Comments on: How to create secured Outlook data files http://www.online-tech-tips.com/cool-websites/secure-outlook/ Mon, 23 Nov 2009 13:38:56 -0600 http://wordpress.org/?v=2.8.4 hourly 1 By: How to recover a lost PST password for free http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-19456 How to recover a lost PST password for free Thu, 16 Apr 2009 10:18:15 +0000 http://www.online-tech-tips.com/?p=6031#comment-19456 [...] April 16th 2009    16Apr Previously, I’ve written about how you can secure your Outlook PST file with a password, which is great, unless you forget the PST password! Luckily for you, the password encryption for a [...] [...] April 16th 2009    16Apr Previously, I’ve written about how you can secure your Outlook PST file with a password, which is great, unless you forget the PST password! Luckily for you, the password encryption for a [...]

]]> By: ben http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8798 ben Fri, 20 Jun 2008 01:56:57 +0000 http://www.online-tech-tips.com/?p=6031#comment-8798 Haha! the guys at University of California, Berkeley went as far as making an algorithm to listen to keyboard sounds to crack anything typed on the keyboard with a 10$ microphone! http://news.zdnet.com/2100-1009_22-5865318.html Haha! the guys at University of California, Berkeley went as far as making an algorithm to listen to keyboard sounds to crack anything typed on the keyboard with a 10$ microphone!

http://news.zdnet.com/2100-1009_22-5865318.html

]]> By: Ian Hunter http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8787 Ian Hunter Thu, 19 Jun 2008 14:08:55 +0000 http://www.online-tech-tips.com/?p=6031#comment-8787 Yes, or one could put a hardware based keylogger (here's a good one: http://www.keyghost.com/) on there and read the password typed into before the OS loads. Depends on how far you want to take it. I'll stick with EFS encrypted PSTs. :) Yes, or one could put a hardware based keylogger (here’s a good one: http://www.keyghost.com/) on there and read the password typed into before the OS loads. Depends on how far you want to take it. I’ll stick with EFS encrypted PSTs. :)

]]> By: ben http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8778 ben Thu, 19 Jun 2008 00:53:55 +0000 http://www.online-tech-tips.com/?p=6031#comment-8778 Ian, good point in pointing out the weakness of the attack. but there are many ways around this... if I can get the admin password then I can install rogue hacking softwares right? what if I have a rogue keylogger service running in a computer that can log all keystrokes? you can find implementations of this that sends logs to a hacker's email in the background. I can easily install a keylogger by logging in as a rogue admin. The hacker will just wait until the password arrives to his inbox. even the strongest encryption passwords typed while the OS is running is always hacked. If the hacker gets the logs of keystrokes all of the OS level security like EFS is useless. Ian, good point in pointing out the weakness of the attack.

but there are many ways around this… if I can get the admin password then I can install rogue hacking softwares right?

what if I have a rogue keylogger service running in a computer that can log all keystrokes? you can find implementations of this that sends logs to a hacker’s email in the background.

I can easily install a keylogger by logging in as a rogue admin. The hacker will just wait until the password arrives to his inbox.

even the strongest encryption passwords typed while the OS is running is always hacked. If the hacker gets the logs of keystrokes all of the OS level security like EFS is useless.

]]> By: Ian Hunter http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8765 Ian Hunter Wed, 18 Jun 2008 13:05:34 +0000 http://www.online-tech-tips.com/?p=6031#comment-8765 The attack described is not valid. If an administrator (authorized or not) changes a *local* user account password, it destroys the EFS key and the previously encrypted data is lost. Using EFS to house the PST file is a perfectly acceptable way to protect stored email messages, and is easy for a casual user to implement. There's no need to complicate this with boot-time passwords or disk partition or such. Those things have their place (I use TrueCrypt for some things, I love it, and it's free), but they're not needed here. I'm all about using the easiest effective tool for a job. Here's a detailed description of why that attack won't work: (Reference this site: http://technet.microsoft.com/en-us/library/bb457065(TechNet.10).aspx ) Resetting Local Passwords on Windows XP Windows XP has new behavior regarding locally changed passwords and EFS. In Windows 2000, when a local user password was reset by an administrator, the administrator or third party could theoretically use the newly changed account to log on as the user and decrypt the encrypted files. In Windows XP, the changing of a local user password by an administrator, or through a method other than by the user, will block all access to previously encrypted files by the user. In summary, the profile and keys of the user will be lost and will not be available to the account with the reset password. Windows XP gives the following warning when attempting to reset a user account password: Warning Resetting this password might cause irreversible loss of information for this user account. For security reasons, Windows protects certain information by making it impossible to access if the user's password is reset. This feature helps to guard against offline attacks and prevents rogue administrators from gaining access to encrypted files of other users. The attack described is not valid. If an administrator (authorized or not) changes a *local* user account password, it destroys the EFS key and the previously encrypted data is lost. Using EFS to house the PST file is a perfectly acceptable way to protect stored email messages, and is easy for a casual user to implement. There’s no need to complicate this with boot-time passwords or disk partition or such. Those things have their place (I use TrueCrypt for some things, I love it, and it’s free), but they’re not needed here. I’m all about using the easiest effective tool for a job.

Here’s a detailed description of why that attack won’t work:

(Reference this site: http://technet.microsoft.com/e.....t.10).aspx )

Resetting Local Passwords on Windows XP

Windows XP has new behavior regarding locally changed passwords and EFS. In Windows 2000, when a local user password was reset by an administrator, the administrator or third party could theoretically use the newly changed account to log on as the user and decrypt the encrypted files. In Windows XP, the changing of a local user password by an administrator, or through a method other than by the user, will block all access to previously encrypted files by the user.

In summary, the profile and keys of the user will be lost and will not be available to the account with the reset password. Windows XP gives the following warning when attempting to reset a user account password:

Warning Resetting this password might cause irreversible loss of information for this user account. For security reasons, Windows protects certain information by making it impossible to access if the user’s password is reset.

This feature helps to guard against offline attacks and prevents rogue administrators from gaining access to encrypted files of other users.

]]> By: ben http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8741 ben Wed, 18 Jun 2008 02:46:19 +0000 http://www.online-tech-tips.com/?p=6031#comment-8741 As pointed out by Graeme, outlook passwords are easy to hack. Worse, there is no patch from Microsoft yet that could fix this problem within Outlook. Windows EFS could also be easily hacked if you can have the admin password, and there are a lot of write-ups on how to do this on the Net: http://internetbusinessdaily.net/how-to-hack-a-window-xp-admins-password/ Once you get the admin password, it's easy to change all the passwords of each PC user. I am sharing computers and securing data on the OS level is a nightmare! This problem made me look out for an ever more stronger security solutions that will run BEFORE boot time so even when my laptop is stolen, I could be assured that my whole disk is protected (not only my Outlook files!). I use a product called checkpoint to do this and I am yet to find a hacking software for this product: http://www.checkpoint.com/products/datasecurity/pc/index.html I configured my setup in such a way that even if they know the OS admin password, they can't boot or change it without my pre-boot checkpoint password! Ofcourse, security doesn't stop there... in computers there is always a way to hack around passwords! As pointed out by Graeme, outlook passwords are easy to hack. Worse, there is no patch from Microsoft yet that could fix this problem within Outlook.

Windows EFS could also be easily hacked if you can have the admin password, and there are a lot of write-ups on how to do this on the Net: http://internetbusinessdaily.n.....-password/
Once you get the admin password, it’s easy to change all the passwords of each PC user. I am sharing computers and securing data on the OS level is a nightmare!

This problem made me look out for an ever more stronger security solutions that will run BEFORE boot time so even when my laptop is stolen, I could be assured that my whole disk is protected (not only my Outlook files!). I use a product called checkpoint to do this and I am yet to find a hacking software for this product: http://www.checkpoint.com/prod.....index.html
I configured my setup in such a way that even if they know the OS admin password, they can’t boot or change it without my pre-boot checkpoint password!

Ofcourse, security doesn’t stop there… in computers there is always a way to hack around passwords!

]]> By: akishore http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8736 akishore Tue, 17 Jun 2008 19:38:01 +0000 http://www.online-tech-tips.com/?p=6031#comment-8736 Ian, that's a really good idea! You can rest assured your email cannot be read by anyone else as long as they don't have your password or access to your user account. Ian, that’s a really good idea! You can rest assured your email cannot be read by anyone else as long as they don’t have your password or access to your user account.

]]> By: Ian Hunter http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8733 Ian Hunter Tue, 17 Jun 2008 17:40:05 +0000 http://www.online-tech-tips.com/?p=6031#comment-8733 Here's a MUCH better way, assuming you log into Windows with your own account, rather than a shared account: Use Windows EFS to create an encrypted folder (go to My Documents, create a folder called "Encrypted" or something like that, right click it, select "Advanced" and select "Encrypt this folder"), then create an UNENCRYPTED PST file located in that directory. Now, when you log into Windows and open Outlook, the PST file is available, but if someone else logs into the machine or steals the hard drive, the PST file is scrambled. :) Here’s a MUCH better way, assuming you log into Windows with your own account, rather than a shared account:

Use Windows EFS to create an encrypted folder (go to My Documents, create a folder called “Encrypted” or something like that, right click it, select “Advanced” and select “Encrypt this folder”), then create an UNENCRYPTED PST file located in that directory. Now, when you log into Windows and open Outlook, the PST file is available, but if someone else logs into the machine or steals the hard drive, the PST file is scrambled.

:)

]]> By: akishore http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8729 akishore Tue, 17 Jun 2008 16:11:39 +0000 http://www.online-tech-tips.com/?p=6031#comment-8729 Graeme, I guess it's better than nothing! Do you have any other ideas? Another idea I had for securing your Outlook file is to hide the actual folder where the PST is stored using a program like FolderHide. Graeme, I guess it’s better than nothing! Do you have any other ideas? Another idea I had for securing your Outlook file is to hide the actual folder where the PST is stored using a program like FolderHide.

]]> By: Keep Your Outlook Database Secure - Contact Management - Technology For Agents http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8724 Keep Your Outlook Database Secure - Contact Management - Technology For Agents Tue, 17 Jun 2008 15:01:05 +0000 http://www.online-tech-tips.com/?p=6031#comment-8724 [...] to your laptop or computer can simply open Outlook and see your database in it’s full form.  Online Tech Tips recently published a nice how-to on securing your Outlook database that deserves a [...] [...] to your laptop or computer can simply open Outlook and see your database in it’s full form.  Online Tech Tips recently published a nice how-to on securing your Outlook database that deserves a [...]

]]> By: Graeme http://www.online-tech-tips.com/cool-websites/secure-outlook/comment-page-1/#comment-8723 Graeme Tue, 17 Jun 2008 14:37:13 +0000 http://www.online-tech-tips.com/?p=6031#comment-8723 PST "security" is an absolute joke. All you're doing is giving a false sense of security with this article, a "secured" PST can be opened in seconds using a freeware tool at http://www.nirsoft.net/utils/pst_password.html. PST “security” is an absolute joke. All you’re doing is giving a false sense of security with this article, a “secured” PST can be opened in seconds using a freeware tool at http://www.nirsoft.net/utils/pst_password.html.

]]>