Aloaha Software

The Aloaha Passwort Filter is a Windows Password Filter to synchronize password changes with the Smartcard encrypted Softtoken of Aloaha Smartlogin.

When a password change request is made, the Local Security Authority (LSA) calls the password filter registered on the system. The Aloaha Password Filter is called on the machine the password change has been done. If the password change has been done for an Active Directory User the filter is called on the Domain Controller and if the User is a local user the filter is called on the local machine.

To install an activate the filter please start PasswdHK from your Aloaha installation folder. It is VERY important to call it with admin rights. Ideally you call it with -> right mouse click -> “Run as Administrator”. Once the tool is running please choose the tab “Activate Password Hook” and click on “Enable”. After clicking “Enable” or “Disable” a reboot is required!

The other tab “Set initial Password” has the function to create a certificate encrypted softtoken. Those certificate encrypted softtoken are used by Aloaha Smartlogin to allow the User a Smartcard Logon INDEPENDENTLY of Active Directory Membership and Certificate origin!

Passwords intercepted by the Aloaha Password Filter ARE ALWAYS encrypted with the public key of the certificate defined in the Softtoken. Therefore password are ONLY synchronized when a softtoken exists!

Keeping the certificate encrypted tokens in sync makes a lot of sense with the central store explained on: http://blog.aloaha.com/2013/04/26/aloaha-smartlogin-with-central-credential-store/

At work and at home many have a few PCs that frequently need to be connected to. The RDP Launcher of your choice should be Aloaha. You will be able to use it to instantly launch connections to those PCs without needing to type in anything. Getting this setup is no hassle at all since the Aloaha RDP Launcher is a portable APP sitting in your system tray.

Just download the portable Aloaha RDP launcher from: https://dl.dropbox.com/u/20338532/neverdelete/RDPLauncher/rdplauncher.zip and unzip it to your program files folder. If you want the system tray to start automatically when logging on to your machine please add a shortcut in your “Startup” in the Windows Startmenu.

Please note that this RDP Launcher is also included in Aloahas Smartlogin (http://www.aloaha.com/download/smartlogin.zip). The Smartlogin Edition supports additional features such as Smartcard support, Credentials on USB Stick, etc.

How do I use the System Tray?

After you installed the System Tray you will find in “Edit RDP Hosts” the Item “default”. This is the template which should be used as default.rdp template. Click on it to open it in Aloaha. You can now save it to a new file, edit username/domain/password, etc. You will find also a “notepad” button to open the .RDP directly in a notepad to be able to edit default settings. For example you could add:

connect to console:i:1
smart sizing:i:1

Now you can go to “Call RDP Hosts” to call you configured RDP. Please note that you need to click on “Call RDP Hosts” to update the filelist.

Smartcard support:

In case you use the Smartlogin Version there is NO need to save password in the RDP files. When connecting to a remote session Aloaha will ask Smartlogin for the Smartcard credentials and pass them automatically to the session.

Can I use a central “RDP File” store?

In Aloaha\CSP\MasterRDPFolder you can configure a path containing your master RDP Files. Once configured ONLY the files in that folder will be available from within the system tray icon. The edit option will NOT be available anymore!

The latest release of the Aloaha Smartcard Middleware Aloaha Smartcard Connector (http://www.aloaha.com/download/cardconnector.zip) now also supports the popular Muscle Applet.

Included in the Middleware is a Crypto Service Provider, PKCS #11 Module, Harddisk Encryption and a Password Safe.

As an add-on the user can use Aloahas Smartlogin for Smartcard based Windows Logon with or without Active Directory. (http://www.aloaha.com/download/smartlogin.zip)

With the Aloaha HTML FormSaver you can save the contents of any HTML form field either DES or Certificate encrypted to a local database or Certificate Encrypted to the “Cloud”. It is mainly used as Single Sign On Solution for Websites or to use Smartcards to log on to any web site!

After you installed the installation package the Aloaha HTML Saver will be registered as an add-on in your Internet Explorer.

To save any formdata for the first time in the local forms database just add AloahaSave: before every value.

For example the website asks you for username/password and your username is “JohnDoe” and the password is “letmein”. You would write intead AloahaSave:JohnDoe and AloahaSave:letmein. The add-on will remove AloahaSave:, save the values to the local database and pass them back to the website.

It is essential that on the website the Submit Button is clicked! If you just press Enter IE will not fire the event to capture the data!

A good website for testing the product for the very first time is http://search.yahoo.com. Just enter AloahaSave:test in the searchmask, click search and then close the Internet Explorer. Now open the IE again and go to the search page and you see that the word “test” came automatically back into the searchmask. Now type in “Hello World”, cklick the search button and close IE again. Next time you go to the search page you will see “Hello World” again.

As mentioned before by default Aloaha DES encrypts all values. To switch to Certificate based encryption you need to open the HTML Saver GUI from that Start Menu:

Aloaha HTML FormSaver GUI

To switch to certificate based encryption please choose the certificate to be used from the certificate list. Then confirm with “Test & Save Encryption Settings” and activate the checkbox. Now all values will be encrypted with the public key of the choosen certificate.

Certificate encrypted data can be synchronised with the “Cloud”. “AloahaCloud” is hosted at Aloaha but you can define any http/https URL which supports http post.

Saved values can be edited manually. Just doubleclick on a website in “Website Settings” and then edit the values on the right.

 To request the setup or evaluation version please contact info@aloaha.com

Strictly speaking it should be impossible for any PDF Reader to display encrypted PDF Documents since they are encryped. But thats not the case – so how is that possible?

Basically when encrypting a PDF Document with a password the encryption key is generated as explained in the PDF specification. This key is then encrypted with the user specified password.

Like that the PDF Reader can decrypt and display the document with the encryption key and without having to know the password.

Now what happens if you loose the PDF Password? Pretty easiy. The Aloaha PDF Editor (included in the Aloaha PDF Suite) allows the user to set or remove the permission password. Aloaha just decrypts the document with the decryption key and then re-crypts the key with with the new permission password.

This shows that the only way to secure PDF Documents is to encrypt them with certificates (for example with the Aloaha PDF Crypter) and NOT just with passwords!

NEW: The new Aloaha PDF Reader is also capable of removing unknown PDF encryption passwords. Just open the document with the Aloaha PDF Viewer and then save as decrypted!
More details on: http://blog.aloaha.com/2012/05/03/aloaha-releases-one-of-the-worlds-smallest-portable-pdf-viewer/