Re: [Aqbanking-devel] No keyspec for remote crypt key

Felix E. Klee Sun, 04 Sep 2005 08:48:45 -0700

At Sun, 04 Sep 2005 13:21:03 +0200,
Felix E. Klee wrote:
> Für den Kartenzugriff verwende ich libchipcard2-1.9.15beta.  Der
> Card-Reader ist ein Reiner SCT Cyberjack Pinpad.  Zusammen mit dem
> Cardreader habe ich die Windows-Software DB Dialog erhalten, die
> offenbar sehr mächtig ist.  Vielleicht kann ich darüber herausfinden,
> welche "keyspec" benötigt wird und diese dann manuell in aqbanking
> einfügen.  Darüberhinaus könnte ich auch den Traffic abhören, insofern
> dieser nicht verschlüsselt ist - mal sehen.


Praktischerweise besteht in db Dialog die Möglichkeit, ein
HBCI-Protokoll erstellen zu lassen.  Ich habe eines angehängt, das
erstellt wurde während ich einen Benutzer eingerichtet habe mit der
Option "HBCI-Karte" (die Option "WebSign-Karte" hätte natürlich auch
funktioniert, verwendet aber evtl. proprietäre Features).  Zu beachten
ist, dass ich alle numerischen Zeichen unkenntlich gemacht habe, denn db
Dialog hat ausdrücklich gewarnt, dass das Protokoll persönliche Daten
enthalten kann.  Allerdings gehe ich davon aus, dass alle sensiblen
Daten mithilfe der Karte verschlüsselt wurden.  Daher biete ich
Interessierten an, ihnen das Protokoll per PM zuzusenden
(PGP-verschlüsselt).

Angehängt habe ich desweiteren einen Screen-Shot, der das
db-Dialog-Applikationsfenster zeigt, so wie es aussah, nachdem der
Benutzer eingerichtet war (die Benutzerkennung ist z.T. unkenntlich
gemacht).

-- 
Felix E. Klee

[XX.XX.XX XX:XX:XX] Dialog created.

[XX.XX.XX XX:XX:XX] Control-Message:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX'HKIDN:X:X+XXX:XXXXXXXX+XXXXXXXXXX+X+X'HKVVB:X:X+X+X+X+db
 
dialog+X.X.X'HKISA:X:X+X+XXX+XXX:XXXXXXXX:XXXXXXXXXX:V:XXX:XXX'HKISA:X:X+X+XXX+XXX:XXXXXXXX:XXXXXXXXXX:S:XXX:XXX'HNHBS:X:X'

[XX.XX.XX XX:XX:XX] Control as Dialoginit-Message sent:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+X+X'HKIDN:X:X+XXX:XXXXXXXX+XXXXXXXXXX+X+X'HKVVB:X:X+X+X+X+db
 
dialog+X.X.X'HKISA:X:X+X+XXX+XXX:XXXXXXXX:XXXXXXXXXX:V:XXX:XXX'HKISA:X:X+X+XXX+XXX:XXXXXXXX:XXXXXXXXXX:S:XXX:XXX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Answer to init message received:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd+X+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd:X'HIRMG:X:X+XXXX::Nachricht
 entgegengenommen.'HIRMS:X:X:X+XXXX::Information fehlerfrei 
entgegengenommen.'HIRMS:X:X:X+XXXX::BPD nicht mehr aktuell. Aktuelle Version 
folgt.'HIRMS:X:X:X+XXXX::Angegebener Schl.ssel ist nicht mehr aktuell. Der neue 
Schl.ssel wird mitgeteilt'HIBPA:X:X:X+X+XXX:XXXXXXXX+DEUTSCHE BANK PGK 
Bonn+X+X+XXX:XXX:XXX:XXX+X'HIKOM:X:X:X+XXX:XXXXXXXX+X+X:XXX.XXX.XXX.X::MIM:X'HISHV:X:X:X+N+RDH:X'HIPROS:XX:X:X+XXX+X'HIAUBS:XX:X:X+XXX+X+X'HIKAZS:XX:X:X+XXX+X+XXX:N'HILASS:XX:X:X+XXX+X+X:XX:XX'HISALS:XX:X:X+XXX+X'HISLAS:XX:X:X+XXX+X+XXX:X:XX:XX'HISUBS:XX:X:X+XXX+X+XXX:X:XX:XX:XX:XX:XX:XX'HIUEBS:XX:X:X+XXX+X+X:XX:XX:XX:XX:XX:XX'HIWPDS:XX:X:X+XXX+X+N'BIDAMS:XX:X:X+XXX+X+XXXX:XXXXXXX'HIISA:XX:X:X+X+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd+X+XXX+XXX:XXXXXXXX:DBXX:V:X:X+X:XX:XX:@[EMAIL
 PROTECTED]:XX:@[EMAIL PROTECTED]:XX'HNHBS:XX:X+X'

[XX.XX.XX XX:XX:XX] DLG_uninit: Answer wasn't signed.

[XX.XX.XX XX:XX:XX] Closing-Message created:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd+X'HKEND:X:X+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Closing-Message sent:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+X+X'HKIDN:X:X+XXX:XXXXXXXX+XXXXXXXXXX+X+X'HKVVB:X:X+X+X+X+db
 
dialog+X.X.X'HKISA:X:X+X+XXX+XXX:XXXXXXXX:XXXXXXXXXX:V:XXX:XXX'HKISA:X:X+X+XXX+XXX:XXXXXXXX:XXXXXXXXXX:S:XXX:XXX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Last plaintext answer of institute was:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd+X+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd:X'HIRMG:X:X+XXXX::Nachricht
 entgegengenommen.'HIRMS:X:X:X+XXXX::Information fehlerfrei 
entgegengenommen.'HIRMS:X:X:X+XXXX::BPD nicht mehr aktuell. Aktuelle Version 
folgt.'HIRMS:X:X:X+XXXX::Angegebener Schl.ssel ist nicht mehr aktuell. Der neue 
Schl.ssel wird mitgeteilt'HIBPA:X:X:X+X+XXX:XXXXXXXX+DEUTSCHE BANK PGK 
Bonn+X+X+XXX:XXX:XXX:XXX+X'HIKOM:X:X:X+XXX:XXXXXXXX+X+X:XXX.XXX.XXX.X::MIM:X'HISHV:X:X:X+N+RDH:X'HIPROS:XX:X:X+XXX+X'HIAUBS:XX:X:X+XXX+X+X'HIKAZS:XX:X:X+XXX+X+XXX:N'HILASS:XX:X:X+XXX+X+X:XX:XX'HISALS:XX:X:X+XXX+X'HISLAS:XX:X:X+XXX+X+XXX:X:XX:XX'HISUBS:XX:X:X+XXX+X+XXX:X:XX:XX:XX:XX:XX:XX'HIUEBS:XX:X:X+XXX+X+X:XX:XX:XX:XX:XX:XX'HIWPDS:XX:X:X+XXX+X+N'BIDAMS:XX:X:X+XXX+X+XXXX:XXXXXXX'HIISA:XX:X:X+X+XXXXXXXXXXXXXXXXoLYfXlEbCDuZOd+X+XXX+XXX:XXXXXXXX:DBXX:V:X:X+X:XX:XX:@[EMAIL
 PROTECTED]:XX:@[EMAIL PROTECTED]:XX'HNHBS:XX:X+X'

[XX.XX.XX XX:XX:XX] DLG_endTried: Answer wasn't signed.

[XX.XX.XX XX:XX:XX] End of dialog.

[XX.XX.XX XX:XX:XX] Dialog closed.

[XX.XX.XX XX:XX:XX] Dialog created.

[XX.XX.XX XX:XX:XX] Control-Message:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+X+X'HNSHK:X:X+X+XXXXXXXXXX+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+XX+X:XXXXXXXX:XXXXXX+X:XXX:X+X:XX:XX+XXX:XXXXXXXX:P-IPNXXX:S:X:X'HKIDN:X:X+XXX:XXXXXXXX+XXXXXXXXXX+XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+X'HKVVB:X:X+X+X+X+db
 dialog+X.X.X'HNSHA:X:[EMAIL 
PROTECTED]@BXEACXXBXEXCXXBXXXXFXXXBXXXXXDXXXXCXXXDFAXDAXXXXXXXXDXCBXXXEXXXAXXEEXFXXXAEXCXDBXFXXXXXDXXFDXXDXFEXBXAXXXEEXXDXXAXXXDDAXABXXFXEAXCXDXCEDXXDXCXXXDCXCXFXDXXEFXXXAFXXXXBXDDAXXXAXBXXXXXDXXXXXAAAXX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Control-Message encrypted:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+X+X'HNVSK:XXX:X+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+X:XXXXXXXX:XXXXXX+X:X:XX:@[EMAIL
 PROTECTED]:X:X+XXX:XXXXXXXX:DBXX:V:X:X+X'HNVSD:XXX:[EMAIL 
PROTECTED]@CDAXXXXXXCXXXBXAEXXXXCBXFXXXEXFCFCXXXXXDXBCAADFXXXXBXXFCXXFXXXXDCAXBXCDXXFXXXEBXXEXCXEXXXXXXXFXXXXBXBXEXXXFXXXXDXFXXXXXAXXXAEXAXEXEXXXXXXXXAFXXXXXXFDXXXXXXXXXCXBXXXXBXXXAAXXXEXXXBXEXBXXDXXXXXXDXCXXFXXDXXFCAEDXXXBEXAXFXCXXXDXACXXEXXXXEXDCXXXXXXBCXEXEXXXCDXXEXXXAXFXXAXXXXCXXXFXCXEXXXXDXAXXBXBXEEAEXXXXXXDXCAXXEXBEXXXCXXXXXXXXXXDECCCXXEXXDXXXXXXXAFFBXXXCXXXXXXBECXXXXXXCFAXXFXXCCXEXDXXXEXXXXEXXXXFXXXXBCXXXXXXXXXXAXAFXCXXAXXFXFXDAXXXXBBXXBCXBDCXXEXBXBXCXXXXXXXXBXFXCXXXXXXEXXBXXEXXXXXXXXEXEXFCBBXBXAXDCXADXFXXXXXXXXXXBXXXFEXXBXXBCXFXXXXXXXXXXXXXXXXXXXAXXXXXXDXBAXXXXXEAXFABXXXXDXECBCFXXXXXXXXXEXXXXFAXXAAXXAEXXXAXAXEDXXFCXXXDXCAXXCXXDAXXEFXDFXXEFCCXXXXXXXXAXBDXXXXXXDDFXXXXDEACAXFXXXCXDFXXBXXEXCXXXXXDXDDCC'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Control as Dialoginit-Message sent:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+X+X'HNVSK:XXX:X+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+X:XXXXXXXX:XXXXXX+X:X:XX:@[EMAIL
 PROTECTED]:X:X+XXX:XXXXXXXX:DBXX:V:X:X+X'HNVSD:XXX:[EMAIL 
PROTECTED]@CDAXXXXXXCXXXBXAEXXXXCBXFXXXEXFCFCXXXXXDXBCAADFXXXXBXXFCXXFXXXXDCAXBXCDXXFXXXEBXXEXCXEXXXXXXXFXXXXBXBXEXXXFXXXXDXFXXXXXAXXXAEXAXEXEXXXXXXXXAFXXXXXXFDXXXXXXXXXCXBXXXXBXXXAAXXXEXXXBXEXBXXDXXXXXXDXCXXFXXDXXFCAEDXXXBEXAXFXCXXXDXACXXEXXXXEXDCXXXXXXBCXEXEXXXCDXXEXXXAXFXXAXXXXCXXXFXCXEXXXXDXAXXBXBXEEAEXXXXXXDXCAXXEXBEXXXCXXXXXXXXXXDECCCXXEXXDXXXXXXXAFFBXXXCXXXXXXBECXXXXXXCFAXXFXXCCXEXDXXXEXXXXEXXXXFXXXXBCXXXXXXXXXXAXAFXCXXAXXFXFXDAXXXXBBXXBCXBDCXXEXBXBXCXXXXXXXXBXFXCXXXXXXEXXBXXEXXXXXXXXEXEXFCBBXBXAXDCXADXFXXXXXXXXXXBXXXFEXXBXXBCXFXXXXXXXXXXXXXXXXXXXAXXXXXXDXBAXXXXXEAXFABXXXXDXECBCFXXXXXXXXXEXXXXFAXXAAXXAEXXXAXAXEDXXFCXXXDXCAXXCXXDAXXEFXDFXXEFCCXXXXXXXXAXBDXXXXXXDDFXXXXDEACAXFXXXCXDFXXBXXEXCXXXXXDXDDCC'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Answer to init message received:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX:X'HNVSK:XXX:X+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+X:XXXXXXXX:XXXXXX+X:X:XX:@[EMAIL
 PROTECTED]:X:X+XXX:XXXXXXXX:P-IPNXXX:V:X:X+X'HNVSD:XXX:[EMAIL 
PROTECTED]@XDDXBBXCDXXXDXXCCXXXXXXXFXXXXXEXCXXXXXEXCXXEXXXBFXXXXXCXXXXXBXBXXXEXEXXXXXXXAXXXXXBXXXBXXADXBXXEXXXEXXXXCXXCXXXXFFXXXBXXFXXXXXXXXXXFXXXAXXAAEXFXFEAXXEXXXCXXEXBEXXFEXFXCXECFXFXXEXCXXXDXBCXFXXXXXXCXBEABXXXXXXFXXXDXDXXXXFXXXFXXCFXXXXFXXBXAXFXXXXXEXXXXABAXXXFXXXXADDAXAXXXXXXBXFXXDXXFXXEFXXXXXXADCXEXXXXAFXFXXXXXXXXXXXEXXXXXBXXXEXXXEXXCDXXX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Answer to init message decrypted:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX:X'HIRMG:X:X+XXXX::Nachricht
 entgegengenommen.'HIRMS:X:X:X+XXXX::Information fehlerfrei 
entgegengenommen.'HIRMS:X:X:X+XXXX::Information fehlerfrei 
entgegengenommen.'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] DLG_uninit: Answer wasn't signed.

[XX.XX.XX XX:XX:XX] Closing-Message created:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X'HKEND:X:X+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Closing-Message signed:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X'HNSHK:X:X+X+XXXXXXXXX+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+XX+X:XXXXXXXX:XXXXXX+X:XXX:X+X:XX:XX+XXX:XXXXXXXX:P-IPNXXX:S:X:X'HKEND:X:X+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX'HNSHA:X:[EMAIL
 
PROTECTED]@XXDXXCEXXXCXXXXXXXXXCAXXXEXXXDEBEXCXBXXFCXXDXXBXBXCXXCXXXXEEXBBXXXXXXXXXFDEXAXXXXEEXFXXXXAXXFXXXXXXXFXXXBXXXXXEXCXFXXXXAXBXEXBFDXXDXXFAXEXCADDEXBXXXXXBAXAXXXBXBXXFAXXDFXXXXBXXEXACXXFXFDDCADXXE'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Closing-Message encrypted:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X'HNVSK:XXX:X+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+X:XXXXXXXX:XXXXXX+X:X:XX:@[EMAIL
 PROTECTED]:X:X+XXX:XXXXXXXX:DBXX:V:X:X+X'HNVSD:XXX:[EMAIL 
PROTECTED]@DXXXXXXXXXXXCECCDFXCXXXEXXAXXXDXDCXXXXAXXXXXEXXXXXBXDDBXBXDCXXXXXXXXXXCXXAXXXFEXABBFXXEXCFBXXXXXFXXXXXCXFXCFXXFEXBEXXXXXXXXAXXXXDXFAFBFBBXDXXXCXXXXXXACXCXXXDAXEXXXXXBCDXCXXAFXBFXXXCDDBXXFAXXFBXXXXXXCXXXXFXBXDXXXXXXXXXXFDXXXFBXXXXXEFADXXXXCXXXXXXXXBBFBCEEXXXCAXBXFXXDXXEXCXECXXXEXXDEAXBXXXFFCXXEXXXFXEBEXXDXXFXXXXXFXXXBXXXXEXXXXXXXXFXFXXDXXXXEEEXXXXXEXXXXEXXXEXEXXXXXXBXXFXXXCXEEADXEXXXFXXXXCAXFXXXADXXXXXXXAXDXDEXAXXXDXXXXEXXXCEDXXBXFXXDXCEDXBDEBEFXCXBXXCXXXXXXXXFXCAAXXXXFXXXXXFXCXBXXDCBXEDXXFEFXAXXXAEXXXXXXXXCXXBXAXXXXCXXXXXBFXXXFXXXDDXAXDXXFXCCXXEXXXCXXXXXXDXXXDFXXCCXECXX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Closing-Message sent:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X'HNVSK:XXX:X+X+X+X::XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX+X:XXXXXXXX:XXXXXX+X:X:XX:@[EMAIL
 PROTECTED]:X:X+XXX:XXXXXXXX:DBXX:V:X:X+X'HNVSD:XXX:[EMAIL 
PROTECTED]@DXXXXXXXXXXXCECCDFXCXXXEXXAXXXDXDCXXXXAXXXXXEXXXXXBXDDBXBXDCXXXXXXXXXXCXXAXXXFEXABBFXXEXCFBXXXXXFXXXXXCXFXCFXXFEXBEXXXXXXXXAXXXXDXFAFBFBBXDXXXCXXXXXXACXCXXXDAXEXXXXXBCDXCXXAFXBFXXXCDDBXXFAXXFBXXXXXXCXXXXFXBXDXXXXXXXXXXFDXXXFBXXXXXEFADXXXXCXXXXXXXXBBFBCEEXXXCAXBXFXXDXXEXCXECXXXEXXDEAXBXXXFFCXXEXXXFXEBEXXDXXFXXXXXFXXXBXXXXEXXXXXXXXFXFXXDXXXXEEEXXXXXEXXXXEXXXEXEXXXXXXBXXFXXXCXEEADXEXXXFXXXXCAXFXXXADXXXXXXXAXDXDEXAXXXDXXXXEXXXCEDXXBXFXXDXCEDXBDEBEFXCXBXXCXXXXXXXXFXCAAXXXXFXXXXXFXCXBXXDCBXEDXXFEFXAXXXAEXXXXXXXXCXXBXAXXXXCXXXXXBFXXXFXXXDDXAXDXXFXCCXXEXXXCXXXXXXDXXXDFXXCCXECXX'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Last plaintext answer of institute was:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX:X'HIRMG:X:X+XXXX::Nachricht
 entgegengenommen.'HIRMS:X:X:X+XXXX::Dialog beendet.'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] DLG_endTried: Answer wasn't signed.

[XX.XX.XX XX:XX:XX] End of dialog.

[XX.XX.XX XX:XX:XX] Answer to closing message decrypted:
                    
HNHBK:X:X+XXXXXXXXXXXX+XXX+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX+X+XXXXXXXXXXXXXXXXrSTAnctqjoLYfX:X'HIRMG:X:X+XXXX::Nachricht
 entgegengenommen.'HIRMS:X:X:X+XXXX::Dialog beendet.'HNHBS:X:X+X'

[XX.XX.XX XX:XX:XX] Dialog closed.

Re: [Aqbanking-devel] No keyspec for remote crypt key

Reply via email to