Non-Apple Products
I decided to take a Macbook Pro. I am attracted to the software creation culture on this platform, BSD-based, decent automation capabilities, convenient software, as well as significantly fewer unnecessary and unnecessary pieces.
Of course, before such a serious step as a platform change, I study the situation in detail. I wrote out my tasks, picked up software analogues, including those for mobile use. One of the tasks is to ensure the safety and security of information.
')
I pay great attention to security issues. Therefore, important information on my hard drive is encrypted, and I also make backups every day. They are also encrypted. If someone steals my laptop or external disk with backups, I can be calm about my passwords, correspondence, databases, accounts, customer access and other information that should not be distributed.
Apple fans claim that all Apple software works fine. Like, one supplier of hardware and software and all that.
I'm not used to believing sectarian fans of the brand, they say, “everything at Apple is thought out and simple.” As it turned out, for good reason.
1. The backups created by the vaunted Time Machine are not encrypted? Not at all. Anyone can take your external drive, connect it to your computer and merge everything to yourself. Fuck up, right?
2. If you enable the FileVault encryption system built into MacOS (it is logical to assume that the system created by the OS developers will work more reliably and quickly, so it’s possible to choose it), then you will not be able to make backup copies with the same on MacOS with Time Machine.
The system simply will not backup encrypted files if the user is logged in. Backup will start only when you ... attention ... attach the disk and begin to log out! In the process of logging out she backups.
Fuck you can. I can not imagine what the problem is to backup files when the user with access to them is in the system. What an enchanting idiocy!
Worse than only glossy screens (but here sober consumers of Apple products finally managed to break the resistance of sectarians, and they deigned to give a matte screen to a 15-inch MacBook Pro, at least as an option).
3. But that's not all. Praised Apple's convenience does not end there. Having made the same backup copies of the encrypted home directory, you will not be able to use TimeMachine to view their contents.
You can only restore everything at once. Even if you only need one file. To restore one file, you need to mount the image with Time Machine and use Finder.
So here you are, vaunted, raspiarennoe, sliced ​​through and pushed back by the convenience of Apple products blindly-enthusiastic fans!
But, to tear them through the knee, they made a visually destructive interface. And, of course, did not forget to release the next debilovy video Mac vs PC, where Mac shows a bunch of clones. Forgot only show hemorrhoids with the recovery of the encrypted directory backup.
It seems that for the normal solution of everyday tasks arising from any user who stores any serious business information on his laptop, Apple's built-in MacOS solutions will not work.
You will have to buy backups for an external screw with hardware encryption (preferably, otherwise you will have to bother with software encryption on your computer), and make backup copies with third-party software.
After all, if the documents stored in the user's encrypted home folder are available after login to all programs, then they will be available to any backup software. Oh yeah, not any. Apple made a program that can not work normally. Time Machine is called.
For dessert: there is no normal backup control in Time Machine. It is impossible, say, to exclude files by mask. They are there, apparently in Cupertino, completely moved on the basis of thinking different. Yes, and until recently, Time Machine stupidly did not see disks connected via USB to the AirPort in Apple!
1. For backups, an external disk with hardware encryption , which is preferable, either creating a TrueCrypt partition and then mounting it each time, which already tired me a little under Windows. It would seem to be a matter of three seconds, but annoying. And I do not like to strain.
2. The information on the laptop will be encrypted by the FileVault mechanism built into MacOS. I still naively assume that it will work faster and more reliably. I hope that Apple through the ass blinded only Time Machine, and FileVault works fine.
3. Self backup - by third-party programs. If I am logged in, all these programs will see my files in the encrypted home directory. And, unlike the fucking Time Machine, I will be able to view the contents of backups and restore files one by one, as I described.
If someone really likes Time Machine, instead of FileVault encryption, you can use, say, True Crypt or FDE software solutions from Checkpoint or PGP. Mount the encrypted partition when logging in, and already have user files in it. And then thefucking strange Time Machine will see and backup not the cutting from the sparse bundle, but the decrypted files, by the piece.
The ideal option would be to use transparent hardware encryption on external drives for backups and on internal drives. There would be a special controller that would request a password when the computer starts up, even before the operating system starts. And that this controller worked, without loading CPU. And then neither FileVault nor TrueCrypt would be needed.
So far, only one part of this system is available for Mac users: external drives with hardware encryption and biometric identification or USB token.
For PC, there are solutions like Seagate Momentus FDE. This is a hard disk with hardware AES encryption, in order to “password-protect” it and “unparry”, you need the computer's BIOS to support it. But I did not find the information whether EFI on Macbook Pro supports correct work with such hard drives. More likely no than yes. Apple will stumble rather than meet the users. They strangled twice before returning the matte screen to the 15-inch "proshkam."
By the way, no one knows if there are any changes in the upcoming release of Snow Leopard in this fucking Time Machine, except the possibility of copying the changed parts of the files?
And is it worth using FileVault? Or choose another system?
... look in the mirror ;-)
Of course, before such a serious step as a platform change, I study the situation in detail. I wrote out my tasks, picked up software analogues, including those for mobile use. One of the tasks is to ensure the safety and security of information.
')
I pay great attention to security issues. Therefore, important information on my hard drive is encrypted, and I also make backups every day. They are also encrypted. If someone steals my laptop or external disk with backups, I can be calm about my passwords, correspondence, databases, accounts, customer access and other information that should not be distributed.
Apple fans claim that all Apple software works fine. Like, one supplier of hardware and software and all that.
I'm not used to believing sectarian fans of the brand, they say, “everything at Apple is thought out and simple.” As it turned out, for good reason.
How did you get Apple, or did you know that:
1. The backups created by the vaunted Time Machine are not encrypted? Not at all. Anyone can take your external drive, connect it to your computer and merge everything to yourself. Fuck up, right?
2. If you enable the FileVault encryption system built into MacOS (it is logical to assume that the system created by the OS developers will work more reliably and quickly, so it’s possible to choose it), then you will not be able to make backup copies with the same on MacOS with Time Machine.
The system simply will not backup encrypted files if the user is logged in. Backup will start only when you ... attention ... attach the disk and begin to log out! In the process of logging out she backups.
Fuck you can. I can not imagine what the problem is to backup files when the user with access to them is in the system. What an enchanting idiocy!
Worse than only glossy screens (but here sober consumers of Apple products finally managed to break the resistance of sectarians, and they deigned to give a matte screen to a 15-inch MacBook Pro, at least as an option).
3. But that's not all. Praised Apple's convenience does not end there. Having made the same backup copies of the encrypted home directory, you will not be able to use TimeMachine to view their contents.
You can only restore everything at once. Even if you only need one file. To restore one file, you need to mount the image with Time Machine and use Finder.
So here you are, vaunted, raspiarennoe, sliced ​​through and pushed back by the convenience of Apple products blindly-enthusiastic fans!
But, to tear them through the knee, they made a visually destructive interface. And, of course, did not forget to release the next debilovy video Mac vs PC, where Mac shows a bunch of clones. Forgot only show hemorrhoids with the recovery of the encrypted directory backup.
It seems that for the normal solution of everyday tasks arising from any user who stores any serious business information on his laptop, Apple's built-in MacOS solutions will not work.
You will have to buy backups for an external screw with hardware encryption (preferably, otherwise you will have to bother with software encryption on your computer), and make backup copies with third-party software.
After all, if the documents stored in the user's encrypted home folder are available after login to all programs, then they will be available to any backup software. Oh yeah, not any. Apple made a program that can not work normally. Time Machine is called.
For dessert: there is no normal backup control in Time Machine. It is impossible, say, to exclude files by mask. They are there, apparently in Cupertino, completely moved on the basis of thinking different. Yes, and until recently, Time Machine stupidly did not see disks connected via USB to the AirPort in Apple!
What to do?
1. For backups, an external disk with hardware encryption , which is preferable, either creating a TrueCrypt partition and then mounting it each time, which already tired me a little under Windows. It would seem to be a matter of three seconds, but annoying. And I do not like to strain.
2. The information on the laptop will be encrypted by the FileVault mechanism built into MacOS. I still naively assume that it will work faster and more reliably. I hope that Apple through the ass blinded only Time Machine, and FileVault works fine.
3. Self backup - by third-party programs. If I am logged in, all these programs will see my files in the encrypted home directory. And, unlike the fucking Time Machine, I will be able to view the contents of backups and restore files one by one, as I described.
Another variant
If someone really likes Time Machine, instead of FileVault encryption, you can use, say, True Crypt or FDE software solutions from Checkpoint or PGP. Mount the encrypted partition when logging in, and already have user files in it. And then the
Perfect option
The ideal option would be to use transparent hardware encryption on external drives for backups and on internal drives. There would be a special controller that would request a password when the computer starts up, even before the operating system starts. And that this controller worked, without loading CPU. And then neither FileVault nor TrueCrypt would be needed.
So far, only one part of this system is available for Mac users: external drives with hardware encryption and biometric identification or USB token.
For PC, there are solutions like Seagate Momentus FDE. This is a hard disk with hardware AES encryption, in order to “password-protect” it and “unparry”, you need the computer's BIOS to support it. But I did not find the information whether EFI on Macbook Pro supports correct work with such hard drives. More likely no than yes. Apple will stumble rather than meet the users. They strangled twice before returning the matte screen to the 15-inch "proshkam."
By the way, no one knows if there are any changes in the upcoming release of Snow Leopard in this fucking Time Machine, except the possibility of copying the changed parts of the files?
And is it worth using FileVault? Or choose another system?
Before minus ...
... look in the mirror ;-)
Source: https://habr.com/ru/post/67242/
All Articles