Trojans, Keyloggers Problem..
Posted on 2004-05-03
Hello. If a user has managed to sneak away my password using a keylogger how am I still able to protect my email.
All the user has to do is to login to my pop3 email server and bingo, since he has the username and password all he has to do is download.
There must be a way to install a personal certificate on my local pc, which allows only my pc to be able to download the email from my pop3 server, the server will check to see which computer is requesting mail from the pop3 server check the certificate to see if it matches the credentials on the server, authorize the username and password and then allow me to download the email... This will allow me to download the email only from my computer for which i install the certificate and no other computer, even if they have my username and password they cannot login to my pop3.
THey can of-course telnet but my isp has disabled the telnet port already.
Bascially I am looking for just a more secure way of rcvding email, for fear that somebody else is using a program like eblaster or something to get my emaisl.. I have the latest version of norton and also have a hardware firewall, but that is still not good enough.
I also want to find out if there is a way to use a screen name like aol has.. I.e. my email add is firstname.lastname@example.org but my login to my pop3 is xxx987 or something different from my email add, so this way it is more difficult for a hacker to attempt to guess my password, since the username is completley different. My isp says they don't know about this. but I am sure one of the above options must be available.