-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, Mar 20, 2003 at 08:06:04AM -0600, SnowDog wrote: > > What operating system do you have installed? What browser? What email > > client? Do you have a virusscanner? Is it updated frequently? > > Do you only visit the e-gold site only by manually entering > > https://use.e-gold.com/ in your browser address box? Do you have a > > secure password? > > The only other thing I would add is that I always access my account through > the SRK mouse-click entry system, without exception. There are some trojans > out there which can log your key strokes and send them across the internet > to the thief who wrote the trojan, but I can't imagine how anyone could > capture your mouse-clicks using the SRK.
Theoretically a trojan could read the value of the (password) inputboxes in the active window. I guess that this isn't too hard to do with some Windows DDE. Maybe password boxes are protected from DDE access, but then the trojan could do a memory diff between the page load and the button click call. Or just patch IE to capture them. Joris Bontje - -- PGP Key: http://pgp.dtype.org:11371/pks/lookup?op=get&search=0xF19326A9 Key fingerprint = 730D 9B3A F406 F28A 957D 6397 31E8 6D4C F193 26A9 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+edMBMehtTPGTJqkRAtC4AJ4ptZajtky0l2CBBH5t9viJn94U2wCfUWmr w70SCFmLIgnFga0onatCIV0= =6UZJ -----END PGP SIGNATURE----- --- You are currently subscribed to e-gold-list as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.
