kewms wrote:PWR wrote:Edit: FileVault 2 (released with Mavericks) changed the encryption behaviour from home folder to disk-level, so anyone with permission to unlock the disk can see your home folder, and admins can change the permissions to allow read/write access (which seems like a step backwards in security to me...).
In corporate environments, this meets two requirements:
1. The IT department can help a user who forgets their password. They can also lock out a user more easily in the event that the password is compromised or the user is fired.
2. The user can't hide bad behavior from the company as easily.
"Step backward in security?" Not really. You shouldn't be keeping your own confidential data on a system that you don't personally control anyway. And if you *do* control the system, you shouldn't be giving admin access to people you don't trust.
Please go away.