Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 18 Apr 2014 15:03:02 -0400
From: Jeff OTool <>
Subject: Re: BMC Patrol password representations

Thanks Magnum and Nicolas

Nicolas, I am using a BMC tool called ctltool.exe but I suspect you may be
correct about a hardcoded key....

ctltool.exe will take an existing ctl file, as a template, and produce a
modified template based on a series of prompts from the user. This is how I
am generating the encrypted passwords. Apparently this exe also requires
the prence of a dll called bmcpwk.dll.   If the dll is not present I get
the following error message
ctltool.exe install.ctl install_test.ctl
Failed to load security library bmcpwk.dll, err=Cannot get intial values of
module stats: No such file or directory

I appreciate your responses


On Fri, Apr 18, 2014 at 9:50 AM, Nicolas Collignon <> wrote:

> >
> > Great, more fun! No need to apologize, you have come to the right place.
> > You supplied pretty good data, there are several clues in it. I'll be
> back
> > within 24h. I hope someone beats me to it because I believe there are
> > several stages in solving this.
> >
> > magnum
> >
> >
> It smells like a hardcoded ECB key will be found in binary
> nco_patrol_encrypt :)
> Good luck

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.