Security Basics mailing list archives

RE: The VA Stolen Laptop - Lessons Learned

From: "Clement Dupuis" <cdupuis () cccure org>
Date: Wed, 20 Sep 2006 07:54:49 -0400

Wikipedia unfortunately is not always up to date

Truecrypt will do full disks and even allow you to have an encrypted disk
without any partitions on it.  

Take care

Clement


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Saqib Ali
Sent: Wednesday, September 20, 2006 12:35 AM
To: security
Cc: security-basics () securityfocus com
Subject: Re: The VA Stolen Laptop - Lessons Learned

Caution: TrueCrypt is NOT a Full Disc Encryption (FDE) utility. I can
encrypt partitions but not the whole Disc. See:
http://en.wikipedia.org/wiki/FDE

On 9/18/06, security <security () xentek net> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

TrueCrypt (http://www.truecrypt.org/) is the one I recommend to
clients. Its Open-Source and supports Linux and Windows.

- -em




On Sep 17, 2006, at 10:27 PM, MandommGmail wrote:

There are many free whole disk encryption softwares that are
around. Please google for CompuSec. I am personally using it. It is
free for commercial and personal usage.

I believe its just right for my usage.

Alex
----- Original Message ----- From: "George Toft"
<george () georgetoft com>
To: <security-basics () securityfocus com>
Sent: Saturday, September 16, 2006 1:42 AM
Subject: Re: The VA Stolen Laptop - Lessons Learned

There are many whole-disk encryption products that make this a
trivial exercise.  Even at $100-150 per seat, the price is cheaper
than a lawsuit and bad publicity.

George Toft, CISSP, MSIS
My IT Department
www.myITaz.com
480-544-1067

Confidential data protection experts for the financial industry.


evb wrote:

 :1. Encrypt all data on mobile computers/devices which
carry :agency data unless the data is determined to be non-
sensitive, :in writing, by your Deputy Secretary or an individual
he/she :may designate in writing : And does "data" include
operating system files, log files, cab files,
drivers, etc., or does it only include eg xls, doc, pdf and wpd
files, etc.?
How has Bush defined "data"?  Thx,

Eric
--------------------------------------------------------------------
-------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence in Information Security. Our program offers
unparalleled Infosec management education and the case study
affords you unmatched consulting experience. Using interactive e-
Learning technology, you can earn this esteemed degree, without
disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
--------------------------------------------------------------------
-------


---------------------------------------------------------------------
------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence in Information Security. Our program offers
unparalleled Infosec management education and the case study
affords you unmatched consulting experience. Using interactive e-
Learning technology, you can earn this esteemed degree, without
disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------
------



----------------------------------------------------------------------
-----
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence in Information Security. Our program offers unparalleled
Infosec management education and the case study affords you
unmatched consulting experience. Using interactive e-Learning
technology, you can earn this esteemed degree, without disrupting
your career or home life.

http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------
-----


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)

iD8DBQFFDzm4j8o5VXXdUSwRApAlAKC0bInXTiPEynMgG0ZAU3gKCv85DgCgoULH
WWHDAaemhW9Ht0nHDUpztyc=
=iLC3
-----END PGP SIGNATURE-----

---------------------------------------------------------------------------

This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec

management

education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed

degree,

without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus

---------------------------------------------------------------------------



-- 
Saqib Ali, CISSP, ISSAP
Support http://www.capital-punishment.net
-----------
"I fear, if I rebel against my Lord, the retribution of an Awful Day
(The Day of Resurrection)" Al-Quran 6:15
-----------

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------




---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

The VA Stolen Laptop - Lessons Learned lists () infostruct net (Sep 13)
- Re: The VA Stolen Laptop - Lessons Learned Saqib Ali (Sep 13)
- RE: The VA Stolen Laptop - Lessons Learned evb (Sep 13)
  - RE: The VA Stolen Laptop - Lessons Learned Isaac Van Name (Sep 14)
  - Re: The VA Stolen Laptop - Lessons Learned George Toft (Sep 15)
    - Re: The VA Stolen Laptop - Lessons Learned MandommGmail (Sep 18)
    - Re: The VA Stolen Laptop - Lessons Learned security (Sep 19)
    - Re: The VA Stolen Laptop - Lessons Learned Saqib Ali (Sep 20)
    - RE: The VA Stolen Laptop - Lessons Learned Clement Dupuis (Sep 20)
    - Re: The VA Stolen Laptop - Lessons Learned Saqib Ali (Sep 20)
    - Re: The VA Stolen Laptop - Lessons Learned intel96 (Sep 20)
    - Re: The VA Stolen Laptop - Lessons Learned Saqib Ali (Sep 21)
    - RE: The VA Stolen Laptop - Lessons Learned Pranav Lal (Sep 25)
  - Re: The VA Stolen Laptop - Lessons Learned Saqib Ali (Sep 15)
- Re: The VA Stolen Laptop - Lessons Learned Rockit (Sep 18)
  - Re: The VA Stolen Laptop - Lessons Learned MandommGmail (Sep 19)
- <Possible follow-ups>
- RE: The VA Stolen Laptop - Lessons Learned qxlr (Sep 14)
- Re: RE: The VA Stolen Laptop - Lessons Learned krymson (Sep 15)
- RE: The VA Stolen Laptop - Lessons Learned Scott Ramsdell (Sep 15)

(Thread continues...)