From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,85034d1ac78a66eb X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2002-02-28 09:56:20 PST Message-ID: <3C7E6E48.2000402@users.sf.net> From: Dave Poirier User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8) Gecko/20020204 X-Accept-Language: en-us MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: Ada Operating System References: <3C7CC36F.FF6848C8@disca.upv.es> <3C7E3C70.665A2687@despammed.com> <3C7E4DE6.F184C408@cfmu.eurocontrol.be> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Date: Thu, 28 Feb 2002 12:52:08 -0500 NNTP-Posting-Host: 65.94.42.23 X-Complaints-To: abuse@sympatico.ca X-Trace: news20.bellglobal.com 1014918727 65.94.42.23 (Thu, 28 Feb 2002 12:52:07 EST) NNTP-Posting-Date: Thu, 28 Feb 2002 12:52:07 EST Organization: Bell Sympatico Path: archiver1.google.com!news1.google.com!newsfeed.stanford.edu!news-spur1.maxwell.syr.edu!news.maxwell.syr.edu!tor-nx1.netcom.ca!news1.tor.metronet.ca!webster!nf1.bellglobal.com!nf2.bellglobal.com!news20.bellglobal.com.POSTED!not-for-mail Xref: archiver1.google.com comp.lang.ada:20586 Date: 2002-02-28T12:52:08-05:00 List-Id: chris.danx wrote: > "Ian Wild" wrote in message > news:3C7E4DE6.F184C408@cfmu.eurocontrol.be... > >>"chris.danx" wrote: >> >> >>>Joking aside... you could violate NTFS integrity and its security model, >>> > so > >>>it's probably not a good idea especially if the program was boot from a >>>floppy. >>> >>What sort of "security model" is predicated on the >>bad guys not having a bootable floppy? >> > > I don't understand exactly what your asking, but if you mean what security > model does NTFS have when someone boots from a floppy, then none -- it's > just a bunch of ones and zeros on a disk. NTFS security model has to be > enforced by the operating system in some manner, so an OS has to be present > to ensure the 'correctness' of the FS and enforce security. The point was > that NTFS and windows have a security model which would be circumvented by > such a program, hence it's probably not a good idea to write such a program. > The integrity of the NTFS volume could be compromised and the users' data no > longer secure (as secure as the OS allows). > > > Chris.0 > 00000 This seems to be the only technique Microsoft knows, Security by obstruction. They seriously believe that by hiding the "how" you do it, you will make your file system secure. If they would even give it some serious thought they would know the only way to be secure on the long run is to use encryption. Using a proper algorithm they could give away the algorithm as well as the exact details of how the files are stored on disk, after all it would just make it easier to create recovery tools.