Can a web page capture the user's screen globally?
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Can a web page capture the user's screen globally?
Now that increasingly fewer pages can be referred to in that way because they are rather applications not pages, is it possible for a web page to capture the user's session screen, including the desktop area or other applications outside of the browser? My dog wears a tinfoil hat and wants to know. I feel bad for not being able to answer that myself.
No, I haven't heard of such a thing, but I did say "conceivably."
Malware activated by clicking a dodgy link is not necessarily restricted to the browser window. The dodgy link could drop a screenshot application (or a key logger or whatever) onto the HDD, which in turn might do its thing and phone home with the result.
Mind you, I think it's a stretch to believe that a bad guy would be interested in a screenshot; the odds of catching, say, a financial spreadsheet open to the screen would be far too small. Bad guy would much more likely be interested in grabbing a copy of said spreadsheet from the home directory.
I don't believe a dodgy link could drop an application without the user noticing it. The browser would prompt for a destination directory for the download. And I don't believe the application would run by itself like some kind of robot.
On the subject of interest, I wasn't thinking about an unknown looking for something like a financial spreadsheet. I thought about someone trying to spy on someone else's life, say, what we do and whom we communicate with throughout the day.
I'm gonna say: they don't need to. They can get to much more, and more interesting data on your machine directly, without having to resort to taking screenshots. It's also less data (plain text vs. image files) to push through the network.
Of course I'm just speculating; I allow my browser to use javascript only very sparingly and never by default, and feel reasonably safe. Because without javascript, 99.9% of the attack surface is gone. Really.
Now that increasingly fewer pages can be referred to in that way because they are rather applications not pages, is it possible for a web page to capture the user's session screen, including the desktop area or other applications outside of the browser? My dog wears a tinfoil hat and wants to know. I feel bad for not being able to answer that myself.
Well as other said, it's possible. Bad guys do bad things. I have seen one admin doing this, doing screen shot of current login user without the user noticing it and sending the capture to a network share. But it was W1nx..if it's possible in another OS why would it not be possible for Linux.
I have seen one admin doing this, doing screen shot of current login user without the user noticing it and sending the capture to a network share. But it was W1nx..
And was that through a web page?
Sounds more like it happened through remote access on a company's network?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.