Wireless PC Lock - nice device, crummy software.

I've been playing lately with a little device I picked up in the local Fry's store. It's a "Wireless PC Lock", and the idea is that there's a pair of pieces - a USB stick, and what you might charitably call a fob (although when I tried to use it on my key ring, the button stayed pressed in my pocket, and I wore out the battery).

This is really a sweet little idea - a presence device so that you don't forget to lock your PC when you walk away (you do lock your PC whenever you're away, don't you?)

Unfortunately, the software isn't very well thought-out or well written. The device is capable of unlocking the PC as well as locking it, which is not good if you hang out on the other side of the wall from your PC. For me, that's out in the corridor, but I don't feel comfortable taking the chance that it'll unlock as I'm standing chatting in an area where I can't see my PC.

This is where we come to the second problem. Those sharp-eyed among you will note that you can't programmatically unlock the PC. You have to enter a username and password to do so. The obvious way the developers on the Wireless PC Lock came up with for dealing with this was to pretend to lock the system - they put up a picture of dolphins (because dolphins and security - well, if I have to explain it...)) over every one of your programs, and they do their level best to prevent you from getting to anything but the dolphins until you've typed in your password.

I'm a suspicious person at heart - it can't be too tricky to get around this, and my bet is that you simply insert a CD-ROM with Autoplay (although I do have that disabled, too) that runs a tool to kill the process that locks the system. It's not too difficult to figure out the process.

So, I'm thinking it shouldn't be too difficult to write a program that does the right thing - if you disappear from radio sight for a few seconds, or you unplug the USB stick, the system should lock - proper LockWorkStation lock. When you come back in range... nothing. You have to unlock manually.

This is a good thing, because the radio device has only a two-byte serial code that prevents others from getting the same number device as you - but those odds just aren't good enough to act as an authentication factor. They are sufficient to act as a "presence not detected" factor.

Plus, I want my program to run as a restricted user - I don't need to be administrator to lock my terminal, I shouldn't have to be administrator to work with the Wireless PC Lock. Tune in here again in a few days, and we'll see how I've done with my goal of producing a simple, more secure version of the Wireless PC Lock software.

Published Thu, Jan 19 2006 21:49 by Alun Jones
Filed under:

Comments

# re: Wireless PC Lock - nice device, crummy software.

Did you ever manage to come up with some replacement software? I just bought one of these devices and found the software to be severely lacking.

Wednesday, March 01, 2006 5:40 AM by Rocky

# re: Wireless PC Lock - nice device, crummy software.

Yes, I did - I'm just running it through a bit of last-minute tuning. Drop me an email if you want to test it out in advance.

Wednesday, March 01, 2006 1:13 PM by Alun Jones

# re: Wireless PC Lock - nice device, crummy software.

I bought this gadget from ThinkGeek.com with the anticipation that it would have poorly designed software and I was right.

I managed to break the software in a matter of minutes.

i did this by moving the transmitter away from the receiver and waited for the screen to "lock", I then held down CTRL+ESC to bring up the Start Menu, and then right clicked on the Task Bar with the intention of running Task Manager to kill the process which displays the pretty dolphin picture, but I found that by right clicking on the task bar a couple of times the program displaying the dolphin picture just died...vanished...and i was back at the desktop.

Amazing.

Im actually looking for replacement software which will use Window's inbuild console locking mechinism's like the one which locks the console when you hit CTRL+ALT+DEL and press K.

And I'd like something which is actually configurable. So I can set if I would like the workstation unlocked for me on my return or not. Of course this may mean that your logon and password would need to be stored on disk which isnt really a good idea.

Anyway, best of luck with your program. I think anything would be better than the current software it ships with.

Wednesday, March 01, 2006 10:03 PM by Chris

# Wireless PC Lock - part 2

Over the last several days, I've been getting more and more requests for my updated Wireless PC Lock

Thursday, June 28, 2007 11:24 PM by Tales from the Crypto

# re: Wireless PC Lock - nice device, crummy software.

well i too have just purchased this kit and whilst it looks very proffesional, the actual software is really too simple. if it is possible, is there a test version to try out to see what deifference there is? thanks, luke.

Sunday, February 24, 2008 2:47 PM by Luke

# re: Wireless PC Lock - nice device, crummy software.

The comment preceding yours is a track-back from a posting (msmvps.com/.../wireless-pc-lock-part-2.aspx) I made later, which has the actual downloadable software I wrote, linked as an attachment. Please download it and let me know what you think.

Monday, February 25, 2008 10:44 AM by Alun Jones

# re: Wireless PC Lock - nice device, crummy software.

What a load of rubbish, doesnt lock the second screen out if you are dual screening!

Wednesday, December 03, 2008 5:14 AM by Ben L

# re: Wireless PC Lock - nice device, crummy software.

thanks

Friday, December 25, 2009 1:16 PM by aljadeed

Leave a Comment

(required) 
(required) 
(optional)
(required) 
If you can't read this number refresh your screen
Enter the numbers above: