[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: BRU, tape drives and XServe

Subject: Re: BRU, tape drives and XServe
From: Ansgar -59cobalt- Wiechers <email@hidden>
Date: Wed, 12 Dec 2007 19:15:09 +0100
Delivered-to: email@hidden
Delivered-to: email@hidden
User-agent: Mutt/1.5.13 (2006-08-11)

On 2007-12-12 John C. Welch wrote:
> On 12/12/2007 11:36 AM, "Ansgar -59cobalt- Wiechers" wrote:
>>> When you're logged in, you don't care, at that point, it's a
>>> physical "don't let people play in your login" issue. You only care
>>> about FV encryption when you aren't logged in. As long as nothing's
>>> left unencrypted outside of FV when you're not logged in, it's all
>>> good.
>> 
>> I don't see how you'd be able to guarantee that without on-the-fly
>> encryption. Simple example: if files are cached outside the FileVault
>> something like a power outage may lead to data leakage.
> 
> Something like a power outage may lead to a hard drive crash too.

Glad we were able to clear that up. Not that it had anything at all to
do with the topic.

> There's no "guarantee" with FV. I have yet to see Apple claim that FV
> is perfect in that manner.

You missed the point. Without on-the-fly encryption data might leak out of
a FileVault due to a power outage (or someone pulling the plug or
whatever). The possible data leak would make it more than just a
"physical 'don't let people play in your login' issue". On-the-fly
encryption, however, takes care of this issue.

> If you're going to insist that FV cover every possible edge case, then
> you may as well not use it until you get whole-disk encryption on the
> boot volume for your Mac, because all someone has to do is save
> somewhere other than their home directory, and FV is useless.

I'm not insisting on anything. I'm explaining the benefit that justifies
on-the-fly encryption despite its performance impact.

Regards
Ansgar Wiechers
-- 
"Another option [for defragmentation] is to back up your important files,
erase the hard disk, then reinstall Mac OS X and your backed up files."
--http://docs.info.apple.com/article.html?artnum=25668
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

Follow-Ups:
- Re: BRU, tape drives and XServe
  - From: "John C. Welch" <email@hidden>

References:
	>Re: BRU, tape drives and XServe (From: Ansgar -59cobalt- Wiechers <email@hidden>)
	>Re: BRU, tape drives and XServe (From: "John C. Welch" <email@hidden>)

Prev by Date: Re: Disable Keychain Permanently - OS X Tiger
Next by Date: Re: BRU, tape drives and XServe
Previous by thread: Re: BRU, tape drives and XServe
Next by thread: Re: BRU, tape drives and XServe
Index(es):
- Date
- Thread

Home