Registered: Sep 2003
From:

Hello,

i tried the blowfish and des plugin in the nsis archive, but i think there is something wrong in their algorithm cause i used a delphi component to encrypt a string with the same password i used in the nsis plugin and they returned different results, so anyone could check if the blowfish and des plugin returns accurate results?

Thanks In Advance
Yehia

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Oct 2001
From: Israel

Are you sure you're using the same block cipher mode?

I can't find the plug-in you are talking about. Please provide a link.

__________________
NSIS FAQ | NSIS Home Page | Donate $
"I hear and I forget. I see and I remember. I do and I understand." -- Confucius

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

i got the plug-in from this topic:
http://forums.winamp.com/showthread.php?postid=1299854

and i don't know the block cipher mode of this plug-in.

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Oct 2001
From: Israel

That's not from the NSIS Archive.

Without source code for that plug-in, it's hard to say what's the difference between the two encryptions.

__________________
NSIS FAQ | NSIS Home Page | Donate $
"I hear and I forget. I see and I remember. I do and I understand." -- Confucius

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

what are my options now? , i must encrypt a string before putting in the registry.

REALLY NEED HELP GUYS

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Oct 2001
From: Israel

What do you mean? You have exactly two options. Your plug-in, and the other plug-in. Both encrypt and decrypt fine, right?

__________________
NSIS FAQ | NSIS Home Page | Donate $
"I hear and I forget. I see and I remember. I do and I understand." -- Confucius

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

ok let's clear it up:
i need
1.a plugin for nsis to encrypt the string to the registry using blowfish or des or others.
2.a delphi component that later decrypt the string from the registry, i already have this one.

the problem is when the encryped text in the registry (encrypted using the plugin in the page above) is decrypted using the delphi component it doesnot match the correct string.

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Oct 2001
From: Israel

Try decrypting with different modes. If none matches and the author of the plug-in doesn't respond, you'll have to write your own encryption plug-in. There are skeleton files in Contrib\ExDLL for C and Delphi.

__________________
NSIS FAQ | NSIS Home Page | Donate $
"I hear and I forget. I see and I remember. I do and I understand." -- Confucius

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

ok, i never wrote a dll before, could you help a bit more, i have already the blowfish unit in delphi, anyway u could modify it to make compatible with nsis?

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Oct 2001
From: Israel

No, I don't have Delphi.

__________________
NSIS FAQ | NSIS Home Page | Donate $
"I hear and I forget. I see and I remember. I do and I understand." -- Confucius

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

Thanks anyway, will try to contact one of the developers

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Jan 2005
From: India

hi

I have one similar kind of problem. I need to encrypt data entered by user in my custom page and send it to server. At the server it needs to be decrypted. I don't want to use blowfish or des because the server doesn't know algo to decrypt data encrypted by blowfish or des plugin

any help

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

actually i made a dll that can be used to encrypt or decrypt data (using the madcrypt delphi unit), i can send it to u if it helps

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Jan 2005
From: India

YES PLEASE MAY IT CAN HELP ME

Quick Link | Report this post to a moderator | IP: Logged

Registered: Jan 2005
From: India

How can we make a dll, may I can make my own dll so that I can use my own algo for encryption and decryption. please also send your dll.

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

ok here it is, it works as a nsis plugin:

!addplugindir "C:\blowfish"

blowfish::Encrypt $0 "anypassword" ;returns result in $8
blowfish:ecrypt $0 "amypassword" ;returns result in $8

Attachment: blowfish.zip
This has been downloaded 451 time(s).

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Jan 2005
From: India

Hi

I have already told you that I don't want to use blowfish. I want to encryt my data with my own algorithm so that it can be decrypted at the server. I this I need to create a plugin for this but I don't know how we can create plugin.

Quick Link | Report this post to a moderator | IP: Logged

Registered: Sep 2003
From:

well. don't know about creating your own encryption algorithm, it's always better to use blowfish or des, anyway what language you use at the server to decrypt the data?

__________________
Yehia

Quick Link | Report this post to a moderator | IP: Logged

Registered: Jan 2005
From: India

to decrypt data at the server I am using CGI scripting (perl)

Quick Link | Report this post to a moderator | IP: Logged

Registered: Feb 2004
From: Moscow, Russia

I did it long ago, but authentication algorithm may not require encrypted password transfer. For md5 (for one network protocol, may be NDMP?) I received 16 bytes from server, created another 64 bytes using user entered SN (simple function) and sent them back to server. And I saw md5 plug-ins and samples in NSIS archive. Hope this help

Quick Link | Report this post to a moderator | IP: Logged

Registered: Jan 2005
From: India

I didn't tried that anyways I found the way
thanks

Quick Link | Report this post to a moderator | IP: Logged

Registered: Apr 2005
From:

Yehiaeg, how do I decrypt the result using your blowfish plug in?

Quick Link | Report this post to a moderator | IP: Logged

Registered: Nov 2002
From: Shropshire, England

code:
blowfish::decrypt

__________________
afrowuk.co.uk

Quick Link | Report this post to a moderator | IP: Logged

Registered: Apr 2005
From:

I figured it out.

blowfish::Encrypt "secret" "password" ;returns encrypted result in $8
MessageBox MB_OK "Encrypted password is $8"
blowfish::decrypt $8 "password" ;returns decrypted \ result in $8
MessageBox MB_OK "Decrypted password is $8"

Yehiaeg, did you write this plugin yourself or you found it somewhere? It uses blowfish encryption algorith right? Did somebody ever verify that it does use blowfish? Thanks

Quick Link | Report this post to a moderator | IP: Logged

Registered: Apr 2006
From:

If there is no source code included in this, it is absolutely 100% useless. You can't trust closed source cryptography. You don't know if it has a backdoor in it or not.

Quick Link | Report this post to a moderator | IP: Logged

Registered: Apr 2009
From:

Hello,

Did someone have the source code of this plug-in?

Or witch plug-in do the same function and is secure?

Thanks for your response

Regards

Last edited by ricky03 on 04-14-2009 at 06:58 AM

Quick Link | Report this post to a moderator | IP: Logged