500gb or 1tb m2. SSD Recommendation?

The first thing I do, turn off drive encryption. Don't have a use for technology which can shut me out of my DATA.

 

And depending on drive it can cracked... tests on the 840 EVO, MX300 and some others showed vulnerbilities in SED, where software encryption was reccomended... One of the articles stated many more SSD models from other vendors maybe affected as well. Below is one of the articles from that time:

https://www.computerworld.com/artic...dvises-you-switch-to-software-protection.html

"Microsoft’s solution is to unencrypt any SSD that implements self-encryption, then re-encrypt it with software-based encryption. Performance takes a hit, but data will be protected by software, not hardware." -Computerworld

Of course I'm sure things have improved since the past 2 years in regard to SED, but don't always take it for granted that the SSD manufactrer has implemented things properly, for example the 960 PRO had an issue where once encryption was enabled you couldn't disable unless it via PSID revert from "Drive Trust Alliance",... and had issues with some vendor mobos and bioses...

 

I wouldn't touch Microsoft's closed-source program encryption software and snooping. I have more than enough with trying to stay away from their telemetry and useless apps.

From my previous post above.

Who should use BitLocker?
Here’s the thing about BitLocker: It’s a closed-source program. That’s problematic for extremely privacy-minded folks, since users have no way of knowing whether Microsoft was coerced into putting some kind of backdoor into the program under pressure from the United States government.

The company says there are no backdoors, but how can we be certain? We can’t. Sure, if BitLocker were open-source, most of us wouldn’t be able to read the code to find vulnerabilities, but somebody out there would be able to do so.

So with BitLocker’s closed-source nature in mind, I wouldn’t expect this encryption program to defend your data against a government actor such as border agents or intelligence services. But if you’re looking to protect your data in the event your PC is stolen or otherwise messed-with, then BitLocker should be just fine.

See also Microsoft's disgusting practice.
Windows 10 News and Announcements...
Nothing is 100% safe... Microsoft has backdoored its disk encryption. Do you think the average Joe know about this? Nope. "As soon as your...
Post by: Papusan, Aug 16, 2020 in forum: Windows OS and Software

 

Okay so the main reason i use bitlocker is because if someone has access to my laptop somehow, i read ppl can easily put malware/keylogger in it. Example imagine someone had access to your laptop for a short while... the put malware in it because you don't have any pin or password in it. Then you use your laptop as is and anything you type in... could be seen by a hacker etc. I even heard where someone could even put a usb stick in your laptop usb port and that takes a minute... then remove it... then you are infected.


With bitlocker, i was told if you put a pin/password, unless they know the pin/password, they cannot put any malware/virus in it. So thats why i use bitlocker because i dont want someone to put malware/keylogger if it ever happens etc.


So thats why i asked if sk hynix has issues with bitlocker since someone said the hynix doesn't allow encryption and i thought... what?

 

If you put a PIN/PASSWORD, BitLocker, or not, they couldn't put malware on it either.

The few times that I didn't have access to my notebook directly (mere minutes), I formatted it fresh before it was used again. (But I have the option of having multiple systems to use at any time).

Minimum (security) setup steps with every computer I use personally/workwise or set up for anyone else:

• Brand new computer or not, remove original HDD/SSD. Remove any caching drive. Remove any provided RAM.
• Max out RAM. Install 2TB+ SSD, OP to 33%, clean install Win10x64Pro. Fully update system. Ensure that BitLocker is disabled at each step.
• Create a System Administration account. Put on a secure password (minimum fifteen characters).
• Create a User Account with Standard User Privileges. Put on a secure password, different than the Sys Admin password above (15 char min).
• Install all programs needed/required in the User Account created above.

The System Administration account is a local account. No OneDrive, No Box, No Dropbox, No iCloud, No synced browsers, etc.

Nothing. Except to hold the super secure password that allows installation of new programs or removal of existing programs (when needed).

 

The biggest danger to your computer is you.

 

You are making some fundamentally wrong assumptions about what bitlocker does and what it is capable off, lol

Bitlocker aims to deny access to data for someone with physical access to your machine without knowing your key, and nothing else. Unless you leave your machine powered off, bitlocker does nothing in the scenario where someone with a usb has access to your machine for a few secs.

Even then unless you dont regularly perform security updates (and whether or not they are worth it is a seperate debate), or happen to be a really valuable person, the odds of being attacked like this is minimal

 

When you say you put a win or password, they couldn't put malware of it... what do you mean? Do you mean a windows pin or password? Or you mean bitlocker? I was told a while back the windows password is completely useless. But if you put bitlocker pin/password at startup, then no one can access your laptop or put malware into it until you log in with your bitlocker pin or password.

 

Yes i know that is what bitlocker does. If someone has physical access to my laptop, if they don't know the bitlocker pin or password, they cannot get in. Yes i know the laptop has to be off. I heard even if you have the laptop on and lock it... and someone needs the windows 10 password, that doesn't protect your right? I believe they said it doesn't protect you but also if someone put a usb stick in your usb port while locked, they can put malware still in it right?


Well i just want bitlocker on because if someone had access to my laptop, they still need the pin to it and thats why i want it on.


So based on all of this, you still suggest the sk hynix vs the samsung 970 evo? I will be ordering it tomorrow... still deciding.

 

While such lock screen bypasses are theoretically possible, unless you use the machine for company work, it is unlikely that you would ever be targeted by such an attack - your machine simply isn't worth it. A bad dude coming across your machine unattended in public is more likely to just grab your laptop and run.

 

Well for example, if someone has access to my laptop even for a short while, I know its possible they could put malware on it easily without me knowing. Example imaging staying at a hotel and leaving all my things there. Yes i know its just the cleaner who has access to your room but if a hacker has access to it and all they have to do is turn it on and no password, they could put malware very easily without me knowing. Yes i know you have to be specifically targeted. But I want it to be a case where if my laptop is turned off, its safe from malware/hackers.

 

Then backup important data, wipe your laptop before you go to a hotel/overseas/anywhere you are uncertain about your device's safety, and wipe it after you return, easy

Anyway you don't lose that much by using Bitlocker beyond the (mild?) performance hit, so you do you.

 

Why in the world would i wipe my device before i go anywhere? That would be a huge pain. I mean example if you travel and bring a laptop with you... how you going to restore it each time?


I don't travel that much except travel there and stay for a while and vice versa. But i mean... i don't want someone having access to my laptop... then could turn it on and then put malware on it etc... and thats what bitlocker is for.

 

But back to the topic, is everyone still suggesting the sk hynix vs the samsung 970 evo? Im making the order later tonight... but some reason i just want to go with samsung because its just reliable. Again i dont mind paying an extra 35-40 dollars knowing how reliable it is even though ppl say sk hynix is very good etc.

 

You could always stop visiting shady websites and downloading things illegally. That's an option, too.

 

What I have in my laptop has nothing to do with that. If i told you what it is related to... then you would understand and understand why i want my laptop locked with bitlocker.


Also i use my chromebook to visit sites. I mean, you never visited sites to stream a football game or whatnot? And don't tell me you never visited certain sites where almost every guy has visited. That is what i mean by shady sites.

 

I'm genuinely not trying to be rude but we've already given our inputs and you seemed to have made up your mind. Just go with what you want... both are fine....

 

Sadly that's not true. Skillful and determined attacker with physical access can rape the **** out of @Drew1 's XPS thanks to CSME vulnerability in Intel CPU powering it. However, it seems the consensus here is that @Drew1 flies well below the radar of anyone who would attempt any more or less sophisticated attack.

 

Samsung is well proven and reliable ssd. Just go with it. And use a strong password for login into Windows, use antivirus software and never live your computers without you have logged out.

Now, encryption does result in some amount of performance penalty. If all you use your laptop for is Facebook and YouTube, you probably don’t need to encrypt your hard drive. However, if you have sensitive financial or business documents, you’ll want to use encryption to protect your data, whether you’re using a laptop or desktop

See also... https://www.howtogeek.com/161444/htg-explains-why-a-windows-password-doesnt-protect-your-data/

 

Hey. Yes i have important documents in my laptop... that is why i need bitlocker because anyone can just open it up if they have access to my laptop.


Yea i was going to with samsung 970 evo from the beginning anyways, but it was this forum or another forum where ppl said buy the sk hynix and thats when everyone said same thing so i had to research it.

But starlight, would you say pay more for the samsung 970 evo vs the sk hynix? Again, i never heard of sk hynix until someone pointed it out? I was actually deciding between the evo 970 or the WD750.

 

5 Best Disk Encryption Software / Tools - Comparitech

2. Bitlocker
Bitlocker is popular Windows-only software used to encrypt entire volumes using the AES encryption algorithm with a 128- or 256-bit key. Unlike TrueCrypt and VeraCrypt, Bitlocker cannot create encrypted containers. Entire partitions must be encrypted at once.

While this approach works for some people, keep in mind that if you leave your computer logged in and someone else uses it, all of your files will be visible. Windows has a separate encryption system called EFS (encrypted file system) for encrypting single files and folders, but these are also unlocked whenever the user is logged in.

Bitlocker is not open source, which means the public cannot inspect it for backdoors. Due to Microsoft’s friendly relationship with the NSA, this could be a deal-breaker for many. Concerns were also raised when Microsoft removed the Elephant Diffuser–a feature that prevents encrypted disk modification–for performance reasons.

Bitlocker does not have a plausible deniability mechanism, although you could make the argument that the contents of your hard drive were modified because of the missing Elephant Diffuser. That’s a stretch, though.



Nothing is stronger than your weakest link (Logged in or weak passworld). Or You yourself. Click on something that your AV can't catch in real time and be you sure some will infect your computer. Nothing is 100% secure!

 

Hey yes im aware of all this. But i still will be using bitlocker.


Now for the ssd, you say sk hynix or samsung 970 evo?

 

http://forum.notebookreview.com/thr...d-recommendation.829941/page-12#post-11049311

 

I think you'll be happy regardless who of them you choose. I have already posted on this answer before http://forum.notebookreview.com/thr...sd-recommendation.829941/page-9#post-11047808

"I will continue stay with what I have bought in the past (se above). Reliable, top performance, driver updates and firmware if needed. + ok warranty..." There is no need to spin around this anymore.