Do you set your BIOS password?
Every BIOS that I've seen has the option of setting a password to restrict access to the BIOS setup utility. Do you use it? Only on certain machines? Any stories?
|
If I have a bad guy in my house accessing my computer BIOS, I have security problems that go beyond passwords.
If I were in the Enterprise, I might have a different take. Edit: If I were setting up kiosk machines for public use and the public might have access to the power button, I might also have a different take. |
Not on any of my computers. If they were public use, then you should and more. I would even disable USB for public computers.
|
Quote:
I do actually encrypt the home partition of my netbook in case it is stolen (I have some personal information on there). However, since it's a personal machine I don't feel there is much risk of a bad guy installing a rootkit on it if I leave it on the table of a restaurant when I go to the lavatory or even if I leave it laying around in a hotel room. |
My vote is no password for BIOS because it's really not a secure thing anyways.
I keep my sensitive data on a external encrypted drive and hope for the best. However, If the encryption has a security flaw and a knowledgeable person knows how to exploit it then we're screwed. |
Quote:
|
Not in my all computers. But just encrypted HDs.
|
On portables I do
|
No, never.
Has there ever been an instance of some form of intrusion from a network based entity which has aversely affected someone's BIOS? Or further has there ever been an instance where a program has aversely affected someone's BIOS? I fully get that you can screw up your BIOS if you enter the BIOS setup; worst case to the extent that you'd force all the settings to maybe cause the system to not boot and then set the password to something difficult. I think if there were some widespread problems of BIOS intrusion via off system means, then yes maybe people might pay some attention to it. |
I think one of the main reasons for setting the BIOS password is to make it more difficult for a bad guy to change the boot order and install a root kit or steal data.
|
My only reason for setting the password is to keep some casual prankster from setting one. I set only the Admininstator password, not the boot password.
|
Quote:
|
Only on my laptop.
But, if my laptop is stolen, the security of the BIOS is probably the least of my worries. |
Quote:
|
I generaly set two options on my computers. I not only restrict acess to the BIOS, I also set the password that keeps the computer from booting at all. Better safe than sorry is my mantra!
Nbiser |
All times are GMT -5. The time now is 01:53 PM. |