On 12/18/2007 12:43 PM, "Ansgar -59cobalt- Wiechers"
<email@hidden> wrote:
>> What are you, twelve?
>
> I think I'll pass that question to the person who's been putting up
> claims without being able to support them.
>
>> Have you seriously been scanning this list and counting the days,
>> waiting to post this? Do you seriously have nothing better to do?
>
> You have a weird way of admitting that your claims were completely and
> utterly unsubstantiated.
>
> To sum up the results of our little dipute:
>
> - FileVault apparently *does* on-the-fly encryption.
> - Except for swap and /tmp there are no other places where one would
> expect user temp files to be created.
> - On-the-fly encryption does help prevent data from leaking out of a
> FileVault.
Christ, it's like getting your leg humped by a chihuahua. But, since you
haven't stumbled on the obvious:
/var/spool/cups
/var/spool/PDFMaker
Hmm...lots of temp files created by user processes. Unencrypted. Containing
useful information to an attacker.
/var/log. Unencrypted.temporary.data.about.user.processes.
/var/db. Not strictly temp data, but damned useful, filevault or not.
/var/samba/gencache.tdb. That's a wealth of information about a network
right there, including all kinds of useful IP addresses, like the IP
addresses of your domain controllers.
Filevault all you want. With the information I can pull out of /var, I can
delete your home directory and still come out ahead, infosec wise.
Anything else? Lots of temp files, lots of user temp files, lots of caches.
All there for the taking.
--
John C. Welch Writer/Analyst
Bynkii.com Mac and other opinions
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
