Re: Hard drive encryption in windows
From: Ansgar -59cobalt- Wiechers (bugtraq_at_planetcobalt.net)
Date: 09/29/05
- Previous message: sf_mail_sbm_at_yahoo.com: "Re: RE: Restrict the Domain Admin"
- In reply to: Rob Thompson: "Re: Hard drive encryption in windows"
- Next in thread: Gregor Pifko: "Re: Hard drive encryption in windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Sep 2005 13:46:03 +0200 To: security-basics@securityfocus.com
On 2005-09-27 Rob Thompson wrote:
> No EFS is not good.
>
> For starters it is only encrypting the data that you tell it to. What
> if that file that you are accessing is copied over to the Swap File?
> Now you have an unencrypted copy on your computer, and a false sense
> of security.
A valid concern. It can be mitigated to a point by configuring Windows
to wipe the pagefile on shutdown, but that will only help on a clean
shutdown.
> Also, there are tools freely available on the internet, with just a
> VERY SMALL amount of looking that will break into the EFS.
Please elaborate. AFAIK that was only true for EFS in Windows 2000.
Regards
Ansgar Wiechers
-- "Another option [for defragmentation] is to back up your important files, erase the hard disk, then reinstall Mac OS X and your backed up files." --http://docs.info.apple.com/article.html?artnum=25668
- Previous message: sf_mail_sbm_at_yahoo.com: "Re: RE: Restrict the Domain Admin"
- In reply to: Rob Thompson: "Re: Hard drive encryption in windows"
- Next in thread: Gregor Pifko: "Re: Hard drive encryption in windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
