Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Re: pgp passphrase
From: Paul Schmehl <pauls () utdallas edu>
Date: Mon, 22 Mar 2004 20:29:03 -0600

--On Monday, March 22, 2004 4:03 PM -0800 Denis Dimick <denis () dimick net> wrote:


Most smart users.. Ok start the laughing now.. Have a passcode for their
keys..

:)

No, really????

And if I 0wn your box, do you not think that my keylogger can get your passcode? Good grief! If the box is hacked, I can get any information I need from you to screw you up further. Passcodes or anything else you have *or* type are trivial to obtain once I have root on the box.

I'm a bit surprised that I have to point this out.

Paul Schmehl (pauls () utdallas edu)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]