Has the Secure Desktop been enhanced?

A lightweight and easy-to-use password manager

Brought to you by: dreichl

Has the Secure Desktop been enhanced?

Forum: Help

Creator: Marty List

Created: 2015-10-17

Updated: 2015-10-22

Marty List - 2015-10-17

I apologize if this has already been answered, I searched this forum and the main website before posting, but is the Secure Desktop feature even worth enabling since it can be easily bypassed like this: https://www.youtube.com/watch?v=pEHrwR7WyyA

This help page http://keepass.info/help/kb/sec_desk.html sort of addresses this under the Limitations. At the end of the video there is a suggestion that creating a new session might work, has this been tested? Is the Secure Desktop even needed if the password is entered in one of the "Secure Edit Controls"?

Thanks for a great app!

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Paul - 2015-10-20

If a bad man can persuade you to run software on your computer, it is no longer your computer.

If you must use KeePass on a compromised computer, using the secure desktop and limited passwords is the best you can do. If the compromised computer has a KeePass specific capture program you are knackered.

cheers, Paul

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

xaa - 2015-10-21

That's it, really? :) Nothing more to do ? A normal user (not a pro) can't identify if the pc is compromised or not. Is it not possible to have a kind of warning (optionnal) if suspicious windows are working (such as command line etc?)

maybe it's worth to mention here that using password+key file + change the master password every x days is as always strongly suggested ^^

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Paul - 2015-10-21

The AV vendors update their definitions daily, how is KeePass to be able to keep up?
All that can be expected is that KeePass secures your data properly and provides a reasonably secure method of obtaining that data when required.

cheers, Paul

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marty List - 2015-10-21

Paul, I completetly agree with you, but I think you missed the point of the question entirely. I was not asking if it's safe to run KeePass on a computer that is known to be infected (as if someone asking that question would continue using a known compromised computer <rolling eyes="">), I was asking if the secure desktop feature has had any improvements since it was implemented, and if it provides anything more than what the secure edit controls offer (if it is even worth enabling).</rolling>

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Paul - 2015-10-22

The KeePass secure desktop option has not changed recently. Whether it's worth enabling is up to you.

cheers, Paul

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.