-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Implement secure password entry on linux (X11 server) #7
Comments
Some x11 manuals about this: https://www.x.org/archive/X11R7.5/doc/security/XACE-Spec.pdf |
X11 protocol have extention XTEST. It can intercepted and synthesize events. |
Sample project "input PIN-code" fo X11: Discussion of problem: A Brief intro to X11 Programming: As can be seen from sample project and discussion of the problem, also it is necessary cause xGrabServer(). |
XGrabKeyboard and XGrabServer() is not blocking keyboard intercept. Structure XSetWindowAttributes have field override_redirect. |
Can try xcb library. It contains functions xcb_grab_keyboard(), xcb_grab_server(). |
Ways to solve the problem:
|
Problem solution:
Password consist of keyscans, that defined in file /usr/include/linux/input-event-codes.h For this:
Contorl keys (Enter, Backspace, Delete, Esc) is defined as keycode evdev drives. It is necessary identity correctly device "keyboard" for it grabbing. For this:
To geting correctly symbols it is necessary consider modificators (Shift, Capslock, ... ). For enhanced security, program "password entry" should not have GUI. It is proposed to implement GUI in another programm, that started and controlled through pipe. |
All items completed except:
Source files: |
depended task #10 is need to implement in future |
No description provided.
The text was updated successfully, but these errors were encountered: