>This explains quite effectively why the view-only password must
>be at least as long as the main password for it to work correctly.
Yes, found and fixed. Expect alpha-5 to appear on my website in the next
few days, containing this fix.
While I was at it, I discovered the long-password support is very likely
broken and needs fixing before I publish the specifications for it.
Probably I'll change the cipher used from DES (which has a fixed key-length
- the root of the problem) to RC5 (which is more modern and can use
relatively long keys). I'm planning to introduce RC5 in any case for my
security/encryption extensions.
Alpha-5 may include the revised long-password support, which will REPLACE
the current support and will use a different protocol. Client authors
should not implement the current scheme, which is broken.
--------------------------------------------------------------
from: Jonathan "Chromatix" Morton
mail: [EMAIL PROTECTED] (not for attachments)
big-mail: [EMAIL PROTECTED]
uni-mail: [EMAIL PROTECTED]
The key to knowledge is not to rely on people to teach you it.
Get VNC Server for Macintosh from http://www.chromatix.uklinux.net/vnc/
-----BEGIN GEEK CODE BLOCK-----
Version 3.12
GCS$/E/S dpu(!) s:- a20 C+++ UL++ P L+++ E W+ N- o? K? w--- O-- M++$ V? PS
PE- Y+ PGP++ t- 5- X- R !tv b++ DI+++ D G e+ h+ r++ y+(*)
-----END GEEK CODE BLOCK-----
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------
