zlacker

[return to "The Linux Security Circus: On GUI isolation"]
1. follow+x2[view] [source] 2011-04-23 23:12:25
>>wglb+(OP)
I seem to recall the "Secure Keyboard Entry" option (in the application menu) in Terminal on OS X is supposed to stop the su/sudo problem on OS X at least for terminals.
◧◩
2. there+c3[view] [source] 2011-04-23 23:33:10
>>follow+x2
xterm has a secure keyboard option from its menu (control+click) that is supposed to prevent other applications from being able to receive X11 events related to input.

the thing you are referring to on os x is similar, with a system-wide capability. when you enter passwords for keychain and similar things, these have secure input enabled by default. i think it's up to the application to enable it, but when it's enabled for a field, no other application can intercept those events.

◧◩◪
3. jojo1+r3[view] [source] 2011-04-23 23:38:23
>>there+c3
xinput is still able to read all keys when xterm's secure keyboard is enabled.
◧◩◪◨
4. there+w3[view] [source] 2011-04-23 23:41:07
>>jojo1+r3
right, because it's not operating on x11 events, it's just directly reading xinput data. there's not much xterm can do when the underlying server is giving away all of the raw input data.
[go to top]