>
> > Bitlocker and Truecrypt aren't the ONLY FDE and removable media
> platforms that are out there. While TC offered incredible portability
> of the data (since it was all file containers that could be moved
> between platforms easily), as far as encryption itself goes, Bit
encryption itself goes, Bitlocker should provide the same
> level of security as TC for when your devices fall into the wrong hands. You
> an also leverage products from McAfee, Symantec, and CheckPoint. YMMV.
>
>
> To use Bitlocker “properly” in a major organization your be
organization. They’re just not that dumb.
Mike
From: Justin Bull [mailto:m...@justinbull.ca]
Sent: Thursday, May 29, 2014 18:02
To: Mike Cramer
Cc: fulldisclosure@seclists.org; secuip
Subject: RE: [FD] TrueCrypt?
Closed source and Microsoft is notoriously known to play ball with LEO and
You need to ask yourself a question:
How well do you know coding and encryption handling to ensure that your
software doesn't have unintentional back doors and/or information
disclosure? This is a serious question because it requires serious answers
when you're dealing with cryptography. The weake
30, 2014 19:28
To: Mike Cramer
Cc: Alton Blom; fulldisclosure@seclists.org; Stefan Kanthak
Subject: Re: [FD] Beginners error: iTunes for Windows runs rogue program
C:\Program.exe when opening associated files
The practice of creating persistent services from temp directories is
"gene
at SOE
deployment time would be overwritten later by the vendor.
-Mike
From: Alton Blom [mailto:alton...@gmail.com]
Sent: Wednesday, April 30, 2014 19:02
To: Mike Cramer
Cc: Stefan Kanthak; fulldisclosure@seclists.org
Subject: Re: [FD] Beginners error: iTunes for Windows runs rogue program
likely to dump their executable
in C:\Windows than they are to run a service from C:\Windows\Temp\My
Application\myservice.exe", which would allow you to use "My.exe" to elevate
privilege.
-Mike
-Original Message-
From: Brandon Perry [mailto:bperry.volat...@gmail.com]
[mailto:alton...@gmail.com]
Sent: Wednesday, April 30, 2014 18:18
To: Mike Cramer
Cc: Stefan Kanthak; fulldisclosure@seclists.org
Subject: Re: [FD] Beginners error: iTunes for Windows runs rogue program
C:\Program.exe when opening associated files
Hi Mike,
It's probalby better seen as a w
I would like to know how this is a vulnerability.
In order to write to the root of C:\, you need elevated privileges in
Windows. Once someone gains elevated access, what does creating
"C:\program.exe" offer them that they couldn't otherwise obtain?
I have never actually seen malware take advantag
