Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Sun 16 Jun 2019, 08:54
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Concern over wireless keyboards
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [8 Posts]  
Author Message
labbe5

Joined: 13 Nov 2013
Posts: 1769
Location: Canada

PostPosted: Tue 26 Jul 2016, 12:00    Post subject:  Concern over wireless keyboards  

http://www.theatlantic.com/technology/archive/2016/07/hackers-can-spy-on-wireless-keyboards-from-hundreds-of-feet-away/492962/?utm_source=howtogeek&utm_medium=email&utm_campaign=newsletter

http://www.keysniffer.net/

Popular wireless keyboards are not as secure as you might think. A security researcher has found some models don't have encryption. A list of models is provided.

And keysniffer is the tool that helped make the discovery.
Back to top
View user's profile Send private message 
learnhow2code

Joined: 12 Jun 2016
Posts: 1015

PostPosted: Tue 26 Jul 2016, 12:48    Post subject: Re: Concern over wireless keyboards  

labbe5 wrote:
Popular wireless keyboards are not as secure as you might think. A security researcher has found some models don't have encryption.


this story comes out every few years. no, wireless keyboards are not secure. i would never type credit card details into one. but probably no one is listening when i do. still, why broadcast credit card details over the radio?

i had an infrared keyboard at one point. but it was ps2-based.

a ps/2 keyboard can be read by anyone that taps into your electrical wiring, puts a meter on it and reads the meter needle with a laser. but thats still more work than it takes to get your wireless keyboard data (sometimes?)

even if you have a secure wireless keyboard (if one exists and you own it) chances are someone will just replace it with a less secure one, because ergonomics, or coffee. or cheaply made keyboards.

for a tablet, wireless is usually the only option.

microsoft makes a "laptop" with a wireless keyboard "built in," doesnt it?
Back to top
View user's profile Send private message 
bark_bark_bark

Joined: 05 Jun 2012
Posts: 1935
Location: Wisconsin USA

PostPosted: Tue 26 Jul 2016, 17:39    Post subject:  

Does that mean for banking, you might want to pull out the trusty ol' IBM/Lexmark Model M keyboard? BTW, I would buy one if they weren't so expensive.
_________________
....
Back to top
View user's profile Send private message 
Burn_IT


Joined: 12 Aug 2006
Posts: 3502
Location: Tamworth UK

PostPosted: Tue 26 Jul 2016, 18:04    Post subject:  

And the working range of a wireless keyboard is?
I think it would need to be a pretty persistent hacker to differentiate between the dozen keyboards in my office.
If you lose the receiver for one it is nigh impossible to get a replacement.

_________________
"Just think of it as leaving early to avoid the rush" - T Pratchett
Back to top
View user's profile Send private message 
learnhow2code

Joined: 12 Jun 2016
Posts: 1015

PostPosted: Tue 26 Jul 2016, 18:09    Post subject:  

bark_bark_bark wrote:
Does that mean for banking, you might want to pull out the trusty ol' IBM/Lexmark Model M keyboard? BTW, I would buy one if they weren't so expensive.


it means you should consider using a wired usb keyboard for banking, until you read enough stories about people reprogramming the usb controller to infect your keyboard controller. a "usb condom" wont help in this case, because your keyboard is supposed to transmit data to usb, not just power from it.

but also dont do online banking in a large apartment building with hackers living in it that can listen in over the electrical wiring Smile

in short-- do whats reasonable. imo that means no banking over wireless keyboard (including bluetooth.) use wires. or just go to the atm-- but as we know, that has its own caveats.

im happy to use the atm personally, and i would be happy to use a (wired) usb keyboard for online banking, on a gnu/linux distro with an up-to-date browser, up-to-date kernel and dns, and up-to-date version of bash. in the future perhaps usb wont be secure enough, though for now i think its "probably ok." if youre going to use wireless at least avoid the models you know are not secure. what else can you do?

Quote:
If you lose the receiver for one it is nigh impossible to get a replacement.


most logitech models (keyboard and mouse) can be reprogrammed using a small utility they offer for download, so if you have a 2-year-old logitech wireless keyboard and brand new mouse, you might get the adapter to work for one or the other other both (up to several devices.) its practically less trouble than pairing a bluetooth device.

the range was mentioned in the op. i agree its a minor concern, but i dont get why people are so non-chalant about it. its not great security if people can listen to the radio broadcast of your passwords and credit card info-- and the idea of not being able to distinguish between those broadcasts is pure wishful thinking.

how many keyboards do you type on a the same time? its not like theyre sending steganographic noise to fool people the rest of the time. and the basic support software has no trouble distinguishing between the noise of your mouse and the keys of your keyboard.
Back to top
View user's profile Send private message 
Burn_IT


Joined: 12 Aug 2006
Posts: 3502
Location: Tamworth UK

PostPosted: Tue 26 Jul 2016, 18:41    Post subject:  

Quite honestly I am not going to worry about it - especially at home.
I think a lot of these reports are generated by these security people just to justify their own existence most of the time. I can't imagine a competent thief spending months sitting around my street trying to intercept keyboard presses from my once a month access to my bank.

They would probably find it easier to hack the wireless router or tap the phone cable anyway.

_________________
"Just think of it as leaving early to avoid the rush" - T Pratchett
Back to top
View user's profile Send private message 
learnhow2code

Joined: 12 Jun 2016
Posts: 1015

PostPosted: Tue 26 Jul 2016, 18:44    Post subject:  

Quote:
I think a lot of these reports are generated by these security people just to justify their own existence most of the time.


probably true.
Back to top
View user's profile Send private message 
8Geee


Joined: 12 May 2008
Posts: 1941
Location: N.E. USA

PostPosted: Tue 26 Jul 2016, 21:33    Post subject:  

I dont use BT and thus don't worry about it. But the above is true. BT broadcasts, and can be intercepted. At least in the same room (say <25 ft/8m).
_________________
Linux user #498913 Some people need to reimagine their thinking.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [8 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0398s ][ Queries: 13 (0.0077s) ][ GZIP on ]