Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Click here to return to the '10.4: Be aware of a FileVault security issue with' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.4: Be aware of a FileVault security issue with
Authored by: lincd0 on Dec 22, '06 01:52:13PM
When a Filevault user is logged in, his entire Home folder is unencrypted.

That's not correct. The home folder is stored on an encrypted disk image, and the contents are always encrypted on disk. When you open a file on such an image, the disk driver decrypts the data into RAM. It can leak out to disk in swap files, but in Tiger you have the option to encrypt the swap files as well.

Anyone with admin access can then read/write into his home folder.

That's beside the point. The purpose of encryption is prevent data theft by an attacker with physical access.

[ Reply to This | # ]