How to get the hardware hash of WPA?



Q. John Chen
07-09-2005, 11:44 PM
I started a thread about uniqueness of the ProductID but it seems that
the ProductID is not unique for Volume Licensed user and nor for OEM
image.

All I need to do is get some unique information about a users machine.
Since the WPA already done this (not sure about volume licenses), I am
wondering if I can get the hardware hash Microsoft already created.

Here is some clue I found:
1. In registry, under HKEY_LOCAL_MACHINE | SYSTEM | WPA
There are SigningHash-XXXXXXX
But on my machine there are two of them.
2. File "wpa.dbl" under System32 directory. But that seems to change.

Please advise,

Thanks

John

Robert Moir
07-09-2005, 11:44 PM
Q. John Chen wrote:
> I started a thread about uniqueness of the ProductID but it seems that
> the ProductID is not unique for Volume Licensed user and nor for OEM
> image.
>
> All I need to do is get some unique information about a users machine.
> Since the WPA already done this (not sure about volume licenses), I am
> wondering if I can get the hardware hash Microsoft already created.
>
> Here is some clue I found:
> 1. In registry, under HKEY_LOCAL_MACHINE | SYSTEM | WPA
> There are SigningHash-XXXXXXX
> But on my machine there are two of them.
> 2. File "wpa.dbl" under System32 directory. But that seems to change.

There is no guarantee that the hardware hash is unique to a specific
machine, while it would be a bit contrived, i think it would be quite
possible to configure a batch of machines from the same supplier to be the
same. http://www.licenturion.com/xp/fully-licensed-wpa.txt

If your users machines will include a network card then maybe tracking the
MAC address would be ample - not foolproof but difficult to tamper with in
general and impossible for machines on the same network to duplicate this
without causing a big problem

--
--
Rob Moir
Website - http://www.robertmoir.co.uk
Virtual PC 2004 FAQ - http://www.robertmoir.co.uk/win/VirtualPC2004FAQ.html
Kazaa - Software update services for your Viruses and Spyware.

kurttrail
07-09-2005, 11:44 PM
Robert Moir wrote:
> Q. John Chen wrote:
>> I started a thread about uniqueness of the ProductID but it seems
>> that the ProductID is not unique for Volume Licensed user and nor
>> for OEM image.
>>
>> All I need to do is get some unique information about a users
>> machine. Since the WPA already done this (not sure about volume
>> licenses), I am wondering if I can get the hardware hash Microsoft
>> already created. Here is some clue I found:
>> 1. In registry, under HKEY_LOCAL_MACHINE | SYSTEM | WPA
>> There are SigningHash-XXXXXXX
>> But on my machine there are two of them.
>> 2. File "wpa.dbl" under System32 directory. But that seems to change.
>
> There is no guarantee that the hardware hash is unique to a specific
> machine, while it would be a bit contrived, i think it would be quite
> possible to configure a batch of machines from the same supplier to
> be the same. http://www.licenturion.com/xp/fully-licensed-wpa.txt
>
> If your users machines will include a network card then maybe
> tracking the MAC address would be ample - not foolproof but difficult
> to tamper with in general and impossible for machines on the same
> network to duplicate this without causing a big problem
>

Just to note, the info at the link
http://www.licenturion.com/xp/fully-licensed-wpa.txt is based on WPA on
WinXP RC1, before XP went RTM.

--
Peace!
Kurt
Self-anointed Moderator
microscum.pubic.windowsexp.gonorrhea
http://microscum.com/mscommunity
"Trustworthy Computing" is only another example of an Oxymoron!
"Produkt-Aktivierung macht frei"

Robert Moir
07-09-2005, 11:44 PM
kurttrail wrote:

>
> Just to note, the info at the link
> http://www.licenturion.com/xp/fully-licensed-wpa.txt is based on WPA
> on WinXP RC1, before XP went RTM.

Sorry, shoulda read it a bit more closely, still it illustrates the general
point I think!

thanks kurt,
rob


How to get the hardware hash of WPA?