this post was submitted on 14 Aug 2024
297 points (97.4% liked)

Technology

58009 readers
2949 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
297
Microsoft is enabling BitLocker device encryption by default on Windows 11 (www.theverge.com)
submitted 4 weeks ago by mr_MADAFAKA@lemmy.ml to c/technology@lemmy.world
115 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] jeena@piefed.jeena.net 118 points 4 weeks ago (3 children)

Perfect, this will finally lock out all the old people of their devices because they forget their bitlocker password :D

[–] 30p87 67 points 4 weeks ago (3 children)

I guess they'll use TPM. I'm so excited to tell half of my "clients" (all seniors in the village) that they are fucked because their Laptop died.

[–] wizardbeard@lemmy.dbzer0.com 49 points 4 weeks ago (1 children)

Yeah, this makes sense for corporate environments with keys backed up to a centralized location like Active Directory. Not for consumers with no reasonable way to keep some key like this in a safe place as a "break glass in case of emergency" option.

[–] Romkslrqusz@lemm.ee 43 points 4 weeks ago (2 children)

It backs up to the Microsoft Account

Still, some people create an @outlook.com email, set up no recovery options, forget the password, and find themselves locked out.

[–] catloaf@lemm.ee 9 points 4 weeks ago (3 children)

How do you get to your Microsoft account when your computer is locked?

[–] AnyOldName3@lemmy.world 14 points 4 weeks ago (1 children)

If you're doing things properly, you'll know your Microsoft account password or have it in a password manager (and maybe have other account recovery options available like getting a password reset email etc.), and have a separate password for the PC you're locked out of, which would be the thing you'd forgotten. If someone isn't computer-literate, it's totally plausible that they'd forget both passwords, have no password manager, and not have set up a recovery email address, and they'd lose all their data if they couldn't get into their machine.

[–] catloaf@lemm.ee 2 points 4 weeks ago (1 children)

Even if you have your Microsoft account password, it doesn't help when you can't even boot into Windows.

[–] 9point6@lemmy.world 12 points 4 weeks ago* (last edited 4 weeks ago) (1 children)

Most people have smartphones these days where they would be able to log into their account and grab the recovery key if it's backed up. If they don't have a phone, they will know someone that does, or a library with a computer.

Bear in mind that non-techy users don't get the option to opt out of a Microsoft account in the OOBE now, so most should have their key backed up without thinking about it

[–] catloaf@lemm.ee 3 points 4 weeks ago (1 children)

Do they also know their password? Hopefully they didn't save it on the PC that is now locked (a lot of them probably did, if they saved it at all).

[–] 9point6@lemmy.world 11 points 4 weeks ago

A Microsoft password is more recoverable than a lost bitlocker recovery key.

Also, it feels worth highlighting that every other OS targeted at general consumers encrypts user data by default. Microsoft is really just getting up to speed with where everyone else was like 5 years ago.

[–] T00l_shed@lemmy.world 7 points 4 weeks ago (1 children)

Many people will have access to a secondary device, not all of course.

[–] halcyoncmdr@lemmy.world 6 points 4 weeks ago

Almost everyone has access to a phone. Most governments, including the US provide free or low cost smartphones to those who can't afford it. There are entire MVNO carriers based around this, like Assurance wireless.

[–] lud@lemm.ee 6 points 4 weeks ago

A phone or another computer?

[–] exu@feditown.com 5 points 4 weeks ago

Microsoft fucked that up in the Home edition, where the key in your account won't work.

Timestamp 8:48 in this video
https://youtu.be/pIRNpDvGF4w

[–] lemmyvore@feddit.nl 26 points 4 weeks ago (1 children)

You don't need your hard drive if all your files have been secretly moved to OneDrive taps forehead.

[–] mrvictory1@lemmy.world 10 points 4 weeks ago

All 5 GB of them. Wait ...

[–] curry@programming.dev 5 points 4 weeks ago

Oh, I can just imagine. Customers getting angry that their tech support cannot "just simply" recover their files like they used to and accuse them of scamming. Fucking thanks, Microsoft.

[–] Brkdncr@lemmy.world 16 points 4 weeks ago (2 children)

Keys are backed up to their MS account by default.

[–] NaibofTabr@infosec.pub 4 points 4 weeks ago (1 children)

local accounts only

[–] Brkdncr@lemmy.world 7 points 4 weeks ago

It’s hard for the average windows user to make a local account

[–] dogslayeggs@lemmy.world 3 points 4 weeks ago (1 children)

Unless you don't have an MS account or only set up a dummy account just to get the stupid OS to activate and have never used once since.

[–] stephen01king@lemmy.zip 1 points 4 weeks ago

Wel then, either get a Microsoft account that you remember the password to or don't use Windows since they are pushing hard for this type of security. Linux is completely free for people who don't like the way Windows is heading towards.

[–] NeoNachtwaechter@lemmy.world -5 points 4 weeks ago

Then somebody can sell new devices to them and M$ can sell new windows with it.

Win-win-win-win....