[dm-crypt] avoid keyloggers: enter password with mouse?(virtual?keyboard)

Ma Begaj derliebegott at gmail.com
Wed Nov 30 15:22:50 CET 2011


2011/10/4 Heinz Diehl <htd at fancy-poultry.org>:
> On 04.10.2011, Jan wrote:
>
>> You have a fully encrypted system on your USB stick like privatix
>> (see http://www.mandalka.name/privatix/index.html.en ) and you are
>> sitting in an internet cafe. There's a hardware keylogger installed
>> on that the PC you use. You lose your USB stick, maybe you even
>> forget it in the internet cafe (this happens)!
> [.....]
>
> Privacy on a machine outside of your control is a no-go.
> There are by far more options to get access to your data if
> somebody other than yourself has admin/root access to the machine
> you're using. A simple script which does a copy of anything inserted
> will do it. Or the admin himself logged in from another machine, and
> many more...


that is not true. two factor authorization solves this problem pretty easy.

I am using barada on my machines for SSH and it is working pretty great.
http://barada.sourceforge.net/


More information about the dm-crypt mailing list