security key is limited and annoying

  • Problem
  • Updated 3 years ago
1) the security key needs numbers, which it doesn't need in the first dialogue, so you can start up the system halfway and then you have to change the key.

2) the security key needs numbers. Shouldn't it be up to me what kind of security I want to have?

3) the security key also has a very limited length. I can't use a nice long phrase or a 64-character hex key if I want.

So right now the security key is both low-security (ie, short) and with forced numbers. Yay? How is it stored, anyway - do I even dare asking? :p
Photo of MirarM

Mirar

  • 2 Posts
  • 0 Likes

Posted 3 years ago

  • 11
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Like
I agree with above I would like to choose between AES 128, 192 or 256 and it being stored in a safe way...(I guess I can just find it in registery xD)
Photo of Chris Phillips

Chris Phillips

  • 4 Posts
  • 0 Likes
Just curious, why the need for a security key at all? Why not just have a confirmation popup when a new computer wants to join in, with 3 choices (accept just this once, always auto accept, deny)
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Like
Without a security key we can't encrypt the data between the pc's and so can everyone on the network steal the files being transferred between pc's and know my mousemovements and also my keystrokes....
Photo of Adriaan DavelAD

Adriaan Davel

  • 2 Posts
  • 0 Likes
yes you can encrypt, as soon as 2 pc's have paired they can swop keys silently...
Photo of ForceComF

ForceCom

  • 6 Posts
  • 2 Likes
I want to enter a 2048 chars long passphrase whenever I cross the monitors. The passphrase must also be changed on every new monitor crossing.

Can this be configured? This is essentially important for me to provide me with a basic level of security. Otherwise, others could be aware about my mouse movements.
Photo of FelixSanF

FelixSan

  • 3 Posts
  • 0 Likes
It's fine that you are cautious but would suggest to rather use a rotating passphrase file instead of entering them. The software could create lists of pass phrases that are stored/retrieve them from a USB stick one after another.
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Like
Stop with being so ridiculous, there are more people in the world then you who do care about the security for various reasons...

So please stop making those ridiculous comments, they aren't contributing at all.
Photo of FelixSanF

FelixSan

  • 3 Posts
  • 0 Likes
Thomas, your comment is overly rude and inappropriate to a valid suggestion.

Dont take your security requirements as a gold standard for others. Others may be more sensitive about such issues than you.

If you don't care about security concerns, you shouldnt are about any related request either.

Personally insulting, offensive and flaming comments of this nature are not required and aren't contributing at all.
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Like
It wasn't pointed at the main question but at a very rude comment which is hidden now...
Photo of Adriaan DavelAD

Adriaan Davel

  • 2 Posts
  • 0 Likes
So I logged on to the machine that I want to control using RDP and installed the software, I now would like to pair this machine with my laptop but I cannot get the security key as it keeps telling me that the software cannot be used in remote sessions.... Is there another way to get the key? Or do I have to physically log onto the machine to use the software that will alleviate the need to physiaclly log onto the machine?
Photo of Mouse without Borders

Mouse without Borders

  • 975 Posts
  • 52 Likes
Sorry but there is no simple workaround for this, you first need to install and configure the app in the physical console session.
Photo of MikeM

Mike

  • 2 Posts
  • 0 Likes
or use a third party remote connection tool?
Photo of cpausC

cpaus

  • 7 Posts
  • 0 Likes
like tightVNC
Photo of MikeM

Mike

  • 2 Posts
  • 0 Likes
No security would render this tool completely useless in our environment. We have 15,000 machines and even more users, potentially this could be an extremely useful tool.

Therefore, security is very important.

Certificate based security would be very sensible, it would take advantage of existing tried/tested/verified security models, which already exist in many organisations.

The existing ad-hod security would be ample for home users.

However, improved and customisable security would probably be better for SME customers.