For example, if you type cipher /r:
julius, you??™ll end up with two files: julius.pfx, which contains the
Figure 8-11. The first time you use encryption on your PC, you??™ll be prompted to back up
your encryption certificate (key) so you can access your protected files even if you reinstall
Windows
480 | Chapter 8: Users and Security
Encrypting File System (EFS) recovery agent key and certificate, and
julius.cer, which contains the EFS recovery agent certificate only (without
the key). Double-click either file in Windows Explorer to import the
certificate or key, or use the Certificate Manager.
Worried that your key got in the wrong hands? You can generate
a new key at any time by typing cipher /k (without any
other options). Then, type cipher /u to update the encrypted
files on your system with the new key.
Secure your drive??™s free space
Normally, when you delete a file, only the file??™s entry in the filesystem table
is deleted; the actual data contained in the file remains in the folder until it is
overwritten with another file.
Cipher, discussed in the previous section, allows you to wipe a folder, which
only means that it goes black and cleans out any recently deleted files, overwriting
the leftover data with random bits. This effectively makes it impossible
to subsequently recover deleted data with an ???undelete??? utility. Think of
the wipe feature as a virtual paper shredder.
To wipe a folder, open a Command Prompt window and type cipher /w:
foldername, where foldername is the full path of any folder on the drive to
wipe.
Pages:
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669