Bugtraq: Re: Mac OS X stores login/Keychain/FileVault passwords on disk

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Mac OS X stores login/Keychain/FileVault passwords on disk

From: Theo Van Dinter <felicity () kluge net>
Date: Thu, 15 Jul 2004 16:01:37 -0400

On Mon, Jul 12, 2004 at 11:05:45AM +0200, Adi Kriegisch wrote:

So if you loose your powerbook someone might boot it in "target disk mode" and 
will be able to get your password!


FWIW: You can enable the security features of OpenFirmware on modern Apple
hardware, such that things like "boot from CD", "target disk mode", etc,
are all disabled.

It adds at least another barrier for people to have to get around to
get your data.  More information is available via a Google search,
but the following URL is a pretty good reference:

http://www.mactipsandtricks.com/tips/display.lasso?mactip=118

-- 
Randomly Generated Tagline:
I'm a white male, aged 18 to 49.  Everyone listens to me!  No matter
 how dumb my suggestions are.
 
                -- Homer Simpson
                   Lisa vs. Malibu Stacy

Attachment: _bin
Description:

By Date By Thread

Current thread:

Re: Mac OS X stores login/Keychain/FileVault passwords on disk Adi Kriegisch (Jul 15)
- Re: Mac OS X stores login/Keychain/FileVault passwords on disk Theo Van Dinter (Jul 17)
  - Re: Mac OS X stores login/Keychain/FileVault passwords on disk Adi Kriegisch (Jul 24)
- Re: Mac OS X stores login/Keychain/FileVault passwords on disk Ray Slakinski (Jul 17)
- <Possible follow-ups>
- Re: Mac OS X stores login/Keychain/FileVault passwords on disk johnny (Jul 17)
- Re: Mac OS X stores login/Keychain/FileVault passwords on disk Kurt Seifried (Jul 18)
  - Re: Mac OS X stores login/Keychain/FileVault passwords on disk Chris Boyd (Jul 19)