Re: Hibernartion is it secure???
From: *Vanguard* (no-email_at_post-reply-in-newsgroup.invalid)
Date: 03/17/04
- Next message: kev: "win xp & 2000 randomly freezing and rebooting."
- Previous message: Ohaya: "How to completely "refresh" IDE drivers?"
- In reply to: Karina: "Hibernartion is it secure???"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 17 Mar 2004 02:42:10 -0600
"Karina" said in
news:9F57044A-62ED-4E16-AFB7-D156A70DA7F8@microsoft.com:
> Hi,
>
> Is someone able to answer me on:
>
> When you put a workstation into hibernation and you then remove the
> hdd from the computer and put it into another are you able to get the
> data from that hdd or is it encrypted in some form?
>
> Cheers
Security has nothing to do with hibernation. Hibernating puts a file on
the hard drive that gets read on startup to restore the memory image to
the same state as when the machine was put into hibernation. Who cares
about that file when all the other files are there, too? All your OS,
application, and data files are still on that hard drive.
Permissions is based on the account SID (security identifier). When you
create an account, it gets assigned a SID (the Administrator account
gets a standard SID). Permissions are based on the SID. When you move
the hard drive to another computer or perform a parallel install of
Windows, that instance of Windows did not create those user accounts so
it won't have a record of their SIDs so obviously it cannot enforce any
permissions based on those unknown SIDs. That's why you can move the
drive or do a parallel install and look at all the files regardless of
what were their permissions under that other instance of Windows. The
only account that might have its permissions obeyed across all instances
of Windows is the Administrator account because, I believe, it gets the
same SID assigned to it under every instance of Windows. However,
administrators are always allowed to take ownership of files, so the
Administrator's permissions under one instance of Windows can be ignored
when another admin-level account in another instance Windows takes
ownership of those files.
If you want to ensure security of your data, employ EFS (encrypted file
system). Be sure to export your security certificate so you can recover
later. If you do a restore to a fresh install of Windows or to a
different instance of Windows, you'll need that floppy with the security
certificate to allow access into the EFS-protected files. There are
lots of KB articles at Microsoft on how to use EFS and best practices
for EFS.
-- ____________________________________________________________ *** Post replies to newsgroup. E-mail is not accepted. *** ____________________________________________________________
- Next message: kev: "win xp & 2000 randomly freezing and rebooting."
- Previous message: Ohaya: "How to completely "refresh" IDE drivers?"
- In reply to: Karina: "Hibernartion is it secure???"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
