Re: Under the hood question about Remote Desktop Connection

---

• From: Jørgen Hovelsen <jorgen.hovelsen@xxxxxxx>
• Date: Fri, 25 Jan 2008 09:56:19 +0100

---

Wozny, Scott wrote:

Doing some poking around in the list archives and some sites on the net, I
see how one can require remote connections to use 128-bit RC4 encryption. Setting aside the debate on whether or not this algorithm qualifies as
secure or insecure, this is a symmetric algorithm. As sending the key in
the clear would be a major faux pas, does anyone know what mechanism this
app uses to do secure key exchange? Does it just “borrow” a browser cert to
do a DH exchange?

I dont know the reliability of this article, but it seemed be related to your question:

http://www.oxid.it/downloads/rdp-gbu.pdf

--
Jørgen Hovelsen

---

• References:
  • Under the hood question about Remote Desktop Connection
    • From: Wozny, Scott

• Prev by Date: Under the hood question about Remote Desktop Connection
• Next by Date: RE: Under the hood question about Remote Desktop Connection
• Previous by thread: Under the hood question about Remote Desktop Connection
• Next by thread: RE: Under the hood question about Remote Desktop Connection
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ms  > 2008-01