Do you use Client Security Solution?

Message

turbolium · #1 Post by **turbolium** » Tue May 09, 2006 4:30 pm

Do you use Client Security Solution?

Just installed it and it seems that my computer is a bit slower.
Thinking if i should keep it or lose it, since its my personal computer and i dont have too much "confidential" information on it.

christopher_wolf · #2 Post by **christopher_wolf** » Tue May 09, 2006 4:38 pm

I use it for my passwords and sensitive research data. Never know what could happen to it in the future; so I make a point of being prepared in terms of security.

If you don't want CSS, you can still use the FPR and its features as well.

#3 Post by **GomJabbar** » Tue May 09, 2006 4:46 pm

Heck no

I've got no military, government or company secrets to keep. No passwords are stored on my ThinkPad except a couple of non-critical ones.

I'm more worried of losing my data to CSS than to a thief.

turbolium · #4 Post by **turbolium** » Tue May 09, 2006 4:48 pm

What about securedrive (enscripted folder or what ever its called)

Is it simular to VirtualCD???

because i found that there is a feature there I can unmount it

just curious if it safe in because if i would want to put something in it i would not want to lose it )

ThinkPad R · #5 Post by **ThinkPad R** » Sun May 14, 2006 12:44 pm

The reason why CSS is critical is because this is the only solution to fighting spyware that keeps track of the keys that you type.

This means that somebody could logon into one of your forum accounts, make a mess, and lead to the deletion of your account by the forum advisors.

You could also store your credit card number here. you don't have to type your credit card number every time you shop.

Only thing that you reveal is the CSS password that you type everytime.

but that's ok as long as the person who is spying on you doesn't steal your computer -which is about 1/10000000000000000000000000 chance that it would ever happen.

christopher_wolf · #6 Post by **christopher_wolf** » Sun May 14, 2006 4:37 pm

ThinkPad R wrote:The reason why CSS is critical is because this is the only solution to fighting spyware that keeps track of the keys that you type.

Not quite, there are other ways around this and simply having a keylogger doesn't mean you get *useful* information; sure, you get data, but without context it is quite meaningless.

ThinkPad R wrote: This means that somebody could logon into one of your forum accounts, make a mess, and lead to the deletion of your account by the forum advisors.

Really now? I seem to remember something along those lines happening around here; but perhaps it is just all the other stuff I have to deal with on my networks creating noise in my head. Either way, it doesn't stop all access to an account you have on a remote system as the System Admin or Operator has access to such data. Rather, it mitigates the possibility of such an event happening from the connection point of the end-user only. Unless, of course, there is a complex authentication system that makes limited use of any resources not on your system which would be controlled tightly by CSS. The security of the connection and transfer is only as good as the weakest link.

ThinkPad R wrote: You could also store your credit card number here. you don't have to type your credit card number every time you shop.

Only thing that you reveal is the CSS password that you type everytime.

That is the idea behind CSS, you have a very secure "home base" for your sensitive data (passwords, path names, scripts, etc) and to avoid any real "middle-men" interception scheme, although all of that gets weakened when the remote system you are accessing doesn't implement encryption or any other methods of protecting the data in transit; security, in this and most other cases, is a two way deal. On effort on one end can be negated by lack of effort on the other. The only thing you can really "guarantee" with CSS is that somebody else, accessing you computer, cannot get at your sensitive information directly.

dorin · #7 Post by **dorin** » Sun May 14, 2006 5:23 pm

i use the old version of css, as long as i dont have any fingerprint reader on my x40, and mostly because is waay much faster than the new one, and i didnt like the new feature with secure drive, sometime you need more lor less space, having an predefined space limit its annoying.

not that you might have government papers but scanned passport, id, confid contracts is not a good idea to be accessable to anyone (including sometimes bored guys at the it dept)

now a question which bothers me for a while. if i send an encrypted file to somebody for ex how can that pers open it? by sending the key from my laptop? wont that override his key?

thanks,

dorin

christopher_wolf · #8 Post by **christopher_wolf** » Sun May 14, 2006 5:58 pm

dorin wrote:i use the old version of css, as long as i dont have any fingerprint reader on my x40, and mostly because is waay much faster than the new one, and i didnt like the new feature with secure drive, sometime you need more lor less space, having an predefined space limit its annoying.

not that you might have government papers but scanned passport, id, confid contracts is not a good idea to be accessable to anyone (including sometimes bored guys at the it dept)

now a question which bothers me for a while. if i send an encrypted file to somebody for ex how can that pers open it? by sending the key from my laptop? wont that override his key?

thanks,

dorin

Hey, bored network operators need to have some fun too! You can't believe all the juicy tidbits that get picked up sometimes; although it is a 1:10 ratio of interesting to boring stuff...but I digress

If you encrypt a file on your system, I am pretty sure that it can only be un-encrypted on your system. There is no way to do a keysend in CSS as far as I know. You could, I think, set up something like PGP...but oyu would have to do all the work involved with the pairing and public/private keys yourself as CSS doesn't have any automated anagalous features like that.

DavidNZ · #9 Post by **DavidNZ** » Sun May 14, 2006 11:41 pm

Don't use CSS. I use SplashID for passwords, etc. and am experimenting with TrueCrypt these days. Quite nice.

davidspalding · #10 Post by **davidspalding** » Mon May 15, 2006 9:42 am

Use it. Not only does it add value to my FPR, I'm using it more and more for username and password values on the many sites I visit. No slow-downs noted, though it takes a moment to load on login.

[edit] P.S. I've also used a password-protected Word doc for all my passwords, IPs, etc. Has come in handy on a few occasions when I needed to remember a password from 2 years before. (Now before anyone tells me how insecure Word's security is, I need to point out that I have several layers of security in front of that .DOC. I don't need lecturing thankyouverymuch.)

t20user · #11 Post by **t20user** » Tue May 16, 2006 1:42 pm

I use Keepass for internet pwds. It is better than a txt file. Anyone else use this?

iminj · #12 Post by **iminj** » Tue May 16, 2006 4:46 pm

I also use Keepass for my internet passwords.

For file encryption, I use TrueCrypt to encrypt a 1Gb partition on my hard drive. Simple, and secure.

I've downloaded and looked at CSS several times - and frankly, its complexity scares me away from using it.

#13 Post by **GomJabbar** » Tue May 16, 2006 8:13 pm

It's neck-in-neck, and the No's are leading by a nose!

vital-analitix · #14 Post by **vital-analitix** » Tue May 16, 2006 8:30 pm

DavidNZ wrote:Don't use CSS. I use SplashID for passwords, etc. and am experimenting with TrueCrypt these days. Quite nice.

Have been using truecrypt for a long time and am a happy user of it. Another item to consider experimenting with is stenography (hiding data in a picture).

Bestcrypt is something I sued in the past but it is paid software. The same firm has bcarchive which is nice to and it is free.

Only trouble with all this stuff is that these days it is easy to get somewhere a hidden camera and record what you are doing.

edit: I voted no, although I have used it and found it not very practical in case recovery is needed or when requiring synchronisation between my computers: I have all remote logging in etc turned off and the only way I sync is by using the UltraBay HD. Am paranoid about security.)

Marinus
(Wellington, NZ)

davidspalding · #15 Post by **davidspalding** » Tue May 16, 2006 10:14 pm

iminj wrote:I've downloaded and looked at CSS several times - and frankly, its complexity scares me away from using it.

I felt that way when I got my TP. Once I waded in, though, it turned out to be a very simple thing to use.