security key is limited and annoying

  • Problem
  • Updated 3 years ago
1) the security key needs numbers, which it doesn't need in the first dialogue, so you can start up the system halfway and then you have to change the key.

2) the security key needs numbers. Shouldn't it be up to me what kind of security I want to have?

3) the security key also has a very limited length. I can't use a nice long phrase or a 64-character hex key if I want.

So right now the security key is both low-security (ie, short) and with forced numbers. Yay? How is it stored, anyway - do I even dare asking? :p
Photo of Mirar

Mirar

  • 2 Posts
  • 0 Reply Likes

Posted 4 years ago

  • 11
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Reply Like
I agree with above I would like to choose between AES 128, 192 or 256 and it being stored in a safe way...(I guess I can just find it in registery xD)
Photo of Chris Phillips

Chris Phillips

  • 4 Posts
  • 0 Reply Likes
Just curious, why the need for a security key at all? Why not just have a confirmation popup when a new computer wants to join in, with 3 choices (accept just this once, always auto accept, deny)
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Reply Like
Without a security key we can't encrypt the data between the pc's and so can everyone on the network steal the files being transferred between pc's and know my mousemovements and also my keystrokes....
Photo of Adriaan Davel

Adriaan Davel

  • 2 Posts
  • 0 Reply Likes
yes you can encrypt, as soon as 2 pc's have paired they can swop keys silently...
Photo of ForceCom

ForceCom

  • 6 Posts
  • 2 Reply Likes
I want to enter a 2048 chars long passphrase whenever I cross the monitors. The passphrase must also be changed on every new monitor crossing.

Can this be configured? This is essentially important for me to provide me with a basic level of security. Otherwise, others could be aware about my mouse movements.
Photo of FelixSan

FelixSan

  • 3 Posts
  • 0 Reply Likes
It's fine that you are cautious but would suggest to rather use a rotating passphrase file instead of entering them. The software could create lists of pass phrases that are stored/retrieve them from a USB stick one after another.
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Reply Like
Stop with being so ridiculous, there are more people in the world then you who do care about the security for various reasons...

So please stop making those ridiculous comments, they aren't contributing at all.
Photo of FelixSan

FelixSan

  • 3 Posts
  • 0 Reply Likes
Thomas, your comment is overly rude and inappropriate to a valid suggestion.

Dont take your security requirements as a gold standard for others. Others may be more sensitive about such issues than you.

If you don't care about security concerns, you shouldnt are about any related request either.

Personally insulting, offensive and flaming comments of this nature are not required and aren't contributing at all.
Photo of - Thomas

- Thomas

  • 14 Posts
  • 1 Reply Like
It wasn't pointed at the main question but at a very rude comment which is hidden now...
Photo of Adriaan Davel

Adriaan Davel

  • 2 Posts
  • 0 Reply Likes
So I logged on to the machine that I want to control using RDP and installed the software, I now would like to pair this machine with my laptop but I cannot get the security key as it keeps telling me that the software cannot be used in remote sessions.... Is there another way to get the key? Or do I have to physically log onto the machine to use the software that will alleviate the need to physiaclly log onto the machine?
Photo of Mouse without Borders

Mouse without Borders

  • 988 Posts
  • 67 Reply Likes
Sorry but there is no simple workaround for this, you first need to install and configure the app in the physical console session.
Photo of Mike

Mike

  • 2 Posts
  • 0 Reply Likes
or use a third party remote connection tool?
Photo of cpaus

cpaus

  • 7 Posts
  • 0 Reply Likes
like tightVNC
Photo of Mike

Mike

  • 2 Posts
  • 0 Reply Likes
No security would render this tool completely useless in our environment. We have 15,000 machines and even more users, potentially this could be an extremely useful tool.

Therefore, security is very important.

Certificate based security would be very sensible, it would take advantage of existing tried/tested/verified security models, which already exist in many organisations.

The existing ad-hod security would be ample for home users.

However, improved and customisable security would probably be better for SME customers.