mremoteng passing plain text credentials during iniating putty session #2672

Saumik-B · 2025-02-12T06:28:15Z

Saumik-B
Feb 12, 2025

Hello All,

The usage of saved passwords in the mRemoteNG application is causing credentials to be logged in Event ID 4688. Event logging is necessary for security purposes to track process executions. However, mRemoteNG is passing credentials in plaintext, which are then recorded in Event Viewer logs, leading to password exposure.
We attempted to mitigate this by enabling Tools → Options → Security → Completely Encrypt Connection File, but the credentials are still being transmitted in cleartext.

For example, the following command is logged:
C:\Program Files (x86)\mRemoteNG\PuTTYNG.exe" -load "Default Settings" -ssh -2 -l testuser -pw XXXXXXXXX -P 22 testmachine -hwndparent 590966

Please let us know if there is a way to encrypt the password or prevent it from being logged in Event ID 4688.

tecxx · 2025-02-12T09:19:49Z

tecxx
Feb 12, 2025
Collaborator

i have fixed this in oct 2023
54544dd

0 replies

Kvarkas · 2025-02-12T11:33:51Z

Kvarkas
Feb 12, 2025
Maintainer

Hello,

Please let us know if there is a way to encrypt the password or prevent it from being logged in Event ID 4688.

What version you are reffering?

0 replies

Saumik-B · 2025-02-17T14:40:09Z

Saumik-B
Feb 17, 2025
Author

MremoteNG Version 1.76.20.24615

0 replies

Saumik-B · 2025-02-17T14:42:43Z

Saumik-B
Feb 17, 2025
Author

Also please note, we are able to reproduce the issue using ssh

For example, the following command is logged:
C:\Program Files (x86)\mRemoteNG\PuTTYNG.exe" -load "Default Settings" -ssh -2 -l testuser -pw XXXXXXXXX -P 22 testmachine -hwndparent 590966

1 reply

Kvarkas Feb 17, 2025
Maintainer

yes, that know issue but due refactoring how mR handling passwords will be fix in next relese for 1.78.* version

ashishkumar0631 · 2025-02-18T14:43:59Z

ashishkumar0631
Feb 18, 2025

Thanks @Kvarkas

Any Specific ETA when the new version 1.78* will be published.

2 replies

Saumik-B Feb 18, 2025
Author

Please note that this is a critical issue preventing enterprises from using the application across all servers. Could you confirm the expected new version 1.78* release timeline/ETA?

Thank you for your efforts.

Kvarkas Feb 19, 2025
Maintainer

working on it at the moment. Default branch has been switched to 1.78.2 (.Net 9) and 2 major things should be done before release - settings part completed, and how we store and use credentials expecting soon but cant promiss this month...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

mRemoteNG

mremoteng passing plain text credentials during iniating putty session #2672

Uh oh!

{{title}}

Uh oh!

Replies: 5 comments 3 replies

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

mRemoteNG

mremoteng passing plain text credentials during iniating putty session #2672

Uh oh!

Saumik-B Feb 12, 2025

Replies: 5 comments · 3 replies

Uh oh!

tecxx Feb 12, 2025 Collaborator

Uh oh!

Uh oh!

Kvarkas Feb 12, 2025 Maintainer

Uh oh!

Saumik-B Feb 17, 2025 Author

Uh oh!

Saumik-B Feb 17, 2025 Author

Uh oh!

Kvarkas Feb 17, 2025 Maintainer

Uh oh!

ashishkumar0631 Feb 18, 2025

Uh oh!

Saumik-B Feb 18, 2025 Author

Uh oh!

Kvarkas Feb 19, 2025 Maintainer

Saumik-B
Feb 12, 2025

Replies: 5 comments 3 replies

tecxx
Feb 12, 2025
Collaborator

Kvarkas
Feb 12, 2025
Maintainer

Saumik-B
Feb 17, 2025
Author

Saumik-B
Feb 17, 2025
Author

Kvarkas Feb 17, 2025
Maintainer

ashishkumar0631
Feb 18, 2025

Saumik-B Feb 18, 2025
Author

Kvarkas Feb 19, 2025
Maintainer