolder Audit Logs; Storing Ifolder 3.6 Data Encrypted On The Server; Preventing The Propagation Of Viruses; Backing Up The Ifolder Server - Novell IFOLDER 3.6 - SECURITY ADMINISTRATION Manual

2.14 Controlling Access to And Backing Up the
iFolder Audit Logs
By default, the iFolder server stores the audit logs in the /<data path>/simias/logs
directory. The iFolder server administrator should guarantee that rights are not inadvertently
assigned to unauthorized users. Administrators should also periodically back up the rolled-over logs
in case they are ever needed for forensic purposes. Audit logs should be monitored periodically.
For information, see "Managing the Simias Log and Simias Access
iFolder 3.6 Administration
2.15 Storing iFolder 3.6 Data Encrypted on the
Server
iFolder 3.6 uses Blowfish to encrypt data on the wire. The data is then stored encrypted on the
enterprise server. This is same as in iFolder 2.x, which provides passphrase-based encryption. To
enable encryption for the users, set the encryption policy to On under the System policy in the Web
Admin console.
For more information, see
Administration Guide.

2.16 Preventing the Propagation of Viruses

Because iFolder is a cross-platform distributed solution, there is a possibility of a virus infection on
one platform migrating across the iFolder server to other platforms, and vice versa. You should
enforce server-based virus scanning to prevent viruses from entering the corporate network.
You should also enforce client-based virus scanning.

2.17 Backing Up the iFolder Server

Backing up the iFolder user data and configuration data should be done regularly. The backup media
should be stored in a secure offsite facility.
During backup and restore, the iFolder data itself is not encrypted. If the iFolder store and the
backup media are on different computers, use SSL to transfer data between the computers. It is not
necessary to use SSL if the iFolder store and backup media are on the same computer.
For information, see the following in the
"Backing Up the iFolder
"Backing Up the iFolder Store with the
"Recovering from a Catastrophic Loss of the iFolder
"Recovering Individual Files or
For sensitive data, use one of the following methods to encrypt the data backup:
Encrypt the data itself if the application that creates the data supports encryption. For example,
database products and third-party tools support data encryption.
Guide.
"Configuring System Policies" in the
OES2: Novell iFolder 3.6 Administration
Server"
TSAIF"
Directories"
Log" in the OES2: Novell
OES2: Novell iFolder 3.6
Server"
Security Best Practices for Novell iFolder 3.6
Guide:
15