Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @schakalsynthetc
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @schakalsynthetc
-
Prikvačeni tweet
"Anaxagoras said to a man who lay dying in a foreign land, 'The descent to hell is the same from every place.'"pic.twitter.com/RNQMFg6frM
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
& I'd care more about this news if the lesson generally learned from it were sth useful like "never blindly accept a hash of an input of unspecified and possibly arbitrary length as a cryptographic proof" alas it seems to be mostly "AAA DON'T USE [thing] IT ANGERS THE GODS"
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
anyway I'm just not seeing a problem here that having a general rule "don't let any function take arbitrarily long inputs until you *know* it *has* to work on arbitrarily long inputs" wouldn't've simply obviated, but ppl don't trust formal proof half as much as they think they do
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
and then who cares if yr chosen one-way hash algorithm turns out to have a weakness that could lead to attacks against (only) tokens you already define as garbage in your protocol -- you know it'd never issue one except by mistake, so you already know never to accept one
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
and since you probably aren't ICANN, it's surely safe to assume the number of unique keys you'd have to issue before exhausting the address space becomes a realistic worry is much less than 2^32 - so you can pick upper bounds small enough to make a comprehensive analysis feasible
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
the set of all collisions that matter to your specific method is surely smaller than the set of all possible collisions - the trick is to make sure you can find and enumerate them all before anyone else does, which is easy when yr the only one that knows what yr using as inputs
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
don't have a fully worked out example yet but in principle this should cut the other way too - if you control the space of referents the algorithm will be used to test, you have some control over just how vulnerable your method is to the formal weaknesses of the cryptography used
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
suspend disbelief actual CA would be that dumb, the point is if you show that CA paperwork saying you've just opened a business called "Honest Bob's Payday Lending" and have them issue you a certificate, that's effectively a hash-collision attack on the real Honest Bob's.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
vulnerability to hash-collision attacks isn't fully analyzed until the referents are factored in and analyzed too. imagine a CA issuing cryptographic hashes of the name of the organization the cert is issued to -- just the name, no further qualification -- as auth keys
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
problem: "equal hash means equal referent, except when it doesn't" this is the kind of job category theory is the right tool for. equality is well-defined and truth-functional only in some specifiable argument domain, not universally. so attacks exploit a kind of type error
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
"SHA-1 collision attacks are", ctrl-w, "exploiting rampant failure to apply some math and a bit of practical wisdom before unleashing a thing on the world is", FTFY, "now actually practical and a looming danger" woof woof but the paper is interesting: https://eprint.iacr.org/2019/459.pdf
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
once went to a B-52s live show, randomly met the band in a hallway, approached asked for directions to the restrooms, got them, said "thanks" and ran off, not even realizing it was them until much later when you gotta go, you gotta gohttps://twitter.com/mybuIIetsurIove/status/1183385091420147712 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PSA: if you do happen to have moderate-to-severe trypophobia, don't google "trypophobia" -- seriously just don't -- bc the first thing you'll see is a whole raft of huge detailed high-resolution images of trypophobic shapes -- an only mildly phobic person (luckily) who just did
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
helping to spread the word about the importance of correct use of the word "optimism" (yes, the correct use is what we the thread have declared to be the correct use. it's correct because we say so and we are right. ...and?)https://twitter.com/erin_nerung/status/1187320039340498944 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
hm, probably not even a reflection of relative expectation, more a reflection of culturally relative faith in language as sympathetic magic - don't talk about bad things because over here we all instinctively feel that talk of bad things has a power to invite them to happenhttps://twitter.com/schakalsynthetc/status/1187320841438191616 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
also, if someone isn't publically wailing about bad things, always check it isn't bc they're too busy trying to counter them by building good things before assuming it's bc they don't know or care about the bad also, persistent failure to do this is probably *not* innocenthttps://twitter.com/erin_nerung/status/1186970239365451776 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
crepuscular dispatch proslijedio/la je Tweet
stop freaking out about what's falling apart and build something
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
e.g. "you claim to be a champion of the oppressed but your actions only hurt those you purport to help!" yeah. they know. they don't care. they don't have to. and they know *you* know, too, but they don't care *you* know their game, either, and also because they don't have to.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
weirdly the backlash to this seems to be suffering from the same impotence as the left backlash to the 90s-00s right-wing ascendancy -- simply pointing to a hypocrite and shouting "U R A HYPOCRITE" is a move you *can* become immune to by simply *not giving a shit*.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
secularized religion whose commandments are "thou shalt not discriminate" and "thou shalt not be unsustainable" is something else altogether. *obviously* it isn't here to stop us from cooking the planet with runaway carbon emission or being awful to each other because identity
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
but then so is anti-discrimination -- in the "thin", strictly liberal sense -- if you wouldn't want to be on the sharp end of other people's bigotries then don't be a bigot, that's all.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.