I use only linux, and the problem I see much less noticeable! As you said, I can run with a user btsync ad hoc and block the permissions so much stronger than you could do a "simple" windows user. Maybe you did not understand: I really like the idea of secret keys! But I think it is much harder to find a decryption key in the process memory rather than reading the key in a file, especially if the majority of people who use windows put the keys in the same position! By the way, you can change the directory location .sync as in linux? Thanks, Francesco