Mod parent up!
If someone was trying a man-in-the-middle attack with your online bank, you would want to be loud about it, now wouldn't you. Man-in-the-middle is just too easy, considering for example that we had a serious DNS flaw published not so long ago, and that not every DNS server has been patched. In that case you'd want to freak out any users that come across with invalid certificates. Otherwise the SSL is just void for security, and we could pretty much use plain HTTP anyway.
Plus how easy would it be to guess this key with this defect? I haven't seen much on that. So what if it takes an average of 10 years instead of 1000 years on a high speed 1000BT network for a 50/50 chance of getting the key... So how easy is it to crack the key for real?
The Debian utility that detects vulnerable keys has fingerprints of 1024 and 2048 bit SSH keys, DSA and RSA... 65536 each I presume. We had 5 of our SSH keys on that list. So instead of generating 2^100 distinct keys, the code did 65536.
And because they know the fingerprints of the public keys, they must have had access to the private keys. Even to those our backup system used for passwordless authentication on our remote system.
So all you really need to do is to create those 65536 private keys, guess a username with a key in authorized_kkeys and then brute force a connection to a Debian box. Furthermore, you can find more hosts that might use the same key... by just looking at the hacked accounts known hosts!
It would be extremely easy.
Heh. In Finland we just write a 1 to 3 digit number inside a circle with a pencil. If you are stupid enough to not write a valid number, your vote does not qualify.
In Finland we can watch SVT on cable for free, and many of us did watch Enterprise on it... The Finnish Channel 4 stopped broadcasting Voyager after its second or third season years ago and since that we haven't seen any new episodes of Trek on Finnish tv. Luckily, we have STTNG now...
Seen that. The integrated APU in the chipset of the board is claimed to be supported by Linux... but you have to use i8x0 drivers for it if you want to use ALSA... and then you'll get that horrible high pitch noise that's also synchronized with bus activity... and the noise is audible even without speakers or headphones.
And the nForce APIC&ACPI incompatibility issue then, without the bus disconnect my processor has 10C higher core temperature. Now, there's some kind of workaround for that in the recent 2.6 kernels... but unfortunately under heavy load my kernel is missing timer interrupts or something and the clock ends up drifting 5 minutes every hour...
Re:he is actually Swedish...
on
Linus Interviewed
·
· Score: 2, Informative
Well, Finland was part of Sweden until 1809... so Swedish was the official language back then. The upper class and most people along the west coast were Swedish speaking. And that's why nowadays, many of the towns along the west coast are bilingual.
Ethnical differences do not exist, it's just that if there's no pressure to do otherwise, you'll probably teach your mother tongue to your children as well.
And while 6% of the population speak swedish as their first language, it's being taught in schools as compulsory subject to the remaining 94% (of course those 6% have Finnish as a compulsory subject as well, but many of them speak good Finnish even before school), and the country is officially bilingual there's no reason to do otherwise.
Actually 94% of Finns wouldn't... remember that his mother tongue is actually Swedish and he pronounces the names like that... A Finn with Finnish as mother tongue would never pronounce the lone 'i' as as long as he does. Linus also pronounces the 'u' in somewhat front compared to Finnish-as-their-first-language-speaking.
Well... lynx has supported navigating around using
keyboard since its beginning. Changelog
confirms that "tab" key could be used to move the focus from one item to another at least as early as in 1994...
Well, usually the cryptographic hash functions hash their input in small blocks, so it really doesn't matter... just change the last, let's say, 128 bytes and hash them again...
... And the last thing you would want to give to a person that suffers from insomnia is an assault rifle... after five weeks of service we were crawling in a forest, rifle loaded with right bullets, shooting automated targets...
Finnish has cases, you obviously aren't familiar with Finnish.
Well, Finnish has ~15 different cases that correspond to some prepositions in English. For othe r constructs mainly postpositions are used, though some words like "ennen" (before) are usually before the noun and thus they can be called prepositions.
The replacement crew launched from Baikonur on June 6. They succeeded in docking to the station the following day. The men inhabited the station for 24 days, undocked on June 29 and headed for home.Here.
Yes, Skylab! It was the first manned space station, and it was american!
Yep... the first space station that was meant to be manned was Salyut I... and it was Soviet. Due to technical problems in the docking the cosmonauts were unable to enter it... Skylab was the first space station that really had men inside. Two years
after Salyut I.
http://www.ans.neep.wisc.edu/~ans/point_source/AEI/apr95/batteries.html
"[Radioisotope thermal generators, (RTGs)] are simply amazing. They work on a simple principle. With semi conductor type materials, a current can be established by heating one side while cooling the other. The effect is known as the thermoelectric effect."
So they knew this 150 years ago?
Slashdot Mirror
Mod parent up! If someone was trying a man-in-the-middle attack with your online bank, you would want to be loud about it, now wouldn't you. Man-in-the-middle is just too easy, considering for example that we had a serious DNS flaw published not so long ago, and that not every DNS server has been patched. In that case you'd want to freak out any users that come across with invalid certificates. Otherwise the SSL is just void for security, and we could pretty much use plain HTTP anyway.
Plus how easy would it be to guess this key with this defect? I haven't seen much on that. So what if it takes an average of 10 years instead of 1000 years on a high speed 1000BT network for a 50/50 chance of getting the key... So how easy is it to crack the key for real?
The Debian utility that detects vulnerable keys has fingerprints of 1024 and 2048 bit SSH keys, DSA and RSA... 65536 each I presume. We had 5 of our SSH keys on that list. So instead of generating 2^100 distinct keys, the code did 65536. And because they know the fingerprints of the public keys, they must have had access to the private keys. Even to those our backup system used for passwordless authentication on our remote system. So all you really need to do is to create those 65536 private keys, guess a username with a key in authorized_kkeys and then brute force a connection to a Debian box. Furthermore, you can find more hosts that might use the same key... by just looking at the hacked accounts known hosts! It would be extremely easy."The alt attribute must be specified for the IMG and AREA elements. It is optional for the INPUT and APPLET elements." http://www.w3.org/TR/html401/struct/objects.html#h-13.8
Heh. In Finland we just write a 1 to 3 digit number inside a circle with a pencil. If you are stupid enough to not write a valid number, your vote does not qualify.
OpenGL is way easier. DirectX API is brain damaged.
In Finland we can watch SVT on cable for free, and many of us did watch Enterprise on it... The Finnish Channel 4 stopped broadcasting Voyager after its second or third season years ago and since that we haven't seen any new episodes of Trek on Finnish tv. Luckily, we have STTNG now...
Seen that. The integrated APU in the chipset of the board is claimed to be supported by Linux... but you have to use i8x0 drivers for it if you want to use ALSA... and then you'll get that horrible high pitch noise that's also synchronized with bus activity... and the noise is audible even without speakers or headphones.
And the nForce APIC&ACPI incompatibility issue then, without the bus disconnect my processor has 10C higher core temperature. Now, there's some kind of workaround for that in the recent 2.6 kernels... but unfortunately under heavy load my kernel is missing timer interrupts or something and the clock ends up drifting 5 minutes every hour...
http://en.wikipedia.org/wiki/Finland-Swedish
Well, Finland was part of Sweden until 1809... so Swedish was the official language back then. The upper class and most people along the west coast were Swedish speaking. And that's why nowadays, many of the towns along the west coast are bilingual. Ethnical differences do not exist, it's just that if there's no pressure to do otherwise, you'll probably teach your mother tongue to your children as well. And while 6% of the population speak swedish as their first language, it's being taught in schools as compulsory subject to the remaining 94% (of course those 6% have Finnish as a compulsory subject as well, but many of them speak good Finnish even before school), and the country is officially bilingual there's no reason to do otherwise.
Actually 94% of Finns wouldn't... remember that his mother tongue is actually Swedish and he pronounces the names like that... A Finn with Finnish as mother tongue would never pronounce the lone 'i' as as long as he does. Linus also pronounces the 'u' in somewhat front compared to Finnish-as-their-first-language-speaking.
Well, that's just what Composite extension was meant for...
Well... lynx has supported navigating around using keyboard since its beginning. Changelog confirms that "tab" key could be used to move the focus from one item to another at least as early as in 1994...
Perhaps not, but it could still work...
Well, usually the cryptographic hash functions hash their input in small blocks, so it really doesn't matter... just change the last, let's say, 128 bytes and hash them again...
... And the last thing you would want to give to a person that suffers from insomnia is an assault rifle... after five weeks of service we were crawling in a forest, rifle loaded with right bullets, shooting automated targets...
The VGA memory starts at 640k (A000:0000)...
Well, not all of us have temp on root partition. Of course, certain OSes tend to force that...
Finnish has cases, you obviously aren't familiar with Finnish.
Well, Finnish has ~15 different cases that correspond to some prepositions in English. For othe r constructs mainly postpositions are used, though some words like "ennen" (before) are usually before the noun and thus they can be called prepositions.
I feel really stupid now:
The replacement crew launched from Baikonur on June 6. They succeeded in docking to the station the following day. The men inhabited the station for 24 days, undocked on June 29 and headed for home. Here.
Yes, Skylab! It was the first manned space station, and it was american!
:)
Yep... the first space station that was meant to be manned was Salyut I... and it was Soviet. Due to technical problems in the docking the cosmonauts were unable to enter it... Skylab was the first space station that really had men inside. Two years after Salyut I.
Space trivia for kids.
http://www.ans.neep.wisc.edu/~ans/point_source/AEI /apr95/batteries.html
"[Radioisotope thermal generators, (RTGs)] are simply amazing. They work on a simple principle. With semi conductor type materials, a current can be established by heating one side while cooling the other. The effect is known as the thermoelectric effect."
So they knew this 150 years ago?