[openssl.org #1206] FTP USER Authentication
Very old release. Seems to be a user misunderstanding; DES output isn't text, it's binary. And DES shouldn't be used these days anyway, :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
RE: [openssl.org #1206] FTP USER Authentication
Hi I have narrowed down the problem now. This function { des_ede3_cbc_encrypt(input,output1,...) } will encrypt and update the encrypted output in the array output1. While printing the array values ,the array value at the end of encryption before returning back to the place where it is called and the array value after this encrypt function call are the same. The array value is updated to a file from where I read the encrypted data and this is fed to des_ede3_cbc_encrypt(, , , ...,DES_DECRYPT) function call. While decrypting the array output1 is fetched and used as input for decryption. While printing the array values before decryption, it is same as the encrypted password array for all inputs except for the number sequence "12345678". For this sequence alone, the encrypted values and the input to decryption are different and hence the junk password is printed as output. I am not sure why for this sequence alone, the encrypted values are corrupted before decryption. Hope you can help me at this point of time. Regards, Swathika -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nils Larsch via RT Sent: Friday, September 23, 2005 2:39 PM To: Swathika Subramaniam (WT01 - Embedded Systems) Cc: openssl-dev@openssl.org Subject: Re: [openssl.org #1206] FTP USER Authentication [EMAIL PROTECTED] via RT wrote: > We use DES encryption algorithm.When the user try to add an user with > the password 12345678 ,user couldn't login. So itried printing the > DES decrypted password, it returns junk password. Since it is junk > user couldn't login. Basically we maintain a file which will have the > list of users added and their password, this is a junk user couldn't > login as I still don't know what you are doing (an example source code showing the bug would be very helpful !) => it's still not really possible to help you. Anyway this sounds more like a bug in your application than a bug in the openssl code. Cheers, Nils PS: you need to reply to [EMAIL PROTECTED] as otherwise the message is not appended to the ticket. Confidentiality Notice The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information. If you are not the intended recipient, please notify the sender at Wipro or [EMAIL PROTECTED] immediately and destroy all copies of this message and any attachments. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: [openssl.org #1206] FTP USER Authentication
[EMAIL PROTECTED] via RT wrote: > We use DES encryption algorithm.When the user try to add an user with > the password 12345678 ,user couldn't login. So itried printing the DES > decrypted password, it returns junk password. Since it is junk user > couldn't login. Basically we maintain a file which will have the list of > users added and their password, this is a junk user couldn't login as I still don't know what you are doing (an example source code showing the bug would be very helpful !) => it's still not really possible to help you. Anyway this sounds more like a bug in your application than a bug in the openssl code. Cheers, Nils PS: you need to reply to [EMAIL PROTECTED] as otherwise the message is not appended to the ticket. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
RE: [openssl.org #1206] FTP USER Authentication
We use DES encryption algorithm.When the user try to add an user with the password 12345678 ,user couldn't login. So itried printing the DES decrypted password, it returns junk password. Since it is junk user couldn't login. Basically we maintain a file which will have the list of users added and their password, this is a junk user couldn't login -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nils Larsch via RT Sent: Friday, September 23, 2005 5:15 AM To: Swathika Subramaniam (WT01 - Embedded Systems) Cc: openssl-dev@openssl.org Subject: Re: [openssl.org #1206] FTP USER Authentication [EMAIL PROTECTED] via RT wrote: > Hi > > We have ported the openSSL code for our project.We use SSL to > authenticate the users who use FTP to the controller(which is > basically a printer). We have different groups such as developer, > user, designer etc. each will have access permissions > > I am facing a problem with the DES encryption for a particular password. perhaps you should tell us what kind of problem do you have (otherwise it's more less impossible to help you) ... Nils Confidentiality Notice The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information. If you are not the intended recipient, please notify the sender at Wipro or [EMAIL PROTECTED] immediately and destroy all copies of this message and any attachments. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: [openssl.org #1206] FTP USER Authentication
[EMAIL PROTECTED] via RT wrote: > Hi > > We have ported the openSSL code for our project.We use SSL to > authenticate the users who use FTP to the controller(which is basically > a printer). We have different groups such as developer, user, designer > etc. each will have access permissions > > I am facing a problem with the DES encryption for a particular password. perhaps you should tell us what kind of problem do you have (otherwise it's more less impossible to help you) ... Nils __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
[openssl.org #1206] FTP USER Authentication
Hi We have ported the openSSL code for our project.We use SSL to authenticate the users who use FTP to the controller(which is basically a printer). We have different groups such as developer, user, designer etc. each will have access permissions I am facing a problem with the DES encryption for a particular password. Confidentiality Notice The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information. If you are not the intended recipient, please notify the sender at Wipro or [EMAIL PROTECTED] immediately and destroy all copies of this message and any attachments. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]