Re: [Full-disclosure] Most common keystroke loggers?

From: deepquest <adf@xxxxxxxxxxx>
Date: Thu, 1 Dec 2005 23:26:28 +0100

To me the only thing that can defeat keystroke is what a software or trojan can not do: See (OCR is just a partial application of guess but not applicable in that case) Imagine a web page with a virtual keyboard page (clickable). In order to prevent the localisation on the keys mapping based on position of the mouse, display the keyboard on random location of the screen. Add a random password and challenge authentication process.

my 2 cents,

Deepquest
"Justification of windows usage is a combinaison of Stockholm
Syndrome and cognitive dissonance."
--------------------------------------------------------------
Propaganda              http://deepquest.code511.com/blog
FIB                     http://www.futureisbeta.com
PGP DH/DSS              http://www.futureisbeta.com/pgp
--------------------------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Most common keystroke loggers?
  - From: Nick FitzGerald
- RE: [Full-disclosure] Most common keystroke loggers?
  - From: Lyal Collins

References:
- [Full-disclosure] Most common keystroke loggers?
  - From: Shannon Johnston
- Re: [Full-disclosure] Most common keystroke loggers?
  - From: Valdis . Kletnieks
- Re: [Full-disclosure] Most common keystroke loggers?
  - From: foofus

Prev by Date: [Full-disclosure] Edgewall Trac SQL Injection Vulnerability
Next by Date: Re: [Full-disclosure] Re: Most common keystroke loggers?
Previous by thread: Re: [Full-disclosure] Most common keystroke loggers?
Next by thread: RE: [Full-disclosure] Most common keystroke loggers?
Index(es):
- Date
- Thread