This is supposed to prevent keylogging.. but I think anything with that amount o... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

matthewbadeau on May 18, 2017 | parent | context | favorite | on: Let them paste passwords

This is supposed to prevent keylogging.. but I think anything with that amount of access to your PC can tap into the browser to read the request before it's sent. So, probably not as good as it sounds.

Cthulhu_ on May 18, 2017 | [–]

It would prevent physical keyloggers (small dongles in between keyboard and computer) and possibly even RF keylogging, but yeah, it's a false sense of security.

ytch on May 18, 2017 | [–]

Yes, and it may also screenshoting the pixels around where mouse clicks, so I don't think it can prevent keylooger. OTP is better solution.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact