Many people here have pointed out the uselessness of this method, not to add the social pressures it may cause in communities or groups where things have a to happen a certain way if you know what I mean...
To add to that I can see no place where cryptography is used other than possibly trying to determine the probability that on any particular ballot card Party A was on the right or the left, thats just simple probability theory nothing else.
I think is to have a poll as to measure people's opinions about the guy's innocence. With options such as 1. He is innocent 2. He is guilty 3. Cowboyneal did it etc..
Its actually know as either 6th or 7th generation programming tools, I keep on forgetting. Its basically VB cross lego style software engineering. Imagine having to debug that heap of crap!
Re:In line conditionals, FINALLY
on
Python 2.5 Released
·
· Score: 1, Insightful
I believe this new inline conditional is just plain ugly!
When developing computer language syntax, natural language imitation should not be the priority - also being different for the sake of being different is so very early 90s.
its called human computation similar to captach's etc, the esp game or idea behind getting people to annotate images with words was i think developed by luis von ahn
I believe the best solution is to have authors of papers that have amounted to something important and were rejected by the peer review processes (not only be siggraph but also other important conferences), to register somewhere, and basically have the person or persons which peer-reviewed the paper and then rejected it noted, and to also carry out an examination of their past rejections and acceptances and attempt to establish a form of behavior with regards to them.
If said behavior is deemed unacceptable then that person or persons will very simply not be asked to peer-review papers anymore. Add to that a question mark will be placed on any future academic contributions they make.
I would like to see people with the above hanging over their heads try not to take the time and effort to understand what they are reviewing.
The MD should be calculated on the compressed form of the file and its uncompressed (original) size.
The question is can you tunnel a match for the MD that is also a valid compressed stream of some compression algorithm X. FIPS 140 doesn't say to compress but it does say to use a format in the message that is totally reliant on every bit in the message to be decoded properly and that does not ignore bits it does not understand. I believe an amendment to this should be for every erroneous bit it receives it should add exponentially more errors to the final rendering of the document. Its a very simple requirement, not very difficult at all, easy to implement.
The best example I've seen so far for the attack described in the article is one where someone using the postscript format created two documents that had the same md5 value. They did this by placing the garbage between the final piece of the header and the header ending tag.
Though, even this is not valid attack vector, because a precautious user would rightfully assume the guy at the other end (sender) run some program Z that will remove all garbage from the document, so as a result they could run program Z too on the document, from that a couple of things should happen, initially the file should not change if the document has not been tampered (aka is the original document), and secondly and most importantly the MDs should be the same.
I mean 300gig is nothing compared to the ~1-3TB that is meant to come from holographic disks. why can't we get the A grade stuff on day one? why do we have to continually pay for upgrades to things that should have been made available to us on day one?
I don't think its got much to do with eccentricity, but more to do with the things they are seen dong in those photos, such as being pissed off their heads, mixing with groups that may be seen as undesirable but said recuiter or employer etc.
Places such as myspace etc can convey a very candid view of the person's personality and personal interests, things they say wouldn't list on their resume or might like to be confronted with in a professional environment.
Also as mentioned by others, such personalities tend to be the cause of problems and personality clashes within the work environment (regardless of the field/profession).
In my opinion an employer has the right to use any kind of investigative techniques they see fit to convince themselves one way or another if they should be hiring a particular applicant.
Collusion, In cryptography when more than one end of a "secure" protocol begins to act in a way with another end(s) of the protocol which is disadvantageous to the overall security of the protocol, this is known as collusion.
Conspiracy is what UFO nuts and the alike prefer to use when talking about supposed government behavior which is meant to distort their reality. ie: taxes and elections.
yeah you did, the signing would also include the part " -- Boss" within the signature, ergo the injection you proposed would not be valid and hence would be rejected by the signature verification process.
try and add something before or after the actual e-mail message and see how much sense it would make to someone reading it...
Slashdot Mirror
At the CSIRO we call it a "thunderbox" you insensitive clod!
Many people here have pointed out the uselessness of this method, not to add the
social pressures it may cause in communities or groups where things have a
to happen a certain way if you know what I mean...
To add to that I can see no place where cryptography is used other than possibly
trying to determine the probability that on any particular ballot card Party A
was on the right or the left, thats just simple probability theory nothing else.
I'm guessing you've never heard of Ken Bruce.
Ken Bruce has gooooooooooooone completely mad!
I think is to have a poll as to measure people's opinions
about the guy's innocence. With options such as
1. He is innocent
2. He is guilty
3. Cowboyneal did it etc..
Its actually know as either 6th or 7th generation programming tools,
I keep on forgetting. Its basically VB cross lego style software
engineering. Imagine having to debug that heap of crap!
I love it, I use it whenever I can and whenever it makes sense.
OpenBSD 4.0 is the beginning of the end... :)
I believe this new inline conditional is just plain ugly!
When developing computer language syntax, natural language
imitation should not be the priority - also being different
for the sake of being different is so very early 90s.
So is it the moores or the moopes?
its called human computation similar to captach's etc,
the esp game or idea behind getting people to annotate
images with words was i think developed by luis von ahn
Arash Partow
I believe the best solution is to have authors of papers that have
amounted to something important and were rejected by the peer review
processes (not only be siggraph but also other important conferences),
to register somewhere, and basically have the person or persons which
peer-reviewed the paper and then rejected it noted, and to also carry
out an examination of their past rejections and acceptances and attempt
to establish a form of behavior with regards to them.
If said behavior is deemed unacceptable then that person or persons
will very simply not be asked to peer-review papers anymore. Add to that
a question mark will be placed on any future academic contributions they
make.
I would like to see people with the above hanging over their heads try
not to take the time and effort to understand what they are reviewing.
Arash
The MD should be calculated on the compressed form of the file and its
uncompressed (original) size.
The question is can you tunnel a match for the MD that is also a valid
compressed stream of some compression algorithm X. FIPS 140 doesn't
say to compress but it does say to use a format in the message that
is totally reliant on every bit in the message to be decoded properly
and that does not ignore bits it does not understand. I believe an
amendment to this should be for every erroneous bit it receives it
should add exponentially more errors to the final rendering of the
document. Its a very simple requirement, not very difficult at all,
easy to implement.
The best example I've seen so far for the attack described in the
article is one where someone using the postscript format created two
documents that had the same md5 value. They did this by placing the
garbage between the final piece of the header and the header ending
tag.
Though, even this is not valid attack vector, because a precautious
user would rightfully assume the guy at the other end (sender) run
some program Z that will remove all garbage from the document, so as
a result they could run program Z too on the document, from that a
couple of things should happen, initially the file should not change
if the document has not been tampered (aka is the original document),
and secondly and most importantly the MDs should be the same.
When messages are signed they are already compressed and the
file size is used as part of the final message digest.
If your application doesn't do this then you should use another
applications.
Using the above mentioned processes none of these attacks are
viable, both in the short and long terms. (supposedly)
When receiving the following message:
Jon D0e owe$ Jane Do3 $1000`000 d011ar5.
or
Jon Doe owes Jane Doe $1000000 do11ars.
$4#^$%^&*5#$^()^%ER$%^RT#$3
Would you not ask the sender to resend
their original message?
Arash Partow
I mean 300gig is nothing compared to the ~1-3TB that is meant to come from holographic disks.
why can't we get the A grade stuff on day one? why do we have to continually pay for upgrades
to things that should have been made available to us on day one?
Arash Partow
I don't think its got much to do with eccentricity, but more to do with the things they are seen dong in those photos,
such as being pissed off their heads, mixing with groups that may be seen as undesirable but said recuiter or employer
etc.
Places such as myspace etc can convey a very candid view of the person's personality and personal interests, things
they say wouldn't list on their resume or might like to be confronted with in a professional environment.
Also as mentioned by others, such personalities tend to be the cause of problems and personality clashes within the work
environment (regardless of the field/profession).
In my opinion an employer has the right to use any kind of investigative techniques they see fit to convince themselves
one way or another if they should be hiring a particular applicant.
not only scratches, but even holes, rs codes can correct holes on cds with diameters upto ~5mm!
that is all i can say.
thats my sig, go find your own he he he he :)
Have you heard of the term catering to the lowest common denominator?
Collusion, In cryptography when more than one end of a
"secure" protocol begins to act in a way with another
end(s) of the protocol which is disadvantageous to the
overall security of the protocol, this is known as
collusion.
Conspiracy is what UFO nuts and the alike prefer to use
when talking about supposed government behavior which
is meant to distort their reality. ie: taxes and elections.
Arash
You obviously don't have an iPOD!
Get Alf from home and away onto this matter, I'm sure he'll
:)
be flame'in angry and the bloody mongrels that did this!
he he he he
why use the term array anymore? I'm guessing it will just be a
petabye hdd, an all in one enclosed unit.
what might be called an array in the future might be a zettabyte
array or something similar in size.
Arash
yeah you did, the signing would also include the part " -- Boss" within the signature,
ergo the injection you proposed would not be valid and hence would be rejected
by the signature verification process.
try and add something before or after the actual e-mail message and see how much sense
it would make to someone reading it...
Arash
that was the later found slumped dead over his keyboard at his Redmond apartment....
what a tragedy indeed!