[dm-crypt] avoid keyloggers: enter password with mouse (virtual keyboard)
rz at linux-m68k.org
Mon Apr 12 19:51:50 CEST 2010
On Mon, Apr 12, 2010 at 05:10:13PM +0200, Olivier Sessink wrote:
> Hi all,
> several disk encryption products feature a virtual keyboard, so users
> can use the mouse to enter the password which makes keyloggers
it does not make keyloggers useless, only requires slightly different manipulation
to the system.
You get the best safety if you have encrypted root and swap and boot off
a CD which contains your kernel and ramdisk. There is no keylogger unless
you did burn it on the CD.
Guaranteeing the integrity of the boot media is extremely important and
afaics only physical security of the media helps here.
More information about the dm-crypt