Perfect, this will finally lock out all the old people of their devices because they forget their bitlocker password :D
this post was submitted on 14 Aug 2024
3 points (100.0% liked)
Technology
60059 readers
3900 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
I guess they'll use TPM. I'm so excited to tell half of my "clients" (all seniors in the village) that they are fucked because their Laptop died.
Yeah, this makes sense for corporate environments with keys backed up to a centralized location like Active Directory. Not for consumers with no reasonable way to keep some key like this in a safe place as a "break glass in case of emergency" option.
It backs up to the Microsoft Account
Still, some people create an @outlook.com email, set up no recovery options, forget the password, and find themselves locked out.
You don't need your hard drive if all your files have been secretly moved to OneDrive taps forehead.
All 5 GB of them. Wait ...
Then somebody can sell new devices to them and M$ can sell new windows with it.
Win-win-win-win....
load more comments
(5 replies)
This one is especially fun on windows 11 home. At least it was some time ago on some machine i worked on. Since home doesn't have the bitlocker settings fully you cannot disable bitlocker encryption. It would also auto enable sometimes even if you don't have a microsoft account, which means it doesn't back the key up anywhere. Not sure it does that anymore, i hope not, but i expect a lot of people to lose their data to this crap in the future.
In either case at least i find that full disk encryption on most machines is just overkill as it only really protects in the scenario the device is stolen and someone tries to pull data off of it that way. But in the vast majority of cases when people get their data stolen its done with malware, which disk encryption does /nothing/ to prevent.
In the scenario in which your computer is forgotten or stolen, it would offer some comfort knowing that the data on the computer is not accessible.
We have a "policy" in our household that everything that has personal data should be encrypted. That is just for cases in which we lose the device or it gets stolen. That makes it a purely financial loss, and not as invasive / uncomfortable.
But on the other hand my household are not average users. So it might not work well for other people.
Do the average Windows user really need BitLocker device encryption? They don't. The only users who need BitLocker are business' and government workers.
Also 99% of Windows users are going to get locked out of their computers.
load more comments
(2 replies)
This will make people angry in waves as updates break bitlocker and cohorts don't have their key, a new one each time
Can't wait to get a million tickets about this. -_-
If you're getting tickets, I assume you mean at work? What's a business doing running Home and no Domain? This isn't an issue on machines joined to a domain.
Rofl.
The vast majority of small business do run on Home have no clue wtf a domain is. Probably share files via google drive rather than a file server.
[…] device encryption will be enabled by default when you first sign in or set up a device with a Microsoft account or work / school account.
For devices with a TPM, this has literally been the case since Windows 10 1803 back in 2018.
But that's not the case for Windows Home, is it? The FDE setting just takes me to a page to upgrade to Pro. My laptop does have TPM.
Cool, let all the dumb fuck time vampires suffer. I won't be helping anyone with shit. "Shoulda bought a Mac"
load more comments
(2 replies)
Clownstrike taught them nothing..
What does Crowdstrike have to do with Bitlocker?
Clearly you didn't do any machine recovery during that fiasco or you wouldn't ask. When the machines crashed the only fix was to get in and delete the offending file, but as Windows wouldn't load up you had to unlock the drive to get in with a working OS.
I think this is a step in the right direction. Everyone can lose a portable device or it can get stolen, so protecting the potentially sensitive data is important.
I think what people are complaining about is not full-disk encryption itself, but the fact that people are not used to being responsible for their cryptographic keys.
I think we should educate people regarding this responsibility. We did it with regular keys we use to unlock our homes.
Are they even saved by default in an MS account? Because if I'd link one, I would expect them to at least prompt me
load more comments
(3 replies)
view more: next ›