Copy and paste passwords safe?

Discussion in 'privacy general' started by tooth, May 26, 2009.

Thread Status:
Not open for further replies.
  1. tooth

    tooth Registered Member

    Joined:
    May 21, 2009
    Posts:
    32
    I was curious about this...if I generate a password using KeePass.

    Copy it into an encrypted text file (w/ AxCrypt)

    Then say when I go to my online banking sites, and copy the password from that text file into the password field at the site, is this a way to prevent password logging/stealing to some extent? Or is it useless because some keyloggers monitor CTRL+C / +V commands?
     
  2. AKAJohnDoe

    AKAJohnDoe Registered Member

    Joined:
    Sep 26, 2007
    Posts:
    989
    Location:
    127.0.0.1
    There are ways to capture what is in the clipboard.

    A simple, albeit manual, method to circumvent this is to paste the password into the password field first, then type some gibberish into the user field, cut the gibberish just typed (to overlay the password data in the clipboard), then type your username.

    If you have a keylogger, you have bigger problems.
     
  3. tooth

    tooth Registered Member

    Joined:
    May 21, 2009
    Posts:
    32
    Well i am certain that I don't just wasn't sure if this method was useful at all to prevent stuff such as that
     
  4. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    2,508
    Location:
    Slovakia
    Keepass can auto-clean clipboard in certain amount of time. Also version 2 has Two-Channel Auto-Type Obfuscation ("antikeylogger", it is safer than copy/paste).
     
Loading...
Thread Status:
Not open for further replies.