this post was submitted on 04 May 2025

1208 points (96.9% liked)

linuxmemes

24808 readers

1478 users here now

Hint: :q!

Sister communities:

Community rules (click to expand)

1. Follow the site-wide rules

Instance-wide TOS: https://legal.lemmy.world/tos/
Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html

2. Be civil

Understand the difference between a joke and an insult.

Do not harrass or attack users for any reason. This includes using blanket terms, like "every user of thing".

Don't get baited into back-and-forth insults. We are not animals.

Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.

Bigotry will not be tolerated.

3. Post Linux-related content

Including Unix and BSD.

Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of sudo in Windows.

No porn, no politics, no trolling or ragebaiting.

4. No recent reposts

Everybody uses Arch btw, can't quit Vim, <loves/tolerates/hates> systemd, and wants to interject for a moment. You can stop now.

5. 🇬🇧 Language/язык/Sprache

This is primarily an English-speaking community. 🇬🇧🇦🇺🇺🇸

Comments written in other languages are allowed.

The substance of a post should be comprehensible for people who only speak English.

Titles and post bodies written in other languages will be allowed, but only as long as the above rule is observed.

6. (NEW!) Regarding public figures

We all have our opinions, and certain public figures can be divisive. Keep in mind that this is a community for memes and light-hearted fun, not for airing grievances or leveling accusations.

Keep discussions polite and free of disparagement.

We are never in possession of all of the facts. Defamatory comments will not be tolerated.

Discussions that get too heated will be locked and offending comments removed.

Please report posts and comments that break these rules!

Important: never execute code or follow advice that you don't understand or can't verify, especially here. The word of the day is credibility. This is a meme community -- even the most helpful comments might just be shitposts that can damage your system. Be aware, be smart, don't remove France.

founded 2 years ago

MODERATORS

poopsmith@lemmy.world

zephyr@lemmy.world

rtxn@lemmy.world

1208

Microsoft secured my files! (lemmy.world)

submitted 2 days ago by yesman@lemmy.world to c/linuxmemes@lemmy.world

226 comments fedilink hide all child comments

Back in January Microsoft encrypted all my hard drives without saying anything. I was playing around with a dual boot yesterday and somehow aggravated Secureboot. So my C: panicked and required a 40 character key to unlock.

Your key is backed up to the Microsoft account associated with your install. Which is considerate to the hackers. (and saved me from a re-install) But if you've got an unactivated copy, local account, or don't know your M$ account credentials, your boned.

Control Panel > System Security > Bitlocker Encryption.

BTW, I was aware that M$ was doing this and even made fun of the effected users. Karma.

(page 3) 50 comments

sorted by: hot top controversial new old

[–] phoenixz@lemmy.ca 55 points 2 days ago (4 children)

Meanwhile in Linux with luls, which I've had since a pre-pre-pre version somewhere back in the early 2000's, I can have multiple keys, all works like sunshine, never had problems.

On windows... So we work with highly sensitive data, and ever since I came in I thought it insane that people working remote don't have that highly sensitive data encrypted. We can't switch Linux yet, so okay, we go for BitLocker.

Boy oh boy oh boy was that a mistake.

50 remote users, 5 get encrypted devices with BitLocker as a trial and within a month, 3 of them already got locked up permanently because apparently it'll pwrma lock itself after x amounts of invalid passwords which is just incredibly stupid. But don't worry, there is a backup key! Yeah, that is lie 48 characters that we'd had to pass by phone and they have to type it flawlessly.

Suffice to say, the remote users will be running Linux soon, like it or not.

[–] starman2112@sh.itjust.works 25 points 2 days ago (5 children)

Yeah, that is lie 48 characters that we'd had to pass by phone and they have to type it flawlessly.

Wouldn't be so bad if everyone knew their Alpha Bravo Charlies

My one talent: alpha bravo charlie delta echo foxtrot golf hotel India Juliet kilo Lima mike November Oscar papa Quebec Romeo Sierra tango uniform Victor whiskey x-ray Yankee Zulu, typed using voice to text

[–] Empricorn@feddit.nl 4 points 1 day ago

Alpha bravo charlie Delta echo foxtrot golf hotel Juliet Lima kilo Manhattan November Ovaltine Papa Quebec Romeo Sierra Tatooine uniform Victor wet ass pussy x-ray yokai Zelda

I'm a little fuzzy on some of them...

load more comments (4 replies)

[–] lud@lemm.ee 6 points 1 day ago (1 children)

apparently it'll pwrma lock itself after x amounts of invalid passwords which is just incredibly stupid. But don't worry, there is a backup key! Yeah, that is lie

If you only used TPM for bitlocker with no pre-boot authentication or something similar, it's possible that you had the "MaxDevicePasswordFailedAttempts" policy configured. Apparently that is configured by default if you use the security baseline.

IMO it makes a lot of sense to lockdown and require bitlocker recovery if there has been a few failed attempts.

We use bitlocker on probably over 1000 devices I don't believe we had any substantial issues with it. Of course users occasionally get locked out, but that should be planned for and a process should be in place to help them.

I suggest deploying windows hello or smart cards to reduce the dependency on passwords. Window hello for business is especially great since it's free, secure and way easier and faster for users to use, especially if your devices have fingerprint readers or face recognition. I wish Linux and MacOS had anything as useful as Windows Hello.

load more comments (1 replies)

load more comments (2 replies)

[–] Godort@lemm.ee 52 points 2 days ago* (last edited 2 days ago) (1 children)

Not that it helps now, but you can also dump your bitlocker recovery key through powershell and save it independently.

(Get-BitLockerVolume -MountPoint "C").KeyProtector

[–] yesman@lemmy.world 27 points 2 days ago (2 children)

The control panel dialogue allows you to do this as well. Control Panel > system security > Bitlocker encryption. But it also has the superior option which is to turn it off.

I didn't loose any data BTW. I had my M$ account info, and a backup besides.

[–] dan@upvote.au 23 points 2 days ago (13 children)

But it also has the superior option which is to turn it off.

Why would you not want to encrypt your files? My Linux systems are encrypted too.

load more comments (13 replies)

load more comments (1 replies)

[–] DimFisher@lemmy.world 9 points 1 day ago (4 children)

I still don't understand why there is no other mainstream os in competition alongside MS except IOs, I wouldn't call Linux mainstream of course, don't you think that's a bit weird?!

[–] spicehoarder@lemm.ee 12 points 1 day ago (6 children)

Microsoft is almost good as dead. These days, Linux takes just as much maintenance as XP used to. They've got maybe 5 years left until laptops start shipping with alternatives to Windows. My bet is it's going to be SteamOS.

[–] superkret@feddit.org 3 points 1 day ago* (last edited 1 day ago) (1 children)

Microsoft is thriving and will continue to do so, just probably on machines running Linux.
They get paid $$ per month per employee by most businesses in the developed world.
There is a mature alternative to desktop Windows now. But there isn't for AD, Azure, Exchange, Kerberos and M365.

[–] spicehoarder@lemm.ee 2 points 1 day ago

My bad, I meant their consumer grade stuff.

I would generally agree with you on their cloud/server solutions. However, I do think AWS will get there some day.

load more comments (5 replies)

[–] Dragonstaff@leminal.space 6 points 1 day ago (4 children)

MS abused its monopoly in the 90s. The Clinton administration was too lenient, then the Bush admin kowtowed completely. Now, there's largely no chance for another operating system to compete.

load more comments (4 replies)

load more comments (2 replies)

[–] Mwa@lemm.ee 15 points 2 days ago (5 children)

Why cant windows copy luks and let you choose your own password

[–] Irelephant@lemm.ee 14 points 2 days ago (2 children)

because people will set hunter2 and be done with it.

[–] VitoRobles@lemmy.today 18 points 1 day ago (1 children)

How did you get my password?

[–] Achsonaja@sh.itjust.works 10 points 1 day ago

All I see is *******. What do you see?

load more comments (1 replies)

load more comments (4 replies)

load more comments