Re: Hard drive encryption in windows

From: Ansgar -59cobalt- Wiechers (bugtraq_at_planetcobalt.net)
Date: 09/29/05

  • Next message: Burton Strauss: "RE: Windows Vista current flaws"
    Date: Thu, 29 Sep 2005 13:46:03 +0200
    To: security-basics@securityfocus.com
    
    

    On 2005-09-27 Rob Thompson wrote:
    > No EFS is not good.
    >
    > For starters it is only encrypting the data that you tell it to. What
    > if that file that you are accessing is copied over to the Swap File?
    > Now you have an unencrypted copy on your computer, and a false sense
    > of security.

    A valid concern. It can be mitigated to a point by configuring Windows
    to wipe the pagefile on shutdown, but that will only help on a clean
    shutdown.

    > Also, there are tools freely available on the internet, with just a
    > VERY SMALL amount of looking that will break into the EFS.

    Please elaborate. AFAIK that was only true for EFS in Windows 2000.

    Regards
    Ansgar Wiechers

    -- 
    "Another option [for defragmentation] is to back up your important files,
    erase the hard disk, then reinstall Mac OS X and your backed up files."
    --http://docs.info.apple.com/article.html?artnum=25668
    

  • Next message: Burton Strauss: "RE: Windows Vista current flaws"