Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Resolved Question

NTFS Security Question

Jan 20, 2012 3:48PM PST

How do I move a NTFS formatted HD from one PC to another and still maintain security? I am using my Windows Vista PC as a backup server for my laptops as well as media servers for Logitec and Western Digital players. So I use external USB HDs for redundant file copies. These external HDs have the NTFS format, and only I and "SYSTEM" have access to the files.

Discussion is locked

vett93 has chosen the best answer to their question. View answer

Best Answer

- Collapse -
You can't. Here's my test.
Jan 21, 2012 1:41AM PST

Our IT staffer (still pretty green) thought they could maintain security like that. I plugged the drive into my machine running Ubuntu and it was able to get to all the files without any problem.

They said I had to run Windows. So I did that too. Just one more step which was to Take Ownership and no problem.

-> At this point I want to remind everyone these are Personal Computers. The entire design was for you, the owner, the person who has physical access to the hardware to be able to do this.

Some IT staffers have forgotten that.
Bob

- Collapse -
Take ownership?
Jan 21, 2012 2:49AM PST

Where do I go to do "take ownership"? Thanks.

- Collapse -
Here's a link about that.
Jan 21, 2012 2:51AM PST
- Collapse -
Thanks Bob and Jimmy.
Jan 21, 2012 3:32AM PST

Useful info to know!

- Collapse -
Answer
Any other PC
Jan 20, 2012 9:20PM PST

Any other PC would need to have the exact same user account info on it for things to work as you want.

So if you have a user account with the name "joe" and you want to use the drive on another computer, that computer would also need a user account named "joe", and you'd need to be logged in as "joe" to access it seamlessly. Even then there's really no guarantees. Security and usability are often on opposite ends of the spectrum, so to have more of one, you give up some of the other. You'll have to find some kind of happy balance that works for you between those two.

- Collapse -
Answer
To move from one pc to another and ...
Jan 24, 2012 6:40AM PST

maintain security you must first have identical user accounts on every pc the hard drive will be connected to.

Then the hard drive MUST be mounted in a removable cassette (need not be plug and play if cold booting each time.

Then, whenever the pc is not in actual use (operator sitting right there in front of it) you must remove the drive and lock it in the safe.

You must also limit the users or groups that have the right to take permission of files and folders.

You should also take great care to not share the drive on the network.

This will work if you are prepared to always ensure that all of the above is followed religiously because if a user steps away from the computer without removing and securing the drive the security settings will not necessarily apply as anyone with physical access could bypass with another OS.