Adobe Remote Desktop auth support

Question

Adobe Remote Desktop auth support

sidorares opened this issue 11 years ago · comments

See HandleARDAuth in libvncserver : https://github.com/kanaka/libvncserver/blob/master/libvncclient/rfbproto.c

Libvncserver implementation uses gcrypt library ( http://www.gnu.org/software/libgcrypt/ ) for big numbers arithmetics. JS projects: https://github.com/mnaamani/crypto-emscripten , https://github.com/mnaamani/otr3-em/blob/master/BUILDING

Andrey Sidorov · Answer 1 · Wed Jul 02 2014 09:40:55 GMT+0800 (China Standard Time)

also some other ARD security types / encodings:
https://discussions.apple.com/message/12756901

The AppleVNC server supports security types 30, 2, and 35 however only 2 is documented in the >RFB protocol spec (www.realvnc.com/docs/rfbproto.pdf).

There are also other encodings the Screen Sharing app (VNC client) supports which are >undocumented (0x0000044C and 0x0000044D for example).

Ash Martian · Answer 2 · Fri May 29 2015 23:19:35 GMT+0800 (China Standard Time)

I have found that enabling the "VNC Viewers may control screen with password:" option in System Preferences -> Sharing -> Remote Management -> Computer Settings... allows you to control an OSX computer with node-rfb2.

Works well on Yosemite and for me is actually smoother than UltraVNC on Windows. My only problem is Apple's implementation of this protocol is somewhat limited in the sense that when you control a computer, you are shown a login screen and need to log in as the user to see what they see. Not sure if there is a work around to this.

Andrey Sidorov · Answer 3 · Fri May 29 2015 23:31:25 GMT+0800 (China Standard Time)

with ARD security as far as I know you handshake using osx login/password and go directly to user session

Ash Martian · Answer 4 · Fri May 29 2015 23:47:02 GMT+0800 (China Standard Time)

I see. Given that, the ARD handshake would occur by disabling that VNC setting mentioned above?

Looking through the source, I see in constants.js line 48, ARD security is defined.

In rfbclient.js line 130 are switches for security. Would one start by adding a case for rfb.security.ARD?

Andrey Sidorov · Answer 5 · Fri May 29 2015 23:54:09 GMT+0800 (China Standard Time)

handshake algorithm itself is not implemented in node-rfb2 - I need to figure out what is doable with codecs provided by core node crypto and what not ( or just compile code from libvncserver with emscripten )

I think ARD is always enabled in mac server, and if you tick "VNC Viewers may control screen with password:" then vnc security is enabled in addition to ARD