On an up-to-date OS X computer with FileVault 2 (whole-disk encryption, minus the recovery partition), is any security gained by setting a firmware password, as well?
Asked
Active
Viewed 1,293 times
5
-
A recent question about Thunderbolt vulnerabilities covered some of the same ground. Can someone who finds it please link it in? – adric Aug 29 '12 at 21:36
-
2http://security.stackexchange.com/questions/18720/how-secure-is-filevault-2-while-the-computer-is-in-sleep-mode – Brad Ackerman Aug 30 '12 at 02:19
1 Answers
3
The firmware password adds very little value to the protection of your device. There have already been published loopholes for either:
- Resetting the firmware password
- Nullifying it completely
On several versions of the Mac OS. The FileVault encryption will be sufficient for protecting your information.
Daniel Li
- 441
- 2
- 4
- 17
-
3The firmware password can easily (this is documented) be reset if you have socketed RAM modules. If the only RAM on your Mac is soldered to the logic board that procedure becomes a lot harder. (Not necessarily impossible, but I haven't yet hat a chance to try this by desoldering a few RAM chips from a current MacBook (Pro|Air).) – MacLemon Nov 23 '12 at 16:52
-