Subject Re: Undocumented internal encrypt/decrypt in FB
Author Adam
--- In, "Andreas Pohl" <apohl@...> wrote:
> Hi Geoff,
> --- In, Geoff Worboys <geoff@> wrote:
> > To the best of my knowledge TrueCrypt works as designed, but
> > that does not automatically make it a perfect security system.
> I'm using a solution for years that's combining copy protection and
> encryption. So I use a solution of my dongle distributor [1] that is
> limited to windows only system and server installation of FB:
> 1. Patching fbserver.exe to run only if dongle is available
> 2. As an additional option patched fbserver.exe is only working
> with encryption in i/o-processes with special/all file extensions
> 3. Open a database with extension that is marked as unencrypted and
> backup it to a database with extension that is marked for encryption.
> 4. Restore backup file with "encrypted" extension
> 5. Deliver to costumer a fbserver.exe with no chance to produce
> unencrypted databases

So what happens if a customer backs up their database using gbak
whilst the dongle is in place, and saves it somewhere outside your
encrypted sandbox, like in My Documents?