Well, in addition to prohibit PrivateFolder I'd suggest strip-searching all empliyees before they leave the company premises. After all, they might have written over lunch a personal letter on the company paper using company pen and company table while sittin on the company chair and than hided it in their @$$es. And that, I believe is like stealing from the company. Actually, it's even more stealing than hiding some personal information on the company hard drive since company would certainly have to buy additional paper and pens to replace wasted while it's highly unlikely any employee would ever ask to buy him the second hard drive 'cause he already filled the first one with por… er… personal files.

So delete the files. A parent can say "Oh well!" If you are an administrator, on the other hand, make a backup copy first! When your user complains, tell her you'll give her data back unencrypted (of course that requires you to obtain the password from her).

But, as far as that goes, why bother with the MS toy? There are free programs that do a better job. Take for instance TrueCrypt (http://www.truecrypt.org/). No installation is needed (though it appears as it is required). It provides an incrediby strong encryption algorithm (tripple-pass AES-256, twofish, and Serpent which I doubt will be compromised anytime soon!). Finally, it can be hidden the easy way, no file extension.

Bottom line, there is no way to keep these encrypted files off your computer without severely limiting the functionality of your PCs by allowing only certain executable to run, at which point somebody will eventually put the functionality in a library for use with rundll. :-)

There is always a way around, so lets just let them have their easy way out that we, as admins, can circumvent if needs be!

No installation is needed

It's true that the program does not need to be installed, but in order to access an encrypted volume, the truecrypt driver *must* be installed.

Which happens on first invocation. I stand corrected. You must have administrative privelages. I had to boot to a rescue CD to rip it out of the registry to test properly. That doesn't change my opinion as far as the capabilities of the program, but it definately shot a big'ol hole in my argument! That is a good thing for the sysadmins.

That is a good thing for the sysadmins.

Yup, I agree. In fact, I think it makes me like the program even more.

Although sometimes (rarely) I wish I didn't have to have admin privileges to use it.

Bottom line is: Truecrypt owns. =)

I don't understand - someone says that it's easily circumvented, yet also says that there's no way to recover the data if the password is lost. Isn't that a contradiction?

I do completely agree with those concerned about the dark side of the net wrt kids. MS really should allow the admin to get to the folder.

Sounds neat..who'd they steal it from?

omgrofl you are funny! Can't breath...laughing too hard at you!

LMAO @ a program called "PRIVATE FOLDER" be misused to "HIDE CONTENT"... no, seriously, that's hilarious.

It sounds like fearing such a thing would defeat the purpose of having it.

If you're the type who distrusts your fellow users.... why give them access to do such things in the first place? Deny them access to the computer outright, or supervise their use if it's kids, or any number of other solutions.

This isn't news.... this is just something for people to whine about.

Thank you.

I was just about to post the same thing.

I am with you, if people are so damned worried about their kids, or whoever, hiding things on the computers why even bother to install it?

I don't see why people are making a big deal about this. There are other programs that do the same thing. As far as support and documentation, my gut feeling is that this is a beta and may be a part of Vista. If i am right then there will be support. As far as forgetting your password, you can password protect any document now and if you forget your password, there are programs that can bring up all your passwords. so, again, no big deal.

Another example of double standard applied to MS. When others do it, it's all good and wonderful. When MS does it, it's bad and "could be misused."

Yeap. Just like when MS releases some updates or SP, people will says the OS is full of holes, but when Apple releases updates or SP, they thanks Apple for the hardwork.

Exactly!

[Sarcasm ON]It's a real rocket science to operate this program.[Sarcasm OFF]

C'mon, brain dead amoeba could get this program running, why couldn't anyone else without a single documentation? Plus if you ever used FolderLock or similar tool you'll feel just like at home.
I find this tool pretty useful for my sensitive data (no, it's not pr0n ;) )
Maybe it lacks certain features like ability to create several such folders on different locations but in general it's pretty nice.

No really. When did any men ever start reading manuals??

and when did women ever stop telling men what they "think" they read in the manual?

TrueCrypt: http://www.truecrypt.org/

Much better.

Too cool.
Thanks for sharing.

Agreed.

if you configure it correct you are even supposed to be able to encrypt the bootsector, but from what i read it has to be before installing the os, so im not sure how you load it on...

"I know all to well the dark side of the Net"

Does he mean he knows it all TOO well or does he mean he too drinks from that same well (so to speak)?

Honestly, it's blown out of proportion. It's just a simple tool to keep files from other users of the same computer - just click on the folder, enter the password when prompted and instantly have access to your porn.... I mean files!!

Don't install it if you don't want it. Just don't expect any simple tool to be more than that at the same time.

"I know all to well the dark side of the Net."
lmao hide your 20gig stash of "private videos"

October 2001: Windows XP ships with built-in zipping, including optional password. Right-click on a file, choose Send To > Compressed Folders, then specify a password. It's not heavily documented (hence all the people who install WinZip on XP and click "I Agree" several times a day because they think they have to have it but won't license it), and zip passwords are "easily circumvented" by brute-force attacks because people rarely choose strong passwords unless forced.

So how is the situation with Private Folders any different? Personally, I don't find it to be a useful tool, but I also don't see anything wrong with its existence.

Taking the focus away from Greg for a moment. The product itself is something that should be seriously scrutinized we all know Microsoft's support for its products are both costly and inadequate however "no documentation?!?" it is quite likely the folks at Redmond have built in a back door. Get the Swedish hackers who hacked hotmail onto it! Seriously as a former Microsoft employee there are always better programs out there that's why there is a whole team devoted to finding other peoples software and making a Microcrap version, oops did I say that out loud? Next thing you know Microsoft will put a hit out on me and George Bush will have said I deserved it!

'Developer Greg Duncan said in his personal blog the fact that anyone could use this application troubled him. "As a parent I don't want anything on any PC in the house my son uses to be hidden from review," he said. Acknowledging that some may criticize his tough stand, he said "I know all to well the dark side of the Net."'

So if you see Private Folder on there then uninstall it...

Even better, make your son a Limited User account so he can't install stuff in the first place.

I think Greg is the Limited User in that family . . .

LOL... that actually made me bust out laughing!!!

lol. Great comment!

"I know all to well the dark side of the Net," said Duncan, whose various online persona include Ginnykin Girliskirts and Darth Grope.

"I know all to well the dark side of the Net."

Now, there's no need to talk about BetaNews like that.

It is great. Long over due.

Love it!!

Direct, no-hassle download link: http://download.microsof...dc2c3c265/MSPF10ENU.msi

It Was Very Useful For Me!

Those looking to try out Private Folder 1.0 can download it from FileForum.

Is an incorrect statement: it redirects to MS, who does not allow any OS except for winXP(no other nt OS)to download.

I highly suggest you find a way to host it, this being a review & opinion site!!!

That would be because it only WORKS on Windows XP.

Betcha a way is found to make it work on other OS.....

Isn't it part of the Genuine Advantage category of software?

It would be illegal to host it elsewhere.

if you dont like it, then dont let it be installed, noone is forcing you, its only for those who want privacy and THAT IS IT

New headline: "Microsoft, today, released a new application to secure pornography"

Nah, thumbnails take to long to render from encrypted files ;)

thumbnails view of a folder with too many objects brings up BSOD. Stop message indicates problems with prvfldr.sys
has anyone else experienced this?

who cares what Greg Duncan says. thats like writing an article about a new hard drive technology with Actor Arnold Schwarzenegger said in his personal blog that he doesn't like the new technology.

"An alleged security app that's easily circumvented"

"Additionally, if a user loses the password to the folder, there is no way for Microsoft --or an administrator -- to unlock the files to regain access"

Would anyone from BetaNews care to reconcile these two statements?

Not good enough to keep hackers out, just good enough to keep IT personnel out. :P

How would anyone trust a security application in the first place if Microsoft created backdoors, so administrators could recover lost passwords for n00bs.

If you forget your password, your files should be gone...

I agree. A tad bit of clarification is needed here.

Irreconcilable, methinks.

Not easily circumvented really, unless brute-force attack count as one.

well i guess anyone who uses this program should be smart enough to remember their password now shouldnt they?

I'm stumped as well.

Maybe "easily circumvented" means you can enter your password to access the files?

Well that's just not secure at all...

:-)

"The move has been criticized, however, as some say the program could be misused, hiding content from IT administrators."

Isn't it there job to stop things like that being installed on computers, like why they don't give people admin accounts? :)

Doesn't seem any different than something like TrueCrypt which can use an encrypted file as a "Hard Drive". The data is encrypted/decypted on the fly.

The criticism stated in this article seems to come mostly from ignorant computer users. This tool isn't anything new, all the complaints and 'worries' existed before it.

any admin who lets their users install programs like that deserves to have content hidden from them. And in all reality, without licensing some expensive software to detect software changes and where new files are created, its not like a standard admin has the time or luck to go searching through all the folders on a hard drive looking for illegal stuff...

As a parent I don't want anything on any PC in the house my son uses to be hidden from review
Chances are, if his son is old enough to want to hide stuff, he already has. How much different than a zero compression, password protected rar file is this?

it's put out by microsoft instead of rarlabs.

:rolleyes:

It isn't any different. There are already freeware tools which do the same. Personally I would recommend TrueCrypt or GPG over this product. As far as I know it does not even state which encryption algorithm(s) it uses although I would hope it uses AES.

Sounds like a cool peice of sofware.