2. NSIS Discussion
  3. BlowFish and DES Plugin

Archive: BlowFish and DES Plugin


yehiaeg
26th November 2004 11:57 UTC

BlowFish and DES Plugin
Hello,

i tried the blowfish and des plugin in the nsis archive, but i think there is something wrong in their algorithm cause i used a delphi component to encrypt a string with the same password i used in the nsis plugin and they returned different results, so anyone could check if the blowfish and des plugin returns accurate results?

Thanks In Advance
Yehia

kichik
26th November 2004 12:14 UTC

Are you sure you're using the same block cipher mode?

I can't find the plug-in you are talking about. Please provide a link.

yehiaeg
26th November 2004 13:45 UTC

i got the plug-in from this topic:
http://forums.winamp.com/showthread.php?postid=1299854

and i don't know the block cipher mode of this plug-in.

kichik
26th November 2004 13:50 UTC

That's not from the NSIS Archive.

Without source code for that plug-in, it's hard to say what's the difference between the two encryptions.

yehiaeg
26th November 2004 15:06 UTC

what are my options now? , i must encrypt a string before putting in the registry.

REALLY NEED HELP GUYS

kichik
26th November 2004 15:09 UTC

What do you mean? You have exactly two options. Your plug-in, and the other plug-in. Both encrypt and decrypt fine, right?

yehiaeg
26th November 2004 15:25 UTC

ok let's clear it up:
i need
1.a plugin for nsis to encrypt the string to the registry using blowfish or des or others.
2.a delphi component that later decrypt the string from the registry, i already have this one.

the problem is when the encryped text in the registry (encrypted using the plugin in the page above) is decrypted using the delphi component it doesnot match the correct string.

kichik
26th November 2004 15:30 UTC

Try decrypting with different modes. If none matches and the author of the plug-in doesn't respond, you'll have to write your own encryption plug-in. There are skeleton files in Contrib\ExDLL for C and Delphi.

yehiaeg
26th November 2004 17:14 UTC

ok, i never wrote a dll before, could you help a bit more, i have already the blowfish unit in delphi, anyway u could modify it to make compatible with nsis?

kichik
26th November 2004 17:16 UTC

No, I don't have Delphi.

yehiaeg
26th November 2004 17:25 UTC

Thanks anyway, will try to contact one of the developers

saurabhAggarwal
19th January 2005 06:31 UTC

hi

I have one similar kind of problem. I need to encrypt data entered by user in my custom page and send it to server. At the server it needs to be decrypted. I don't want to use blowfish or des because the server doesn't know algo to decrypt data encrypted by blowfish or des plugin

any help

yehiaeg
19th January 2005 08:10 UTC

actually i made a dll that can be used to encrypt or decrypt data (using the madcrypt delphi unit), i can send it to u if it helps

saurabhAggarwal
19th January 2005 09:45 UTC

YES PLEASE MAY IT CAN HELP ME

saurabhAggarwal
19th January 2005 09:48 UTC

How can we make a dll, may I can make my own dll so that I can use my own algo for encryption and decryption. please also send your dll.

yehiaeg
19th January 2005 12:28 UTC

ok here it is, it works as a nsis plugin:

!addplugindir "C:\blowfish"

blowfish::Encrypt $0 "anypassword" ;returns result in $8
blowfish::Decrypt $0 "amypassword" ;returns result in $8

saurabhAggarwal
19th January 2005 12:56 UTC

Hi

I have already told you that I don't want to use blowfish. I want to encryt my data with my own algorithm so that it can be decrypted at the server. I this I need to create a plugin for this but I don't know how we can create plugin.

yehiaeg
19th January 2005 13:02 UTC

well. don't know about creating your own encryption algorithm, it's always better to use blowfish or des, anyway what language you use at the server to decrypt the data?

saurabhAggarwal
19th January 2005 13:57 UTC

to decrypt data at the server I am using CGI scripting (perl)

Takhir
19th January 2005 16:27 UTC

I did it long ago, but authentication algorithm may not require encrypted password transfer. For md5 (for one network protocol, may be NDMP?) I received 16 bytes from server, created another 64 bytes using user entered SN (simple function) and sent them back to server. And I saw md5 plug-ins and samples in NSIS archive. Hope this help :)

saurabhAggarwal
20th January 2005 06:51 UTC

I didn't tried that anyways I found the way
thanks

ilya31
17th November 2005 01:01 UTC

Yehiaeg, how do I decrypt the result using your blowfish plug in?

Afrow UK
17th November 2005 10:05 UTC

blowfish::decrypt

Not sure how the parameters work though... why the $0 is there.

-Stu

ilya31
17th November 2005 16:40 UTC

I figured it out.

blowfish::Encrypt "secret" "password" ;returns encrypted result in $8
MessageBox MB_OK "Encrypted password is $8"
blowfish::decrypt $8 "password" ;returns decrypted \ result in $8
MessageBox MB_OK "Decrypted password is $8"

Yehiaeg, did you write this plugin yourself or you found it somewhere? It uses blowfish encryption algorith right? Did somebody ever verify that it does use blowfish? Thanks

torpark
6th September 2006 04:33 UTC

If there is no source code included in this, it is absolutely 100% useless. You can't trust closed source cryptography. You don't know if it has a backdoor in it or not.

ricky03
14th April 2009 07:41 UTC

Source code
Hello,

Did someone have the source code of this plug-in?

Or witch plug-in do the same function and is secure?

Thanks for your response

Regards

Fork me on GitHub