Need Security in my PC

[Sjbrand99]

So I am setting up a folder, and in it I want to put alot of sensitive info (no not porn) mostly consisting of contacts and passwords that i need to keep safe.

Now I want this certain folder to be VERY secure. I need:

>>A password lock on the folder

>>Extra prevention from hackers

>>Some sort of monitoring program so that it cannot be edited/deleted etc.

>>And some way of hiding it (aside the usual "hide folder" option)

If anyone here uses anything like this and can advise me with expierience then that would be greatly appreciated.

 

[Hatrick]

I don't have XP Pro, but I believe encryption and password protection is available there. Try 'Help and Support'.

The best protection against hackers is, in addition to firewall and antivirus software, to:
(a) password protect the owner/administrator accounts with a *strong* password - e.g. the initial letters of the words of a song, prayer etc that is easy to remember. Strengthen it with rules of your own that you will apply to *every* password, e.g. Upper case for part of the alphabet and lower for the rest. Then modify that by substituting, for example, 5 or $ for S, & for a and so on. Makes life difficult for hackers.
(b) Create a limited access account which you use when on line. This means that neither you, nor anyone else who has managed to creep in, can access the administrator/ owner accounts without the password. It can be a bit of a pain at times but, from a security viewpoint, very desirable.

I don't know how to monitor, but if you use file permissions to take ownership of the directory, and deny access to anyone else, you'll be safe.

Hide it. Can't help.

 

[DelJo63]

I don't have XP Pro, but I believe encryption and password protection is available there. Try 'Help and Support'.

I don't recommend this choice -- the encryption is directly tied to your login
password, and if you change it, you loose the ability to decrypt -- search MS KB
for details.


see this review for a better choice (imo)

 

[Hatrick]

I don't recommend this choice -- the encryption is directly tied to your login
password, and if you change it, you loose the ability to decrypt -- search MS KB
for details.


see this review for a better choice (imo)

Thanks for that. Looks good. My only criticism is that, unless I misunderstood, encryption and decryption take place at the click of a mouse with no other security. What happens if he quits his desk temporarily, leaving the screen visible? Surely there is a password involved for each transaction?

 

[DelJo63]

security always needs to sovle multiple issues.

the screen issue is one of work habits and using a screen saver with a lockup
password that activates at a low threshold.

the user needs to ensure documents are only saved in his/her
profile area AND that the directory is always and only set to private.

there is a work style 'hole'; the scenario goes like

1. decrypt the file
2. start working on it
3. ---
4. save the mods
5. re-encrypt it (and auto delete the unencrypted version)

if the user is careless and does not perform step 5, the file is left exposed.

Even workflows where the data is stored on an encrypted network server
can expose the file on the local client if care is not taken to KEEP the
file on the server. Consider what happens with programs like Word/Excel
opening temporary files!

there's just no free lunch at the security table.

 

[Hatrick]

s



there is a work style 'hole'; the scenario goes like

1. decrypt the file
2. start working on it
3. ---
4. save the mods
5. re-encrypt it (and auto delete the unencrypted version)

if the user is careless and does not perform step 5, the file is left exposed.

What I had in mind was not only carelessness but diarrhoea, spilt coffee, someone fainting on the other side of the room, i.e. any sort of emergency requiring immediate action. Still, nothing is perfect.

 

[Sjbrand99]

This is all good guys. And someone even spotted out temp. files that i forgot to mention. Is there any way of stopping word files etc. from creating one automaticly?

...And by passwords i do use a screensaver lock after 2 mins and a startup password but i was thinking more around a password on opening the file, a bit like you can put passwords on zip files (but ofcourse im not going to zip my work every time!)

 

[DelJo63]

What I had in mind was not only carelessness but diarrhoea, spilt coffee, someone fainting on the other side of the room, i.e. any sort of emergency requiring immediate action. Still, nothing is perfect.

software is incompatible with human experiences

... i was thinking more around a password on opening the file, a bit like you can put passwords on zip files (but ofcourse im not going to zip my work every time!)

with the fully integrated version, you login via an icon in the system tray to
enable the features. To work on any given file, you right-click for a menu to
'unprotect' that file. Work on any files necessary and repeat the right-click
to 'protect' the files you have completed working on. files not accessed are
not decrypted unless you ask them to be.

personally, it would drive me nuts to keep entering a passphrase
(note: passphrase is not a password, it's should be longer and is actually used
to perform the {de,en}cryption. ) mine is an full english sentence.

 

[raybay]

Longest allowed password of letters and digits that spell nothing. Watch your images as some of the new bad stuff is hidden in images where normal spyware and virus checkers cannot easily read it.
Still the best protection is a high quality, long lasting hard drive, extra case cooling, high quality power supply, lightning protection on all phone lines and cables, power protection with battery backup... and theft protection of the entire computer as well as a case that is extremely difficult to open.
The people who really want your data will take your computer, case, and all, or they will steal your hard drive where they can work on the security protections at their leisure.

 

[Sjbrand99]

WOW, i dont work for MI5 or anything and arnt worried about physical stealing, and do not want full above-the-average protection for every directory/file etc, just one password lock before opening a single folder!