physlock icon indicating copy to clipboard operation
physlock copied to clipboard

Published 20 hours ago verified publisher icon muennich

Just a simple suggestion! (Poweroff at 3rd password mistake)

Open sorathpanzer opened this issue 4 years ago • 3 comments

Would be possible to implement some kind of "hard secure mode", so that at the 3rd time (as an example) of password insertion mistake, physlock, automatically shutdown the computer! Just an idea. :)

sorathpanzer avatar Oct 08 '20 03:10 sorathpanzer

Interesting idea. What would prevent an attacker from simply booting the computer back up and continuing trying to log in, though? Also, it seems like this opens the door to inadvertently losing work in progress if, say, it takes you a couple of tries to realize you left the proverbial caps lock on.

escondida avatar Oct 08 '20 21:10 escondida

The benefit in this case is that the previous session wouldn't be loaded in RAM, though any bad actor would perform that kind of attack vector before trying to type a password anyway but I like the idea to have some kind of action after several failed attempts as an extra security layer.

fmartingr avatar Nov 24 '20 20:11 fmartingr

How would an attacker get access to session data loaded in RAM? Is that mitigated by disabling magic sysrq keys?

Barbaross93 avatar Sep 09 '21 13:09 Barbaross93