I have a dual boot set up and frankly im tired of constantly putting in the password for Windows so I took it off and set-up the BIOS password which when you turn on the machine sort of forces you to immediate type in the password.
1. Is the BIOS Password Gateway secure in your view?
2. Can a hacker for DOS / botnet still circumvent this?
3. In case of theft, (touch wood) is the BIOS effective or would you suggest true crypt?
Thanks!
hi !
a BIOS password canīt protect you when you are using your computer, it only protects when you start it.
some basic security:
use 2 accounts with good passwords, an ADMIN & a USER-account, both with good passwords.
for normal work always use the USER-account.
only use your ADMIN-account when itīs absolutely neccesary, fx. when doing lot of system manintenance etc.
use UserAccountControl (UAC), set it to max. (up)
a BIOS password is not good enough if you want to protect your data, you have to use encryption.
If you're talking about a desktop PC then the BIOS password is not secure at all should the computer be stolen - removing the button battery that saves the BIOS settings clears the password. Nothing short of full disk encryption will protect your data if the system is stolen.
To avoid typing a Windows password you could try Luxand Blink. This free utility will take a snapshot of your face and input the password when it recognizes you (webcam is necessary).
Bios passwords from what I've just read are definitely not enough even if removing or clearing the CMOS doesn't unlock the password.
Why because I found a site that lists manufacturers backdoor bios passwords used by them for testing purposes when they have a system with a bios password locked.
Now after reading this I wonder if I should remove the post that has them listed for a member who can't get into his.
Fabe
Last edited by thefabe; 14 Oct 2010 at 11:25. Reason: removed backdoor bios passwords from other thread.
Theres no security greater than actual physical security. With a bios password, all I'd need to do would be to take the hard drive out of the machine and place it into a different machine as a second drive. Or place it into a USB enclosure and access it as an external drive on another machine. Simple.
The only way to truly protect data on a hard drive is through encryption. I suggest you use Truecrypt to encrypt the entire drive.
You could really help us to help you by filling in your system specs.
HOW TO FILL OUT YOUR SYSTEM SPECS
In the line at the top of www.SevenForums.com you will see UserCP.
That is an abbreviation for User Control Panel.
Click on UserCP.
In the left-hand column, under Your Profile you will see Edit System Spec.
Click on Edit System Spec
You can copy and paste from the output of Speccy, Speccy - System Information - Free Download to fill out much of the info. Be sure to use the Other Info section of your System Specs for such info as your optical drive, your wireless adapter, your speakers, etc.
Securing your computer is similar to securing you house. Leave the door wide open if you live in the wide open spaces with nothing but you ,the cows, and your dogs around, otherwise, a few more precautions are prudent. How many depends upon where and to what extent you are willing to employ to protect your possessions.
I would give more specific advise, but your system specs are missing which are needed to make reasonable suggestions.
Quote