|
| ▲ | crazygringo 44 minutes ago | parent | next [-] |
| They're Microsoft and it's Windows. They always have the ability to fetch the key. The question is do they ever fetch and transmit it if you opt out? The expected answer would be no. Has anyone shown otherwise? Because hypotheticals that they could are not useful. |
| |
| ▲ | lazide 18 minutes ago | parent [-] | | Considering all the shenanigans Microsoft has been up to with windows 11 and various privacy, advertising, etc. stuff? Hell, all the times they keep enabling one drive despite it being really clear I don’t want it, and then uploading stuff to the cloud that I don’t want? I have zero trust for Microsoft now, and not much better for them in the past either. |
|
|
| ▲ | cyberax 43 minutes ago | parent | prev [-] |
| This is for the _ActiveDirectory_. If your machine is joined into a domain, the keys will be stored in the AD. This does not apply to standalone devices. MS doesn't have a magic way to reach into your laptop and pluck the keys. |
| |
| ▲ | shawnz 20 minutes ago | parent | next [-] | | Furthermore it seems like it's specific to Azure AD, and I'm guessing it probably only has effect if you enable to option to back up the keys to AD in the first place, which is not mandatory I'd be curious to see a conclusive piece of documentation about this, though | |
| ▲ | riskable 26 minutes ago | parent | prev [-] | | > MS doesn't have a magic way to reach into your laptop and pluck the keys. Of course they do! They can just create a Windows Update that does it. They have full administrative access to every single PC running Windows in this way. |
|
