From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from tansi.org (ns.km10532-04.keymachine.de [87.118.102.195]) by mail.saout.de (Postfix) with ESMTP for ; Mon, 12 Apr 2010 19:13:04 +0200 (CEST) Received: from gatewagner.dyndns.org (84-74-164-239.dclient.hispeed.ch [84.74.164.239]) by tansi.org (Postfix) with ESMTPA id 39F7F212804A for ; Mon, 12 Apr 2010 19:13:02 +0200 (CEST) Date: Mon, 12 Apr 2010 19:15:40 +0200 From: Arno Wagner Message-ID: <20100412171540.GA3138@tansi.org> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: Subject: Re: [dm-crypt] avoid keyloggers: enter password with mouse (virtual keyboard) List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: dm-crypt@saout.de You can do this by having cryptsetup read the passphrase from stdin and attach such a virtual keyboard to stdin. However as a keylogger has to be root and root can read the encryption key from memory, it is pretty useless security-wise. Arno On Mon, Apr 12, 2010 at 05:10:13PM +0200, Olivier Sessink wrote: > Hi all, > > several disk encryption products feature a virtual keyboard, so users > can use the mouse to enter the password which makes keyloggers > useless. Has anyone ever tried something like that with cryptsetup? > > regards, > Olivier > _______________________________________________ > dm-crypt mailing list > dm-crypt@saout.de > http://www.saout.de/mailman/listinfo/dm-crypt > -- Arno Wagner, Dr. sc. techn., Dipl. Inform., CISSP -- Email: arno@wagner.name GnuPG: ID: 1E25338F FP: 0C30 5782 9D93 F785 E79C 0296 797F 6B50 1E25 338F ---- Cuddly UI's are the manifestation of wishful thinking. -- Dylan Evans If it's in the news, don't worry about it. The very definition of "news" is "something that hardly ever happens." -- Bruce Schneier