o many?
Thanks
//chris
--
Chris Hare, CISSP, CISA
[EMAIL PROTECTED]
-
To unsubscribe, mail [EMAIL PROTECTED] with the line:
'unsubscribe vnc-list' in the message BODY
See also: http://www.uk.research.att.com/vnc/intouch.html
-
missing something.
the protocol spec also says the server can decided if there have been too
many authentication failures. What is too many?
Thanks
//chris
--
Chris Hare, CISSP, CISA
[EMAIL PROTECTED]
-
To unsubscribe, mail [EMAIL
es in the trace, that would be very useful to the exercise I
am undertaking.
Thanks.
Chris
- --
Chris Hare, CISSP, CISA
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.c
I am seen conflicting information regarding the encryption method used to
encrypt the response to the challenge. is it DES or 3DES, and if it is
3DES, is it EDE with two keys or EEE with 3 or what?
--
Chris Hare, CISSP, CISA
[EMAIL PROTECTED
There is a CORE SDI advisory about the VNC authentication protocol and how
it is vulnerable to a man in the middle attack. This advisory was for
3.3.3. Has it been corrected in the current implementations?
thanks
--
Chris Hare, CISSP, CISA
[EMAIL PROTECTED
sed to
>encrypt the response to the challenge. is it DES or 3DES, and if it is
>3DES, is it EDE with two keys or EEE with 3 or what?
>
>
>--
>Chris Hare, CISSP, CISA
>[EMAIL PROTECTED]
>-
>To unsubscrib
