149400+ entries in 1.005s
trinque: interesting;
I'll consider the dieharder source code a starting point for further research.
ascii_field:
i will also add that, e.g., digits of 'pi', are beautifully entropic per dieharder and most anything else
ascii_field: trinque: if you are a n00b to dieharder,
i must remind you that just about anything looks like 'weak result'
trinque:
I'll chew on the thing for a while and see what comes of it
trinque: ben_vulpes: oh and... several weak results from the consumer hardware
I have laying around
mod6: anyway,
i have high hopes that some of these steps could even be automated to aliviate the pain of building this by hand.
mod6: mircea_popescu: ahh, yeah. having gone through the gauntlet already on the thing at least a dozen times in aws, and also now having re-read the Gentoo-Handbook,
i feel like
I'm very close on this. To complete the guide,
i wanna test out all of the steps on real hardware so the steps are accurate.
I believe it'll entail something like creating a USB boot image, then booting off of that, then creating a stage3 in a chroot, then deploying that to
assbot: Logged on 07-05-2015 05:21:17; mircea_popescu: this is unlikely to EVER change.
i tried to move it to gentoo but the attempt burned, toppled and sunk into the swamp.
mod6: And as far as the gentoo stuff goes,
I kinda had to put that on hold for a minute.
I'm going to finish the rest of that up on real hardware. But to do so,
I gotta drive across town and buy a new box.
I might wait until after the 1st to continue this front.
mike_c: box is still standing. yet another reason
I need to move to BISP though. it seems ok for now.
trinque:
I have a half-baked notion that people in the US like this show because they are aware of 200 years of history, if that, and only of their own dirt
mircea_popescu: by now, im not so sure of the mental health of tv watchers anyway.
i guess it's prolly best not disturb them.
ascii_field: mircea_popescu:
i typically get'em from diametric
mircea_popescu:
i notice alf is very chan-oriented these days. picrelated all day from this fellow.
davout: ascii_field: yea, hopefully
i end up in decentrally corwdfunded valhalla
mircea_popescu: davout
i think this is one of those stories of old world privilege meanwhile abandoned because impractical and who gives a shit. just don't make it sur, that's niggerspeak
davout: mircea_popescu:
i wish the b-a fairy gave me more money, instead of more hair
davout: there seems to be something to waht mircea_popescu's saying wrt to 'riding', but it doesn't look that's the full story,
i found another source that says both "en/à vélo" are correct
ascii_field: mircea_popescu:
i was drummed out of academia while reasonably young, for the crime of not-giving-a-rat's-arse
davout: but the more
i look into this issue, the murkier it looks
mircea_popescu: im so sick of this "retards are people too" bullshit by now
i can't begin to tell you.
trinque: mircea_popescu:
I told william
I'd turn it off if his was returning, but it hasn't
trinque: mircea_popescu:
I noticed scoopbot was absent for a while, and after many complaints just loaded the feeds plugin into tenyks
mircea_popescu: trinque
i dunno what you two did there. what did you do ?
trinque: as scoopbot is not back
I assume deedbot- is the new guy for that too?
trinque:
I've "fixed" it locally which is to say it builds
Apocalyptic: oh,
I thought you knew the answer and it was a challenge
ascii_field: Apocalyptic: not atm. but
i'm currently occupied with other things
Apocalyptic: ascii_field,
i'm still thinking about your "exercice for the reader" from yesterday as to how get $othersmuckQ without at least doing a division for every modulus encountered
ascii_field: and what
i meant was that one must demonstrate that one could import the pubkey, somewhere, and verify material that was signed with it
Apocalyptic:
i'm disputing you can sign anything without having it first
ascii_field: thus
i conjecture that full factorization can be had, at reasonable cost, if there is a reason to attempt it
Apocalyptic: so
I don't get how you can save this factorization exercice for after you sign something...
Apocalyptic: or did
I misunderstand what you were saying ?
Apocalyptic: anyway the remainding part
I have is not divisible by primes below something like 1 billion if
I remember my tests correctly, may still qualify as -small- though
Apocalyptic: ascii_field,
i thought these it was pretty much NFS all the way
ascii_field: Apocalyptic:
i was saving this exercise for after we demonstrate that one could 1) sign with the dud key 2) it would verify on some broken pgptron, somewhere
Apocalyptic: on a 311 decimal base number
I have my doubts, even msieve refuses to crunch it
☟︎ Apocalyptic: ascii_field,
I did some trivial factoring on the reminder, got 2 more primes
Apocalyptic:
I would like to point out that unless yesterday's modulus was fully factored, which
I have no knowledge of, we actually didn't factor the invalid subkey discussed
ascii_field: Apocalyptic, decimation:
i will let mircea_popescu include this and other interesting zoological specimens in his next article.
decimation: right, but if a cosmic ray were to zing through a ram stick,
I wouldn't expect a 32 bit word to change completely?
trinque:
I just learned that yesterday from the fine folks at HN
trinque:
I am merely scratching the surface of what
I'm looking at, so far
trinque:
I have lived in a sea of shit
trinque: ascii_field:
I recall somebody "doing" this by bolting webkit to a terminal emulator :p
trinque: looks easy enough to fix so
I'll probably take a crack at it at some point
mod6: oh yeah,
i saw that on outside sites.
mod6: how do you know they're subkeys? did
I miss this in the log?
cazalla: what can
i say other than he's right.. 9/10 aussies
i met on 4chan love nothing more than shit posting
assbot: Logged on 28-02-2015 01:55:22; cazalla: so
i made a bitbet under the influence and couldn't fund it until later,
i assume 0 conf address listed for it in /propositions/ is the address of which
i need to fund?
LC^: mircea_popescu: thx for answering my questions so far.
I have to jump on a call, but if
I decide to go ahead with an article on this and have additional questions
I'll look for you around here.
mircea_popescu: ehh, diddled php implementations << obviously
i mean pgp not php.
mircea_popescu: adlai
i would guess something between 50 and 100 BTC's worth of S.NSA engineer's time, and maybe a few months-box worth of hardware.
mircea_popescu: we might consider publishing the "harmless" keys, but for one thing
i am not altogether convinced they're so harmless, and for another, much more interesting would be a hunt for diddled php implementations.
mircea_popescu: there's been a total of three pairs, so six total keys to date.
i have little doubt that as the program progresses through the list, more will be found. generally, the idea is to discuss this with the owners and them only.
mircea_popescu: because
i did lots of the former and the latter never occured.
LC^: there are parts in some archive formats you can modify and the archive will still work, though year
I understand your point, the suggested theory of damaged in transit would suggest random damaging not controlled modification
LC^:
I see, so the key would serve as an exploit of sorts or a trigger
LC^:
I'm just trying to understand what the risk is here and why would someone create such keys, intentionally
mircea_popescu:
i am plainly saying that while the weak keys incontrovertibly exist, it's unclear why they exist. someone put the effort into making them, which is not exactly trivial.
LC^:
I guess that is the main problem you're trying to highlight, correct? that some generators might be broken and generate weak keys
LC^:
I want to write an article about your Phuctor-related findings.
LC^:
I'm a journalist.
I shared my identity via privmsg.
mircea_popescu: this constitutes harassment in zoe quinn degree.
i now must have my own oprah show.
mircea_popescu: halp halp
i've been lyfthreatenet across hte internets
mircea_popescu: asciilifeform notice that idiots are doing their pressing. "If
I wanted to poison HPA with a fake key, why would
I create a degenerate one? A fake key with strong factors would have gone unnoticed, at least by this analysis"
assbot: Logged on 18-05-2015 01:35:23; justJanne: Sometimes when
I get DDoSd
I run nmap against the attacking servers, one time
I found a small IRC server with only one channel, in which were 256 clients all with just a number as name, and one other client sending specific commands every few minutes
assbot: Logged on 12-05-2015 22:05:41; mircea_popescu: "here
i sit in a prefab vinyl siding plebhousing unit, burning a 50 dollar bill" ?
mircea_popescu: but she's REALLY bad.
i mean sweet singer of michigan level bad.
assbot: Logged on 17-05-2015 23:39:53; pete_dushenski: williamdunne
i really have nfi what the first trade was. if you say it's weed, we'll go with that, but that doesn't mean that first=best
assbot: Logged on 17-05-2015 23:34:39; williamdunne: Read the article, and
I still don't see how that makes it bad for the last mile
mircea_popescu:
i have my doubts if you could get a decent definition of the notion of number from one in ten us graduates.
justJanne: Right now
I'm taking second semester classes, last week homework was doing RSA on paper.
mircea_popescu: <justJanne> BingoBoingo: Yes — remember,
I use no Google services, and modified half of the apps on my phone myself. << o.O what are you, like a hacker ???
mircea_popescu: midnightmagic
i have my doubts about how all that *pathic stuff works. kinda weaponized terminology, like "heretic"/"disbeliever" in middle ages.
williamdunne:
I'll eventually create another key offline which
I'll use as a master or summin