All of lore.kernel.org
 help / color / mirror / Atom feed
From: Jan <takethebus@gmx.de>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] avoid keyloggers: enter password with mouse?(virtual?keyboard)
Date: Tue, 4 Oct 2011 21:42:45 +0000 (UTC)	[thread overview]
Message-ID: <loom.20111004T234008-254@post.gmane.org> (raw)
In-Reply-To: 20111004182800.GA16389@tansi.org

Arno Wagner <arno@...> writes:

> On Tue, Oct 04, 2011 at 03:02:55PM +0000, Jan wrote:
> > Arno Wagner <arno@...> writes:
> Other than that, I think this would be a neat add-on, but not a
> cryptsetup core project. Something like zuluCrypt (but easier
> to do)
> 
> Side note: We might think about adding a link-list for
> such projects.

Whom could I encourage to realize such a project?


> Side note 3: All this only helps to a limited degree. A PC 
> with keylogger might just also have a video-grabber (or 
> cheap HD camera) pointed at the screen.

Heinz Diehl <htd@...> writes:

> Privacy on a machine outside of your control is a no-go.
> There are by far more options to get access to your data if
> somebody other than yourself has admin/root access to the machine
> you're using. A simple script which does a copy of anything inserted
> will do it. Or the admin himself logged in from another machine, and
> many more...

Tools like privatix (see http://www.mandalka.name/privatix/index.html.en )
are designed for MOBILE use to make internet cafes a SAFER place. This 
does not mean such systems offer perfect security. 

Booting your own OS safes you from "software attacks" like the ones 
Heinz Diehl mentioned (is this right?). Thus the "only" remaining thread 
comes from the hardware side. It seems to me the most COMMON thread there 
are hardware keyloggers. I thinks hardware based video-grabbers are not 
that common (what do you think?). They need a lot of disk space, don't they? 
In my scenario the attacker would need a hardware video-grabbers AND a 
hardware keylogger, I think this should be unlikely in common internet cafes, 
while a keyloger alone is likely. 

HD camera pointed at the screen don't seem such a threat to me since in 
internet cafes you can often turn the screen or move your body close to it, 
so its content is hard to see for others. 

My point is I want to be protected agains the likely threads, not the unlikely. 
If I have very very sensitive data, I agree, that using an internet cafe is 
no good. 

Originally I was looking for a rather safe way to use my gnuPG-key in 
internet cafes or foreign computers.

  reply	other threads:[~2011-10-04 21:43 UTC|newest]

Thread overview: 31+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2010-04-12 15:10 [dm-crypt] avoid keyloggers: enter password with mouse (virtual keyboard) Olivier Sessink
2010-04-12 17:15 ` Arno Wagner
2010-04-12 17:58   ` Heinz Diehl
2010-04-13 15:48     ` Arno Wagner
2010-04-13 19:38       ` Heinz Diehl
2010-04-13 19:55         ` Milan Broz
2010-04-14 13:11           ` Olivier Sessink
2010-04-14 15:30             ` Arno Wagner
2010-04-14 18:42               ` Olivier Sessink
2010-04-14 23:30                 ` Arno Wagner
2010-04-14 23:54                   ` Sven Eschenberg
2010-04-15  6:24                   ` Milan Broz
2010-04-15 10:00                     ` Arno Wagner
2010-04-15  7:50                   ` test532
2010-04-15 10:04                     ` Arno Wagner
2010-04-15 17:44                   ` Richard Zidlicky
2010-04-15 18:04                     ` [dm-crypt] avoid keyloggers: enter password with mouse(virtual keyboard) Vladimir Giszpenc
2011-10-04 15:02                   ` [dm-crypt] avoid keyloggers: enter password with mouse (virtual keyboard) Jan
2011-10-04 18:28                     ` [dm-crypt] avoid keyloggers: enter password with mouse?(virtual?keyboard) Arno Wagner
2011-10-04 21:42                       ` Jan [this message]
2011-10-04 22:48                         ` Arno Wagner
2011-10-05  9:37                           ` Jan
2011-10-05 12:15                             ` Arno Wagner
2011-10-05 18:18                               ` Jan
2011-10-04 18:48                     ` Heinz Diehl
2011-11-30 14:22                       ` Ma Begaj
2011-11-30 14:28                         ` Ma Begaj
2011-11-30 14:46                         ` Arno Wagner
2011-11-30 15:11                           ` Ma Begaj
2010-04-12 21:43   ` [dm-crypt] avoid keyloggers: enter password with mouse (virtual keyboard) Olivier Sessink
2010-04-12 17:51 ` Richard Zidlicky

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=loom.20111004T234008-254@post.gmane.org \
    --to=takethebus@gmx.de \
    --cc=dm-crypt@saout.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.