On Thu, Feb 07, 2008 at 01:57:19PM -0800, Danek Duvall wrote: > On Thu, Feb 07, 2008 at 01:41:01PM +0000, Michal Pryc wrote: > > Could you be more specific in this question? I am not sure if you want to > > know the whole process for RC4 symmetric algorithm, which includes > > generating and storing keys on the server side (Microsoft Windows Terminal > > Server services)? The RC4 symmetric algorithm uses the same key stored on > > the server side do encrypt/decrypt data. > > Right -- that's the definition of a symmetric encryption algorithm. What > I'm wondering is, if you want to use encryption, how do you generate the > key? What command do you type? Since both sides need to have the same > key, how do you transport that key from the side that generated it to the > other side in a secure fashion? > > >> Is there any authentication available? > > There is domain authentication during the remote connection attempt, which > > queries domain servers for user authentication. This is possible with > > rdesktop CLI parameters. > > "Domain authentication" is like doing user/password lookup against a server > (like we do with NIS here)?
Sounds like either NTLM or Kerberos V. It'd be nice to know for sure. Security considerations need to be documented. Nico --
