Boot Camp v3.0 - Deny access to Mac/Win Partitions from either side?

Discussion in 'Windows, Linux & Others on the Mac' started by Sowelu, Oct 26, 2009.

  1. Sowelu macrumors regular

    Sowelu

    Joined:
    Aug 15, 2008
    Location:
    New York City
    #1
    I have a MacBook Pro with Snow Leopard, and Windows 7 Premium installed via Boot Camp v3.0 (equal 64GB partitions on a 128GB SSD). Both OS’s are running fast and smoothly without any major issues – except for the following:

    - When I am logged into Snow Leopard, I can open and access all the folders and files for all users on the Windows 7 partition (but you cannot write to them).

    - When I am logged into Windows 7, I can open and access all the folders and files for all users on the Snow Leopard partition (but you cannot write to them).

    I need to stop this accessibility (even if it’s just on one side). Does anyone know how? All accounts have passwords on them, and it doesn’t matter whether the logon is an admin or a regular user, files can be accessed and viewed on each OS partition from both sides regardless.

    Is this a huge flaw, or did Apple do this on purpose? Why bother setting up logons and passwords with file and folder restrictions within each OS, only to be able to (easily) access all these files and folders while logged on to another OS?

    Anyone know how to break this link? In my mind, while in Snow Leopard, when I click on a Windows 7 Admin user’s folder, I should be getting a message stating that access is denied (and vice versa when logged into Windows 7). I think that file viewing should be limited to Shared Folders only.

    Is it just me? Am I doing something wrong? :confused:
     
  2. rgarjr macrumors 603

    rgarjr

    Joined:
    Apr 2, 2009
    Location:
    Southern Cal
    #2
    On OSX, you need to install MACFUSE which will allow to write to your NTFS partition.

    On Windows, you can only read the HFS partition, you can't write to it.
     
  3. gorjan macrumors 6502

    Joined:
    May 16, 2009
    Location:
    CPH
    #3
    That seems like a HUGE security flaw... :eek:

    You can probably secure the files by enabling FileVault, but at the cost of hourly TimeMachine backups.
     
  4. Apollo33 macrumors regular

    Joined:
    Jun 26, 2007
    #4
    FileVault is one way to encrypt, though if you just want to keep them from seeing the files (and not necessarily encrypting them)... Try selecting your home/user folder, pushing Cmd+i ("Get Info"), and then adjusting the "Sharing and Permissions." By default, my admin user folder lets EVERYONE have read access. This is probably what you want to do.

    Windows should have similar protection offered for user data. I think it's automatically turned on for admins, as you seemed to note. For other users, there's likely some way to enable encryption/protection of user folders... but seeing as I'm the only one using my MBP, I haven't really bothered to look.

    I, personally, like this. I'd hate to be unable to access my Mac's home folder while in Windows... since I'd then be unable to play songs that I've ripped to iTunes.

    I don't really see it as a security "flaw" since it seems like normal behavior. Unless you encrypt your files, you should expect that someone can get to them. Granted, even if you encrypt your files... it's still likely that someone can get them if they have physical access to your machine. (which is one of the reasons I tend not to worry about encryption)
     
  5. GeeYouEye macrumors 68000

    GeeYouEye

    Joined:
    Dec 9, 2001
    Location:
    State of Denial
    #5
    Find AppleMNT.sys (extension may not be visible), and rename it or remove it.
     

Share This Page