Re: File Encryption

In article <uWLJYkE#FHA.2176@xxxxxxxxxxxxxxxxxxxx>, "Milan Stojanovic"
<piksi 'at server' EUnet dot YU not COM> says...
> Thanks for the reply, I would try some of this, and option 2 seems really
> interesting to me. Point is to show to authorities that nobody ever uses
> EFS, even it has been enabled a year ago on more than 100 computers in our
> domain.
>
> Thanks again.
<snip>
Agreed, the non-technical aspects of managing an environment are ever
present ;) If you are looking for "ammo" to back up a recommendation to
management to disable EFS, then a one-time run of a script (perhaps
making use of the built-in Cipher.exe or Sysinternal's EFSInfo) that, as
a "proof of concept", may be as lightweight as to exit after finding one
encrypted file combined with a few words around worst case consequences
should be enough to make them think about disabling EFS.

"Sve dobro!" ;)
--
Cheers,
Marin Marinov
MCT,MCSE,MCSE:Security,MCP+I
-
This posting is provided "AS IS" with no warranties, and confers no
rights.

"True knowledge exists in knowing that you know nothing."
Socrates
.