ThinkVantage Fingerprint Software vulnerability!

General Questions, Rumors, Real news & More
Post Reply
Message
Author
AofI
Posts: 20
Joined: Mon May 16, 2011 7:16 pm
Location: calgary, canada

ThinkVantage Fingerprint Software vulnerability!

#1 Post by AofI » Tue Oct 09, 2012 6:14 pm

ThinkVantage Fingerprint Software vulnerability!

http://arstechnica.com/security/2012/10 ... passwords/
Top
RealBlackStuff
Admin
Admin
Posts: 17495
Joined: Mon Sep 18, 2006 5:17 am
Location: Mt. Cobb, PA USA
Contact:
Contact RealBlackStuff

Re: ThinkVantage Fingerprint Software vulnerability!

#2 Post by RealBlackStuff » Tue Oct 09, 2012 10:08 pm

I never trusted FPR to begin with, and I am sure I have countless others agreeing with me here!
Lovely day for a Guinness! (The Real Black Stuff)

Check out The Boardroom for Parts, Mods and Other Services.
Top
jdk
Sophomore Member
Posts: 239
Joined: Mon Jan 03, 2011 9:08 pm
Location: Quito, Ecuador

Re: ThinkVantage Fingerprint Software vulnerability!

#3 Post by jdk » Wed Oct 10, 2012 5:50 am

I always viewed the FP reader as a "swipe to unlock" type feature. Since Windows passwords are trivial to break anyway, I just encrypt the entire volume, then set up auto-login (on a non-root account). Type the encryption key once during boot, and that's it. Use the FP reader when you lock the machine. Any time I need escalation in privileges, Windows prompts me for the root password.

This attack requires Admin privileges. Such a setup would deter this type of attack, short of freezing the RAM.
.: Lenovo X250 - 16GB, 500GB SSD, Model M SSK (Dec. 1997), Dell P2416D, OpenBSD Current :.
Top
Post Reply
  • Similar Topics
    Replies
    Views
    Last post

Return to “GENERAL ThinkPad News/Comments & Questions”

Who is online

Users browsing this forum: No registered users and 6 guests