Keyboard Spy Logger

For discussions about security.
Post Reply
Message
Author
User avatar
fabrice_035
Posts: 765
Joined: Mon 28 Apr 2014, 17:54
Location: Bretagne / France

Keyboard Spy Logger

#1 Post by fabrice_035 »

Hi,

It's not a fresh news but i discover a little tool called evtest :

Image

evtest can intercept keystrokes (and many others things) , all right, it's not a thief's software, but apparently it can't be very complicated to make one.

so I think it's safer to use the virtual keyboard when you type a password.

With Puppy you can find a tool named Florence : it's a nice Virtual Keyboard. I think it's more secure.
Image

[edit] Another virtual keyboard suggested by @foxpup

Image

What do you think of that?


Regard
Last edited by fabrice_035 on Mon 11 Feb 2019, 16:50, edited 2 times in total.
Bionicpup64-8.0 _ Kernel 5.4.27-64oz _ Asus Rog GL752
Top
foxpup
Posts: 1132
Joined: Fri 29 Jul 2016, 21:08

#2 Post by foxpup »

You are right.
In some Puppys it is another one: xvkbd

I always use this when banking.
Top
User avatar
rufwoof
Posts: 3690
Joined: Mon 24 Feb 2014, 17:47

#3 Post by rufwoof »

Local virtual keyboards are no more secure than xterm's (real version) Ctrl left-mouse-press ... Secure Keyboard option. Both are circumvented by a 'reasonable' keylogger. Better if your bank has one of those drop down selections of letters from your secondary password, especially if you use a non standard window size at the time (non maximised window). Even more so if after a pristine system boot.
[size=75]( ͡° ͜ʖ ͡°) :wq[/size]
[url=http://murga-linux.com/puppy/viewtopic.php?p=1028256#1028256][size=75]Fatdog multi-session usb[/url][/size]
[size=75][url=https://hashbang.sh]echo url|sed -e 's/^/(c/' -e 's/$/ hashbang.sh)/'|sh[/url][/size]
Top
User avatar
fabrice_035
Posts: 765
Joined: Mon 28 Apr 2014, 17:54
Location: Bretagne / France

#4 Post by fabrice_035 »

@rufwoof
Provide me with the same proof that evtest with a VirtualKeyboard.
:wink:
Bionicpup64-8.0 _ Kernel 5.4.27-64oz _ Asus Rog GL752
Top
ITSMERSH

#5 Post by ITSMERSH »

I have a better idea and much more secure:

Don't do online banking!

:lol:

I don't do online banking in general as I don't use digital pay services in general as well.
Top
User avatar
8Geee
Posts: 2181
Joined: Mon 12 May 2008, 11:29
Location: N.E. USA

#6 Post by 8Geee »

Also... do not use wifi for banking!

Regards
8Geee
Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."
Top
User avatar
mikeslr
Posts: 3890
Joined: Mon 16 Jun 2008, 21:20
Location: 500 seconds from Sol

#7 Post by mikeslr »

Ditto ITSMERSH and 8Geee.

If you must make online purchases, at least in the States you can purchase a pre-paid debit card from many convenience stores and pharmacies. The most you stand to loose is any balance remaining after you've made your purchase.
Top
User avatar
bigpup
Posts: 13886
Joined: Sun 11 Oct 2009, 18:15
Location: S.C. USA

#8 Post by bigpup »

Those prepaid cards can be emptied out to zero.
If there is any money still on the card.
Just use it to buy something in a store.
If there is not enough money on the card. It will use what is there and show what is still needed.
You pay what is not covered by the card.

Do it all the time.
I only order online with prepaid cards.
The things they do not tell you, are usually the clue to solving the problem.
When I was a kid I wanted to be older.... This is not what I expected :shock:
YaPI(any iso installer)
Top
User avatar
Smithy
Posts: 1151
Joined: Mon 12 Dec 2011, 11:17

#9 Post by Smithy »

Thanks that's just reminded me to get some woolly puppy socks or sundries from a Marks and Spencer Christmas gift voucher. I guess they expire after a bit.
But since this is the security subforum maybe a jockstrap or girdle..
Top
Post Reply

Return to “Security”