this post was submitted on 14 Aug 2024
3 points (100.0% liked)

Technology

60074 readers
3541 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] jeena@piefed.jeena.net 3 points 4 months ago (7 children)

Perfect, this will finally lock out all the old people of their devices because they forget their bitlocker password :D

[–] 30p87@feddit.org 2 points 4 months ago (2 children)

I guess they'll use TPM. I'm so excited to tell half of my "clients" (all seniors in the village) that they are fucked because their Laptop died.

[–] wizardbeard@lemmy.dbzer0.com 1 points 4 months ago (1 children)

Yeah, this makes sense for corporate environments with keys backed up to a centralized location like Active Directory. Not for consumers with no reasonable way to keep some key like this in a safe place as a "break glass in case of emergency" option.

[–] Romkslrqusz@lemm.ee 2 points 4 months ago

It backs up to the Microsoft Account

Still, some people create an @outlook.com email, set up no recovery options, forget the password, and find themselves locked out.

[–] lemmyvore@feddit.nl 1 points 4 months ago (1 children)

You don't need your hard drive if all your files have been secretly moved to OneDrive taps forehead.

[–] mrvictory1@lemmy.world 1 points 4 months ago

All 5 GB of them. Wait ...

[–] NeoNachtwaechter@lemmy.world 1 points 4 months ago

Then somebody can sell new devices to them and M$ can sell new windows with it.

Win-win-win-win....

load more comments (5 replies)
[–] Vahenir@lemmy.world 2 points 4 months ago (1 children)

This one is especially fun on windows 11 home. At least it was some time ago on some machine i worked on. Since home doesn't have the bitlocker settings fully you cannot disable bitlocker encryption. It would also auto enable sometimes even if you don't have a microsoft account, which means it doesn't back the key up anywhere. Not sure it does that anymore, i hope not, but i expect a lot of people to lose their data to this crap in the future.

In either case at least i find that full disk encryption on most machines is just overkill as it only really protects in the scenario the device is stolen and someone tries to pull data off of it that way. But in the vast majority of cases when people get their data stolen its done with malware, which disk encryption does /nothing/ to prevent.

[–] MoonlightFox@lemmy.world 0 points 4 months ago

In the scenario in which your computer is forgotten or stolen, it would offer some comfort knowing that the data on the computer is not accessible.

We have a "policy" in our household that everything that has personal data should be encrypted. That is just for cases in which we lose the device or it gets stolen. That makes it a purely financial loss, and not as invasive / uncomfortable.

But on the other hand my household are not average users. So it might not work well for other people.

[–] hal_5700X@sh.itjust.works 1 points 4 months ago (2 children)

Do the average Windows user really need BitLocker device encryption? They don't. The only users who need BitLocker are business' and government workers.

Also 99% of Windows users are going to get locked out of their computers.

load more comments (2 replies)
[–] zecg@lemmy.world 1 points 4 months ago* (last edited 4 months ago)

This will make people angry in waves as updates break bitlocker and cohorts don't have their key, a new one each time

[–] LaunchesKayaks@lemmy.world 1 points 4 months ago (1 children)

Can't wait to get a million tickets about this. -_-

[–] BearOfaTime@lemm.ee 0 points 4 months ago (1 children)

If you're getting tickets, I assume you mean at work? What's a business doing running Home and no Domain? This isn't an issue on machines joined to a domain.

[–] freeman@sh.itjust.works 1 points 4 months ago

Rofl.

The vast majority of small business do run on Home have no clue wtf a domain is. Probably share files via google drive rather than a file server.

[–] Romkslrqusz@lemm.ee 0 points 4 months ago (1 children)

[…] device encryption will be enabled by default when you first sign in or set up a device with a Microsoft account or work / school account.

For devices with a TPM, this has literally been the case since Windows 10 1803 back in 2018.

[–] bandwidthcrisis@lemmy.world 1 points 4 months ago

But that's not the case for Windows Home, is it? The FDE setting just takes me to a page to upgrade to Pro. My laptop does have TPM.

[–] Shadywack@lemmy.world 0 points 4 months ago (2 children)

Cool, let all the dumb fuck time vampires suffer. I won't be helping anyone with shit. "Shoulda bought a Mac"

load more comments (2 replies)
[–] db2@lemmy.world 0 points 4 months ago (1 children)

Clownstrike taught them nothing..

[–] stephen01king@lemmy.zip 0 points 4 months ago (1 children)

What does Crowdstrike have to do with Bitlocker?

[–] db2@lemmy.world 1 points 4 months ago

Clearly you didn't do any machine recovery during that fiasco or you wouldn't ask. When the machines crashed the only fix was to get in and delete the offending file, but as Windows wouldn't load up you had to unlock the drive to get in with a working OS.

[–] robber@lemmy.ml 0 points 4 months ago (1 children)

I think this is a step in the right direction. Everyone can lose a portable device or it can get stolen, so protecting the potentially sensitive data is important.

I think what people are complaining about is not full-disk encryption itself, but the fact that people are not used to being responsible for their cryptographic keys.

I think we should educate people regarding this responsibility. We did it with regular keys we use to unlock our homes.

[–] Appoxo@lemmy.dbzer0.com 1 points 4 months ago (3 children)

Are they even saved by default in an MS account? Because if I'd link one, I would expect them to at least prompt me

load more comments (3 replies)
load more comments
view more: next ›