Heres my project, and id thought id throw it out to you guys since you been lots of help before,
I have a mysql database or rather the company I work for has, and they deal with a lot of customer account info, s.s.n, c.c nubmer, addresses, names,phones, etc.
now their is a new bill effective in california on july 1 of this year, pretty much holding you liable for all the information that you have in your databases or whatever, The loophole in this law is that if the data is encrypted then your exempt to a certain degree.Its called something like the information security act or something.
Anyway, I have a mysql database with prob 100 or so active accounts, and the box itself is extremely secure,well for a SCO box at least,But the client has this proprietry telnet client which it uses and they will not change for anything so i need a way to encrypt the database on the unix end, but when they log on through their xp,nt,2000,98 workstations i want it to be decrypted with out them even knowing or having to do different.
Some things i was thinking about but not sure how to go about it was implement perhaps ssl or pgp and just put the keys in a public directory so that who ever authenticates has access to the info. Any ideas let me know thanks.
Linuxcommando