miskNov 22, 2023

Microsoft’s Windows Hello fingerprint authentication has been bypassed

https://sopuli.xyz/post/6139709

Microsoft’s Windows Hello fingerprint authentication has been bypassed - Sopuli

Show threadstom
This is why I use Linux, the fingerprint device wouldn’t be supported so this wouldn’t be an issue /s
Nov 22, 2023 at 3:31pmWeb
Show threadHubiNov 22, 2023
The one on my Thinkpad works just fine :)
Show threadsmoothbrain coldtakesNov 22, 2023
I got a T80s and the sensor doesn’t work.
Show threadHubiNov 22, 2023
I’ve got a T440p and I just set it up through the menu in the KDE settings, it worked right out of the box.
Show threadsmoothbrain coldtakesNov 22, 2023
Mine’s not in libfprint, libfprint-tod, or libfprint-goodix.
Show threadGorkNov 22, 2023
Mmm yes security by non-functionality. A pillar of the modern cybersecurity framework.
Show threadSpaceNoodleNov 22, 2023
Can’t hack a brick 🤷
Show threadAbidanYreNov 22, 2023
But you can use a brick to hack windows.
Show threaddemonswordNov 22, 2023

But you can use a brick to hack windows

yes indeed, the good ol’ broken windows fallacy!

Show threadfmstratNov 23, 2023
When you could have said crack, but instead said hack.
Show threadagent_flounderNov 22, 2023
And this is why I am typing this on a 1921 Royal No. 10 typewriter.
Show threadAbidanYreNov 22, 2023
Found Tom Hanks’s Lemmy account.
Show threadKusimulkkuNov 23, 2023
Works for my webcam. Tbh I’d like someone to hack it, would mean they would’ve written drivers for it
Show thread/home/pineappleloverNov 22, 2023
Nah I use fprint on my arch laptop so there is fingerprint login technology. Hopefully that doesn’t have security vulnerabilities.
Show threadlocuesterNov 23, 2023
It has vulnerabilities for sure. But they haven’t been found because no one cares about hacking you or the 1 other person on earth that use Arch and fingerprint security.
Show thread/home/pineappleloverNov 24, 2023
Security by obscurity lol
Show threadultranautNov 22, 2023
One of the major reasons I gave up on trying to run Linux on my laptop was lack of fingerprint reader support.
Show threadWindowsEnjoyerNov 22, 2023

wouldn’t be supported so this wouldn’t be an issue

I did not expect that 😅

Show thread☂️-Nov 22, 2023
I have a Microsoft fingerprint reader that works fine on Linux lol
Show threadloutrNov 22, 2023
That’s funny, on my XPS Windows crashed when I tried adding a fingerprint. Works flawlessly under Arch.
Show threadPeWuNov 23, 2023
Today I was fucking around with this shit. I can’t even update my distro, otherwise ecryptfs will go adios, and fingerprinting will be broken.
Show threadCethinNov 23, 2023
The fun thing about Linux is your realize physical control is ownership. You can just throw a Bootable Linux image with some utilities and remove the password from a Windows account in a second. If you really need to keep something safe, it has to be encrypted.
Show threadkaduNov 23, 2023

remove the password from a Windows account

That used to be true, but no longer works

Show threadjonneNov 23, 2023
Regardless, you can just read what’s on the disk anyway, so you don’t need to be able to log in.
Show threadrandombulletNov 23, 2023
Unless bitlocker is enabled by default, which is becoming more and more common
Show threadkaduNov 23, 2023

unfortunately

Unfortunately? How is encryption by default a bad thing? It’s amazingly good at protecting data from people who wouldn’t even know what encryption is.

The number of lost laptops in coffee shops protected by BitLocker is insane.

Show threadRFBurnsNov 24, 2023

Correct answer.

Using any form of biometric ‘login’ under the US’s “justice” system is supremely ill-advised.