tag:blogger.com,1999:blog-32241238.post4937250989459658343..comments2023-03-25T05:46:26.256-04:00Comments on Why not?: DES Encryption As Used in VNC AuthenticationDanhttp://www.blogger.com/profile/06099373265709774874noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-32241238.post-60441223954093628122016-02-09T03:48:15.604-05:002016-02-09T03:48:15.604-05:00You can also mirrored hard secret key of VNC:
vnc...You can also mirrored hard secret key of VNC: <br />vnc_key = [23, 82, 107, 6, 35, 78, 88, 7] in code<br />vnc_key_for_classic_DES = [232, 74, 214, 96, 196, 114, 26, 224]<br /><br />If you use common alghorithm of DES encryption (ECB), you should use vnc_key_for_classic_DES without password changing.<br />DoNhttps://www.blogger.com/profile/12361562025582666063noreply@blogger.comtag:blogger.com,1999:blog-32241238.post-7637564155222312902013-08-16T12:22:55.698-04:002013-08-16T12:22:55.698-04:00Turns out I wasn't entirely right. The above h...Turns out I wasn't entirely right. The above holds true for UltraVNCs MS-Logon. The ordinary "VNC password" login however uses ECB without an IV (of course).<br /><br />Pseudo code VNC Authetication:<br /><br />Read 16byte => $challenge<br />$A = encrypt( first8bytes( $challenge) , bitflipped( $userpassword), DES/ECB/NoPadding)<br />$B = encrypt( second8bytes( $challenge), bitflipped( $userpassword), DES/ECB/NoPadding)<br /><br />send concat( $A, $B)<br /><br />Pseudo code MS-Logon Authetication:<br /><br />$key = DiffieHellman( Server).pubKey<br />$user = encrypt( pad( $username, 256), bitflipped( $key), DES/CBC/NoPadding)<br />$pwd = encrypt( pad( $userpassword, 64), bitflipped( $key), DES/CBC/NoPadding)<br /><br />send $user<br />senr $pwd<br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-32241238.post-78777112491258706322013-08-16T08:15:07.730-04:002013-08-16T08:15:07.730-04:00I can't speak for other VNC servers, but at le...I can't speak for other VNC servers, but at least the UltraVNC server (see http://www.uvnc.com/) uses "CBC" and NOT "ECB" ( see http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Electronic_codebook_.28ECB.29 for details) mode without padding.Anonymousnoreply@blogger.com