RE: [t13] Security problems

Mon, 16 May 2005 10:51:10 -0700 

This message is from the T13 list server.


Thomas

        If the system is smart enough to issue the password, then it should
be smart enough to FREEZE LOCK the drive as well.  10 years ago, the
internet did exist, and browsers were much more broken then they are now.
One of the big differences between now and then is that anti-virus software
has become wildly popular.

 
-------------------------------------------------
Curtis E. Stevens
20511 Lake Forest Drive #C-214D
Lake Forest, California 92630
Phone: 949-672-7933
Cell: 949-307-5050
E-Mail: [EMAIL PROTECTED]
Ambition is a poor excuse for not having enough sense to be lazy.
 

-----Original Message-----
From: Thomas Jansen [mailto:[EMAIL PROTECTED] 
Sent: Monday, May 16, 2005 10:46 AM
To: Curtis Stevens; [email protected]
Subject: Re: [t13] Security problems

Because it's NOT an implementation issue. One can always set the 
password. The only  method to prevent  it  is the Freeze lock. If your 
BIOS doesn't support it and even modern brand BIOSs do then you have a 
problem.  Even when the disk is locked with a password it will be 
vulnerable when unlocked which is handy if you want to use the data :-)

Is asked whether I

a) Understand the standard correctly
b) What to do to fix it (if it can be done)

As I heard some one say it has been there for 10 years. Quite something 
has changed the last couple of years, especially withe the Internet and 
broken browsers.

Sincerely,
Thomas
 


Curtis Stevens wrote:

>This message is from the T13 list server.
>
>
>If the implementation is known to be bad, then why ask the question?
>
> 
>-------------------------------------------------
>Curtis E. Stevens
>20511 Lake Forest Drive #C-214D
>Lake Forest, California 92630
>Phone: 949-672-7933
>Cell: 949-307-5050
>E-Mail: [EMAIL PROTECTED]
>Ambition is a poor excuse for not having enough sense to be lazy.
> 
>
>-----Original Message-----
>From: Jason Coombs [mailto:[EMAIL PROTECTED] 
>Sent: Monday, May 16, 2005 9:59 AM
>To: Curtis Stevens
>Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [email protected];
>[EMAIL PROTECTED]
>Subject: Re: [t13] Security problems
>
>Curtis Stevens wrote:
>  
>
>>If the drive has an existing password, the password
>>must be entered to gain access to the drive.
>>    
>>
>
>Depending upon implementation. The original poster cited known bad 
>implementations that do not require the existing password before 
>allowing a new one to be set.
>
>Regards,
>
>Jason Coombs
>[EMAIL PROTECTED]
>
>  
>

Reply via email to