How long will my conversion to filevault take?

Discussion in 'Mac OS X Lion (10.7)' started by GuitarG20, Oct 21, 2011.

  1. macrumors 65816

    GuitarG20

    Joined:
    Jun 3, 2011
    #1
    So after watching what my friend did with another friend's laptop, I want to enable filevault on my MBP. my question is: my hard drive has ~210 Gigs of stuff on it. If I enable filevault, how long will it take to encrypt the drive? and will using filevault cause any slowdowns to the computer?

    MBP 8,3: 2.2 i7, 8Gigs RAM, 750 Gig 5400 RPM HDD, HD 6750 (duh)
     
  2. macrumors 68030

    Joined:
    Jan 20, 2010
    Location:
    Terra
    #2
    First off, what did your friend do? I'm curious...

    There shouldn't be any significant slowdown once it's all encrypted. It will take a long time to encrypt all that data, though. Better let it run overnight...
     
  3. thread starter macrumors 65816

    GuitarG20

    Joined:
    Jun 3, 2011
    #3
    he used a linix liveCD to figure out the password to another friend's computer... I dunno if filevault will actually help with that but i figured it would be a good idea to enable it anyways.

    okay, thanks for the info! i'll let it run overnight tonight.
     
  4. macrumors 68030

    Joined:
    Jan 20, 2010
    Location:
    Terra
    #4
    Depending on how he did it, FileVault may or may not help. If he was able to somehow source the password from tables or some file on the HDD, FileVault will help. If he just brute-forced the password (meaning the computer tried every permutation of characters until it got it right) then making a longer and more secure password will help far more than FileVault, which wouldn't help at all. All passwords can be broken with the brute force technique.

    The main thing with FileVault is to either comply with security requirements for a job or something like that or to keep your data safe(r) if someone steals your computer.
     
  5. thread starter macrumors 65816

    GuitarG20

    Joined:
    Jun 3, 2011
    #5
    he used rainbow tables... so does this give me more protection?

    and yeah i wanna keep this thing as secure as possible... given it's gianticness it's a relatively good find for thieves 0.o
     
  6. macrumors 68000

    Joined:
    Mar 30, 2011
    Location:
    NY USA
    #6
    Having File Vault does not make your machine less likely to be stolen, it just means your data is safer, if someone steals your computer there is still a chance they will get to your data by getting the password. Of if your data is not interesting, they can just wipe your drive and install the OS fresh and boom, a nice usable PC for free.

    SO you should ask yourself, what are you trying to protect? If you keep all of your login data in something like 1Password with strong passwords and if your master password for 1Password of Keychain is strong and different from your login password and if you do not enable auto login for any sites from your browser, you really do not need FIle Vault running. It is nice to have, but not required.
     
  7. thread starter macrumors 65816

    GuitarG20

    Joined:
    Jun 3, 2011
    #7
    I understand that it can still be stolen, but I do have sensitive things on it, so I want to make it hard for anyone to get them off the drive.
     
  8. Queen6, Oct 22, 2011
    Last edited: Oct 22, 2011

    macrumors 68020

    Queen6

    Joined:
    Dec 11, 2008
    Location:
    Behind the Great FireWall
    #8
    Find my Mac - Remote Wipe, for me the data outweighs the cost of the machine more than tenfold. Physical security is the key, and I am not talking about a "Kensington Lock" etc.

    Anything derived from software can be defeated by software given time. A firmware password will present a significant obstacle for those looking to run third party software to "open" the OS, File Vault will add an additional layer of protection.

    If security is the concern, you have to protect the system at the lowest level first, if anyone can access the OS, they can potentially crack passwords etc, Firmware Password is a must..
     
  9. macrumors 68030

    Joined:
    Jan 20, 2010
    Location:
    Terra
    #9
    Essentially what he used was a table that has a ton (and I mean a TON) of pre-compiled character combinations and the program quickly went through them all until it got the right one. You can't protect against that with FileVault. It's basically guessing your password until it gets it right.

    This assumes that someone is actually connected to the internet. It's a great feature, but anyone who knows what they are doing and is trying to steal information would certainly not connect to the internet with a stolen computer. That's just plain stupid.

    +++

    This is great advice. Follow it if you're concerned about security. Search for "Open Firmware Password" to get better results.
     
  10. macrumors 601

    Mr. Retrofire

    Joined:
    Mar 2, 2010
    Location:
    www.emiliana.cl
    #10
    Rainbow tables have a complexity limitation, which means that it is impossible to crack long passphrases, but it is possible to crack shorter low complexity passwords. I'm a long time PGP user (now Apple encrypted sparse images, created with Disk Utility) and the best thing you can do, is to increase the complexity of a possible attack via a long passphrase instead of a "simple" password.
     
  11. macrumors 601

    Mr. Retrofire

    Joined:
    Mar 2, 2010
    Location:
    www.emiliana.cl
    #11
    You can protect your data with Lions FileVault! Rainbow tables have nothing to do with brute force attacks (you try to imply that). FileVault in Lion, if used with a long and complex passphrase (not only a password) can protect your data. You should shutdown your Mac, if you do not use it, because it is possible to copy the password/passphrase/hash value from the memory via DMA (FW800). Thunderbolt uses also DMA like FW800.
     
  12. macrumors regular

    Joined:
    Dec 7, 2003
    Location:
    Florida - USA
    #12

    Does applying an open firmware password prevent someone from wiping the HDD and just installing a fresh OS?
     
  13. macrumors 68000

    Joined:
    Mar 15, 2010
    Location:
    America(s)!
    #13
    I would be cautious with file vault 2 on Lion. Many of us who still had crashing problems after the 2010 MBP patch the other day discovered we were all running FV2. Removing the encryption stopped the crashing (so far, knock on unibody aluminum).

    I will say it feels faster with fv2 off, less beach balls, etc. I thought lion sucked pretty bad, but I turned on FV2 the first day. This may all just be a factor of not rebooting from a crash every few hours though :).

    I should add this is one the 2010 MBP and all the people I am aware of with FV2 problems are also on 2010 MBP, so if you have something else, it will likely not effect you.
     
  14. thread starter macrumors 65816

    GuitarG20

    Joined:
    Jun 3, 2011
    #14
    I have a 2011, and so far i have no problems. It took about 8 hours to encrypt the drive contents.
     
  15. macrumors 68030

    Joined:
    Jan 20, 2010
    Location:
    Terra
    #15
    Yep, I didn't quite understand what Rainbow tables were. My bad.
     

Share This Page