Erik Anderson wrote: >>What is the consensus of the group on the use of whole disk encryption in >>an enterprise environment? > > > Why? You only need to protect the data not the whole OS. It causes too many > problems. I don't recommend creating a headache for yourself when you only > need to protect some data.
Where the problem exists is what keeps a user from saving to the unencrypted partition? Sure you can have permissions that don't allow you to save in certain places, but your going to need permissions somewhere on the os partition. I'm sure I'm not the only one, but I have found that if a user can do something, they will. -- Nathaniel Hall, GSEC GCFW GCIA GCIH --------------------------------------------------------------------------- ---------------------------------------------------------------------------
