EFS encrypts the file and adds a header for the owner and for the recovery agent(s) which contains the public key used for encryption. Only the owner or recovery agent(s) private key can decrypt the file.
In a domain, the Administrator account for the forest root domain is the recovery agent. Additional recovery agents can be assigned through the domain group policy object. The certificates are self-signed if no CA (Certificate Authority) is configured. Any recovery agent should export the private key to removable media and lock it up in a secure place and keep another secured copy off site. Delete the copy from the forest root's first domain controller.
On a stand alone server or workstation (Not a member of a domain), a self signed certificate is generated for use and the local Administrator account is the recovery agent. The private keys for the administrator and your own user account can be exported to a floppy or other removable media and deleted off the computer. Another copy should be kept in another secured location in case the first gets burned down, stolen, corrupt, etc. Make sure the floppy isn't in the laptop carrying case, otherwise, the theif will have your private key when he takes the whole bag.
Another important thing to note is that the document is decrypted in memory and a clear text copy isn't put on the drive. A hacker going through your drive, looking for deleted temp files will be wasting time. If you want to be extra paranoid, configure windows to clear the page file at shutdown.
If you really want to learn this stuff, read this book. I found it to be extremely educational and was the only book to explain certificate server to me effectively. Click Here
I often wonder the same thing. I'm atheist and I roll my eyes every time he mentions god and I feel convinced that he's using his religion a little. I then remember the tears streaming down his face on 9/11 and I can't help but believe his sincerity. It's not too hard to imagine that a humanitarian god would back us up in our fight against terrorism. The same god, I imagine, would also straighten things out in N. Korea, Iran, Saudi Arabia, and other places where human rights are ignored.
I believe the point is that Iraq is not an Islamic caliphate.
I'll repeat what the article I referred to had to say.
"He's just using religion to serve Saddam Hussein's purposes," said Mowfaq Fattohi, a Prague-based member of the opposition Iraqi National Congress's central council, and himself a Chaldean Catholic.
The point I was making is that Saddam has no religion. He uses religion to influence people. Look at the way he calls upon Muslims of the world to band together and fight the U.S. and even calls it a holy war. This is a man that plasters pictures of himself everywhere, despite the Muslim belief that only God should be celebrated. I work closely with a very devout Muslim. That is how she explained it to me when her birthday passed without celebration.
Well, there are different groups with different goals.
We make alliances to fight the enemies army. Saddam makes alliances with terrorists who target civilians. There's a huge difference.
What people don't seem to notice, Saudi Arabia [msnbc.com] sponsors attacks [go.com] against the U.S [cnn.com]. Doesn't it bother anyone that the 9/11 hijackers were Saudis? Wouldn't it be logical to attack Saudi Arabia then?
All three of your links regarding Saudi Arabia are in relation to the same story. There's a possibility that the wife of the Saudi ambassador to Washington provided money to the terrorists who flew the planes. We investigated and found no links. It says so in the articles you linked to. While I don't like the human rights issues in Saudi Arabia, their government is not a threat to the international community. In 1994, they revoked the citizenship of Bin Laden. In fact, since 9/11, Saudi Arabia has arrested several al-Qaeda fighters. Oil is another major factor since most of our imported oil comes from Saudi Arabia. Without it, our economy would suffer severely. I'm sure if they were as ambitious as Saddam, our relationship would be quite different.
Diplomacy has been proven throughout history to do nothing to stop terrorism. Saddam is not giving up his WMD programs and he is going to do whatever it takes to hide them. The whole point of taking him out without years of additional delays is to ensure that he doesn't aid terrorists by giving them these weapons. Based off Saddam's history of actions, he would have no qualms about doing this.
I was wrong about the comma. Leave it in if you're going to keep the sig.:)
Yeah, it sucks and it's boring. But society places a very high value on college and your mother can't afford to send you. You'll have to work your ass off to earn a scholarship. Affirmative Action is working against you, so you'll need to work that much harder to compete with the other white males!
That really is too bad. In tough economic times, companies are looking to ways to decrease support costs. They just don't care about keeping jobs in the U.S. to help reverse the economic downtrend. They only care about their bottom line and giving the shareholders the reacharound.
Outsourcing to India seems to be the most popular trend. Veritas does it for Backup Exec support email. Microsoft is gradually moving their home OS support to India as well. They're not doing it in one big move because the media would love to bring it to the publics attention.
"Did you know that Iraq's foreign secretary, Tariq Aziz, is a Christian?"
I know it's a bit off topic to talk about your signature, but I'm going to anyway.
Tariq Aziz is not a Christian. He just uses the title to manipulate gullible people and their desire to prevent large, dominantly Christian nations from attacking Iraq. If you're going to keep the sig, please remove that second comma.
-Lucas
Here's a bumper sticker that needs to be made:
Intellectual Thinkers...No Attack Iraq?
You Can Prevent Terrorist Attacks With Words!
I did tech support for a mac shop for one year, the local ISP for a year and a half, and Microsoft NT networking support for a year and 8 months.
Here's the most clueless call I ever had. It was a call I had doing tech support for a local ISP in Tucson (AZStarnet.com) in 1999 or 2000.
Me: What operating system are you using?
Customer: Windows 98.
Me: Click on the start menu.
Customer: There is no start menu.
Me: Are you sure it's not a Macintosh?
Customer: No, it's Windows 98!
Me: Hit the key on your keyboard with the Microsoft logo.
Customer: I don't have any keys like that.
Me: You're POSITIVE this isn't a Macintosh!?!
Customer: No! It's Windows 98!!!
Me: Move the cursor around the edges of the screen and see if the cursor changes to something different like an arrow or something.
Customer: Nope, it doesn't change.
Me: and you saw no Start button while doing so?
Customer: No!
Me: Do you have a cute little picture in the upper left corner of the screen?
Customer: Yeah!
Me: Is it a picture of an apple?
Customer: Yeah! *sounding real excited now*
Me: Mam, you are using a Macintosh.
Here's the funniest thing ever said to me. It was a DSL customer that was having issues with line noise and his db quality. This was right when USWest and Quest merged.
"Dealing with Qwest is like trying to shove a worm up a cats ass."
In all seriousness though, I would like to see a scan of the magazine before I believe this interview is real. Also, I would like to say that most calls are for help, not a bug fix. When I was doing the NT Server support, 99% of the calls were due to misconfiguration. Given, 15% of those were things that could have been avoided if the Windows programmers thought like Macintosh programmers and prevented users from making simple mistakes that wreak havoc on a network. When there was a bug, it got sent higher up and eventually a hotfix was released to fix the bug. I've dealt with a LOT of companies tech support and Microsoft is one of the best. No quotas and random customer surveys keep you working hard to make the customer happy. For $245 the customer gets their problem fixed. I would refund calls less than 15 minutes or so in length. I was free to do this on my own! Other calls would take 40+ hours of work and research, fixing a gigantic corporate network. $245 is dirt cheap for that amount of work. Support isn't there to make money. Support is a money pit used to support the client base and keep them coming back. Microsoft KNOWS that good support will keep the customers coming back.
Thanks for the link. To respond to your comment, it is offensive. We're at war and al-Qa'eda is the enemy.:)
I especially liked this part.
At the same time, the law of armed conflict absolutely prohibits the killing of noncombatants, except as a matter of collateral damage where civilians may be killed ancillary to the lawful attack on a military objective. Targetting civilians specifically as a military objective in time of war is illegal and criminal.
I guess I can use it to argue that civilian casualties are avoided, but excusable when they occur.
Wow, thanks for that link. Wouldn't this mean that nothing illegal happened to Kevin? Sure, I think the law allowing the practice has been abused, but until the law is reformed, it's all legal. I guess you're right to say that Kevin isn't the first. Those examples given in the article are a great reference that I'll have to remember. I wonder if Kevin would be able to go after that NY Times writer for the false statements. What exactly did the prosecution bring up in court to convince the judge that he was a danger? Hmm.
-Lucas
Re:Not the only person in US history ....
on
Kevin Mitnick Answers
·
· Score: 0, Flamebait
Really to who? A judge? Which Judge? Is there a jury? It's all moot. All it takes is for the president to say so.
How many times do I have to repeat myself. Some evidence is required! Also, did you not see the next line which says that I believe there should be a higher requirement to declare somebody an enemy? The point I was making is that Bush didn't do anything Illegal by declaring him an enemy. If you're like me and want the law changed, start lobbying and quit your bitching.
Yadda, Yadda, Yadda, flag, apple pie, chevrolet. I say we are moving backwards. The fact of the matter is that I have less freedom today then I did before. I imagine that's pretty much a win for the terrorists.
You fucking bigot. Let me change your statement around and you can see what I mean. Yadda, Yadda, Yadda, burritos, tacos, sombreros.
I do agree with your statement about losing freedom for the sake of safety. Again, start lobbying and quit your passive bitching. This discussion is supposed to be about the accusation that we are not observing citizens rights.
I fail to see the distinction.
The difference is that it's a lot more difficult to confirm the identities of everyone in the car from an unmanned aircraft high in the sky.
Yes. It's now legal to assasinate US citizens if they are abroad.
Where do you get this shit? The person they were assassinating was not a US citizen. You seem a bit uneducated about what happened in Yemen. Read this.
Yes because in real life innocent people are never accused of crimes or found guilty of the. Innocent people also have never been to jail or put on death row. Because in america we are infallible and our president is all knowing. After all god himself chose this country and appointed this president and everybody knows eating apple pies and driving chevrolets makes you infallible.
You're stretching my statement a bit too far, don't you think? I'm simply stating that it's a little unusual for innocent people to be driving around with generals of worldwide terrorist organizations.
Oops you just contradicted yourself. Did the guy deserve it or was he there by accident? Oh well it's OK to kill american citizens with a missle if it's an honest mistake. We may be infallible but the CIA operatives in yemen probably were not eating apple pie and driving chevrolets. That's why they made this honest mistake.
I was just acknowledging that there's a chance that the guy was doing nothing wrong. Regardless, he should have been tried in the states, etc. If it was an honest mistake, then we move on and do what we can to learn from it and try to prevent it from happening again. Like I said in my previous post, we're not perfect. Actually, you're the one that seems to think America is infallible and perfect.
Really? I don't think so. Here I'll hit you with this one too. There is no real difference between the conctration camps set up by hitler and the contration camps set up by bush. Ok maybe the conditions are better (but then again how would any of us know) but the idea is the same. Round people up and send them away to a distant concentration camp to be "interrogated".
Thanks for a good example of prejudism towards the United States of America.
America the Evil Empire. Give me a fucking break. Yeah, Saddam is a wonderful leader for his people and he loves to play nice with his neighbors and should be allowed to carry a huge stock of WMD against the will of the UN. Condoning the 9/11 trajedy should say a lot about his viewpoint on conventional war. I don't care what nation gets innocent civilians killed. It's wrong and should be avoided. Before you comment on civilian casualties we have caused, remember that there will be honest mistakes that are regretted. I'm talking about dictators that think civilian casualties are a great way to win a war.
Do you really think we want to go to war? If he disarmed, we would love to bring our brothers, sisters, and fathers back home! Unfortunately, he hasn't disarmed yet.
-Lucas
The whole point is that George Bush can make anybody disappear at anytime by simply pointing at their name and saying the words "enemy combatant". That's all it takes.
Not true. To label a citizen as an enemy combatant, you must show "some evidence". Personally, I think the requirements for declaring someone an enemy combatant should be a little higher. The fact remains though that he was legally declared an enemy combatant. Check out this link for some more information.
Terrorism presents a very tough battleground where civilians are used as camoflauge instead of trees. There will be a few mistakes. We either accept that there will be grey areas in the law that allow these mistakes to happen or our executive branch can be touchy feely and become ineffective and a joke to the enemies. Society is young. America is young. I'm proud to be an American and I'm impressed by the progress we've made so far to evolve.
If they are not in the US they will be assassinated by the CIA like the guy who got a missle shot at him in Yemen (that guy was also an american citizen).
The guys in Yemen were hit by a hellfire from a predator aircraft. There wasn't an operative sitting in the car with a gun executing the guys. The operation was legal under U.S. law. The target deserved it and the American with him probably did too. Yeah, he could have been innocent of providing assistance to terrorists...in a movie. Supposedly, they did not know that an American citizen was with him. That's an honest mistake.
This is no different then what happens in south america. The people the govt doesn't like disapear.
This is an extremely perverted comparison. Again, too many conspiracy theory movies that portray our goverment as evil. I'm not even going to bother presenting reference material.
-Lucas
Re:Not the only person in US history ....
on
Kevin Mitnick Answers
·
· Score: 3, Informative
Thanks for the names. Unfortunately, those two don't count.
Here's a link for Padilla. Padilla is an enemy combatant and loses certain rights. Here's an explanation of how it applies to Padilla.
Yaser Esam Hamdi's citizenship is in limbo. His argument is based off the fact that he was born on US soil. His citizenship status is pretty much undecided until the 14th Amendment is clarified.
Ahem, the key word here is "citizen". Please give links to articles talking about those two citizens. I'm not saying they're non-existent, I just want something to reference instead of "JoeBuck said so on/."
Slashdot Mirror
In a domain, the Administrator account for the forest root domain is the recovery agent. Additional recovery agents can be assigned through the domain group policy object. The certificates are self-signed if no CA (Certificate Authority) is configured. Any recovery agent should export the private key to removable media and lock it up in a secure place and keep another secured copy off site. Delete the copy from the forest root's first domain controller.
On a stand alone server or workstation (Not a member of a domain), a self signed certificate is generated for use and the local Administrator account is the recovery agent. The private keys for the administrator and your own user account can be exported to a floppy or other removable media and deleted off the computer. Another copy should be kept in another secured location in case the first gets burned down, stolen, corrupt, etc. Make sure the floppy isn't in the laptop carrying case, otherwise, the theif will have your private key when he takes the whole bag.
Another important thing to note is that the document is decrypted in memory and a clear text copy isn't put on the drive. A hacker going through your drive, looking for deleted temp files will be wasting time. If you want to be extra paranoid, configure windows to clear the page file at shutdown.
For more reading:
Click Here
If you really want to learn this stuff, read this book. I found it to be extremely educational and was the only book to explain certificate server to me effectively.
Click Here
-Lucas
Windows NT and 2000 MCSE
I feel better now.
-Lucas
LOL! That's right up there with:
gawk; talk; date; wine; grep; touch; unzip; touch; gasp; finger; gasp; mount; fsck; more; yes; gasp; umount; make clean; make mrproper; sleep
-Lucas
-Lucas
-Lucas
-Lucas
-Lucas
I'll repeat what the article I referred to had to say.
"He's just using religion to serve Saddam Hussein's purposes," said Mowfaq Fattohi, a Prague-based member of the opposition Iraqi National Congress's central council, and himself a Chaldean Catholic.
The point I was making is that Saddam has no religion. He uses religion to influence people. Look at the way he calls upon Muslims of the world to band together and fight the U.S. and even calls it a holy war. This is a man that plasters pictures of himself everywhere, despite the Muslim belief that only God should be celebrated. I work closely with a very devout Muslim. That is how she explained it to me when her birthday passed without celebration.
-Lucas
We make alliances to fight the enemies army. Saddam makes alliances with terrorists who target civilians. There's a huge difference.
What people don't seem to notice, Saudi Arabia [msnbc.com] sponsors attacks [go.com] against the U.S [cnn.com]. Doesn't it bother anyone that the 9/11 hijackers were Saudis? Wouldn't it be logical to attack Saudi Arabia then?
All three of your links regarding Saudi Arabia are in relation to the same story. There's a possibility that the wife of the Saudi ambassador to Washington provided money to the terrorists who flew the planes. We investigated and found no links. It says so in the articles you linked to. While I don't like the human rights issues in Saudi Arabia, their government is not a threat to the international community. In 1994, they revoked the citizenship of Bin Laden. In fact, since 9/11, Saudi Arabia has arrested several al-Qaeda fighters. Oil is another major factor since most of our imported oil comes from Saudi Arabia. Without it, our economy would suffer severely. I'm sure if they were as ambitious as Saddam, our relationship would be quite different.
-Lucas
Remember that terrorism is when civilians are the target. Here's a good definition.
Here's Iraq's ambassador to the UN defending the payout to Palestinian bombers.
Here's some additional reading material on other terrorist groups Iraq supports.
Diplomacy has been proven throughout history to do nothing to stop terrorism. Saddam is not giving up his WMD programs and he is going to do whatever it takes to hide them. The whole point of taking him out without years of additional delays is to ensure that he doesn't aid terrorists by giving them these weapons. Based off Saddam's history of actions, he would have no qualms about doing this.
I was wrong about the comma. Leave it in if you're going to keep the sig. :)
-Lucas
-Lucas
-Lucas
Outsourcing to India seems to be the most popular trend. Veritas does it for Backup Exec support email. Microsoft is gradually moving their home OS support to India as well. They're not doing it in one big move because the media would love to bring it to the publics attention.
-Lucas
-Lucas
I know it's a bit off topic to talk about your signature, but I'm going to anyway.
Tariq Aziz is not a Christian. He just uses the title to manipulate gullible people and their desire to prevent large, dominantly Christian nations from attacking Iraq. If you're going to keep the sig, please remove that second comma.
-Lucas
Here's a bumper sticker that needs to be made:
Intellectual Thinkers...No Attack Iraq?
You Can Prevent Terrorist Attacks With Words!
Here's the most clueless call I ever had. It was a call I had doing tech support for a local ISP in Tucson (AZStarnet.com) in 1999 or 2000.
Me: What operating system are you using?
Customer: Windows 98.
Me: Click on the start menu.
Customer: There is no start menu.
Me: Are you sure it's not a Macintosh?
Customer: No, it's Windows 98!
Me: Hit the key on your keyboard with the Microsoft logo.
Customer: I don't have any keys like that.
Me: You're POSITIVE this isn't a Macintosh!?!
Customer: No! It's Windows 98!!!
Me: Move the cursor around the edges of the screen and see if the cursor changes to something different like an arrow or something.
Customer: Nope, it doesn't change.
Me: and you saw no Start button while doing so?
Customer: No!
Me: Do you have a cute little picture in the upper left corner of the screen?
Customer: Yeah!
Me: Is it a picture of an apple?
Customer: Yeah! *sounding real excited now*
Me: Mam, you are using a Macintosh.
Here's the funniest thing ever said to me. It was a DSL customer that was having issues with line noise and his db quality. This was right when USWest and Quest merged.
"Dealing with Qwest is like trying to shove a worm up a cats ass."
In all seriousness though, I would like to see a scan of the magazine before I believe this interview is real. Also, I would like to say that most calls are for help, not a bug fix. When I was doing the NT Server support, 99% of the calls were due to misconfiguration. Given, 15% of those were things that could have been avoided if the Windows programmers thought like Macintosh programmers and prevented users from making simple mistakes that wreak havoc on a network. When there was a bug, it got sent higher up and eventually a hotfix was released to fix the bug. I've dealt with a LOT of companies tech support and Microsoft is one of the best. No quotas and random customer surveys keep you working hard to make the customer happy. For $245 the customer gets their problem fixed. I would refund calls less than 15 minutes or so in length. I was free to do this on my own! Other calls would take 40+ hours of work and research, fixing a gigantic corporate network. $245 is dirt cheap for that amount of work. Support isn't there to make money. Support is a money pit used to support the client base and keep them coming back. Microsoft KNOWS that good support will keep the customers coming back.
-Lucas
I just sent an email to the other Julian Taylor I found with a sun address.
250 Julian.Taylor@Central.Sun.COM... Recipient ok
I guess we'll see what he says.
-Lucas
I especially liked this part.
At the same time, the law of armed conflict absolutely prohibits the killing of noncombatants, except as a matter of collateral damage where civilians may be killed ancillary to the lawful attack on a military objective. Targetting civilians specifically as a military objective in time of war is illegal and criminal.
I guess I can use it to argue that civilian casualties are avoided, but excusable when they occur.
-Lucas
-Lucas
How many times do I have to repeat myself. Some evidence is required! Also, did you not see the next line which says that I believe there should be a higher requirement to declare somebody an enemy? The point I was making is that Bush didn't do anything Illegal by declaring him an enemy. If you're like me and want the law changed, start lobbying and quit your bitching.
Yadda, Yadda, Yadda, flag, apple pie, chevrolet. I say we are moving backwards. The fact of the matter is that I have less freedom today then I did before. I imagine that's pretty much a win for the terrorists.
You fucking bigot. Let me change your statement around and you can see what I mean. Yadda, Yadda, Yadda, burritos, tacos, sombreros.
I do agree with your statement about losing freedom for the sake of safety. Again, start lobbying and quit your passive bitching. This discussion is supposed to be about the accusation that we are not observing citizens rights.
I fail to see the distinction.
The difference is that it's a lot more difficult to confirm the identities of everyone in the car from an unmanned aircraft high in the sky.
Yes. It's now legal to assasinate US citizens if they are abroad.
Where do you get this shit? The person they were assassinating was not a US citizen. You seem a bit uneducated about what happened in Yemen. Read this.
Yes because in real life innocent people are never accused of crimes or found guilty of the. Innocent people also have never been to jail or put on death row. Because in america we are infallible and our president is all knowing. After all god himself chose this country and appointed this president and everybody knows eating apple pies and driving chevrolets makes you infallible.
You're stretching my statement a bit too far, don't you think? I'm simply stating that it's a little unusual for innocent people to be driving around with generals of worldwide terrorist organizations.
Oops you just contradicted yourself. Did the guy deserve it or was he there by accident? Oh well it's OK to kill american citizens with a missle if it's an honest mistake. We may be infallible but the CIA operatives in yemen probably were not eating apple pie and driving chevrolets. That's why they made this honest mistake. I was just acknowledging that there's a chance that the guy was doing nothing wrong. Regardless, he should have been tried in the states, etc. If it was an honest mistake, then we move on and do what we can to learn from it and try to prevent it from happening again. Like I said in my previous post, we're not perfect. Actually, you're the one that seems to think America is infallible and perfect.
Really? I don't think so. Here I'll hit you with this one too. There is no real difference between the conctration camps set up by hitler and the contration camps set up by bush. Ok maybe the conditions are better (but then again how would any of us know) but the idea is the same. Round people up and send them away to a distant concentration camp to be "interrogated".
LOL! You sure have a hyperactive imagination!
-Lucas
America the Evil Empire. Give me a fucking break. Yeah, Saddam is a wonderful leader for his people and he loves to play nice with his neighbors and should be allowed to carry a huge stock of WMD against the will of the UN. Condoning the 9/11 trajedy should say a lot about his viewpoint on conventional war. I don't care what nation gets innocent civilians killed. It's wrong and should be avoided. Before you comment on civilian casualties we have caused, remember that there will be honest mistakes that are regretted. I'm talking about dictators that think civilian casualties are a great way to win a war.
Do you really think we want to go to war? If he disarmed, we would love to bring our brothers, sisters, and fathers back home! Unfortunately, he hasn't disarmed yet. -Lucas
Not true. To label a citizen as an enemy combatant, you must show "some evidence". Personally, I think the requirements for declaring someone an enemy combatant should be a little higher. The fact remains though that he was legally declared an enemy combatant. Check out this link for some more information.
Terrorism presents a very tough battleground where civilians are used as camoflauge instead of trees. There will be a few mistakes. We either accept that there will be grey areas in the law that allow these mistakes to happen or our executive branch can be touchy feely and become ineffective and a joke to the enemies. Society is young. America is young. I'm proud to be an American and I'm impressed by the progress we've made so far to evolve.
If they are not in the US they will be assassinated by the CIA like the guy who got a missle shot at him in Yemen (that guy was also an american citizen).
The guys in Yemen were hit by a hellfire from a predator aircraft. There wasn't an operative sitting in the car with a gun executing the guys. The operation was legal under U.S. law. The target deserved it and the American with him probably did too. Yeah, he could have been innocent of providing assistance to terrorists...in a movie. Supposedly, they did not know that an American citizen was with him. That's an honest mistake.
This is no different then what happens in south america. The people the govt doesn't like disapear.
This is an extremely perverted comparison. Again, too many conspiracy theory movies that portray our goverment as evil. I'm not even going to bother presenting reference material.
-Lucas
Here's a link for Padilla. Padilla is an enemy combatant and loses certain rights. Here's an explanation of how it applies to Padilla.
Yaser Esam Hamdi's citizenship is in limbo. His argument is based off the fact that he was born on US soil. His citizenship status is pretty much undecided until the 14th Amendment is clarified.
-Lucas
-Lucas
Gotta love the karma whoring.
-Lucas