EFS certificate/privatekey cache

Ondrej Sevecek · Oct 5, 2003

Hello,
scenario is as follows:

1) have no files EFS encrypted (e.g. new profile)
2) encrypt some file = autogenerated certificate
3) export the certicate with private key and let THE PRIVATE KEY DELETE
4) file is still accessible due to cert/keys present in "EFS cache"
5) log off
6) log on
7) file is STILL ACCESSIBLE - keys are still in cache

so as I tried it, EFS key cache is flushed only through restart.

Is there any method to flush the cashe from user's session?

Thanks Ondra.

Steven L Umbach · Oct 6, 2003

In Windows 2000 you need to reboot. XP will clear it with a logoff. ---
Steve

Ondøej ©eveèek · Oct 6, 2003

Many thanks. Can I force key flush from the session?

Ondra.

Steven L Umbach · Oct 6, 2003

There is no way that I know of. --- Steve

Ondøej ©eveèek said:
Many thanks. Can I force key flush from the session?

Ondra.

David Cross [MS] · Oct 6, 2003

No, there is no mechanism to flush the cache

Drew Cooper [MSFT] · Oct 6, 2003

Other than rebooting, there is one way to flush the cache: Do EFS operations
with enough new users that the original user's cache entry is bumped. (I
don't remember what our cache size was in Win2k. 100, maybe?)
--
Drew Cooper [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights.

David Cross said:
No, there is no mechanism to flush the cache

--

David B. Cross [MS]

--
This posting is provided "AS IS" with no warranties, and confers no rights.

http://support.microsoft.com

Ondøej ©eveèek said:

Many thanks. Can I force key flush from the session?

Ondra.

Click to expand...

EFS certificate/privatekey cache

Ondrej Sevecek

Steven L Umbach

Ondøej ©eveèek

Steven L Umbach

David Cross [MS]

Drew Cooper [MSFT]