You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Called it. This is beyond stupid. And yet *another* example of clickbait, shitty disclosure, and other nonsense from academic security research. Shame. https://twitter.com/marcan42/status/995938014390992896 …pic.twitter.com/STXrDaKeMO
They then go on to describe obvious, well-known ciphertext malleability attacks that are already solved in GPG with what are basically MACs, and just mishandled by some clients. "OMG GPG IS BROKEN".... yeah, not so much.
Also, Enigmail 2.x is fine. So much FUD, so little substance.https://twitter.com/robertjhansen/status/995970938628952064 …
There are not a lot of difference between academic #infosecurity and click baits.
they both use fear to get money
one steal in gov / private pockets, the other one the investors, and they both heavily rely on an infinite quantity of gullible persons.
Does PGP/GPG MAC protect just the ciphertext? Or is it also aware of the context that the ciphertext is used? Can PGP/GPG Authenticated Encryption protect a block of ciphertext if I copy it unmodified to another email / MIME part?
I read it and was like "uh isn't this just malleability?" but wasn't confident enough to point it out publically.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
