Author

Topic: Thoughts on the following security features: comodo firewall and keyscrambler (Read 769 times)

full member
Activity: 126
Merit: 100
Key scrambler: useless because the attacker can read the key from bitcoin-qt process's memory.

key scrambler is to prevent keyloggers, not the private key.  If the attacker gets a hold of the private key of the encrypted wallet, does he still need the passphrase?

No, the private key is what they need. If your wallet is encrypted, your private key is encrypted until you enter a passphrase which then unencrypts the private key into memory for a set amount of time. The private key controls the coins, so obtaining the unencrypted private key is basically the end-game for any hacker. I'd rather see the built in bitcoin-qt encryption refined, so you can control encryption types, similar to truecrypt.
full member
Activity: 238
Merit: 100
Key scrambler: useless because the attacker can read the key from bitcoin-qt process's memory.

key scrambler is to prevent keyloggers, not the private key.  If the attacker gets a hold of the private key of the encrypted wallet, does he still need the passphrase?
legendary
Activity: 2058
Merit: 1452
Key scrambler: useless because the attacker can read the key from bitcoin-qt process's memory.
hero member
Activity: 546
Merit: 501
if a hacker would use some system service you allowed to access by firewall, then it won't help. But maybe someone could post list of services that are minimum required for a system with wallet only to be allowed to access internet.

As for key scramblers I was not using it so I can't tell anything. But maybe something could be build in bitcoin-qt as a standard
full member
Activity: 238
Merit: 100
Key scrambler:

Encrypts key strokes.  The free version works on 20+ different web browsers.  2 different paid versions.  Top paid version works for many programs including bitcoin qt, armory, electrum and multibit.

How effective are these things at preventing keylogging to steal your password/ pass phrases?

Comodo:

Their promise is that it protects you against ALL known attacks because the firewall regulates every connection you make.  So wouldn't this be an obstacle against a trojan stealing wallet that has to send info back to creator?
Jump to: