this post was submitted on 14 Aug 2024
300 points (97.5% liked)

Technology

59675 readers
4954 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] Magister 51 points 3 months ago (3 children)

It's good, for privacy and all of course, but I remember here a Dell BIOS upgrade that basically wiped the TPM2.0 and so windows was asking for the recovery bitlocker key at boot. I have them on a encrypted USB key and anyway I can access my MS account from another device to find the key and type it.

But I'm sure a lot of people will basically say "well, fuck, I don't have the key", guaranteed.

[–] [email protected] 24 points 3 months ago (3 children)

Which brings me to the question, how is Microsoft doing this, where will people's keys be located? Do they force everybody to put in an USB stick?

[–] [email protected] 15 points 3 months ago

If you have a microsoft account that you've attached to at least one windows profile, then that machine has been registered to that account, and the bitlocker key will be stored and kept to be viewed and retrieved by logging into their microsoft account, if the machine has not been registered to a microsoft account you will either have to have jotted the very lengthy key down or have saved it to a usb

[–] [email protected] 6 points 3 months ago

From what I can tell when a customer brings in a computer they can't boot and give me a look of "what did you just say to me you little shit" when I ask them if they can log into their microsoft account, they don't give you a key.

[–] [email protected] 3 points 3 months ago (1 children)

I always worry the the backup USB drive would be dead.

I guess I'm one minority but kind of like an ability to fetch the key from the web. Doing that securely of course can be tough.

[–] [email protected] 3 points 3 months ago

Web. USB. Printout in a safe. On my phone. In Keypass. Etc, etc.

I'm not relying on a single copy.

[–] isles 1 points 3 months ago (1 children)

Where's your encrypted USB recovery key stored?! Is it encrypted USBs all the way down?

[–] Magister 1 points 3 months ago

volume encrypted with veracrypt, it asks for a password to be mounted