--
You received this message because you are subscribed to the Google Groups "mooltipass" group.
To unsubscribe from this group and stop receiving emails from it, send an email to mooltipass+unsubscribe@googlegroups.com.
To post to this group, send email to moolt...@googlegroups.com.
Visit this group at https://groups.google.com/group/mooltipass.
For more options, visit https://groups.google.com/d/optout.
Hello Max,
I wouldn't say it's a mistake, I'd say it goes directly against the security model of the Mooltipass. By using this script, If your computer is compromised, your Mooltipass is basically useless.Are you sure you are using the correct smartcard reader?We know this script is working with the following readers:Regards,Mathieu
On Sun, Jul 9, 2017 at 4:16 PM, Max Mopp <max.m...@gmail.com> wrote:
I know you deem that as a mistake, but I want to be able to decode passwords in my multipass.I used the tools from https://github.com/limpkin/mooltipass/tree/master/tools/smc_decodewith correct PIN the response is from mooltipass_libusb.py :AES key extracted: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFand the passwords to my account are not the ones I entered.the "AES extraced key" seems to get used, because when I change one byte the decoded passwords are different.Can you please point me in a direction where I am offThanksMax
--
You received this message because you are subscribed to the Google Groups "mooltipass" group.
To unsubscribe from this group and stop receiving emails from it, send an email to mooltipass+...@googlegroups.com.
To unsubscribe from this group and stop receiving emails from it, send an email to mooltipass+unsubscribe@googlegroups.com.