Re: 1 in 3 workers write down passwords

[coderman <coderman () gmail com>]

On 10/18/06, Dude VanWinkle <dudevanwinkle () gmail com> wrote:
> ...
> I would at least use a keyring on top of having a txt file on an encrypted disk.
> Whole disk encryption is great and all, but its not a security buffer
> once you boot up. If someone can compromise the userland part of your
> workstation through the nic(via html, java, java script,, random
> OS/application flaw) the file is not encrypted to them.

absolutely, although i prefer to run networked applications on
separate systems, inside a virtual machine, or both with exported
display.

i don't know that a keyring gets you much if lack of host security is
a concern.  if they can exploit userland over the network, they can
probably exploit your keyring/encryption tool.
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.