asciilifeform: even got a sun photodiode mouse (but misplaced the reflector!)
asciilifeform: l0l i still have one of those somewhere.
asciilifeform: phf: lulzy gadget: draws so much current that the battery has to be changed daily. it pulls out, like pistol clip, and changes places with identical, included stick, that charges in the radio receiver
asciilifeform got a spiffy gift from a phriend, a mouse where various pieces of the chassis can move around to fit the hand, various iron knobs. endlessly tunable thing. had no idea this existed.
asciilifeform: mircea_popescu: can do a one-to-many permutation.
asciilifeform: (and especially not close in the phase space of cryptographic malleability, for the kind of crypto in use)
asciilifeform: mircea_popescu: 'padding' is a misnomer for a variety of possible processes, all of which have the objective of making sure that a message is never close in phase-space to another plausible message
asciilifeform: phf: this only leads to laughs unless you can somehow be there for the rest of the two would-be pen pals' lives
asciilifeform: the other thing is, to the extent that the integrity of the wot as we now have it is predicated on sha1 not costing a penny to break, some of the sweat that went in to forming the wot may end up having to be re-sweated
asciilifeform: no mega-shocking result - pgp is not a magical fountain of phree-energy-style 'trust from the aether', but rather an amplifier of trust established - to some extent - in the meat.
asciilifeform: this of course demonstrates the point mircea_popescu made earlier, whereby no one who he was not properly introduced to, could ever hope to escape this.
asciilifeform: other thing is, the problem goes a little deeper. one might craft, for instance, a filter which eats mircea_popescu's www and substitutes hitlerine signatures for all of the signatures contained therein.
asciilifeform: my original observation, though, stands - the time to stop thinking of pgp 64bit fp as 'the man' is not when arbitrarily colliding sha1 costs a penny! it is now.☟︎
asciilifeform has intended to produce one for a long while, but it is not a priority presently
asciilifeform: they are candidates for the treatment described earlier.
asciilifeform: instead it'd be a funkspiel between hitler and mr schmuck, the latter having believed that he is speaking to mircea_popescu
asciilifeform: mircea_popescu: except the ideal scenario for firing this weapon is precisely a case where the resulting message never reaches mircea_popescu
asciilifeform: solely because rfc2440/4880 is retarded
asciilifeform: (it is conceivable that one might produce a key which will verify mircea_popescu's signed body of works, but which, if encrypted to, resulting ciphertext could be read both by mircea_popescu AND by hitler.)
asciilifeform: and this still is predicated on an assumption, to date unproven, that rsa sig operation is not malleable.
asciilifeform: really, it is 'key plus body of signed material' is a man.
asciilifeform: the point i wanted to make is that the original attitude of 'keys are people' was predicated on ideally 'stiff' keys
asciilifeform: and anyone else who'd make a satisfying splat.
asciilifeform: pattern: folks who 1) are somehow interesting (german number theorists, etc) 2) have a very threadbare, if at all present, volume of published signed material 3) communicate their key to other people largely in the form of a fingerprint
