Re: Re: Questions on TroopMaster DotNet Security

 > DotNet license to supplement our existing Troopmaster license. I'm
 > concerned about the security implications of regularly transmitting
 > Troop personal data across the Internet

Historically, most of the data that gets lifted is not that being
transmitted electronically.  It is the information in the trash can or
in other peoples hands that commonly become an issue of pilfering.

 > TroopMaster has a "data encryption password" which is set per user
 > and I assume is used for sftp/ssl/tls transmissions. My
 > memory is that its advertized that you can just change this password
 > to disable people when they leave the troop, and not
 > change the other passwords.

Unless my memory fails me, all information is transmitted via dot net to
secure servers, which is then translated and replicated with Scoutnet
servers.

 > We do NOT keep social security numbers in the database. Only needed
 > to do for one time background checks on adults, I've seen no uses for
them for
 > Scouts, and refused to give them for my boys. But the field is there...

Social Security numbers for the sake of the unit are not needed.  In
fact, Social Security numbers for national are really not needed because
100% of all criminal background checks are done by name and birthdate.