J
Joe Admin
I hear that the newest version of Encase cracks EFS
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
R
Robert Moir
Joe said:I hear that the newest version of Encase cracks EFS
Not exactly. It doesn't "crack" it at all.
http://www.guidancesoftware.com/products/downloads/efs-datasheet.pdf
Notice how they are careful to specify they are talking about "locally
authenticated" users. In other words, episode 237 of "Why its a bad idea to
store the encryption keys along side the encyrypted data", also known as
"Why you should ideally be using EFS in a domain environment."
Enjoy.
--
--
Rob Moir, Microsoft MVP for servers & security
Website - http://www.robertmoir.co.uk
Virtual PC 2004 FAQ - http://www.robertmoir.co.uk/win/VirtualPC2004FAQ.html
Kazaa - Software update services for your Viruses and Spyware.
J
Jeremy
Everything is crackable given time and knowledge. It is my understanding
that as long as the system is still running or accessible that set the EFS
Microsoft has a tool for FBI, etc... to be able to decrypt the information.
that as long as the system is still running or accessible that set the EFS
Microsoft has a tool for FBI, etc... to be able to decrypt the information.
J
Jupiter Jones [MVP]
Jeremy;
What is your source?
If there were such a tool, toe people that watch over privacy would be
all over the FBI and Microsoft.
What is your source?
If there were such a tool, toe people that watch over privacy would be
all over the FBI and Microsoft.
J
Jupiter Jones [MVP]
Joe;
Read the not so fine print:
http://www.guidancesoftware.com/products/downloads/efs-datasheet.pdf
"Locally authenticated users"
For all practical purposes EFS is unbreakable as long as proper
security practices are followed.
Read the not so fine print:
http://www.guidancesoftware.com/products/downloads/efs-datasheet.pdf
"Locally authenticated users"
For all practical purposes EFS is unbreakable as long as proper
security practices are followed.
D
Drew Cooper [MSFT]
Looks like they try to crack user's passwords if they don't have them. If
the key material is on the machine (almost always), EFS is only as strong as
the user's password.
the key material is on the machine (almost always), EFS is only as strong as
the user's password.
R
Robert Moir
Drew said:Looks like they try to crack user's passwords if they don't have
them. If the key material is on the machine (almost always), EFS is
only as strong as the user's password.
As a practical matter with most peoples passwords thats "Not Very", then.
But from the standpoint of the strength or weakness of the encryption, there
is nothing new to see here.
Thats my take on it anyhoo.
--
--
Rob Moir, Microsoft MVP for servers & security
Website - http://www.robertmoir.co.uk
Virtual PC 2004 FAQ - http://www.robertmoir.co.uk/win/VirtualPC2004FAQ.html
Kazaa - Software update services for your Viruses and Spyware.