Question regarding filevault and a honeypot account

I am running osx lion.  I would like to secure my machine, and that includes basics like good passwords and turning on a firmware password.  But I would also like to encrypt the contents of the hard drive.  Filevault to the rescue it would seem.
But I also have one more requirement.
Since a lot of my equipment was stolen last year I have installed prey on all of my new computers (www.preyproject.com).  This allows me to track my machines and potentially get them recovered should they go missing.  Prey is useless unless there is a user logged in and so I have created a honeypot account that is minimally protected (i.e. the password is the user name and the password hint explicitly tells you what the password is).  This account has parental controls on it to limit the applications that can be run (only web browser, some games, and skype).  The idea is that a dumb thief steals my computer, finds it easy to log into the honeypot account, and then uses that with their facebook or whatever because getting past the open firmware settings and the individual "real" account passwords is too hard.
That said, having this software is no guarantee that I will be able to recover my machine, so I want my data encrypted.
Here is my question:
Does the fact that I have to add this simple password for the honeypot account to use the computer (aka open a filevault drive) invalidate my filevault protection?  I.e. will this simple password allow them to unencrypt the entire drive, even though I have other accounts with stronger passwords?

The guest account might be just good enough...  I'll give it a try.  Thanks.  Prey seems to work pretty well for me but it has also been touchy in the past.  I will have to check it carefully with the guest account to ensure it has the permissions needed to use the webcam and send email and such.
I'm still interested in knowing how filevault encryption works.  Does it allow any of the passwords to unencrypt the whole drive, or does it require a unique password per account to unencrypt the data in that account?
Edit:  Just saw the repy by Linc Davis
"If everything worked perfectly, the account would only have access to the files in its home folder. But is there an unknown exploit that enables a local user to gain elevated privileges? Such exploits have been found in the past, and may be found in the future."
That clears it up for me a bit.  And it makes sense.  I will see if I can make do with the guest account.
That said, I actually value the computer hardware - though not as much as the data.  I already back the data up which is the first step.  Preventing others from accessing it is my next priority, but there is nothing that is THAT critical.  I can change all my passwords quickly (and I don't use anything like 1password).  I have tax returns on the drive, but they are also password protected.
My primary goal is to keep the average and even slightly above average user from getting to my data (including yanking the drive and putting it into another machine or booting from a CD).  As I said, I hope the guest account will be adequate for my honeypot needs.
Also @Linc,
I accidentally clicked on "Helpful" instead of "Answered" on your post.  Post a reply and I will do it right this time.  Thanks.
Message was edited by: Bernhard VonZastrow1

Similar Messages

  • Question regarding MM and FI integration

    Hi Experts
    I have a question regarding MM and FI integration
    Is the transaction Key in OMJJ is same as OBYC transaction key?
    If yes, then why canu2019t I see transaction Key BSX in Movement type 101?
    Thanks

    No, they are not the same.  The movement type transaction (OMJJ) links the account key and account modifier to a specific movement types.  Transaction code (OBYC) contains the account assignments for all material document postings, whether they are movement type dependent or not.  Account key BSX is not movement type dependent.  Instead, BSX is dependent on the valuation class of the material, so it won't show in OMJJ.
    thanks,

  • Question regarding roaming and data usage

    I am currently out of my main country of service, and as such I have a question regarding roaming and data usage.
    I am told that the airplane mode is sufficient from keeping the phone off from roaming, but does this apply to any background data usage for applications and such?
    If the phone is in airplane mode, are all use of the phone including wifi and application use through the wifi outside of all extra charges from roaming?

    Ann154 wrote:
    If you are getting charged to use the wifi, then it is possible.  Otherwise no
    Just to elaborate here, Ann154 is referring to access charges for wifi, which is nothing to do with Verizon, so if you are using it in a plane, hotel, an internet cafe etc that charges for Wifi rather than being free .   Verizon does not charge you (or indeed know about!) wifi usage, or any other usage that is not on their cellular network (such as using a foreign SIM for example in global phones)  So these charges, if any, will not show up on the verizon bill app.  Having it in airplane mode prevents all cellular data traffic so you should be fine

  • **question regarding 3G and wif**.

    I have a question regarding 3G and wifi. I have #G activated as well as wifi, when I go to retrieve mail for example I get a pop up asking me if I want to connect to a wifi network…should I have wifi and 3G activated at the same time, and why am I getting the pop up…
    Thanks

    You can have them on at the same time, but they will not be used at the same time for data. The order of preference for data is WiFi > 3G > EDGE > GPRS. You're getting the pop up, most likely, because you have Settings > Wi-Fi > Ask to Join Networks set to ON. You can set that to OFF, and the iPhone will still join known (i.e. previously used) WiFi networks automatically.

  • Question regarding Dashboard and column prompt

    My question regarding Dashboard and column prompt:
    1) Dashboard prompt usually work with only for columns which are in subject area. In my report I've created some of the columns which are based on other columns. Like I've daysNumber column that is based on two other columns, as it calculates the difference of two dates. When I create dashboard prompt I can't find this column there. I need to make a prompt on this column.
    2)For one of the column I've only two values 1 and 0. When I create prompt for this column, is it possible that in drop down list It shows 'Yes' for 1 and 'No' for 0 and still filter the request??

    Hi Toony,...
    I think there was another way of doing this...
    In the dashboard prompt go to Show option > select SQL Results from dropdown.
    There you need to write your Logical SQL like...
    SELECT CASE WHEN 1=0 THEN PERIODS.YEAR ELSE difference of date functionality END FROM SubjectAreaName
    Here.. Periods.Year is the column which is already exists in repository's presentation layer..
    and difference of date functionality is the code or formula of column which you want to show in drop-down...
    Also write the CASE WHEN 1=0 THEN PERIODS.YEAR ELSE difference of date functionality END code in fx of that prompt.
    I think it helps you in doing this..
    Just check and inform me if it works...
    Thanks & Regards
    Kishore Guggilla
    Edited by: Kishore Guggilla on Oct 31, 2008 9:35 AM

  • Question Regarding MIDI and Sample Accuracy

    Hi,
    I have 2 questions regarding MIDI.
    1. MIDI is moved by ticks. In the arrange window however, you can move a region by samples. When doing this, you can move within values of the ticks (which you can see on your position box that pops up) Now, will this MIDI note actually be played back at that specific sample point, or will it round the event to the closest tick? (example, if I have a MIDI note directly on 1.1.1.1, and I move the REGION in the arrange... will that MIDI note now fall on the sample that I have moved the region to, or will it be rounded to the closest tick?)
    2. When making a midi template from an audio region, will the MIDI information land exactly on the sample of the transient, or will it be rounded to the closest tick?
    I've looked through the manual, and couldn't find any specific answer to these questions.
    Thanks!
    Message was edited by: Matthew Usnick

    Ok, I've done some experimenting, and here are my results.
    I believe those numbers ARE samples. I came to this conclusion by counting (for some reason it starts on 11) and cutting a region to be 33 samples long (so, minus 11, is 22 actual samples). I then went to the Audio Bin window, and chose to view region length as samples. And there it said it: 22 samples. So, you can in fact move MIDI regions by samples!
    Second, I wanted to see if the MIDI notes in the region itself would be quantized to the nearest tick. I cut a piece of audio, so it had a 1 sample attack (zoomed in asa far as I could in the sample editor, selected the smallest portion, and faded in, and made the start point, the region start position). I saved the region as a new audio file, and loaded it up in the exs sampler.
    I then made a MIDI region, with and triggered the sample on beat 1 (quantized, on the money). I then went into the arrange window, made a fixed cycle length, and bounced the audio. I then moved the MIDI region by one sample to the right. I did this 22 times (which is the number of samples in a tick, at 120, apparently). After bouncing all of these (cycle position remained fixed, only the MIDI region was moving) I imported all the audio into the arrange on new tracks, and YES!!! The sample start was cascaded by a sample each time!
    SO.
    Not only can you move MIDI regions by sample, but the positions are NOT quantized to Logics ticks!
    This is very good news, and glad I worked this out!
    (if anyone thinks this sounds wrong, please correct me, but I'm pretty sure I proved it, in my test)
    Message was edited by: Matthew Usnick

  • Question regarding iPhone4 and iTunes issue

    I posted this on iPhone main forum and no response- i am hoping that someone can shed some light for me...would be much appreciated
    ok- so, i have an existing iTunes account (current version 9.2)- i previously had ONE device attached to it- my 3Gs that i upgraded to my iP4 with.
    I did not wipe my 3Gs- as i sent it to my daughter who placed her SIM from her 3G into it- HOWEVER, since activating my iP4 the only phone that has been synched to my iTunes is the new iP4- i was able to transfer all of my 90 apps- FINE- but i have an issue with my audiobooks-I keep getting this message when i try to put any of my audiobooks onto my iP4:
    "THE PHONE "JILL...." IS SYNCED WITH ANOTHER ITUNES LIBRARY. DO YOU WANT TO ERASE THIS IPHONE AND SYNC WITH THIS ITUNES LIBRARY? AN IPHONE CAN BE SYNCED WITH ONLY ONE (1) iTUNES LIBRARY AT A TIME. ERASING AND SYNCING REPLACES THE CONTENTS OF THIS iPHONE WITH THE CONTENTS OF THIS LIBRARY"
    ummm, my question is: A) What other Library might they be referring to? It syncs fine on this one and only iTunes account i have had for years- B) i am concerned WHAT exactly will be erased and replaced??? What is the point of this message if the APPS on the phone are from my one and only library?
    I originally thought that maybe i was getting this message because all of the audiobooks had been previously loaded onto my 3Gs and i did not care- as i had already listened to them. BUT I just paid $26 for a new audiobook from iTunes and want it on my iP4- and it STILL gives me this message...
    ANYONE?

    Do you have more than one user account in iTunes?
    Sounds like you are logged into another account, one different from what you originally synced with.

  • Question regarding homehub and Open reach router -...

    Hi all,
      I had infinity installed earlier this month and am happy with it so far. I do have a few questions regarding the service and hardware though.
      I run both my BT openreach router and BT Home hub from the same power socket. The problem is, if I turn the plug on so both the Homehub and Openreach Router start up at the same time, the home hub will never get an Internet connection from the router. To solve this I have to turn the BT home hub on first and leave it for a minute, then start the router up and it all works fine. I'm just curious if this is the norm or do I have some faulty hardware?
      Secondly, I appreciate the estimated speed BT quote isn't always accurate, I was quoted 49mbits down but received 38mbits down - Which I was happy with. Recently though it has dropped to 30. I am worried this might continue to drop over time. and as of present I am 20mbits down on the estimate . For the record 30mbits is actually fine and probably more than I would ever need. If I could boost it some how though I would be interested to hear from you.
    Thanks, .

    Just a clarification: the two boxes are the HomeHub (router, black) and the modem (white).  The HomeHub has its own power switch, the modem doesn't.
    There is something wrong if the HomeHub needs to be turned on before the modem.  As others have said, in general best to leave the modem on all the time.  You should be able to connect them up in any order, or together.  (For example, I recently tripped the mains cutout, and when I restored power the modem and HomeHub went on together and everything was ok).
    Check if the router can connect/disconnect from the broadband using the web interface.  Leaving the modem and HomeHub on all the time, go to http://192.168.1.254/ on a browser on a connected computer, and see whether the Connect/Disconnect button works.

  • Question regarding IWDTree and context Value Node naming

    Hi,
    I have a question regarding the IWDTree / IWDTreeNodeType components.
    I have a context looking like this:
    Context
      + ResponseNode
        + PersonNode (1..1)
          + PersonAddressNode                    (empty node, placeholder)
          | + AdresNode (0..n)
          + PersonChildNode                      (empty node, placeholder)
          | + PersonNode (0..n)
          |   + PersonAddressNode                (empty node, placeholder)
          |     + AddressNode (0..n)
          + PersonParentsNode                    (empty node, placeholder)
            + PersonNode (0..n)
              + PersonAddressNode                (empty node, placeholder)
                + AddressNode (0..n)
    The context represents a person, a person's address, and a person's children and parents with their respective addresses.
    As a result, on different branches, a PersonNode and AddressNode can appear.
    And for some strange reason, all PersonNodes and AddressNodes link to the same ResponseNode.PersonNode.PersonParentsNode.PersonNode and ResponseNode.PersonNode.PersonParentsNode.PersonNode.PersonAddressNode.AddressNode respectively, irregardless of their branch...
    Is it illegal to have multiple PersonNode and AddressNode node names, and should they be named uniquely?

    Generally, node names need to be unique inside the context, attributes in different nodes can have same names. I wonder if the context structure you described will result in code without compile errors.
    The WD Tree can only be used with recursive context nodes or with a hierarchy of non-singleton child nodes.
    Can you give an example how your tree should look like at runtime?

  • Question regarding battery and warranty

    Hi all! I have a quick question about how and if my warranty applies to my battery. After about a year and a half of ownership (I have the three-year extended warranty), my battery has gone completely down the toilet. It wasn't a problem before, but this year I have to lug my T61p around a lot for lab work. My battery is now rated at... 39.75Wh when it shipped at 84.24Wh. This is a pretty drastic difference. In any case, I don't think that this is covered by warranty, but figured that I'd ask before I drop $180 on a new battery (ouch). And, speaking of, if my suspicions are correct, does anybody know where I might find a 9-cell battery for the T61p? All I'm seeing on Lenovo's website is the one for the N100... which doesn't... match very well. Yaknow.
    Thanks a lot!
    ThinkPad T61p [June 2008]: 2.5Ghz Penryn Core 2 Duo, 4GB DDR2 RAM, NVidia Quadro FX 570m 256MB, 160GB 7200RPM Fujitsu HDD, 1920x1200 WUXGA Matte LCD, Windows 7 RC1

    Is either of these appropriate? I'm wary of the one on Amazon, as there are other (off-brand) batteries that are advertised as being Lenovo ones (though those generally sell for  a lower price). The other one just looks like I'll have to call up to buy it.
    http://www.amazon.com/Lenovo-43R9255-ThinkPad-Notebook-Battery/dp/B001DX9EKA
    http://affordablepcsupply.com/products/IBM/REF/42T4511.html
    Thoughts?
    ThinkPad T61p [June 2008]: 2.5Ghz Penryn Core 2 Duo, 4GB DDR2 RAM, NVidia Quadro FX 570m 256MB, 160GB 7200RPM Fujitsu HDD, 1920x1200 WUXGA Matte LCD, Windows 7 RC1

  • Question regarding selectOneMenu and PROCESS_VALIDATIONS(3) phase

    Hi im a bit lost regarding selectOneMenu and how validation phase all works together.
    The thing is that i have a simple selectOneMenu
    <h:form id="SearchForm">                                                  
         <h:panelGrid columns="3"  border="0">
              <h:outputLabel id="caseTypeText" value="#{msg.searchCaseCaseType}" for="caseType" />                         
              <h:selectOneMenu id="caseType" value="#{searchCaseBean.caseType}" style="width: 200px;" binding="#{searchCaseBean.caseTypeSelect}">     
                   <f:selectItem itemValue="" itemLabel="#{msg.CommonTextAll}" />                                             
                   <f:selectItems value="#{searchCaseBean.caseTypes}"  />                              
              </h:selectOneMenu>
              <h:message for="caseType" styleClass="errorMessage" />
              <h:panelGroup />
              <h:panelGroup />
              <h:commandButton action="#{searchCaseBean.actionSearch}" value="#{msg.buttonSearch}" />
         </h:panelGrid>
    </h:form>Now when i hit submit button i can see that the bean method searchCaseBean.caseTypes (used in the <f:selectItems> tag) is executed in the PROCESS_VALIDATIONS(3) phase. How come? I dont whant this method to be executed in phase 3, only in phase 6.
    If i add the this in the method if (FacesContext.getCurrentInstance().getRenderResponse())
    public List<SelectItem> getStepStatuses(){
         List<CaseStep> caseSteps = new ArrayList<CaseStep>();
         if (FacesContext.getCurrentInstance().getRenderResponse()) {
              caseSteps = getCaseService().getCaseStep(value);     
         List<SelectItem> selectItems = new ArrayList<SelectItem>(caseSteps.size());
         for(int i=0; i < caseSteps.size(); i++){
              CaseStep step = caseSteps.get(i);               
              String stepStatus = step.getStatus() + "_" + step.getSubStatus();           
              selectItems.add(new SelectItem(stepStatus, step.getShortName()));
         return selectItems;
    } Now i get a validation error (javax.faces.component.UISelectOne.INVALID) for the select field and only phase1, phase2, phase 3 and phase 6 is executed.
    Im lost?

    I see. Many thanxs BalusC. Im using your blog very often, and its very helpfull for me.
    I changed now to use the constructor load method instead. But know im getting problem of calling my service layer (Spring service bean). Its seems they havent been init when jsf bean is calling its constructor.
    Can i init the spring service bean from the faces-config file?
    JSF Bean
        public SearchCaseBean() {
              super();
                    //caseService need to be init
              if(getCaseService() == null){
                   setCaseService((CaseService)getWebApplicationContextBean("caseService"));
              fillCaseTypeSelectItems();
              fillCaseStatusSelectItems();
    .....faces-config
    <managed-bean>
              <managed-bean-name>searchCaseBean</managed-bean-name>
              <managed-bean-class>portal.web.SearchCaseBean</managed-bean-class>
              <managed-bean-scope>request</managed-bean-scope>          
              <managed-property>
                   <property-name>caseService</property-name>
                   <value>#{caseService}</value>
              </managed-property>
         </managed-bean>

  • Few questions regarding Training and event management

    Dear All,
    Can you please help me with the following queries regarding Training and Event Management:
    1. How to freeze a completed business event so that no changes to its record (like delete/update attendee details or event detail) is possible?
    2. How to get feedback from attendee/faculty with a predefined format with rating (1-4 scale)
    3. How to maintain department and category wise training man/hrs or training man/days?
    Any help will be appreciated.
    Regards,
    Toa

    Hi Toa,
    1. Run report RHHISTO0 via SA38. Once the business event is flagged as "historical" no further changes can be done.
    3. SM30 - T77S0 - Make the following swtiches active:
    SEMIN AINST
    SEMIN APART
    Then when events are followed up, these training data is recorded to employee 2002 infotype. You can report on it via PT90 (for department-based selection use "Further selections")
    Regards,
    Dilek

  • Question regarding sequences and fragmented data

    Hi all,
    I plan to implement two identical database schemas on two different oracle database servers. The two databases will then be linked via a Database Link and a View will be used to show the data from both db's using 1 sql statement.
    My question is this:
    If 5 records are inserted into the table on the first database and then 10 records are inserted into the matching table on the second database, how would the sequence for the table in the first database know that the next value should be 16 and not 6.
    I hope this makes sense, any questions just ask.
    Thanks,
    Martin

    Ok, I am not sure if I fully undserstand the question but let's give it a go. In the first place a sequence is stored in the data dictionary of a database. Te fact that you have two servers (and two databases : is that correct ?) means that you have two sequences also. The sequence is local to each db.
    If you want the tables to be aware of each other so that the next record takes into account also the records in the other db you may have to manually generate the sequence. I don't know if you can share the sequence between two dbs but let's see if anyone else does.
    Regards

  • Question Regarding Name and Address Clensing

    Hello,
    Can someone help me with understanding the Name and Address Cleansing operatior of OWB.
    I am currently using OWB Client 9.2.0.2.8
    Before using the Name and Address operator should you do any configuration for it to function? Based on the viewlet which i tried there were no configuration steps and once i finished doing the steps in the demo there were rows inserted but with *null data.
    Is Trillium packaged with the OWB or should you still purchase it?
    Thank You

    Thank you for the information Mark, I still have another question.
    Here is my situation:
    I have been tasked to integrate a 3rd party DQ ventor to the name and address cleansing operator of OWB. In relation to that I have downloaded the OracleAdaptorKit provided by Oracle for such development. The problem is I still dont really understand how the whole thing works. My understanding is that once you use the Name and Address operator in a Map and execute the it OWB will call the Name and Address Server which will trigger the Adaptor (which should be created by the vendor or me in this case) that will do the Parse() function based on the libraries of the 3rd party DQ vendor. Is my understanding correct?
    My second question is on how will the Name and Address Engine call the Adaptor(JAVA applet?) which will use the Parse() function and what are the values that Name and Address Engine throw to the Adaptor? And how will you know if you have successfully created a connection between the Name and Address Engine and the Adaptor you created?
    My third question is in regards to the components to be created. So given that the Name and Address Engine is by default installed with OWB does that mean that the only thing left to program are the Adaptor and Libraries?
    I hope you can help me, Thank You

  • Question regarding encryption and decryption

    Hi all,
    I am doing a authentication project. In which I do encryption and decryption (AES 128 bit) in two different methods. At the time of encryption (for eg a text file ), I store the key in dat file (key.dat). And at the time of decryption, I read the key.dat and extract the key and do the decryption. This works fine. No problem with that.
    But the problem is, that the client requires that
    "No encryption keys will be written to the hard drive."
    I have to store the key somewhere to decrypt the encrypted file. Right. Without storing the key, I cannot decrypt.
    The question is (though its a foolish question) with out storing the key, can i encrypt and decrypt (in two different methods) the text file ?
    Thank You.
    Regards,
    Jay

    Hi Grant,
    Thanks for the reply. ( I am the one whom you helped to solve the encryption and decryption problem using AES )
    I will give you an overview of my project. Its an Two Factor Authentication using an USB Flash Drive.
    Admin Side : ( currently developing this part )
    Through an CPP executable file ( writen by John Hyde USB By Example author), I retrive the Manufature ID, Product ID and Serial number of the USB Flash Drive from a text file which is generated when the executable file is executed.
    From my Java application, i retrive the Manufature ID, Product ID and Serial number.The admin (through an dialog box ) enters an usernam and password . All this information ( Manufature ID, Product ID, Serial number , username and password ) using AES 128 bit encryption i write these information to encrypted file in the USB Flash drive along with the the encryption key used at the time of decryption.
    User Side: ( not yet devleoped )
    When the user plugs in the USB Flash drive, an dialog box is shown where the user enters the username and password ( assigned earlier by the admin). This username and password is checked along with the Manufature ID, Product ID and Serial number encrypted earlier and stored in the USB Flash drive. If username password ,Manufature ID, Product ID and Serial number (retrieved again by exectuing the CPP excutable file ) are correct the user is granted access.
    Whats your suggestion reagrading of storing the encryption key? I have to store the key in the USB Flash drive along with the encrypted file. But then wont an intruder (for eg ) if he gets the key and decrypt the file ?
    Client has mentioned to use AES 128 Bit encryption.
    Thank You.
    Regards,
    Jay.

Maybe you are looking for

  • How to solve delay in a program with data aquisition and processing

    Hello, I am a starter in Labview programing. I am working on a system which contains a roller, a piston and a A/D cart which is from Data Translation Inc (DT304). I am using labview to get speed data of the roller (which is voltage first then be co

  • How do you get e-mail on your iPhone through webmail powered by Horde?

    We recently had our website redesigned and when that was done our e-mail switched from GoDaddy to webmail powered by Horde.  Since the change, I have not been able to get our mail correctly on my iPhone 4 and iPad.  Things worked perfectly with GoDad

  • Regarding list display

    this is the alv report : the requirement is like this besade on customer id we have to display   this formate will be like this                         number     city                           xxxxx     Bangalore/ here is it own mother languag      

  • JCo Repository "copy"

    Hello, I'm developing a RFC-Server with JCo. I would like to read (only once, at the beginning, when the server starts) the repository information of a function module and save them in a static Repository:     static public class MyRepository extends

  • EM db control

    Advance working with EM db control / Is there any docs for related to advance working in OEM?