Re: [MSEide-MSEgui-talk] Idea - protection from key loggers
A firewall cannot normally analyze email contents, e.g. === Me'm a network administrator as an additional duty so has some experience :) As a solution, IPTABLES may restrict traffic to known-pointport-2-known-pointport. Also OpenVPN solution adds more security since stabilizes address space. The only drawback of the solution that we'll NEED a LINUX firewall as an obligatory chain. PS: Which better ? As said, USB tokens (with internal RSA validation) are't acceptable. 2011/12/5, Sieghard s_c_...@arcor.de: Hallo IvankoB, Du schriebst am Mon, 5 Dec 2011 11:31:07 +0500: Also a network firewall on LINUX-based LAN router can be used to prevent from accessing virus's remote desktop servers (to view/grab GUI windows) on infected win-32 machines and sending stolen data from them. A firewall cannot normally analyze email contents, e.g. A spy program sending stolen data by email will go unnoticed. And there are a lot more involved methods. -- (Weitergabe von Adressdaten, Telefonnummern u.ä. ohne Zustimmung nicht gestattet, ebenso Zusendung von Werbung oder ähnlichem) --- Mit freundlichen Grüßen, S. Schicktanz --- -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk -- Cloud Services Checklist: Pricing and Packaging Optimization This white paper is intended to serve as a reference, checklist and point of discussion for anyone considering optimizing the pricing and packaging model of a cloud services business. Read Now! http://www.accelacomm.com/jaw/sfnl/114/51491232/ ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk
Re: [MSEide-MSEgui-talk] Idea - protection from key loggers
On 12/04/2011 03:15 PM, IvankoB for-mse wrote: How about an option to draw virtual keyboard (with related chars) at password entry widget ? It will greatly protect encrypted RSA keys,.. Sure not in an OS window otherwise it can be intercepted by hacked API. Good idea. Entering the password by mouse click? -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk
Re: [MSEide-MSEgui-talk] Idea - protection from key loggers
calling OS provided ones (designed for disabled people recovering passwords) is highly discouraged. Because their layouts are predefined and they're present by OS windows whose drawing/pointer operations can be grabbed by viruses. 2011/12/4, IvankoB for-mse ivankob4m...@gmail.com: How about an option to draw virtual keyboard (with related chars) at password entry widget ? It will greatly protect encrypted RSA keys,.. Sure not in an OS window otherwise it can be intercepted by hacked API. Good idea. Entering the password by mouse click? Yeath. Possibly with keyboard disabled (ignored) until committed/cancelled . Although, reading from Internetm, it seems that calling OS provided ones (designed for disabled people recovering passwords) is highly discouraged. -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk
Re: [MSEide-MSEgui-talk] Idea - protection from key loggers
Hallo IvankoB, Du schriebst am Sun, 4 Dec 2011 19:15:54 +0500: How about an option to draw virtual keyboard (with related chars) at password entry widget ? It will greatly protect encrypted RSA keys,.. Sure not in an OS window otherwise it can be intercepted by hacked API. You cannot avoid that, not with reasonable effort, at least. To really safely avoid an interception through the grafic system, you would have to read the keyboard through your own code, and not show anything on the screen. Everything else would _need_ to use system (API) functions which could be eavesdropped by an aggressor. Additionally, if someone has found a way to hijack the grafic system of your machine, he will also be able to access your keys directly, even your applications and all data - no further phishing neccessary. Such precautions are only neccessary for access to ressources from external sources, which may have been manipulated beforehand, like web browsers, or client requests over the network. Or, maybe, on a badly administrated Windows machine. ];- (Well, a badly administrated Linux machine might not be safer, indeed;) -- (Weitergabe von Adressdaten, Telefonnummern u.ä. ohne Zustimmung nicht gestattet, ebenso Zusendung von Werbung oder ähnlichem) --- Mit freundlichen Grüßen, S. Schicktanz --- -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk
Re: [MSEide-MSEgui-talk] Idea - protection from key loggers
if someone has found a way to hijack the grafic system of your machine = Also a network firewall on LINUX-based LAN router can be used to prevent from accessing virus's remote desktop servers (to view/grab GUI windows) on infected win-32 machines and sending stolen data from them. 2011/12/5, Sieghard s_c_...@arcor.de: Hallo IvankoB, Du schriebst am Sun, 4 Dec 2011 19:15:54 +0500: How about an option to draw virtual keyboard (with related chars) at password entry widget ? It will greatly protect encrypted RSA keys,.. Sure not in an OS window otherwise it can be intercepted by hacked API. You cannot avoid that, not with reasonable effort, at least. To really safely avoid an interception through the grafic system, you would have to read the keyboard through your own code, and not show anything on the screen. Everything else would _need_ to use system (API) functions which could be eavesdropped by an aggressor. Additionally, if someone has found a way to hijack the grafic system of your machine, he will also be able to access your keys directly, even your applications and all data - no further phishing neccessary. Such precautions are only neccessary for access to ressources from external sources, which may have been manipulated beforehand, like web browsers, or client requests over the network. Or, maybe, on a badly administrated Windows machine. ];- (Well, a badly administrated Linux machine might not be safer, indeed;) -- (Weitergabe von Adressdaten, Telefonnummern u.ä. ohne Zustimmung nicht gestattet, ebenso Zusendung von Werbung oder ähnlichem) --- Mit freundlichen Grüßen, S. Schicktanz --- -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk
Re: [MSEide-MSEgui-talk] Idea - protection from key loggers
Anyway, either virtual keyboard or password changed each logon with sending confirmation SMS etc (needs external services) or USB-tokens (not a cheap solution) or callback (can't be used for DB logon etc). 2011/12/5, IvankoB for-mse ivankob4m...@gmail.com: if someone has found a way to hijack the grafic system of your machine = Also a network firewall on LINUX-based LAN router can be used to prevent from accessing virus's remote desktop servers (to view/grab GUI windows) on infected win-32 machines and sending stolen data from them. 2011/12/5, Sieghard s_c_...@arcor.de: Hallo IvankoB, Du schriebst am Sun, 4 Dec 2011 19:15:54 +0500: How about an option to draw virtual keyboard (with related chars) at password entry widget ? It will greatly protect encrypted RSA keys,.. Sure not in an OS window otherwise it can be intercepted by hacked API. You cannot avoid that, not with reasonable effort, at least. To really safely avoid an interception through the grafic system, you would have to read the keyboard through your own code, and not show anything on the screen. Everything else would _need_ to use system (API) functions which could be eavesdropped by an aggressor. Additionally, if someone has found a way to hijack the grafic system of your machine, he will also be able to access your keys directly, even your applications and all data - no further phishing neccessary. Such precautions are only neccessary for access to ressources from external sources, which may have been manipulated beforehand, like web browsers, or client requests over the network. Or, maybe, on a badly administrated Windows machine. ];- (Well, a badly administrated Linux machine might not be safer, indeed;) -- (Weitergabe von Adressdaten, Telefonnummern u.ä. ohne Zustimmung nicht gestattet, ebenso Zusendung von Werbung oder ähnlichem) --- Mit freundlichen Grüßen, S. Schicktanz --- -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d ___ mseide-msegui-talk mailing list mseide-msegui-talk@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mseide-msegui-talk