From: Matthias W. <gol...@gm...> - 2007-10-20 19:31:28
|
Hi rdesktop developers, I still have a modified and working rdp proxy here. I did some research on this over one year ago and did a complete rewrite of Matt Chapmans old code. With this its even possbile to calculate the RSA signatures of the signed packages. And, I think, I still know how to set it up.... Actually I am more intressted in the crpytographic aspect, than in the RDP protocol itself, but I know it could be useful for future development of rdesktop. RDP 6 seems to use AES.... so let me know if ... unitl then you should also take a look at: - http://www.heise.de/security/artikel/61945 - "Reverse-Engineering and Implementation of the RDP 5 Protocol" by Erik Forsberg - the tool "lsadump2" and it's fix for XP SP2: http:// archives.neohapsis.com/archives/fulldisclosure/2005-09/0515.html - Gereon Ruetten, Oliver Stutzke; Angriff von innen, Technik und Abwehr von ARP-Spoofing-Angriffen; heise Security - Advisory von Massimiliano Montoro: Microsoft RDP Man in the Middle Vulnerability - security software: Homepage von Cain&Abel - Technet-Artikel zu RDP: Configuring authentication and encryption reagrds goldentoast |