Re: Anti-keylogger for SSH?
From: Kalin KOZHUHAROV (kalin_at_ThinRope.net)
Date: 05/14/03
- Next message: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Previous message: Thomas Binder: "Re: Bad listen port"
- In reply to: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Next in thread: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Reply: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 15 May 2003 01:31:11 +0900
Joe Harrison wrote:
> "Simon Tatham" <anakin@pobox.com> wrote in message
> news:FT*rRiSp@news.chiark.greenend.org.uk...
>
>>However, be warned that your threat model hasn't covered all cases.
>>A subtly compromised computer might not just be _reading_ what you
>>do; it could feed fake keystrokes to your SSH client and _send_
>>commands to your server, which might in principle establish a back
>>door that the attacker could later use to gain access.."
>
>
> Now *that's* devious, I hadn't even considered that. Maybe I should just
> give up on the whole idea as too dangerous. Thanks for advice anyway though.
Just an example hardware keylogger, $89:
Kalin.
-- /|\^^^^^^^^^^^^^^^^^^^^^^/|\ |O| http://ThinRope.net/ |O| \|/______________________\|/
- Next message: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Previous message: Thomas Binder: "Re: Bad listen port"
- In reply to: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Next in thread: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Reply: Joe Harrison: "Re: Anti-keylogger for SSH?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
