I wondered what was done to protect the system over lunch absent a shutdown.
I don't recall that last part being stated.
It seems, from various postings, that rebooting is required to get around the Windows (screen saver) password
I don't recall saying that just why bother when rebooting is so easy.
and that even protecting the BIOS isn't safe.
Who said this, not Rick or I ?
However, it seems that if a user encrypts both the MBR as well as partitions,
then data is reasonably safe from prying eyes, given that PCG EPHD is effective
on (re)booting.
Your definition is completely different than mine then. I would never try just rebooting the HD especially when I know that more than likely that Windows is pwd protected. IMHO that is reasonably safe. The product PCG EPHD while it may add a layer of security I don't see that it does much of anything that using NTFS partitioning doesn't do already & therefore IMO is a complete waste of time & money. I certainly could NOT & would NOT recommend that anyone buy such a thing.
I haven't heard that it is possible to circumvent the Windows screen saver password without rebooting, so perhaps the PCG approach makes sense.
I never stated that it wasn't possible & have heard that people can break the Windows Screen Saver PWD. Again why should I try when I already have a better tool literally in my pocket. In the old days all one had to do was edit the Control.ini file to get rid of the Screen Saver PWD. Another problem is that most people just walk away from their system & do NOT turn on the screen saver before leaving their desks therefore all one has to do is slip onto the system before the screensaver kicks in. I know that the screensaver pwd is NOT secure because in our early BartPE & XpPe days we developed more secure PWDs using industry standard MD5 hash for screensavers but was sorely disappointed in how little protection that it provided. There is a place in NM that actually uses the MD5 screensaver as a startup screen for their XpPe builds and that at least is more secure than Windows ScreenSaver passwords because then a reboot of that CD doesn't automatically take one into the system but then that still doesn't stop me from booting another CD that is less secure for the system.
I'm taking a chance here but I feel like what I've written has been almost completely ignored because one has a preconceived notion of the opposite of what I've been saying is true & I highly recommend that one read the book "Applied Cryptography" by Bruce Schnier.
----------+----------
Wayne D. Johnson
Ashland, OH, USA 44805
<http://www.wavijo.com>
--
----------------------------------------
ALL messages to the list MUST include a descriptive subject.
To Change your email Address for this list, send the following message:
CHANGE WIN-HOME your_old_address your_new_address
to: [EMAIL PROTECTED]
Note carefully that both old and new addresses are required.
