Actually, it does decrypt Windows passwords. You simply need the encrypted password
from the Windows registry and then insert it into this line of the program:
/* put your password hash here in p[] */
char p[]={0x59,0x58,0x6e,0x10,0xa4,0x48,0xd3,0x80};
Also, even programs such as VNCon http://www.darkage.co.uk and I'm sure other VNC
management programs have that feature built in, it makes it easier for some types of
deployment. Regardless of that fact, the person trying to decrypt the password would
first need access to the computer and key in question, and if they have that access in
the first place, they can just as easily change the password to whatever they would
like
it to be. VNCDEC.c is not a program that hacks out the registry key, that would still
need to be done manually by a user.
Regards,
Beau
-----Original Message-----
From: MIME :[EMAIL PROTECTED] [mailto:MIME :[EMAIL PROTECTED] Sent: Tuesday, March
25, 2003 5:27 AM
To: [EMAIL PROTECTED]
Subject: VNCDEC.c & Windows
HI, This may sound ominous but it's not, i'm doing some security
investigations into VNC and was wondering about the VNCDEC.c program that
is availiable. Am I right in assuming that once you compile the source code
that it will only run on Linux and will not decode Windows machine
passwords? If someone could let me know, i'd be really grateful.
Many Thanks
DM
_______________________________________________
VNC-List mailing list
[EMAIL PROTECTED]
http://www.realvnc.com/mailman/listinfo/vnc-list
<< File: ENVELOPE.TXT >>
_______________________________________________
VNC-List mailing list
[EMAIL PROTECTED]
http://www.realvnc.com/mailman/listinfo/vnc-list
