ForgottenFlux@lemmy.world to Privacy@lemmy.mlEnglish · 6 months agoSignal under fire for storing encryption keys in plaintext on desktop appstackdiary.comexternal-linkmessage-square258fedilinkarrow-up1513cross-posted to: foss@beehaw.orgprivacyguides@lemmy.one
arrow-up1513external-linkSignal under fire for storing encryption keys in plaintext on desktop appstackdiary.comForgottenFlux@lemmy.world to Privacy@lemmy.mlEnglish · 6 months agomessage-square258fedilinkcross-posted to: foss@beehaw.orgprivacyguides@lemmy.one
minus-squareexplore_broaden@midwest.sociallinkfedilinkarrow-up5·6 months agoI don’t think apps can read keystrokes for other apps on Wayland.
minus-squarerefalo@programming.devlinkfedilinkarrow-up2·edit-26 months agoWayland doesn’t magically make other kinds of keyloggers stop working altogether though. https://old.reddit.com/r/linux/comments/23mj49/wayland_is_not_immune_to_keyloggers/ https://github.com/Aishou/wayland-keylogger https://github.com/schauveau/sway-keylogger https://old.reddit.com/r/kde/comments/11h5tvl/wayland_security_keyloggers_are_back/
minus-squareexplore_broaden@midwest.sociallinkfedilinkarrow-up2·6 months agoIf you have root you could just update the kernel to one that lets you do whatever you want on the system, so there’s no way to stop the attacker from viewing the passwords if the app is capable of displaying them.
I don’t think apps can read keystrokes for other apps on Wayland.
Wayland doesn’t magically make other kinds of keyloggers stop working altogether though.
https://old.reddit.com/r/linux/comments/23mj49/wayland_is_not_immune_to_keyloggers/
https://github.com/Aishou/wayland-keylogger
https://github.com/schauveau/sway-keylogger
https://old.reddit.com/r/kde/comments/11h5tvl/wayland_security_keyloggers_are_back/
Unless you have root
If you have root you could just update the kernel to one that lets you do whatever you want on the system, so there’s no way to stop the attacker from viewing the passwords if the app is capable of displaying them.