[Hard disk now corrupt]

McAfee now has a windows version of SafeTech which runs from a BartPE, but you still need the daily authorization code to get past the encryption.

 

 

I'll do that when I get home tonight

[Hard disk now corrupt]

I think you are wasting time trying to circumvent SAfeBoot encryption and tweaking the MBR and SFBR. Whenever a file is written to supported storage media the SafeBoot Content Encryption filter executes assigned encryption policies and encrypts the file if applicable. When an application later reads the file, the encryption filter automatically decrypts the file when it is read into memory. The source file always remains encrypted on disk.

When the application closes the file, the memory is wiped and the original file is still encrypted on disk. No decrypted traces of the file remain in RAM.

 

Encrypted folders and files are always visible to the user. Thus, the user can search for, and will recognize files and folders as before encryption. A small key hole icon can be optionally attached to the file or folder icon, marking it as encrypted.

 

You can create a policy from the SafeBoot Management Centre, and then create an install set from it. When the SafeBoot Content Encryption client then is installed, the user that logs on will be forced to retrieve the proper policy assigned to him/her in the central database.

 

With central management using the SafeBoot Administration System, and distribution of encryption keys using the secure SafeBoot Server, it is easy to allow sharing of encrypted files within an organization. By assigning groups of users to encryption keys, the users in the group can exchange and read encrypted files like any other file, without noticing any difference. Users not assigned to the key will not be able to read files encrypted with that key.

SafeBoot Content Encryption encrypts the Windows' pagefile. This feature is automatic and cannot be configured or disabled. The pagefile is encrypted with a temporary encryption key created at each boot occasion. Thus, the pagefile encryption key is discarded once the computer shuts down, while the pagefile still is encrypted.

 

The 'Safeboot' the original poster is talking about is a piece of encyption software which makes it's own modified version of MBR.

 

If you read what the poster said here

From what I can gather, Safeboot replaces the MBR with its own version. The Safeboot MBR loads the decryption driver which unlocks the drive and allows Windows to start up normally.

 

I am assuming that the modified MBR points to the physical location on the HDD where safeboot.fs is stored. As this file has been moved, the Safeboot MBR does not know where to find it.

 

You can now see what a difficult situation he is in.

 

But thanks for the MBRfix you posted anyway. It may help users who have that problem

[Hard disk now corrupt]

I'm running SafeBoot v5.2 on a Dell laptop and have had training from McAfee on it. Unfortunately, there is no way to gain access to an encrypted machine with out the daily access code from McAfee or a valid login ID on the machine with the SafeBoot client installed. This is client-server technology and a server administrator can reset the SafeBoot p/w if needed. From the SafeBoot Admin console, there is an option to decrypt the machine, but it has to be able to synch to the SafeBoot server to do that.

 

Neither resetting a p/w or having the daily code from McAfee will solve the problem of defraggler moving the safeboot.fs which sounds strange to me. I know of no way to move it back, if it actually was moved. McAfee SafeBoot tech support may help. In the admin guide I have the # is 877-330-2424 and supportus@safeboot.com I'm not sure who is responding to that or if it's from Control Break or McAfee... Good luck. I'm betting on a fdisk and reinstall solution is all you're going to be able to do. If that's the case, McAfee has a BartPE with WinTech (which requires the daily access code) to get you into a functioning encrypted hard drive to save data off before rebuilding.

 

YoKenny, my day-job involves databases and writing interfaces that exchange data with clients and suppliers. My company has allowed me to work-from-home a few days a week, so long as I can show that any data on my PC is secure. Hence the need for Safeboot.

 

I'm sorry, but I have neither the time nor energy to debate the merits of encryption with you right now.

 

 

Hazelnut, thanks for keeping this discussion on-topic. I also appreciate your suggestion of emailing encryption solutions. I will give that a go and see what develops.

 

 

 

I haven't been too diligent in my backups of late (I know ), so I really don't want to fdisk the PC and start again. If I still haven't resolved this a week from now, I think I will have to buy a replacement HDD to reinstall XP onto - and hope that I can recover the disk at a later date.

 

If I find a solution, I will update this thread. If you're reading this months/years from now and I have not replied, then assume the worst - you will need to reformat your drive.