Re: What can one do against Keylogger Attacks?
From: pclogger (pclogger_888_at_hotmail.com)
Date: 23 Jul 2005 20:20:26 -0700
Maybe a combination of biometrics scanners - including smart card
readers (the latter should be more stringent in its encryption). Having
said this, the suggested solution has a hint of over paranoid and has
definitely gone overboard.
Since this topic is "what can one do against keylogger attacks", my
guess is that to be sure,
1) we have to make sure our environment are scanned to make sure there
is no keyboard logger,
2) every time we install a new software, we check that we are
installing good software.
3) we monitor all outgoing IP traffic (to detect suspicious IP
4) we do not key in any password when we enter our password
5) we do not allow the keyboard logger to capture any screen that would
show our password
1 is probably achieved by using a good AV program and constant O/S
2 is probably achieved by adoptaion of good common sense practice
3 is probably achieved by a non intrusive IP activity monitor (e.g.
ipTicker or Ethereal. ipTicker is easier though)
4 is probably achieved by a good password manager (one that reads in
encryption data that translates the data internally and then injects
the password internally i.e. not simulating the keyboard AND not using
cut and paste technology).
5 is ??? (not sure) ???.
My 2 cents worth