Yes, they also standardized on a 6-character TrueCrypt password for all laptops. I pushed hard against that, as a password that weak meant we were only pretending to encrypt the machines, but the guys in Europe wouldn't budge on that.
On Mon, Aug 15, 2011 at 7:45 AM, Edward Ned Harvey <[email protected]> wrote: >> From: John Abreau [mailto:[email protected]] >> Sent: Sunday, August 14, 2011 11:49 PM >> >> I tried bitlocker on Windows 7 for a few of my colleagues last year. >> But the IT director at the main office in Europe made me rip it out and >> replace it with TrueCrypt in an effort to make all company laptops >> worldwide share the same configuration. > > That's a bummer. But now it doesn't matter anymore, does it. Because you > can't use TrueCrypt. No matter what you use - Bitloker, some other, or zero > encryption - It's not the same as all the other laptops worldwide. > > FWIW, I hear this a lot. A lot of companies standardize to the exclusion of > positive change. Yes, I acknowledge the management simplification that > comes as a result of standardization, but it comes at the price of > stagnation. It makes otherwise-good companies unattractive to good > employees. You should always have a subset of experimental setups, so you > can explore new changes... And you should be open to re-standardization or > multiple standards, in order to gain their benefits. In this case, > Bitlocker would probably be more secure than truecrypt, because ... I don't > know how you manage or communicate truecrypt passwords, but if you're > standardizing on a large scale, that password management is your weak link > in security. > > Incidentally, what *is* the problem with TrueCrypt anyway? It seems to me, > a hard drive looks like a hard drive whether it's a HDD or SSD. I would > expect it to be fine. Do they have any details anywhere, what is the > problem? > > _______________________________________________ > Discuss mailing list > [email protected] > http://lists.blu.org/mailman/listinfo/discuss > -- John Abreau / Executive Director, Boston Linux & Unix AIM abreauj / JABBER [email protected] / YAHOO abreauj / SKYPE zusa_it_mgr Email [email protected] / WWW http://www.abreau.net / PGP-Key-ID 0xD5C7B5D9 PGP-Key-Fingerprint 72 FB 39 4F 3C 3B D6 5B E0 C8 5A 6E F1 2C BE 99 _______________________________________________ Discuss mailing list [email protected] http://lists.blu.org/mailman/listinfo/discuss
