Encrypting folder with EFS

Discussion in 'Windows 7' started by kopout, Jan 11, 2015.

  1. kopout

    kopout MDL Novice

    Jan 11, 2015
    1
    0
    0
    i have 100 gb worth folder which i have encrypted so other users can't see it using another OS. but i have only encrypted main folder not subfolders since it takes so many hours to complete.

    encrypting a single main folder was very quick but should that be enough to deny others accessing this folder?
     
  2. Aninvitedsoul

    Aninvitedsoul MDL Senior Member

    Sep 14, 2012
    421
    110
    10
    #2 Aninvitedsoul, Jan 11, 2015
    Last edited: Jan 11, 2015
    Really,no one can confirm that,since nothing is 100% guaranteed.Nothing is perfect. :nono3:


    Edit:please Google it and you'll find some answers.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. ihatemdl

    ihatemdl MDL Novice

    Mar 3, 2013
    12
    6
    0
    No

    Your system may already be compromised, if you have both efs components stored on disk (cer/pfx). In this case I suggest you get a fast USB Stick and move all files onto it. Disadvantage you have to plug in/unplug each time. Complete shutdown required so nothing resides in memory, all backup/filerecovery have to be deactivated ....

    If i were you i d start from scratch:

    1) Install from Recov Agent ONLY cer (create a Recov Agent from a Windows which gets deleted having 2 files cer+pfx)
    2) Write protect systOS em (Faronics, or MS), create DATA Partition separate
    3) Create efs user by encrypting a tiny file, export both cer and pfx to a stick then reboot
    4) Unprotect system, install/import user cer (only THAT), reboot protected

    5) Before encrypting new files on DATA Partition import pfx on write-protected c:/, upon reboot it will be gone. In case of "error" use pfx from Recov Agent

    To my knowledge i doubt such a system can be easily "Cracked". But yes, there s a trade-off between convenience and security ... it all depends how sensitive your DATA is ;)