Sponsored by listeners like you
Anthony (back for a second show) and I get together to talk storage, training, surf control and drive encryption. I really was frustrated by something in Surf Control that breaks HTTPS pages when using a deny all rule at the bottom of my rule set.
Links mentioned in this podcast:
MCSE Bootcamp
Pauldotcom Sans Hacking Embedded Devices
Con artists target phone system for deaf
IP Scam Artists
Half Bakery One time phone number
My Book™ World Edition™
miniStack NAS Review
Enveloc Internet Backup
Carbonite Internet Backup
Presentation Schedule
Microsoft Log Parser
Science Museum of Virginia web page
Nashville Technology Council Annual Infosec Conference
Other sites mentioned in this podcast:
Pauldotcom Security Weekly
Great Comments on the Backup – I am a local IT consultant and struggle with the same issue for our smaller clients – alot of solutions exist for larger business but the smaller ones are tough – the best one I’ve found is http://www.mozypro.com – they have a free residential version with 2Gb of storage at http://www.mozy.com and it works on mac. ON the pro side we are backing up 4 servers and 35GB of data for $30 per month – very inexpensive. They handle open files, bit level continuous backup, exchange and sql. We take monthly or quarterly server images on external drive we move offsite and backup changing data with the service. It makes for a very inexpensive offsite solution.
Great Comments on the Backup – I am a local IT consultant and struggle with the same issue for our smaller clients – alot of solutions exist for larger business but the smaller ones are tough – the best one I've found is http://www.mozypro.com – they have a free residential version with 2Gb of storage at http://www.mozy.com and it works on mac. ON the pro side we are backing up 4 servers and 35GB of data for $30 per month – very inexpensive. They handle open files, bit level continuous backup, exchange and sql. We take monthly or quarterly server images on external drive we move offsite and backup changing data with the service. It makes for a very inexpensive offsite solution.
Regarding the Seagate Encrypted drive. You were wondering where the key was. I don’t know how many keys it supports, but it’s possible the key isn’t stored on the drive anywhere. Could it simply try the decryption with the password you provided? If you provide the correct key, the drive would decrypt correctly, wrong password, bad decryption.
Also about changing the user’s password from Active Directory. The software might have trouble syncing the password if the drive/computer is off when the Administrator changes the AD password. Under Windows Server 2003, isn’t there a warning when you change a password from AD Users and Computers? Something specifically about the user losing access to their encrypted folders? The warning might also apply to this drive.
Great podcast. Keep up the good work. I’d like hearing about the high-end stuff. I manage about 100 PCs and like to hear about the challenges of managing thousands of PCs, basically I like the “working in a large organization” stories. I would also like more security and forensics stories, not only “How” but also “Why”. Why, specifically, do you do a forensics analysis of a drive.
Thanks.
._.
Regarding the Seagate Encrypted drive. You were wondering where the key was. I don't know how many keys it supports, but it's possible the key isn't stored on the drive anywhere. Could it simply try the decryption with the password you provided? If you provide the correct key, the drive would decrypt correctly, wrong password, bad decryption.
Also about changing the user's password from Active Directory. The software might have trouble syncing the password if the drive/computer is off when the Administrator changes the AD password. Under Windows Server 2003, isn't there a warning when you change a password from AD Users and Computers? Something specifically about the user losing access to their encrypted folders? The warning might also apply to this drive.
Great podcast. Keep up the good work. I'd like hearing about the high-end stuff. I manage about 100 PCs and like to hear about the challenges of managing thousands of PCs, basically I like the “working in a large organization” stories. I would also like more security and forensics stories, not only “How” but also “Why”. Why, specifically, do you do a forensics analysis of a drive.
Thanks.
._.
I wasn’t saying I thought the key was stored. I was talking about the password hash to authenticate the user.
I don’t have active directory so I am not sure. But yes I would assume any changing of the password would pose a sync issue. But the most likely answer is that since its cached somehow you use the old one to get in. You probably then just use the change pw option in the finallysecure software to put it back into sync.
I wasn't saying I thought the key was stored. I was talking about the password hash to authenticate the user.
I don't have active directory so I am not sure. But yes I would assume any changing of the password would pose a sync issue. But the most likely answer is that since its cached somehow you use the old one to get in. You probably then just use the change pw option in the finallysecure software to put it back into sync.