Protection from keyloggers
Posted by: bellgamin
Date: March 25, 2010 03:07AM

This IS a K-meleon topic. Please be patient with me while I set the stage.

An infection by malware -- viruses, trojans, worms, etc -- is very INCONVENIENT. In a worst case scenario, you might even have to format your HD & reinstall the OS & your apps. (Hopefully, you use disk imaging software, so all you would need to do is restore a clean image.)

A keylogger, on the other hand, can be an out & out DISASTER inasmuch as it can leak your private information (passwords, SSN, banking data etc), and -- worst yet -- can usually do so without your being aware of that leak.

Therefore protection from keyloggers is equally or MUCH more important than protection from other types of malware.

Here are some ways to protect against keyloggers while using K-mel...

1- Install Zemana Antilogger. At the moment it is FREE at....

http://www.softpedia.com/get/Security/Keylogger-Monitoring/Zemana-AntiLogger.shtml

2- Install the free version of Sandboxie and configure it so that NOTHING is allowed to connect out except K-mel. Thus, a keylogger might get into your computer's pants, but it won't be able to do ANYTHING with any information it steals. If it can't connect out, it can't call home. Sandboxie is at...

http://www.sandboxie.com/index.php?DownloadSandboxie

NOTE: A tutorial for configuring Sandboxie to restrict internet connections is at...

http://www.sandboxie.com/index.php?RestrictionsSettings#internet

3- You can also set your firewall or HIPS so as to restrict outbound connections. If you do it right, you can disable any keylogger's ability to call home with stolen information.

3a- A good free firewall for restricting outbound connections is OnlineArmor at...

http://www.tallemu.com/products-online-armor-free.php

3b- Threatfire is a good free HIPS (behavior blocker) for restricting outbound connections. Get it at...

http://www.threatfire.com/download/

4- Another good & free app for protection from keyloggers is KeePass password manager. Get it at...

http://keepass.info/

NOTE: To protect from keyloggers, use KeePass's "Two channel Auto-Type obfuscation". I suggest using KeePass in addition to one of the above preventive measures.

Aloha in the Messiah,
W.P.T. (Bill) Bellgamin



Edited 1 time(s). Last edit at 03/25/2010 03:09AM by bellgamin.

Re: Protection from keyloggers
Posted by: foobarly
Date: March 27, 2010 04:14AM

Good post for non-nonsense extreme security. Much appreciated. smiling smiley

--- sig ---


Re: Protection from keyloggers
Posted by: panzer
Date: March 27, 2010 04:26AM

We have a macro for this:

http://kmeleon.sourceforge.net/forum/read.php?2,86042,page=1



Edited 1 time(s). Last edit at 03/27/2010 04:28AM by panzer.

Re: Protection from keyloggers
Posted by: Doon
Date: March 27, 2010 02:28PM

Good stuff, man of many titles! Keyloggers should certainly be an area of concern in the realm of malware and I'm happy to see you mention Sandboxie because I'm a big fan of that amazing software.



Edited 2 time(s). Last edit at 04/01/2010 10:44AM by Doon.

Re: Protection from keyloggers
Posted by: Kerio 2.1.5 user
Date: March 31, 2010 08:36PM

Great post, bellgamin. I have a question about numbers 3 and 3a. I have used and
do like OnlineArmor. I especially like the built in HIPS functions. At least I
call it HIPS. So I guess using Threatfire or any of the other stand alone HIPS
programs gives double layered protection. I used to use the SSM or System Safety
Monitor freeware version. I have since abandoned HIPS programs for Trust-No-Exe.
I know it is much older and is not really a HIPS program but does what I need
and uses no resources at all. The majority of computers I have seen used by
average people (and that excludes everyone reading this) were so crippled by
the redundant use of of Antivirus, antispyware, etc. programs so as to make them
almost unusable. So for the typical user this is often a comcern.
It is why on this small computer I use Omega Tweaker, Spywareblaster,
Spybot, SafeXP, XPAntispy, SafeXP, Trust-No-Exe and Kerio 2.1.5 with the BZ rule
set. I do not think those programs use any resouces at all. But I have been off
of my questions since I started. Just wanted to give some background info.
I think the old Kerio 2.1.5 is as safe or safer than any newer firewall there
is (excluding the HIPS functions) as there is some truth to the statement that
a firewall is only as good as it's rules. I have only heard of one problem it
has which is the inability to block fragmented packets. So I'm looking for any
ways to do that. Programs and registry fixes are most welcome. smiling smiley

Does anyone have any recommendations for programs such as packet filters?
How about programs to make registry changes so I do not have to manually?
Any downloads of old unsupported programs are also good. I have looked
for CHX I for a very long time but am unable to find it. sad smiley

Re: Protection from keyloggers
Posted by: Ben
Date: August 06, 2011 07:17AM

Hi!

I am afraid *none* of these solutions work for my problem, i.e. I am worried about my password repository itself getting compromised, e.g. if I use KeePass, unless I use a combination of a key file and a password, a key logger could get access to my passcode for KeePass itself.

How can one avoid this?

Kind regards.

Re: anti-keylogger, sandboxie
Posted by: gizmo
Date: August 06, 2011 01:39PM
Re: Protection from keyloggers
Posted by: kingsparrow
Date: August 06, 2011 09:20PM

Quote
Kerio 2.1.5 user
Great post, bellgamin. I have a question about numbers 3 and 3a. I have used and

I think the old Kerio 2.1.5 is as safe or safer than any newer firewall there
is (excluding the HIPS functions) as there is some truth to the statement that
a firewall is only as good as it's rules. I have only heard of one problem it
has which is the inability to block fragmented packets. So I'm looking for any
ways to do that. Programs and registry fixes are most welcome. smiling smiley

sad smiley

I still use the old kerio 2.1.5, still works with minimal resources, I thought I was the only one? It still passed the leak test.................

Re: Protection from keyloggers
Posted by: phenix
Date: August 13, 2011 12:16AM

Being the cheapskate that I am Zemana Antilogger is no longer free.
$34 is a bit steep.

K-Meleon forum is powered by Phorum.