tmsr - Search: " T"

474600+ entries in 0.312s

mircea_popescu: cause of trilema ? ookay.

mircea_popescu: what do i have to oh

jurov: more like "mircea popescu t3h ev1l"

asciilifeform: jurov: i'm waiting for the apocalyptic 'omg1111111111!!!111 pgp broken, seppuku now' stampede

davout: bad_duck: you should be able to !up yourself in PM with assbot

mircea_popescu: of course, i was not contemplating nonsense of this sort.

bad_duck: davout: thx

assbot: Logged on 15-05-2015 04:11:23; mircea_popescu: (for they following at home : 4x as many bits does not mean 4x as large numbers. when computer registers went from 32 to 64 bits, maxint went from 2147483647 to 9,223,372,036,854,775,807)

mircea_popescu: everybody could have tyold you gcd'ing is a waste of time and cycles.

assbot: You rated user bad_duck on 25-Mar-2014, with a rating of 1, and supplied these additional notes: encore une victoire pour canard.

mircea_popescu: if anything shows the value of hard work and just sitting down and doing it, in the present environment of financial "futures" and just-in-time everything, this would be it.

mod6: proof in the pudding :]

mircea_popescu: he has a sense of humour like that.

mircea_popescu: Apocalyptic from what i hear alf's contemplating sending them certs signed by their own key.

mircea_popescu: im not tellin' you.

mircea_popescu: (generally - since the gcd finally contains 3, it will be a massacre now for all the shitty keys)

Apocalyptic: <mircea_popescu> just owner(s) announced. // once you have the owners name you can get their keys, and at that point it's trivial to compute the common prime factor

mircea_popescu: nope. 21 this time. why bother with a full length 77 when one could just use 7.

mircea_popescu: davout two pairs of gpg keys are known, in the sense that their pubkey modulus has been factored.

davout: just publish them in chan, as they come, more log readership

Apocalyptic: mircea_popescu, asciilifeform, will the second colliding prime be published ?

asciilifeform: feel free to post somewhere

asciilifeform: the thing that does the gruntwork is in c, uses gmp (as gpg uses)

asciilifeform: Apocalyptic: v1 was. but not this one

Apocalyptic: wait, the worker is a python script ?

mircea_popescu: asciilifeform is this 500 line py script published anywhere ?

mircea_popescu: omfg strong set is rotten to the core.

mircea_popescu: NOT the pair to the previous one.

jurov: lol. and which machine was this? in odessa?

mats: asciilifeform: ya, wasn't sure if the link was the same paper you referred to earlier re: 'ssl folks'

mircea_popescu: oh, well... this was powered by slave labour.

mats: if that makes it to front page, prepare for an onslaught of 'mp is a pornographer and slaver'

asciilifeform: aaaaand then there were 2.

deedbot-: [Trilema] Full disclosure : 4096 RSA key in the strongset factored. - http://trilema.com/2015/full-disclosure-4096-rsa-key-in-the-strongset-factored/

asciilifeform: (which is why the thing takes an ungodly time to revv back up after a cold boot)

asciilifeform: we don't crap out the product often, it dances on the disk and slows things down

mircea_popescu: faster to pair them up.

mircea_popescu: optimized bubble-like process, was discussed in the logs iirc

Apocalyptic: asciilifeform, also I noticed that "Moduli waiting to test" number is updated quite regularly, why the running product displays the same number of digits for a while now, I guess it doesn't update as often ?

asciilifeform: and i shit on them now.

asciilifeform: i shat on them when we started out, because they published neither code nor results !

asciilifeform: mats: the ssl folks ?

mats: asciilifeform: seen this? https://factorable.net/weakkeys12.extended.pdf

Apocalyptic: asciilifeform, that calculation makes sense if Π(∀n) is in fact the product of only the two modulus we're interested in

asciilifeform: Apocalyptic: you are correct, the formula is missing a step. but i will leave it as exercise.

mircea_popescu: the spec is in no way broken by this.

mircea_popescu: mxtm we check implementations to make sure they're conformant to spec.

Apocalyptic: asciilifeform, isn't Π(∀n) the product of all the modulus treated by phuctor ? how do you get $schmuck-Q * $otherschmuck-Q by dividing it by (schmuck-P ^ 2) ?

mircea_popescu: anyway, i do encourage everyone to try this themselves.

mike_c: yeah, i can whip that up

mircea_popescu: you get to use your own btc addy for referrals.

mircea_popescu: say, can i has 728x90 bitbet banners ? and in some manner WITH the link, so i can put them on 8chan ?

mircea_popescu: mike_c just hte man i wanted to see

mircea_popescu: had to.

asciilifeform: no need to walk it.

asciilifeform: we have schmuck-P; if one were to divide Π(∀n) by (schmuck-P ^ 2), result is J*K where J is $schmuck-Q and K is $otherschmuck-Q. thereby K*schmuck-P == otherschmuckmodulus.

asciilifeform: for the record, since folks were asking, much simpler than i thought,

mod6: <+mircea_popescu> yes. once keys are factored we have the privkey. << holy shit o.0

asciilifeform promises to investigate this oddity, and see if there are others like it, as soon as finishes current plate

asciilifeform: but that shouldn't throw off my apparatus.

asciilifeform: the only peculiar thing i can see in this key is the use of odd orcish hieroglyphs in the id string

asciilifeform: no this is a good find, i will add it to the queue of three or four other mysterymeats

mircea_popescu: yeah now he has to do various shit.

jurov: asciilifeform: phuctor rejects this: https://pgp.mit.edu/pks/lookup?op=get&search=0x0E280B593F9A01F9

asciilifeform: williamdunne: 'first ecstacy, then laundry.' (al schwartz)

assbot: Successfully updated the rating for asciilifeform from 4 to 5 with note: 4 First man to factor a 4096 RSA key in the history of computing.

asciilifeform: perhaps the ssl folks did

mircea_popescu: !rate asciilifeform 5 4 First man to factor a 4096 RSA key in the history of computing.

assbot: You rated user asciilifeform on 30-Nov-2013, with a rating of 4, and supplied these additional notes: He came up with the Cardano For Christmas marketing plan. Also phuctor..

gribble: Error: For identification purposes, you must be authenticated to use the rating system.

mircea_popescu: ;;rate asciilifeform 4 First man to factor a 4096 RSA key in the history of computing.

gribble: You rated user asciilifeform on Sat Nov 30 16:31:44 2013, with a rating of 3, and supplied these additional notes: S.NSA engineer..

mircea_popescu: more stuff to be announced here, later.

mircea_popescu: that is quite major. but it's not the half of it.

mircea_popescu: yes. once keys are factored we have the privkey.

mxtm: and you derived the priv keys from this?

mircea_popescu: this is truly fucking major.

asciilifeform: mxtm: some 2 schmucks (of which i've identified 1, but the other will follow in a week or so) had common factor in their rsa private keys.

mircea_popescu: i am in complete disbelief that this actually happened.

asciilifeform: kudos to mircea_popescu for supplying the cpu cycles for this apparatus pro bono

mircea_popescu: im waiting to share it in the interview lolz.

asciilifeform: the most lulzy part (what the common factor was) is not even posted publicly yet.

mircea_popescu: yes im going to

asciilifeform: jurov: there is a second, but it will take a while to unearth it.

adlai: jurov: yes, at least two keys need to have a primer in common. had phuctor run over the keys in reverse order, it would've found the other chump first ☟︎

jurov: with possible upgrade to neo900 in few months (expected price 900euro, tho)

jurov: soo i have inadvertently turned to computational sommelier,too... thinking about replacement to my broken qwerty phone, then it hit me..n900!

jurov: asciilifeform: but there were multiple people with colliding moduli, not only one?

asciilifeform: but my point above was, what are we to do with the answer? it could be coming from just about anyone!

asciilifeform: phuctor does not send automatic emails. to anyone. so, let's see what happens when mircea_popescu writes to mr schmuck

asciilifeform: if keys are identities are people - which, for purposes of wot and dealings among folks who will never meet in the flesh, they most certainly are - that one: has died.

asciilifeform: and we must not neglect the third party - the fine folks who boobytrapped mr schmuck's copy of pgp.

asciilifeform: in the eyes of the gods

asciilifeform: which is to say, i could sign, with his key, 'please rape me in public with a donkey' and it will be as legit as anything he will ever say himself

asciilifeform: mircea_popescu likes to speak of having 'killed' that greek derp, but in a very real sense the schmuck whose key we just broke, is dead

asciilifeform: we haven't really discussed it, but there are interesting implications in breaking a fella's pgp key.

asciilifeform: davout: in not too long, i will learn who the 2nd one is.

asciilifeform: davout: there sure are

davout: if you know that there's another broken one in the set, might as well re-check the set to find it

adlai: (phuctor now knows the factorization of a single key, and it knows which of the two prime factors is shared with the second bugger)