[dm-crypt] avoid keyloggers: enter password with mouse (virtual keyboard)

Richard Zidlicky rz at linux-m68k.org
Mon Apr 12 19:51:50 CEST 2010


On Mon, Apr 12, 2010 at 05:10:13PM +0200, Olivier Sessink wrote:
> Hi all,
> 
> several disk encryption products feature a virtual keyboard, so users
> can use the mouse to enter the password which makes keyloggers
> useless. 

it does not make keyloggers useless, only requires slightly different manipulation
to the system.

You get the best safety if you have encrypted root and swap and boot off
a CD which contains your kernel and ramdisk. There is no keylogger unless
you did burn it on the CD.

Guaranteeing the integrity of the boot media is extremely important and
afaics only physical security of the media helps here.

Richard


More information about the dm-crypt mailing list