in reply to Three more from IBM developerWorks

I suggest everyone at least take a glance at the third article on "continuous keystroke-dynamics monitor"...... scary if you use Xwindows and can't check ps as root for an xev pid.
I'm not really a human, but I play one on earth Remember How Lucky You Are

Replies are listed 'Best First'.
Re^2: Three more from IBM developerWorks
by Anonymous Monk on Oct 16, 2008 at 12:38 UTC
    Why? Article says Although not applicable to the console or remote sessions, . So you're running x-windows server on your desktop, it already knows all your key/mouse clicks, of course it let you watch raw with xev.
[reply]
      Not necessarily. There are many setups, like in a CoffeeShop, or even your home with guest accounts allowed, where someone other than you has root control, but you are just allowed to run the XServer. So if I go to a coffee shop, and they give free linux computer access (not your computer, theirs), and they have that script running, they are grabbing everything you type....cc numbers, passwords, etc.

      A husband may setup a linux box at home, and record his wife's or guests Xsessions without them knowing. Or vice-versa.

      If root is doing that, he could also be sending the captured data out on a socket.

      I'm not really a human, but I play one on earth Remember How Lucky You Are
[reply]
        So you're using computer under other-person's control, I still don't see anything scary (you're already Pwned, if he wanted, computer could shoot rockets at your behind :))
[reply]

In Section Perl News