Encrypted drives accessible by other users
Howdy,
I am looking into encryption methods for OS X (previous post here: https://discussions.apple.com/thread/5123080?answerId=22321009022#22321009022) and in playing around with it i found the following:
If i have an encrypted drive or partition mounted on my desktop i can not secure it by simply unmounting, logging out or starting a password protected screensaver. Another user can sign in through 1. fast user switching, 2. the main login window after i have logged out and 3. by using the 'Switch User' button at the bottom of the screensaver when it asks for a password. As soon as the other user logs in, there are my encrypted drives or partitions, no password asked!
The only way to secure an encrypted drive is to 1. Restart the Mac, 2. Turn off the Mac or 3. in the case of an external device, physically disconnect it.
Am i overreacting or is this a huge security concern/flaw and more importantly, are there ways to plug these holes if multiple users have to have an account on the same system?
I have read something similar a few months ago that mentioned simply unmounting a drive was not secure but it did not cover other users or offer a solution (can't find the article anymore).
Jay
Mac Pro, OS X Mountain Lion (10.8.3), 12-Core 3.06, 64GB RAM, SSD & 12TB