[dm-crypt] avoid keyloggers: enter password with mouse?(virtual?keyboard)

Ma Begaj derliebegott at gmail.com
Wed Nov 30 15:28:14 CET 2011


2011/11/30 Ma Begaj <derliebegott at gmail.com>:
> 2011/10/4 Heinz Diehl <htd at fancy-poultry.org>:
>> On 04.10.2011, Jan wrote:
>>
>>> You have a fully encrypted system on your USB stick like privatix
>>> (see http://www.mandalka.name/privatix/index.html.en ) and you are
>>> sitting in an internet cafe. There's a hardware keylogger installed
>>> on that the PC you use. You lose your USB stick, maybe you even
>>> forget it in the internet cafe (this happens)!
>> [.....]
>>
>> Privacy on a machine outside of your control is a no-go.
>> There are by far more options to get access to your data if
>> somebody other than yourself has admin/root access to the machine
>> you're using. A simple script which does a copy of anything inserted
>> will do it. Or the admin himself logged in from another machine, and
>> many more...
>
>
> that is not true. two factor authorization solves this problem pretty easy.
>
> I am using barada on my machines for SSH and it is working pretty great.
> http://barada.sourceforge.net/


s/authorization/authentication/


More information about the dm-crypt mailing list