From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <rdzidlic@googlemail.com>
Received: from mail-bw0-f209.google.com (mail-bw0-f209.google.com
	[209.85.218.209]) by mail.saout.de (Postfix) with ESMTP
	for <dm-crypt@saout.de>; Thu, 15 Apr 2010 19:41:40 +0200 (CEST)
Received: by bwz1 with SMTP id 1so1610639bwz.22
	for <dm-crypt@saout.de>; Thu, 15 Apr 2010 10:41:39 -0700 (PDT)
Sender: Richard Zidlicky <rdzidlic@googlemail.com>
Date: Thu, 15 Apr 2010 19:44:18 +0200
From: Richard Zidlicky <rz@linux-m68k.org>
Message-ID: <20100415174418.GA12138@linux-m68k.org>
References: <t2g61722e191004120810q3b2a7a36q592cd1cf12790db@mail.gmail.com>
	<20100412171540.GA3138@tansi.org>
	<20100412175856.GA12353@fancy-poultry.org>
	<20100413154850.GA19142@tansi.org>
	<20100413193831.GA8772@fancy-poultry.org>
	<4BC4CC14.6080408@redhat.com>
	<v2q61722e191004140611zc1eb0076xe17b9fdf80b09594@mail.gmail.com>
	<20100414153050.GA3966@tansi.org> <4BC60CB2.8030902@gmail.com>
	<20100414233054.GC9776@tansi.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20100414233054.GC9776@tansi.org>
Subject: Re: [dm-crypt] avoid keyloggers: enter password with mouse
	(virtual	keyboard)
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
	<mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
	<mailto:dm-crypt-request@saout.de?subject=subscribe>
To: Arno Wagner <arno@wagner.name>
Cc: dm-crypt@saout.de

On Thu, Apr 15, 2010 at 01:30:54AM +0200, Arno Wagner wrote:
> On Wed, Apr 14, 2010 at 08:42:58PM +0200, Olivier Sessink wrote:
> > Arno Wagner wrote:
> > 

> 
> Well, while I do not really think the virtual keyboard will help
> to a larger degree, it may still raise security a bit. 

what would help a litle bit more in this scenario is getting the password
from a smartcard with a nice fully encrypted challenge response protocol.

Richard