• ShortN0te
    link
    fedilink
    arrow-up
    14
    arrow-down
    1
    ·
    8 months ago

    You didn’t store the key anywhere but on that disk.

    Windows does not let you store the recovery key on an encrypted drive.

    The rest only means, we need to deal better with our data. All the above basically also applies when you HDD or SSD dies, which can happen any time.

    Backups is what you need, not an unencrypted drive.

    • dvdnet62@feddit.nlOP
      link
      fedilink
      English
      arrow-up
      15
      arrow-down
      5
      ·
      8 months ago

      not everyone is tech-savvy like folks on Lemmy. you can tell that to your grandma or your parents to do that to do regular backup. That is why it could cause a headache for repair business

        • cm0002@lemmy.world
          link
          fedilink
          arrow-up
          6
          arrow-down
          3
          ·
          8 months ago

          No, but when their computer dies they’ll take it to someone who does (Paid or not) to “Get their precious grandbaby photos back”

          That person will inevitably ask for the key and Grandma is gonna go “What key?!?” And then when she’s told all those photos are lost she’s going to get pissed at the wrong person guaranteed.

          These are also the same people that never change defaults soo yea this is stupid, just leave it as an easily accessible toggle for anyone who wants or needs it, but the default should be off.

          • refalo@programming.dev
            link
            fedilink
            arrow-up
            2
            arrow-down
            4
            ·
            8 months ago

            They could add some kind of message that warns about this, but I think it’s a better idea to encrypt by default (warning or not) rather than not… at least for privacy reasons.

            • cm0002@lemmy.world
              link
              fedilink
              arrow-up
              5
              arrow-down
              2
              ·
              8 months ago

              It really doesn’t matter what message they show during setup, you haven’t worked tech support or computer repair have you?

              The non-savvy users rarely pay attention to shit, a message during setup will be nothing but a blip at best in their memory by the time something happens to the computer 2-4 years later.

              We’ve been telling non-savvy users to make sure they backup their shit for literally decades now, they still don’t. Not even macOS encrypts the user data partition by default, this is gonna be a shit show and hell desks and computer repair shops everywhere are on the front line.

              • refalo@programming.dev
                link
                fedilink
                arrow-up
                2
                arrow-down
                2
                ·
                8 months ago

                I consider that a separate issue.

                IMO OS vendors pushing for full disk encryption is light years better than simply shrugging and saying “well people might be dumb so we shouldn’t do it at all”.

                • cm0002@lemmy.world
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  8 months ago

                  Just turning it on for everyone like they’re planning is what I have issues with.

                  macOS does prompt the user to enable FileVault during initial setup, but it defaults to disabled. The other thing users do, is default to the default when they don’t understand something.

                  So by defaulting to disabled, not many people enable FileVault without actually knowing what it’s talking about. If they do know what it’s talking about then all’s good because they’ll probably actually write down the recovery key.

                  MS’s plan so far is “On the next update we’ll just turn it on for everyone everywhere and (maybe) display a fast message with a recovery key, YOLO”

                  • refalo@programming.dev
                    link
                    fedilink
                    arrow-up
                    1
                    arrow-down
                    2
                    ·
                    8 months ago

                    Maybe educating people about backups (in general) is a better approach than being averse to increasing security/privacy.

                    I still prefer MS pushing updates to people that never update vs the alternative of them getting viruses and such all the time. I just wish there was an easier way for advanced users to turn it off permanently, but it’s still not impossible so I still prefer this to people not updating at all.

        • Bartsbigbugbag
          link
          fedilink
          arrow-up
          1
          ·
          8 months ago

          No but they’re taking it to repair shops who then find that they can’t recover their customers data because it’s encrypted and then they lose al their photos and data they never backed up, because they’re not tech-savvy.

        • ReversalHatchery@beehaw.org
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          1
          ·
          8 months ago

          I don’t see what that has to do with the drive dying. Every drive dies at some point, even if left in it’s place

    • VeganCheesecake@lemmy.blahaj.zone
      link
      fedilink
      arrow-up
      4
      arrow-down
      1
      ·
      8 months ago

      Well, it kinda does. If you choose to print your keys, you can use print to file and safe them to the encrypted drive, if you really want to for some reason.

      • ShortN0te
        link
        fedilink
        arrow-up
        2
        arrow-down
        2
        ·
        8 months ago

        Yep but at this point it is obvious to the user that this is not the way it is supposed to be. When you want to shoot yourself in the foot…