Today i took my first steps into the world of Linux by creating a bookable Mint Cinamon USB stick to fuck around on without wiping or portioning my laptop drive.

I realised windows has the biggest vulnerability for the average user.

While booting off of the usb I could access all the data on my laptop without having to input a password.

After some research it appears drives need to be encrypted to prevent this, so how is this not the default case in Windows?

I’m sure there are people aware but for the laymen this is such a massive vulnerability.

  • ReversalHatchery@beehaw.orgEnglish
    0·
    19 hours ago

    they’re not doing this for your security. They want to know that your computer is a “trusted platform”.

    security in terms of Trusted Computing is never about your security, and neither about your trust

    EDIT: Further lunatic conspiracy theories: BitLocker is/will be backdoored so Microsoft forcing you into that ecosystem further guarantees they have access to your system. This all stinks to me, like your landlord telling you how you can arrange the furniture in your own apartment.

    a backup of your bitlocker key is in your Microsoft account, and normally nowhere else. It’s pretty easy for Microsoft to lock you out of your ow computer and data completely, if they wanted. Because you supposedly violated a license, or the terms of use or anything. just sayin’, Microsoft already has (and had for a few years now) a scandal about extorting for your personal phone number by locking down your account a few days after registration, until you hand it over. and even there they justify it with a ToS violation, which is just a lie

    • audaxdreik@pawb.socialEnglish
      0·
      19 hours ago

      For those not in the know, “Trusted Computing” is a very specific THING and maybe not what you’d expect, https://en.wikipedia.org/wiki/Trusted_Computing

      TC is controversial as the hardware is not only secured for its owner, but also against its owner, leading opponents of the technology like free software activist Richard Stallman to deride it as “treacherous computing”,[3][4] and certain scholarly articles to use scare quotes when referring to the technology.[5][6]

      You can pretty much guess where I land.

      a backup of your bitlocker key is in your Microsoft account, and normally nowhere else. It’s pretty easy for Microsoft to lock you out of your ow computer and data completely, if they wanted.

      You make a good point, I’m missing the forest for the trees. Why even bother theorizing that BitLocker may be compromised when they’re removing local accounts for consumers and forcing the key to be uploaded to their servers anyway?

      • catloaf@lemm.eeEnglish
        0·
        19 hours ago

        They’re not forcing it. You can still create local accounts (though it takes some work) and it doesn’t require you to upload any keys. I have bitlocker enabled with a local account and no Microsoft account connection.

        • ReversalHatchery@beehaw.orgEnglish
          0·
          4 hours ago

          they are forcing it. if you are not determined, you won’t be able to get an offline account. many are not determined. many don’t even realize that it’s not for their benefit, even after onedrive starts announcing it daily that their drive is full