Win32 - 3.3.3r9 - password exploit?
Mac Reiter
reiter "at" nomadics.com
Wed, 04 Apr 2001 21:10:20 +0000
>I'd like to know what the algorithm is so I can write a tool to change the
>registry password from a command line, or cgi interface.
>crypt() (at least in perl) produces 13 chars of encryption, VNC's is fixed
>at 8 chars.
Wez responded today and corrected my misguided statement. It doesn't use
crypt(). The limitation is to maintain compatibility with getpass(), which
only returns 8 characters on some systems. The actual
encryption/authentication is VNC specific. Dunno anything past that.
_____________________________ /"\
Mac Reiter \ / ASCII Ribbon Campaign
Nomadics, Inc. X Against HTML Mail
reiter "at" nomadics.com / \
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------