Connection password problem
James Gray
james_gray "at" open-channels.com
Tue, 05 Sep 2000 02:48:59 +0000
Almost all password systems I have used only authenticate from the 1st 8
characters - how much more security do you need?? This gives you
(effectively) a 64 bit password (read "key"). The trick is to use good
passwords, not your birthdate or a dictionary based word (this includes th1s
s0rt 0f thin8 too ;-) And also change your vunerable passwords regularly
(dont "rotate" a list of passwords either).
All this is standard stuff :-) Probably preaching to the converted ;-)
Cheers,
James
"Wallendahl, Michael/SEA" wrote:
>
> Only the first 8 characters of the password are sigificant. See the 3rd
> paragraph of:
>
> http://www.uk.research.att.com/vnc/faq.html#q53
>
> I agree that this information is not in an obvious place. Unless I had read
> the entire documentation one Saturday when I was bored I wouldn't have known
> about this restriction.
>
> HTH,
>
> -Mike
>
> -----Original Message-----
> From: Peter Engler [mailto:peter.engler "at" span.ch]
> Sent: Thursday, August 31, 2000 1:45 PM
> To: vnc-list "at" uk.research.att.com
> Subject: Connection password problem
>
> Hi Group
>
> On the installation of vnc-service, we take a connection-password
> with 11 chars. The password is acceptet with no error.
> But if we connect with a vncviewer to this server, only the first
> 8 chars of the connectionpassword are checked.
> I can't finde any doc about passwordlenght.
>
> same problem on your installations ?
>
> cheers Peter
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------