OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: richard (Richard.Lovekinchapelhill1.demon.co.uk)
Date: Sat Feb 23 2002 - 01:53:33 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Best choice is not to use EFS at all. Use a reputable disk/volume encryptor
    like PGPDisk, Reflex Magnetics Datavault or some such. The list is endless
    - but does not include any known Microsoft product.

    MS EFS is particularly eccentric. It decrypts to backup or to move a ny
    file across the network. Aussi, it leaves plain-text all over the Temp
    files. Be very afraid of it.

    Yrs Aye

    richard L

    Disclaimer:

    The sender of this message has taken reasonable care to ensure that this
    message contains no computer viruses or other Micro$oft malware and accepts
    no liability for any damage caused by its receipt on any system. The
    signatory of this e-mail further disclaims all responsibilty for any
    politically incorrect, derogatory, defamatory or surreal content, express
    or implied, of this message except in any Jurisdiction in which such
    disclaimers are unlawful. In such as these this Disclaimer is disclaimed
    and is to be set aside where it is delivered to addresses within such said
    jurisdictions or where it is transmitted through the said jurisdictions.

    -----Original Message-----
    From: Laura A. Robinson [SMTP:larobinsbellatlantic.net]
    Sent: Thursday, February 21, 2002 1:42 AM
    To: Varga Daniel (QI/RZS4) *; focus-mssecurityfocus.com
    Subject: Re: Cached Domain Password on Notebook, secure?

    As a follow-up, this is, of course, a pain in the neck when you need the
    keys again. ;-) A better choice may be to use stronger syskey protection.

    Laura
    ----- Original Message -----
    From: "Laura A. Robinson" <larobinsbellatlantic.net>
    To: "Varga Daniel (QI/RZS4) *" <Daniel.Vargade.bosch.com>;
    <focus-mssecurityfocus.com>
    Sent: Wednesday, February 20, 2002 8:22 PM
    Subject: Re: Cached Domain Password on Notebook, secure?

    >
    >>
    http://www.microsoft.com/technet/treeview/default.asp?url=/TechNet/secur
    ity/
    > topics/efs.asp
    >
    > On to the next item-
    >
    > 1. Create an encrypted directory on your hard drive.
    > 2. Create a file inside the directory. Type something in the file and
    save
    > it.
    > 3. Close the file and directory. Reopen.
    > 4. Export your certificate and the recovery agent certificate, *including
    > the private keys*, to a floppy. Select the checkbox to delete the private
    > key after exporting it.
    > 5. Delete the certificates from your certificate store.
    > 6. Reboot.
    > 7. Try to open the file you encrypted.
    >
    > Maybe my machine is possessed, but I can't open files I've encrypted,
    even
    > when logged on as myself, after exporting and deleting the private keys
    and
    > certificates of both the user and the recovery agent.
    >
    > Laura
    >
    >