[mobi_khan]

I am working in a development company and we are a software product based company. Due to this reason it is highly required to protect our source code form alteration as well as stealing because this is the intellectual property of our company. We have defined Access right on the main Source Code databases folder which is a Visual Source Safe database and has given rights on the need only basis (In VSS Application).

1. But I also want to protect our source code form collusion attack. I want that how can I monitor and detect if any user share a folder on his/her system? Is there any tool that can be deployed for this?

2. Can we monitor the contents of any file which is being downloaded or uploaded?

I am sure there will many ppl who are working in the same environment as I am i.e. a software development company so I would like to ask you how you guys have protected your source code specially form copying and taking it outside. It will be helpful for me if you can share your security structure.

[lunarlander]

To protect against sensitive info leaving your company, you can deploy an intrusion detection system like Snort, and define your own rules like detecting the string 'modification date' or 'change log' or some such string likely to be found in source code. This will mean that you need a switch which has a SPAN/mirror port which can see all traffic, and you need a machine to run Snort connecting to that port.