Hashing is considered Encryption?

Similar Messages

• Preview Encrypt PDF - Really Secure?

  When you use the Preview app in OS X to encrypt a PDF is it really secure?
  I haven't been able to find anything about the level of encryption used by Preview in OS X. What type of encryption does Preview use (40-bit, 128-bit)?
  A quick search of the web and there are several products that claim they can remove the passwords from PDF files. If these work why would anyone consider encrypted PDF's secure?

  Preview
  CVE-ID: CVE-2008-0994
  Available for: Mac OS X v10.5.2, Mac OS X Server v10.5.2
  Impact: Saving to encrypted PDF in Preview produces files that may be read without the password
  Description: When Preview saves a PDF file with encryption, it uses 40-bit RC4. This encryption algorithm may be broken with significant but readily available computing power. A person with access to the file may apply a brute-force technique to view it. This update enhances the encryption to 128-bit RC4.
  About Security Update 2008-002

• Using encryption on one drive of server for W7 clients

  Hi,
  I run Win 2008 R2. It has an SSD boot drive, 9 Spinners and a USB attached drive.
  The Spinners are 2 & 3 TB drives. Two of the 2TB drives are set up as a spanned volume
  One of the spinners has several partitions.
  I am considering encrypting the data on that one partition. It contains user folders that are mapped on the clients, which are Windows 7, Windows 8.1 and Linux Mint
  I don't want to use bit locker. I'd prefer something "other". I guess that won't be TrueCrypt given the media frenzy about that product lately.
  Can someone please provide some guidance as to where to start. Perhaps some advice on whether I should do this (Opinions are fine, as long as they are respectful).
  For example...
  \\server\joe
  \\server\jane
  \\server\fred
  thanks
  tanya

  Thanks for your reply.
  I was advised by someone else to stay away from bitlocker because if is extremely insecure (and Googling it certainly indicated there were a number of concerns for people using it). For example, the rumor that Microsoft did not impede government agencies
  attempts to circumvent the encryption (to put it nicely).
  Given that, a third party option is where I thought I would have to go.
  But before that, I'm wondering if it is even a good idea? Can any serious agency break any encryption? Is there a performance hit that is going to annoy people? etc.
  That was the sort of advice I was after.
  thanks
  Tanya

• Password encrypt - looking for the simplest way

  I�m implementing a web application which needs to encrypt the user password and store it in a database... (the classic scenario).
  what is the simplest way to encrypt the user password?
  I need only the encryption method..

  There are several ways: You do a secure hash of the password and store that. Then, when you want to verify the password, you do the same hash of the proposed password and if they match, you call it macaroni. Alternately, you can encrypt the password using DES or some other private key encryption technique. The technique for authentication is the same: encrypt the proposed password and if the cipertext matches that stored in your DB, the user is authenticated.
  You can do an SHA-1 hash or DES encryption using the JCE.
  See here:
  http://www.ja.net/CERT/Belgers/UNIX-password-security.html
  http://www.itworld.com/nl/unix_sec/12062001/

• Encrypting a password

  hi all
  i am developing a webapplication where in i need to encrypt user password before storing it into the database.
  i want to know the ways of encrypting (using java) password before storing into the database and how to check the same when a user logs into my webapplication.
  i am using jsp and servlets to develop the application.
  what are the available apis and turorials for this
  anyones help will be apreciated
  thanks in advance
  prabhakar

  Read the old posts. You actually want to hash passwords, not encrypt them.

• Cannot encrypt microSD card

  I need to have encryption turned on on my phone because of my companies Exchange account policy. I did that without a problem. Now I just got an SD card and I would like to use it but the phone odes not accept it because it needs to be also encrypted. Unfortunately, when I follow the instruction on the phoe, the device restarts but never encrypts the card, getting the same "card needs to be encrypted" message after reboot. Any ideas?

  EX wrote:
  Hi, I have the same need for encryption of my Z2, but i haven't tried so I'm not sure if i can encrypt my SD card. My question is can I later decrypt it without factory reset which would erase all my data and setttings? If there's a possiblity, I would encrypt the phone to use my company exchange ativesync account.
  Could anybody help?
  Hi,
  No you can't remove encryption without performing a factory reset of the phone. The factory reset will result in your not being able to access any data on the SD card if this is also encrypted - you will have to reformat the SD card in this case. This is unlike the Samsung Galaxy series where you can decrypt an encrypted device (not sure about the SD card though!)
  If you are considering encryption please be aware of the issue I posted  a few days ago wrt the Movies application - the phone will hang and need a reboot if you allow the screen to lock for any signifcant period with the Movies app running. Also be aware that the backup function included with PC companion does not work with encryption. You can however copy files using explorer to your PC.
  Finally factory resetting  (necessary to remove encryption) appears to invalidate any movies that you have previously downloaded due to DRM. You will have to download them again. Backing them up using Windows Explorer does not appear to work 

• How to encrypt password using md5

  Hello all,
  I would like to generate a password and encrypt it using md5 with the current time(System's time) as the key, in Servlets.
  How do i go about doing this?
  Kindly guide.
  regards
  appu

  >
  I would like to generate a password and encrypt it
  using md5 MD5 is a non-reversible hashing, not an encryption!
  with the current time(System's time) as the
  key, If you use the current system time as the key for any encryption algorithm then how are you going to know what system time to use to decrypt?
  in Servlets.
  How do i go about doing this?Read up on encryption, the JCE and Servlets.

• How to encrypt password columns

  I would like to create a table to store the username and password for all my application users. There are a problem with password encryption. When I create a table as follows,
  create table usrmas
  (username varchar2(10),
  passwd varchar2(20))
  All password from the passwd column will be disclosed when somebody query the table. It is not secure. Right?
  When I tried to use the table dba_users, for example, there are a user scott with password tiger, I am fail to find a record when I type a sql as follows,
  select *
  from dba_users
  where username = 'SCOTT'
  and password = 'TIGER'
  Please advice me how I can authenticate user. Thanks

  If you have a 10g database, it should be installed by default.
  Note, however, that Oracle stores hashed passwords, not encrypted passwords, in the dba_users table. That's more secure since there is no decrypt method for a hashed value. With a hashed value, you can only check whether the user has provided the right password, you can't find out what the right password is.
  Justin
  Distributed Database Consulting, Inc.
  http://www.ddbcinc.com/askDDBC

• ITunes Connect - Export Compliance - Encrypted Sqlite

  I am submitting my app to Apple App Store.  In the Export Compliance section, I have to declare whether or not my app uses encryption.   My app is using Air's builtin Sqlite with encryption.
  I believe I need to get an Encryption Registration Number.  Has anyone been through this process with Apple/Air/Sqlite combination?  I have gotten a lot of opinions, but I'd like to get a definitive answer from Adobe or Apple.
  Apple Export Compliance link
  Encryption Registration (self classification) link
  Adobe Air Sqlite link
  Thanks

  You should answer "no" to question one. Base64 is encoding, not encryption, anyone receiving the data can decode it without needing an encryption key. It doesn't involve encryption any more than XML or JSON would. Here's a short discussion on the topic:
  http://stackoverflow.com/questions/1513552/is-base64-considered-encryption-in-an-iphone-ap p

• Password encrpytion for security

  Hi
  I am using the below code to encrpyt and decrpyt my password.
  Could you please let me know how to use the hash algotithm here to protect password more secure?
  Abd also please let me know how to keep safe the key?
  Thanks
  DECLARE
     input_string       VARCHAR2 (200) :=  'Secret';
     output_string      VARCHAR2 (200);
     encrypted_raw      RAW (2000);             -- stores encrypted binary text
     decrypted_raw      RAW (2000);             -- stores decrypted binary text
     num_key_bytes      NUMBER := 256/8;        -- key length 256 bits (32 bytes)
     key_bytes_raw      RAW (32);               -- stores 256-bit encryption key
     encryption_type    PLS_INTEGER :=          -- total encryption type
                              DBMS_CRYPTO.ENCRYPT_AES256
                            + DBMS_CRYPTO.CHAIN_CBC
                            + DBMS_CRYPTO.PAD_PKCS5;
  BEGIN
     DBMS_OUTPUT.PUT_LINE ( 'Original string: ' || input_string);
     key_bytes_raw := DBMS_CRYPTO.RANDOMBYTES (num_key_bytes);
     encrypted_raw := DBMS_CRYPTO.ENCRYPT
           src => UTL_I18N.STRING_TO_RAW (input_string,  'AL32UTF8'),
           typ => encryption_type,
           key => key_bytes_raw
      -- The encrypted value "encrypted_raw" can be used here
  DBMS_OUTPUT.PUT_LINE ( 'key_bytes_raw: ' || key_bytes_raw);
  DBMS_OUTPUT.PUT_LINE ( 'encryption_type: ' || encryption_type);
  DBMS_OUTPUT.PUT_LINE ( 'encrypted_raw: ' || encrypted_raw);
     decrypted_raw := DBMS_CRYPTO.DECRYPT
           src => encrypted_raw,
           typ => encryption_type,
           key => key_bytes_raw
     DBMS_OUTPUT.PUT_LINE ( 'decrypted_raw: ' || decrypted_raw);
     output_string := UTL_I18N.RAW_TO_CHAR (decrypted_raw, 'AL32UTF8');
     DBMS_OUTPUT.PUT_LINE ('Decrypted string: ' || output_string);
  END;Edited by: user212310 on Feb 4, 2011 12:46 AM

  Wow that is really overkill unless it is important for you to be able to fetch the password back in plain text.
  Like others have said most times you store the users password as a hash. When they come back, you hash whatever they give you as a password then compare the two hashes.
  When considering encryption one has to decide on strength. In other words how long would it take to decrypt a string without knowing its key.
  What is the data you are protecting worth? Are you just trying to keep your average hacker out or are you defending against dedicated break in attempts?
  One of the simplest solutions to defeat a dedicated break in attempt is to simply put a "three strikes" and you out rule in place so the account is locked after 3 attempts with an incorrect password. Or you can simply limit the number of attempts in a given amount of time, or after three attempts you lock the account for n minutes.
  There are lots of simple cyphers that can be implemented as a stored procedure that would do exactly what you want. The complex the cypher the harder it is to implement.
  As to your code. It works fine on my system in pl/sql and I am on Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 linux client and server.
  As to keeping your encryption key safe you can hide it in any number of tables call the column just about anything, so use your imagination.
  I think your question has been answered.

• To EXE Not To EXE: that's NOT the question

  Hi folks.
  My problem is very simply: I don`t want my application to be an open source code. My solution to a problem
  doesn`t have to be open to everyone. So how can i "encrypt" my bytecodes without having to write a class loader. Can anybody help me?
  Many thanks in advance.
  Marla.-

  Hmm,
  Well sounds like your going to be writing a GUI client that connects to an application server or a database
  server.
  The first question is will there be any possibility of your application running without a connection to the
  server?
  If the answer is yes, then of course you will need a GUI app. If the answer is no, then you can consider
  having all code on the server with a thin client.
  If your going the thin client direction, then you will either choose a Web Browser and JSP (or some such) or
  a Java GUI thin client that connects to the server for data and screen info (eg. xml parsed from server to
  client that tells the client what the menus are, what the browses are, what the fields in the browse is, etc).
  If you go the thin client, then extensive use of reflection would be best. This would make it hard to
  obuscate. Of course if you stream the code via sockets to the client then you could use obuscation, but
  the code passed from the server could not be obuscated. Then you would only have the issue of the
  server code.
  If your writing a fat gui client then you can avoid reflection. Of course reflection makes writing an advanced
  gui app so much easier, but you don't realy need it. In that case then you could obuscate.
  The bottom line is that you do need some form of registration and license management, even if you do
  obuscate. The reason being that people can still copy your programs, they will just find it hard to delve
  into your code. A determined person will be able to get past obuscated code though.
  Traditional forms of license management is via a server that registers connections. You know how many
  concurrent seats the client is licensed for and you only allow that many concurrent connections. Use of
  the system registry with some hash keys or encrypted (or obscure) encoding of such data is the best
  direction. Normaly a hash key that contains the license and number of seats is entered when you
  install. This is stored on the server and used for license management. Personaly I have never had to
  worry about it, but I understand the concepts and it's a good method to prevent casual copying and
  license breaches. A determined person is almost impossible to stop though.
  James.

• What is the proper way to secure a password?

  Hello all,
  So I'm trying to do something about passwords and hopefully you can help. What I basically need to do is save a bunch of username and passwords into a table, and retrieve them again at a later time.
  I just learned that MD5 and SHA1 are hashing methods, not encryption methods, thus they cannot be "decrypted" or "unhashed." So I don't think those methods will work for me since I need to retrieve the passwords again, in String format, at a later time to use them to login into a different server. The general flow of my code is:
  1) Users insert their username and passwords for several different services into my tables.
  2) My app uses those account infos to login into their respective services at a certain interval.
  So as you can see, users won't be doing any logging-in in this module of the app. They're just supplying their username and passwords to me, and then I will use those to login onto a different server.
  How can I do this?
  Thank you!

  My app uses those account infos to login into their respective services at a certain interval. Key point that.
  So you have to encrypt it. If was me I would encrypt both (user and pwd.) Look up encryption mechanisms.
  If you have other questions forgo mentioning that it is a user/pwd. The problem comes up often enough where it does not need to be de-crypted that you are going to end up explaining it each time.
  And you have to figure out a way to manage the key securely. That means it has to exist in a place that is considered secure.
  You might also want to consider that the key might need to be rotated at some point. That would involve an automated process that decrypts using the original key and re-encrypts using the new key, then resaves.
  You might also want to consider the context of what you are doing this for. There are already solutions, at least commercial ones, that can provide the same functionality.

• How to replace the hardwired certificate in the DocSign example

  Hi,
  I am trying to replace the hardwired John Doe certificate in the DocSign example with my own. I have created my own certificate (pfx file); when I use this certificate instead of the hardwired one I receive an error. Obviously I am not doing it right...
  Should I hash the document, encrypt it with the private key, BER encode it and put that result into the hardwired variable?
  Any advice would be appreciated.
  Regards,
  Magda

  Nevermind, I see you only have to use the X.590 data.

• Problem creating workspace.ear in process administrator

  Hi,
  I have configured FDI Hybrid Directory (Active directory) .
  When i login with my network Id and password am able to login into process administrator. But when i try creating EARs, am getting login incorrect message and unable to create EARs.
  The detailed information is below :
  Login incorrect. Detail:Verify that the information provided is correct. If you cannot solve the problem, check with your administrator. ID [default] PARTICIPANT [cn=bXXXX,cn=Users,dc=XX,dc=XX,dc=com] REASON [invalid username or password].
  Initially it was working fine..
  Kindly help me in solving this issue..
  Below is the detailed error message as in logs :
  fuego.directory.AuthenticationException: Login incorrect.
  [     (cont)     ] Main: Detail:Verify that the information provided is correct.
  [     (cont)     ] Main: If you cannot solve the problem, check with your administrator.
  [     (cont)     ] Main: ID [default] PARTICIPANT [cn=XXXX,cn=XXXX,dc=XX,dc=XX,dc=com] REASON [invalid username or password].
  [     (cont)     ] Main:
  [     (cont)     ] Main:      at fuego.directory.hybrid.ldap.LDAPOrganizationAuthenticationAccessor.authenticate(LDAPOrganizationAuthenticationAccessor.java:65)
  [     (cont)     ] Main:      at fuego.directory.hybrid.ldap.LDAPOrganizationAuthenticationAccessor.connect(LDAPOrganizationAuthenticationAccessor.java:88)
  [     (cont)     ] Main:      at fuego.directory.hybrid.HybridAuthenticationAccessor.connect(HybridAuthenticationAccessor.java:114)
  [     (cont)     ] Main:      at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  [     (cont)     ] Main:      at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
  [     (cont)     ] Main:      at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
  [     (cont)     ] Main:      at java.lang.reflect.Method.invoke(Unknown Source)
  [     (cont)     ] Main:      at fuego.directory.provider.DirectorySessionImpl$AccessorProxy.invoke(DirectorySessionImpl.java:756)
  [     (cont)     ] Main:      at $Proxy3.connect(Unknown Source)
  [     (cont)     ] Main:      at fuego.directory.provider.DirectorySessionImpl.connect(DirectorySessionImpl.java:250)
  [     (cont)     ] Main:      at fuego.directory.provider.Factory.startSession(Factory.java:405)
  [     (cont)     ] Main:      at fuego.directory.Directory.startSession(Directory.java:268)
  [     (cont)     ] Main:      at fuego.directory.Directory.startAdminSession(Directory.java:179)
  [     (cont)     ] Main:      at fuego.tools.ant.BaseFuegoDirectoryTask.createDirectoryAdminSession(Unknown Source)
  [     (cont)     ] Main:      at fuego.tools.ant.j2ee.taskdefs.BuildEarTask.executeImpl(Unknown Source)
  [     (cont)     ] Main:      at fuego.tools.ant.BaseFuegoTask.execute(Unknown Source)
  [     (cont)     ] Main:      at fuego.webconsole.model.ear.JSFWebAppEar.buildWebAppFile(JSFWebAppEar.java:254)
  [     (cont)     ] Main:      at fuego.webconsole.model.ear.JSFWebAppFile.createAction(JSFWebAppFile.java:95)
  [     (cont)     ] Main:      at fuego.webconsole.model.ear.JSFWebAppEar.createAction(JSFWebAppEar.java:215)
  [     (cont)     ] Main:      at fuego.webconsole.model.ear.JSFEarCreation.createWorkspaceFilesAction(JSFEarCreation.java:127)
  [     (cont)     ] Main:      at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  [     (cont)     ] Main:      at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
  [     (cont)     ] Main:      at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
  [     (cont)     ] Main:      at java.lang.reflect.Method.invoke(Unknown Source)
  [     (cont)     ] Main:      at com.sun.faces.el.MethodBindingImpl.invoke(MethodBindingImpl.java:126)
  [     (cont)     ] Main:      at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:72)
  [     (cont)     ] Main:      at javax.faces.component.UICommand.broadcast(UICommand.java:312)
  [     (cont)     ] Main:      at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:267)
  [     (cont)     ] Main:      at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:381)
  [     (cont)     ] Main:      at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:75)
  [     (cont)     ] Main:      at com.sun.faces.lifecycle.LifecycleImpl.phase(LifecycleImpl.java:200)
  [     (cont)     ] Main:      at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:90)
  [     (cont)     ] Main:      at javax.faces.webapp.FacesServlet.service(FacesServlet.java:197)
  [     (cont)     ] Main:      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252)
  [     (cont)     ] Main:      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
  [     (cont)     ] Main:      at fuego.web.filter.CharsetFilter.doFilter(CharsetFilter.java:48)
  [     (cont)     ] Main:      at fuego.web.filter.BaseFilter.doFilter(BaseFilter.java:63)
  [     (cont)     ] Main:      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
  [     (cont)     ] Main:      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
  [     (cont)     ] Main:      at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
  [     (cont)     ] Main:      at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)
  [     (cont)     ] Main:      at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
  [     (cont)     ] Main:      at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
  [     (cont)     ] Main:      at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
  [     (cont)     ] Main:      at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
  [     (cont)     ] Main:      at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:869)
  [     (cont)     ] Main:      at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:667)
  [     (cont)     ] Main:      at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)
  [     (cont)     ] Main:      at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:80)
  [     (cont)     ] Main:      at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
  [     (cont)     ] Main:      at java.lang.Thread.run(Unknown Source)
  [     (cont)     ] Main:
  [<D> 0512 08:24:15.706] Main (<6> http-8686-Processor19): Context->contextcom.sun.faces.context.FacesContextImpl@15b5783
  [<D> 0512 08:24:15.722] Main (<6> http-8686-Processor19): Context->contextcom.sun.faces.context.FacesContextImpl@15b5783
  [<D> 0512 08:24:15.722] Main (<6> http-8686-Processor19): Context->contextcom.sun.faces.context.FacesContextImpl@15b5783
  Thanks,
  ChAran

  Hi Charan,
  This is the beginning of my test directory.xml (you should modify the <configname>.dirxml and then update it from the process administrator to all the applications by pressing the "set as current" button)
  <?xml version="1.0" encoding="UTF-8"?>
  <?fuego version="6.5.2" build="100209"?>
  <DirectoryConfiguration>
       <id>wls1033</id>
       <description>Default Directory Configuration</description>
       <admin>system</admin>
       <adminPass>&lt;encrypted&gt;gGocbn15UL8=</adminPass>
       <presets>
            <preset name="engine">
                 <property name="participant" value="system"/>
                 <property name="participant_password" value="&lt;encrypted&gt;gGocbn15UL8="/>
            </preset>
            <preset name="xobjects">
                 <property name="participant" value="system"/>
                 <property name="participant_password" value="&lt;encrypted&gt;gGocbn15UL8="/>
            </preset>
  ...If you pay attention there are some "preset" users. In my case, it is "system" and has some encrypted password.
  So, you should change it to: (Please make a backup before modifying it.)
            <preset name="engine">
                 <property name="participant" value="USER"/>
                 <property name="participant_password" value="PASSWORD"/>
            </preset>Go to the process administrator. In the configuration section, select the desired configuration and press the "set as current" button.
  Then check your conf/directory.xml (that file now should have your modifications)
  Test it.
  If it works, you will probably want to consider encrypting those passwords. To do that, use the "managedirectory" ant task. (build #99598 or greater)
  http://download.oracle.com/docs/cd/E13154_01/bpm/docs65/anttasks/fuego.tools.ant.enterprise.taskdefs.ManageDirectoryFileTask.html
     <fuego:managedirectory directoryFile="directory.xml" admin="admin" adminPassword="adminPassword" encryptPasswords="true">
         <passwordProperty section="preset" name="participant_password"/>
         <passwordProperty section="fuego" name="password"/>
         <passwordProperty section="organization" name="java.naming.security.credentials"/>
     </fuego:managedirectory>Hope this helps

• Apple Remote Desktop, 2010 Mac Pro, and six displays

  Under 10.8, we were able to operate a 2010 Mac Pro (MacPro5,1) with 2 x HD5770 video cards and 6 x LED Cinema Displays (the mini DisplayPort models, two of them via IUSB-powered Atlona DVI Dual-Link-to-mDP adapters, via Apple Remote Desktop.
  Under 10.9 (currently 10.9.2), all the displays still work, but ARD is having significant heartburn: if it is able to connect with the ARD agent on the display syste, the display arrangement is incorrect, and no amount of swapping mDP cables, moving the displays around in the Displays System Preference pane, and/or rebooting appears to help. Oh, and the most recent end state, when I finally managed to get the menu bar on one of the displays on the top (physical) row (we have them arranged 2 x 3, in order to display 4096 x 4096 pixel movies of spacecraft data), flummoxed ARD completely --- it simply refused to connect with the display machine at all. (I can ssh into the display system and use a cabled keyboard and mouse as well, but that's not a long-term solution: we have to be able to operate remotely, as we did under 10.8.) Oddly, ARD works OK, if not perfectly every time, with the target system when it's only connected to four or fewer displays (regardless of whether they're connected to mDP ports or via the Atlona devices). The host ARD system is another MacPro5,1 with 24 Gbyte of RAM; the target has 96 Gbyte.
  Reading the release notes for ARD 3.7.2, it sounded as though all our issues would be addressed, but alas, it is not so: we're still stuck with ARD trying to but unable to open a "Control" connection to the display system.
  Does anyone have any experience, positive or negative, with a similar setup under 10.9 and ARD 3.7.2?
  Is there any way to clear all the settings in ARD? I can't find any .plist files with client system-by-system info in them, and I suspect they are (appropriately) encrypted because they can contain passwords, or at least store the hashed passwords in encrypted fields.
  Thanks in advance for any clues for the clueless.

  Mac Pro
  Date introduced 
  Original Mac OS X included
  (see Tips 1 and 3)
  Later Mac OS X included
  (see Tip 1)
  Mac OS X Build(s)
  (see Tip 2)
  Mac Pro (Mid 2012)
  Jun 2012
  10.7.3
  10.8
  11D2001, 12A269
  Mac Pro (Mid 2010)
  Aug 2010
  10.6.4
  10.7, 10.7.2, 10.7.3
  10F2521, 10F2554, 11A511a, 11C74, 11D2001
  Mac Pro with Mac OS X Server (Mid 2010)
  Aug 2010
  10.6.4
  10.7, 10.7.2, 10.7.3 (Server)
  10F2522, 11A511a, 11C74, 11D2001 (Server)
  Mac Pro (Early 2009)
  Mar 2009
  10.5.6
  10.6
  9G3553, 10A432
  Mac Pro (Early 2008)
  Jan 2008
  10.5.1
  10.5.2, 10.5.4
  9B2117, 9C2031, 9E25
  Mac Pro
  Aug 2006
  10.4.7
  10.4.8, 10.4.9, 10.4.10, 10.5
  8K1079, 8N1430, 8N1250, 8K1124, 8P4037, 8R3032, 8R3041, 9A581, 9A3129
  I expect your Hardware is essentially unchanged since the 2010 model, and should run the custom 10.6.4 they provided, or 10.6.5.
  The "Full Retail" 10.6.3 is only 10D575, so it will not suffice.