Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Securing workstations from IT guys

from [Liam Jewell] Network Security [Permanent Link]
Subject: Re: Securing workstations from IT guys
Date: Tue, 27 Nov 2007 15:05:15 -0500 
Anybody who has physical access to the machine becomes a
vulnerability.  Even if you encrypt files under an administrator
account on the local machine, simply resetting the password with a
program like Passware, will not disable the encryption.  Then an
unauthorized user can log in to the admin account with a blank
password (or a password of their choosing) and have access to all
encrypted files.

This means that in under a minute of physical access to the machine,
all local documents (encrypted or not) are now accessible.
Additionally, many programs allow you to reset it to the original
password when you are done. This means that if the event viewer were
cleared... few traces would be left on the machine, that it had even
be turned on.

What does this mean?  It means you need to use a combination of
non-windows based encryption (I also use Axcrypt) for all files that
NEED to remain on the local machine, and then force all other
important documents to a secured server.

my 2 cents,
Liam Jewell
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: hax.tor, Peter Harmsen
Next by Date:  Re: hax.tor, Captain Bock
Previous by Thread:  RE: Securing workstations from IT guys, Depp, Dennis M.
Next by Thread:  Re: Securing workstations from IT guys, Mark Owen
Indexes:  [Date] [Thread] [Top] [All Lists]