Vista Forums - View Single Post

02-27-2007

MirzeK wrote:
> Hello, I have a question about Micrososft Vindows Vista. (This link is
> documentation with screenshot this steps. Please look.
> http://rapidshare.com/files/18546146...a_bug.doc.html )
>
> I have two partitions in my computer (C: and E

. I create a folder in E:
> partition. This folder name is "Top_Secret". I create a file in this
> Top_Secret folder. This file name is "very_secret_file .txt". I dont want
> see this file anybody because this file contents very important my
> company.
> Maybe can I be a inexperienced user. I dont know EFS or other file
> security options. I know, I create this file and I dont want to see
> anybody.
> I shutdown my pc and going my house.
>
> A thief user or person want to see this file contents
> "very_secret_file.txt". Normally Certainly anyone dont must this file
> contents. Normall anybody dont must see this file contents if they are
> don't know my user account and password. But can I see this file via
> starting pc Microsoft Vista Installig Cd.
>
> How to see this file contents:
>
> I boot Vista with Windows Vista Installation Cd. Click Repair your
> computer, Click toLoad Drivers, Click to OK and opening Vista files in
> my computer harddisk. I can see all files in this list box .And select to
> E: drive and I can see my private Top_Secret folder.
>
> Right click this Top Secret folder and select to "Send To-Flopy Disk Drive
> (A)" and my Top_Secret folder is starting a copy to Flopy Disket Drive.
>
> My file was in the folder. This thief user or person can I take this
> disket and open my private files at other computers .
>
> Ýs this a bug or normally status? I dont trust, Ýs this normally?
>
> Can I take some information this status.

This is not a bug. You have done nothing to secure that file so should not
be surprised that the file is viewable. The thief would not need a Vista
DVD to find and view the file, there are many many ways to boot your PC from
removable media and get anything/everything off the hard drive. Once
someone has physical access to your machine they can get pretty much
anything they want off the machine. By leaving the file unencrypted you
simply make it that much easier for them. Keep in mind that even encrypting
the file doesn't make it completely off limits as there are tools that can
recover encrypted files. It is a mistake to think that a password on a
logon screen is enough to secure the files on a PC. This is why most
companies make it a violation of their policies for employees to store
sensitive data on their PC hard drives. Instead all sensitive data should
only be stored on servers internal to the company that are physically and
virtually inaccessible to anyone outside the company.
--
Tom Porterfield

02-27-2007	#3 (permalink)
Tom Porterfield n/a posts	Re: Is this a bug at Windows Vista? MirzeK wrote: > Hello, I have a question about Micrososft Vindows Vista. (This link is > documentation with screenshot this steps. Please look. > http://rapidshare.com/files/18546146...a_bug.doc.html ) > > I have two partitions in my computer (C: and E. I create a folder in E: > partition. This folder name is "Top_Secret". I create a file in this > Top_Secret folder. This file name is "very_secret_file .txt". I dont want > see this file anybody because this file contents very important my > company. > Maybe can I be a inexperienced user. I dont know EFS or other file > security options. I know, I create this file and I dont want to see > anybody. > I shutdown my pc and going my house. > > A thief user or person want to see this file contents > "very_secret_file.txt". Normally Certainly anyone dont must this file > contents. Normall anybody dont must see this file contents if they are > don't know my user account and password. But can I see this file via > starting pc Microsoft Vista Installig Cd. > > How to see this file contents: > > I boot Vista with Windows Vista Installation Cd. Click Repair your > computer, Click toLoad Drivers, Click to OK and opening Vista files in > my computer harddisk. I can see all files in this list box .And select to > E: drive and I can see my private Top_Secret folder. > > Right click this Top Secret folder and select to "Send To-Flopy Disk Drive > (A)" and my Top_Secret folder is starting a copy to Flopy Disket Drive. > > My file was in the folder. This thief user or person can I take this > disket and open my private files at other computers . > > Ýs this a bug or normally status? I dont trust, Ýs this normally? > > Can I take some information this status. This is not a bug. You have done nothing to secure that file so should not be surprised that the file is viewable. The thief would not need a Vista DVD to find and view the file, there are many many ways to boot your PC from removable media and get anything/everything off the hard drive. Once someone has physical access to your machine they can get pretty much anything they want off the machine. By leaving the file unencrypted you simply make it that much easier for them. Keep in mind that even encrypting the file doesn't make it completely off limits as there are tools that can recover encrypted files. It is a mistake to think that a password on a logon screen is enough to secure the files on a PC. This is why most companies make it a violation of their policies for employees to store sensitive data on their PC hard drives. Instead all sensitive data should only be stored on servers internal to the company that are physically and virtually inaccessible to anyone outside the company. -- Tom Porterfield
My System Specs