asciilifeform: gerating his resume and stealing the answers to an employment test. In May 2013, Snowden informed his supervisor that he would be out of the office to receive treatment for worsening epilepsy. In reality, he was on his way to Hong Kong with stolen secrets.'
asciilifeform: 'He claimed to have left Army basic training because of broken legs when in fact he washed out because of shin splints. He claimed to have obtained a high school degree equivalent when in fact he never did. He claimed to have worked for the CIA as a "senior advisor," which was a gross exaggeration of his entry-level duties as a computer technician. He also doctored his performance evaluations and obtained new positions at NSA by exag
asciilifeform: ^ 'official 5 minutes of hate' for the вредитель trotsk^H^H^H^H^H^Hsnowden
asciilifeform: 'Another reason for the key switch is that it is going to increase in size, from 1024 bits up to 2048. As time goes on, and computing power increases, the chance of someone cracking the key, although still low, increases.' << mega-l0l
asciilifeform: '“There is a logical possibility that somebody has cracked it and we don’t know,” Andrew Sullivan, chair of the Internet Architecture Board, a group that oversees organisations involved in the evolution of the internet, told Motherboard in a phone call. He stressed, however, that there is no reason to believe the key has been compromised.'
asciilifeform: i had once an ancient toyota that had a debug port, but weird proprietary analogue one, i gathered the docs but the thing fell apart before i got a chance to use.
asciilifeform: but can summarize - from 2008, all used CAN bus
asciilifeform: y'know when 'picture's worth 1000 words'? this one's worth 1...
asciilifeform: ocsp" build time option are not affected. Servers using OpenSSL versions prior to 1.0.1g are not vulnerable in a default configuration, instead only if an application explicitly enables OCSP stapling support.'
asciilifeform: 'A malicious client can send an excessively large OCSP Status Request extension. If that client continually requests renegotiation, sending a large OCSP Status Request extension each time, then there will be unbounded memory growth on the server. This will eventually lead to a Denial Of Service attack through memory exhaustion. Servers with a default configuration are vulnerable even if they do not support OCSP. Builds using the "no-
asciilifeform: BingoBoingo: eh, whole field is ~dozen people, max.
asciilifeform: if you have enough of'em scattered, their removal becomes uneconomical even for hitler
asciilifeform: yes, it is nice to have 100kW sw that can be reliably heard across the atlantic. but you don't need it to cross land, it is much better to have 1,001 small and disposable unattended boxes.
asciilifeform: BingoBoingo: the point, which i tried and apparently failed to make earlier, is that gigantic radio stations are a largely-unnecessary luxury
asciilifeform: as for what its use is - could be, e.g., gossip lighthouse, or btc tx relay, or something else. uses are to be conceived of later.
asciilifeform: the 'signed-packet-relay' concept's entire appeal is that it is more or less jam-proof, and the nodes - disposable
asciilifeform: remember that the hypothetical scheme is not gossipd.
asciilifeform: Framedragger: private key is in the thing lords use to inject packets into the relay net.
asciilifeform: (even if the ~title~ is terrifyingly cringe-inducing)
asciilifeform: mircea_popescu: this isn't any old d00d, either, his b00k is excellent
asciilifeform: 'Anyway, I was quite surprised to find a "low cost" version of this kind of ICE over at: http://www.loper-os.org/?p=1667. Well, I'd like to thank to whoever posted a comment about this ICE in my previous post. It's very interesting nonetheless ;-).'
asciilifeform: (if what i said does not make sense, draw it on napkin)
asciilifeform: this'd have a cost, however, of limiting the number of 'hops' that the thing can propagate along.
asciilifeform: you have a nonce in the packet, and the packet only registers as valid when said nonce is equal to hash of some packet that is in the receiver's current buffer.☟︎
asciilifeform: Framedragger: aaaaaaaactually there is a very elegant solution to replay when you have radio net like this
asciilifeform: Framedragger: see my lighthouse scheme for the pill against replay ddos.
asciilifeform: this is not, note, a 'gossipd' net per se, but potentially component in one.
asciilifeform: every key gets a timeslot, such that one defeated lord does not result in a perma-ddosed net.
asciilifeform: and likewise the power of the station can vary depending on who the operator is ( if mircea_popescu , megawatt, if asciilifeform living in amphora on the streets of athens, a watt, etc)
asciilifeform: this can vary significantly, it is not necessary for ALL nodes globally to use same freq., only for neighbours to somehow agree;
asciilifeform: 2) consider a device of the following scheme. receives luby-coded packets via radio; if packet checksums AND has one of N lordly signatures, it is relayed (transmitted to neighbouring nodes.) otherwise, not.
asciilifeform: shinohai: the amp is the tricky bit. and the dirigible.
