Re: local admin account password

From: Eli Allen (eallen_at_bcpl.net)
Date: 11/26/03

  • Next message: Eli Allen: "Re: local admin account password" 
    To: "Michael Marziani" <marziani@oasis.com>, <focus-ms@securityfocus.com>
Date: Wed, 26 Nov 2003 16:19:56 -0500

    I was thinking of using something like PGP to encrypt the file that sits on
    the users desktop. So this wouldn't be so easy to crack based on how long
    the RC5 encryption cracking contest has been going on. And the password
    would change every so often too

    Eli

    ----- Original Message -----
    > Seems like a decent system other than having a copy on user's desktops.
    You
    > still want to limit access to the encrypted file to only those who would
    > actually have the access to use it. Keep a copy offsite or at multiple
    > offsite vaults if you are paranoid, but don't leave a copy where any user
    > could get at it, even if secured by NTFS permissions.
    >
    > Any encryption can be cracked, it's just a question of time. Worst case:
    A
    > user could take home their own hard drive and make a copy of it, use winxp
    > recovery console or other ntfs read utility to bypass the permissions and
    > get access to the encrypted file, then ship it off to a corporate
    espionage
    > firm for cracking. You'd never know the file went missing and would be
    wide
    > open to attack at some point in the future.
    >
    > Just my 2 cents.
    >
    > -Michael
    >

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: Eli Allen: "Re: local admin account password"

    Relevant Pages

    • Re: Cant retrieve my own files in XP Please advise?
      ... decrypting the files, very strange. ... > If it was NTFS permissions you may have 'locked out' outlook express from ... > requires the encryption key to decrypt the data). ... >> cant use my email program etc. - there was no warning or anything, ...
      (comp.os.ms-windows.nt.admin.security)
    • Re: Cant retrieve my own files in XP Please advise?
      ... > decrypting the files, very strange. ... >> If it was NTFS permissions you may have 'locked out' outlook express from ... >> requires the encryption key to decrypt the data). ... >>> Lesley ...
      (comp.os.ms-windows.nt.admin.security)
    • RE: MS EFS Question
      ... attributes (same with NTFS permissions and compression.) I am not ... Leon, ... encryption when they are copied or moved, ...
      (Security-Basics)
    • Re: Cannot access encrypted files after reinstalling Windows XP Professional
      ... keys are generated each time you do an install, ... they would be related to the Windows serial key, ... Every encryption has its decryption, ... >of NTFS permissions that can be resolved by taking ...
      (microsoft.public.windowsxp.security_admin)
    • Re: Why do we need encryption ?
      ... You don't need encryption, it's an option. ... computer or laptop is stolen. ... NTFS permissions won't stop a hacker from ... Also, NTFS permissions are lost when a file is copied to a floppy, emailed, ...
      (microsoft.public.win2000.security)