undefined | Better HN

0 pointsdark-star1mo ago0 comments

I mean, the super-easy option would be to just use BitLocker for FDE. No hassles, just works. But I fugured since everyone here on HN hates MS I wouldn't even bring that up. Don't trust MS? Enroll yourown keys

0 comments

rstat11mo ago

Yes use Bitlocker, the thing that uploads the encryption key to OneDrive "for convenience" thereby negating the whole point of FDE in the first place

dark-starOP1mo ago

by default, yes. Can be disabled with a single click. That's something that even your Grandma can do, as opposed to installing VeraCrypt (with dozens of options on what to encrypt, and how, and when, ...)

rstat11mo ago

Well no actually I do not think either of my granmothers could have done that, nor would they have even known (or cared) what a Bitlocker even was.

j / k navigate · click thread line to collapse

0 comments

rstat11mo ago

Yes use Bitlocker, the thing that uploads the encryption key to OneDrive "for convenience" thereby negating the whole point of FDE in the first place

dark-starOP1mo ago

rstat11mo ago

Well no actually I do not think either of my granmothers could have done that, nor would they have even known (or cared) what a Bitlocker even was.

j / k navigate · click thread line to collapse