A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2011.

disable booting from anything but the volume you should be booting from

Still not as good as physically securing the machine, but better...

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2011.

I had a laugh with one of the admin. assistants at one of the bosses where I work,

it seems that all the PC's on the domain are accessible by me from my work station as long as they are turned on and connected to the network,

if I browse "my network places"
find the machine I want to look at

then use the administrative share for the root of the system drive of said machine,

I can look at any & everything on the machine, including their "Documents" folder, "Desktop", "Temporary Internet Files" etc.

I dropped a text file onto one of the bosses Desktop:
HiBoss.txt

It seems that internal network security is as necessary as physical security of the machine

I don't believe anyone here has set their "my documents" folder to Private as they've all been redirected to the server for the nightly backups
as well as that's the primary share point for sharing files
so I haven't had the opportunity to attempt to access a "Private" "My Documents" using this method of "administrative access".

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

1. TrueCrypt doesn't "just" use AES. It can be configured (if desired) to use THREE ciphers in series -- AES, Twofish, and Serpent -- either in that order, or in the reverse order. Other combinations of these are also possible.

2. Leo is correct about using a passphrase, rather than a password. Ideally, your passphrase should have these eight (8) characteristics:

1. Uppercase letters.
2. Lowercase letters.
3. Numbers.
4. Punctuation (e.g., ",:;-?! and so forth).
5. Symbols (e.g., @#$&*+ and so forth).
6. Spaces (use your spacebar!).
7. Respelling (no word anywhere in your passphrase should be findable in any dictionary -- say "kwean", not "queen"!).
8. A long length (15 characters or longer, and the longer the better).

Hope this helps!

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

I think that for a normal working situation, like an office or college locking your PC with a good password is safe enough. I believe there is no way to get into someones account (without knowing his pwd or an admin pwd) and leave it un-noticeable...

Whether it's noticeable isn't the issue. Keeping your data safe most certainly is. You'll notice your wallet has been stolen eventually, but even so ... your wallet has been stolen, and all the information in it. Best to not have it stolen in the first place.

07-Jan-2010

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

Absolutely WRONG. The world's best super computers can crack AES in a couple of days. You and I don't need to worry about that because they are mostly used by scientists for research or government agencies to process certain data. However, for the average Joe Bloggs on the street with a Quad-Core 2.6 Ghz it will indeed take not only years, but decades to crack the encryption. Also, AES is strongest when the longest possible password is used, which would mean a 256 character password. Most people's password's are probably less than 64 characters and therefore, there is a reduction in the strength offered by the encryption.

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

The only way you can be sure that your files are unreadable at GMail is if they are encrypted. Which gets you back to encrypting your HD. Make sure to encrypt the whole HD, not just files, folders or partitions.

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

The risk is not hacking anything, but rather gaining access to your GMail password. If you've ever allowed your browser to remember your password, then it can be trivially recovered buy theif who has access to your machine. This on a different site might scare you a little: Forgot Gmail Password? Use your browser to recover it!

06-Jan-2010

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

Maybe you read it in the article you commented on ... the large bold print that says "If it's not physically secure, it's not secure".

That same article that you're also commenting on goes on to recommend encryption as a solution.

06-Jan-2010

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

Absolutely and completely untrue. The 256-bit AES encryption algorithm as a practicle matter is unbreakable for the foreseeable future. AES is so mathematically complex that today's fastest supercomputers would have to work on the problem for many, many decades before they would be able to break it.

Physical access or not, AES (which TrueCrypt uses) will keep valuable personal information safe, as long as a strong password is used.

I agree, and want to emphasize the importance of the password - or rather pase phrase. All the encryption in the world won't save you from having chosen an easy to guess or compromized passphrase.

06-Jan-2010

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.

Of course, if someone was that determined to get in, they'd probably just walk off with the entire computer. Not very subtle, but they'll still have access to all the data on the computer.

A comment on: Does locking my computer keep it safe?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2010.