If you use FV2 to encrypt a disk, can the root user of the computer access the unencrypted contents of the disk or is it truly only accessible by the user that initially setup FV2.
We are trying to deploy FV2 across our company and trying to see if we should set a Firmware Password to restrict access to boot commands or if FV2 will be sufficient.
Best Answer
Once you've logged in using one of the users set up for FV2, the unencrypted data is available to all users on the computer. All of them: root, admins, regular users, and non-login users like _www or _spotlight.
If you make the disk available to another computer, either by physically moving it or using target disk mode, then no one on the other computer, not even root, can access the data.