This might a little off-topic, but I'll soon be away from my home computer and without laptop, leaving me at the mercy of internet cafes.  Does anyone have any tips for foiling keyloggers that might be installed at these places?  

I was thinking that I could keep a regular text file online  w/ A-Z and 0-9 on it (not the actual pwds of course), and drag and drop characters into the cpanel/webmail login windows.

I know the keystroke sniffer programs can track cut and paste activites, but would they be able to handle drag and drop (which does not get copied to the clipboard)?

Feel free to move to the appropriate forum if this is not the right place.

Thanks,

-glee

Boy, that is scary to know that you really can't do anything to prevent them from figuring out what you are doing.



So, what did you used to do Kata? Criminal activities, hacking, espionage?  Just wondered...you brought it up.  

interesting.  so it sounds like that technique would not totally foil the logger reader, but would at least make it more difficult for them to figure out the pwd.

thanks for the tip,

-g

Wow, this is really interesting stuff!  I never knew about "keyloggers" until glee4 brought it up.  Good info to know.



mussavcom - you are such a joy to read!



Aha!  We have found the culprit who is messing with our email! Hmmm, Ed, we're going to have to keep a watchful eye on you, my dear.  

P.S. Watch out for large spiders the next time you go rock climbing!

I'm not aware of any real solutions for non-shell type accounts (like here at LP). If you have a shell account, you can generally setup a one-time password scheme using s/key which, despite requiring you to carry around a piece of paper with your passwords, is very secure, particularly used in conjunction with ssh. Of course, that won't do you any good when trying to log into a webmail account, which is why I maintain my primary address on an account with shell access.

The main problem with keeping an external file online with pw's, is:

1) You have to input a password to view it(if not, everyone can see)
2) You have to input an addres TO the file(which is even worse if everyone can see)

A few people i know have been using USB Key's w/Encryption to authenticate on their work network machines, maybe something can be done there, but i doubt public computers have many ports availble for you to jam stuff in, like sammiches!