1 |
On Tue, 2003-12-02 at 09:33, Alex Veber wrote: |
2 |
> Can you please explain whats wrong with using my password? |
3 |
|
4 |
Never use your password on a machine you do not fully control: |
5 |
Someone may have installed a hardware or software keystroke logger. |
6 |
|
7 |
Keystroke loggers are available externally and built into keyboards: |
8 |
http://www.keyghost.com/ |
9 |
|
10 |
>From an unsecure host, you can use a one time password to access your |
11 |
secure machines: |
12 |
http://forums.gentoo.org/viewtopic.php?t=103232 |
13 |
|
14 |
However, the paranoid must consider: |
15 |
1) Anything communicated over the link may be recorded. |
16 |
|
17 |
The truly paranoid must also consider: |
18 |
1) Once communication is established the accessing machine may insert |
19 |
commands and filter results presented to you. |
20 |
2) You must ensure you really logout. Just because it looks like you |
21 |
logged out does not mean you were logged out. |
22 |
|
23 |
-Arthur |
24 |
|
25 |
|
26 |
|
27 |
-- |
28 |
gentoo-dev@g.o mailing list |