Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Questions regarding EFS

from [Laura A. Robinson] Network Security [Permanent Link]
Subject: RE: Questions regarding EFS
Date: Sun, 05 Mar 2006 15:33:45 -0500 
I didn't interpret your post as having said I was wrong; no worries. Per my
other response (I'm still writing up a document with screenshots whenever I
take a break from some other stuff I'm working on), AD isn't actually
necessary at all for the sharing process. However, since everything is so
much more efficient and easier to manage with AD, group policy and a PKI, I
*always* recommend that they be implemented and used whenever possible.

Laura 


-----Original Message-----
From: Sebastian "En3pY" Zdrojewski [mailto:en3py@itvc.net] 
Sent: Saturday, March 04, 2006 11:27 PM
To: 'Devin Ganger'; focus-ms@securityfocus.com
Subject: R: Questions regarding EFS

Ok,

I never said she was wrong, if I did so, sorry. I did not 
consider inserting certificates into AD from an external 
source. Thanks for the link :)

Sincerely

En3pY


--

 Sebastian `En3pY` Zdrojewski

##############################
# URL: http://www.en3py.net/ #
#   E-Mail: en3py@itvc.net   #
##############################


-----Messaggio originale-----
Da: Devin Ganger [mailto:DevinG@3sharp.com]
Inviato: domenica 5 marzo 2006 4.37
A: Sebastian "En3pY" Zdrojewski; focus-ms@securityfocus.com
Oggetto: RE: Questions regarding EFS

At Saturday, March 04, 2006 12:38 AM, Sebastian "En3pY" Zdrojewski
wrote:


AFAIK the process for adding more encryptors to the EFS process is 
more likely the process used to add a "Recovery Agent" for 

the user, 

so that if the user account got corrupted, or an 

administrator forces 

the user's password (both cases makes the encrypted files
unrecoverable) the Recovery Agent can recover the information. If I 
remember well on XP the default user marked as Recovery 

Agent is the 

Administrator user account, while on Server platforms this 

function is 

not explicitly defined (that is: no recovery agent is defined for a 
user's encryption certificate).

I may be wrong, but I am sure I have studied it this way.


Having seen Laura's posts in the past, I'd trust her hands-on 
experience vs.
your "studied it this way" any day.

Especially since a trivial Google landed the following:

How to Share Files Using Encrypting File System (via TechNet) 
http://www.microsoft.com/technet/prodtechnol/winxppro/maintain
/sharefile
sefs.mspx

-- 
Devin L. Ganger                    Email: deving@3sharp.com
3Sharp LLC                         Phone: 425.882.1032 x 109
15311 NE 90th Street                Cell: 425.239.2575
Redmond, WA  98052                   Fax: 425.702.8455
(e)Mail Insecurity: http://blogs.3sharp.com/blog/deving/

--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.375 / Virus Database: 268.1.2/274 - Release 
Date: 03/03/2006
 

--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.375 / Virus Database: 268.1.2/274 - Release 
Date: 03/03/2006
 


--------------------------------------------------------------
-------------
--------------------------------------------------------------
-------------




---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Questions regarding EFS, Laura A. Robinson
Next by Date:  RE: Questions regarding EFS, Laura A. Robinson
Previous by Thread:  R: Questions regarding EFS, Sebastian \"En3pY\" Zdrojewski
Next by Thread:  Administrivia: Holidays, Marc Fossi
Indexes:  [Date] [Thread] [Top] [All Lists]