Disk Encryption on the Mac

My technical efforts lately have been all about Mac disk encryption for me.
This is an especially good step and good piece of news given the rest of my experiences with Mac disk encryption – I spent the best part of the month of February fighting with my Mac due to corruption in a FileVault encrypted home folder.

This is the second time that this has happened to me on the Mac – basically, if you’re running FileVault for any significant amount of time (e.g. 4-6 months), eventually, it seems that it decides to corrupt your ~/Library folder and wipe a whole bunch of the files there.

In my case, that wipe included my calendar, which was the cause of the full month of recovery – that calendar destruction propagated to all of the other places I have calendars synced to: most importantly, my phone, and Neohapsis Exchange calendar. In one fell swoop, the Filevault wiped out my life.

And anybody who has known me for 10 minutes knows how much I rely on my calendar.

Suffice it to say, if you’re using Filevault on the Mac, be careful and make sure that you have incredibly solid backups.

PGP recently announced PGP Full-Disk encryption for Mac, and I know that McAfee is considering a Mac version of Safeboot.

I’ll be happy to line up to be a beta tester of that stuff any time.

Juniper’s new switch line

Over at Infosec Podcast, Chris talks about Juniper’s new line of EX Switches. While the article is interesting, more interesting is the discussion about the commoditization of the switch market. From a comment by Jennifer Leggio:

I also wonder why Juniper, which OEMs at least so many pieces of its security line, would opt to go this route in an already commoditized market.

To me, this is the same story as a million other companies – there’s an overwhelming desire at some companies to build something for themselves, even when it doesn’t make sense. Think about Juniper – they’ve got thousands of talented engineers. In many cases, it makes a lot of sense for most companies to OEM rather than build, especially in crowded markets.

For example, does the world really need yet another UTM box? Or yet another home wireless access point? Or yet another linux distribution?