Main Page | Report this Page
 
Loading..
   
Science Forum Index  »  Cryptography Forum  »  Richard Outerbridge Encryption...
Page 1 of 1    
Author Message
...
Posted: Tue Jul 22, 2008 10:29 am
Guest
Folks,

Thanks for reading this post. I have an issue where we are using
RealVNC to do some remote management of some computers out in the
field. We are using a DLL (vncauth.dll wirtten in C++) and use it
from C# code to encrypt the vnc password before connecting.
vncauth.dll uses Richard Outerbridge d3des (D3DES (V5.09)) to the
encryption of the password, then we change the encrypted password into
hex before placing it in the config file of RealVNC. Clicking the
RealVNC config file launches RealVNC and we are connected. So far so
good...

The issue is that out of ~12K passwords that we have, about 250 do not
work (garbage output) when using Richard Outerbridge des encryption. I
couldn't find an "updated" version online. The link to the source
files are:

vncauth.c
http://www.codase.com/search/display?file=L2dlbnRvbzIvdmFyL3RtcC9yZXBvcy9jb2Rhc2UuYy9ueC14MTEtMS40LjAtcjQvd29yay9ueHZpZXdlci9ueHZpZXdlci92bmNhdXRoLmM=&lang=c


d3des.h
http://www.codase.com/search/display?file=L2dlbnRvbzIvdmFyL3RtcC9yZXBvcy9jb2Rhc2UuYy9ueC14MTEtMS40LjAtcjQvd29yay9ueHZpZXdlci9ueHZpZXdlci9kM2Rlcy5o&lang=c%2B%2B

d3des.c
http://www.codase.com/search/display?file=L2dlbnRvbzIvdmFyL3RtcC9yZXBvcy9jb2Rhc2UuYy9ueC14MTEtMS40LjAtcjQvd29yay9ueHZpZXdlci9ueHZpZXdlci9kM2Rlcy5j&lang=c

Again, only ~250 passwords have issues being encrypted while all other
passwords are encrypted and decrypted successfully. I couldn't find
any pattern in the passwords that would cause this. One of the
passwords (as an example) that has garbage out is “dvvr8bqx” (without
the quotes). I wrote a simple win form with textboxes to look for a
pattern and if your remove a single char from the password (any char),
it encryptes and decryptes without an issue. But if you enter excatly
“dvvr8bqx” it gives garbage output. Here is an example of *working*
password:

Input: abcdefgh
Output before hex conversion: ÛŠ°%eã´Â
Hex Conversion: db8ab02565e3b4c2
Decrypt: abcdefgh

Here is an example that does NOT work:

Input: dvvr8bqx
Output before hex conversion: BLANK
Hex Conversion: 00000000a4ee2c00
Decrypt: GARBAGE Chars

Again, we are using C# to call this DLL (written in and compiled in C/C
++) and we are running on a Windows 2K3 64 bit.

Anyone has any idea what/why would the encryption break with certian
char patterns? If you need more info (code sample, etc.) please let
me know and i will post it.

Thanks in advance of anyone who can help.
Back to top
 
Page 1 of 1       All times are GMT - 5 Hours
The time now is Fri Aug 29, 2008 4:04 pm
Science Forum Index

Powered by phpBB & ML | Disclaimer



Contact Us