Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security NTBugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Desktop.ini file ignored by Windows Encryption...

from [Scott Lockington] Network Security [Permanent Link]
Subject: Desktop.ini file ignored by Windows Encryption...
Date: Mon, 1 Nov 2004 12:55:15 -0800 
Hello All, 

In working with Windows EFS (i.e. 2000 sp4 and XP sp2) Any file named
"desktop.ini" is ignored when  encrypting the containing directory with EFS.
The contents of this file are not verified to be that of a valid desktop.ini
file, instead it can contain anything. Any file dropped named desktop.ini
could avoid requiring decryption at a later date. Abuses of such an exclusion
are left as an exercise for the reader.

Thank you


J. Scott Lockington
Security Administrator
slockington@vical.com



--
NTBugtraq Editor's Note:

Want to reply to the person who sent this message? This list is configured such 
that just hitting reply is going to result in the message coming to the list, 
not to the individual who sent the message. This was done to help reduce the 
number of Out of Office messages posters received. So if you want to send a 
reply just to the poster, you'll have to copy their email address out of the 
message and place it in your TO: field.
--
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Microsoft Security Bulletin Advance Notification, Turker Ugur Sokullu
Next by Date:  Alert: Microsoft Security Bulletin MS04-039 - Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow Internet Content Spoofing (888258), Russ Cooper
Previous by Thread:  Microsoft Security Bulletin Advance Notification, Turker Ugur Sokullu
Next by Thread:  Re: Desktop.ini file ignored by Windows Encryption..., Adam Piggott
Indexes:  [Date] [Thread] [Top] [All Lists]