|
|
| Applications |
| Mailing Lists |
| Miscellaneous |
| Operating Systems |
| Programming |
RE: Protect folder data.
Date: Wed Nov 27 2002 - 21:37:45 EST
SANS has an excellent white paper on the mechanisms and flaws in Win2K EFS:
http://rr.sans.org/win2000/EFS_sec.php
Steve Velazquez
CISSP, LPIC1, MCSE, CCNA
-----Original Message-----
From: Nero, Nick [mailto:Nick.Nero@disney.com]
Sent: Tuesday, November 26, 2002 1:59 PM
To: dennis; security-basics@securityfocus.net
Subject: RE: Protect folder data.
Yep, you are correct. It is RC4-40bit, I believe. Problem is, it is NOT just password protected. It uses a mini-PKI (unless you have a real PKI) and only that user's cert or the admin's can recover it. If both certs are lost, so is your data.
As a side, the laptop recovered last fall by a reporter from CNN that was formally a computer used by Al-Qaeda had the hard drives encrypted with Win2k EFS. The FBI was able to brute force the 40bit keyspace in a week and discover the data!
Nick Nero
CISSP, MCSE, CCNA
-----Original Message-----
From: dennis [mailto:dennis@unixqi.com]
Sent: Tuesday, November 26, 2002 4:23 AM
To: security-basics@securityfocus.net
Subject: Re: Protect folder data.
Doesn't Win2K's encrypted file system support this? Sorry if I'm wrong, not a Windows kinda guy.
- Original Message ----- From: "Shane Lahey" <s.lahey@roadrunner.nf.net> To: <tony572000@hotmail.com>; <security-basics@securityfocus.net> Sent: Friday, November 22, 2002 10:29 AM Subject: RE: Protect folder data.
> Why not try Blowfish Advanced CS , available at http://come.to/hahn
> no one but
admin
> or
> desk top support person can not figure out a way to get to the data.
Received on Thu Nov 28 15:20:44 2002
This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:03:25 EDT
|
Contact Us Legal Notices Order Services Online Pantek Home Privacy Policy IT news Site Map Pantek Library |