Do you wonder if the data on your hard drive is truly protected from technological intruders? Apple has produced a variety of resources that can protect your files from unwanted hard drive peepers. However, just how secure are these methods of file protection?
First, let’s look at the most common form of user file protection: the administrator password. Created when Mac OS is initially installed, this password prevents unauthorized users from accessing the files on your account… or does it? A simple click in the Reset Password Utility after booting from the Mac OS DVD proves otherwise. As long as the DVD is the correct version of Mac OS, it can boot any system with that corresponding OS. Resetting the password only requires entering a new password, which becomes the new administrator password. So basically, all anyone would need to access an account that is simply password protected is the correct version of Mac OS installation DVD (this can also be accomplished using a string of commands in Single User mode—no DVD needed!). One thing to note is that the Keychain Access utility will not be viewable with this new password.
Now is when all the extra-protected Mac users say “Hah! everyone knows that. That’s why all my files are heavily protected by a firmware password.” In which case the intruder would pull out one stick of RAM, and boot the computer, bypassing the firmware password.
Now the real heavy hitters come out. FileVault is a file encrypting tool that works on the corresponding user’s home folder, encrypting it when the user is logged out. Nothing is for sure, but as far as the research I have done, FileVault is basically un-hackable. Knowing this, if you decide to use FileVault on your account, you had better remember that password.
So, are you using adequate protection? The first question I asked myself while trying to accurately answer this was: Do I really care if someone could potentially have access to my files? The answer is no. So in short, am I protected from potential technological intruders? Nope, not really, my information may be easily hacked into. However, is my protection adequate enough for the sensitivity of the files on my hard drive? Totally. Not satisfied? Well, if you truly believe the data on your hard drive is sensitive enough to warrant it, then FileVault it up.