On Thu, 25 Oct 2012, Mikko Rantalainen wrote:
Ian Hickson, 2012-10-24 19:28 (Europe/Helsinki):
Anyway, if you have memory corruption there's nothing to say the
corruption won't occur _after_ you've done the checksum verification.
In particular, there's nothing to say it'll happen between
Ian Hickson, 2012-10-24 19:28 (Europe/Helsinki):
Anyway, if you have memory corruption there's nothing to say the
corruption won't occur _after_ you've done the checksum verification. In
particular, there's nothing to say it'll happen between receiving and
decoding the packets over TLS and
On 2012-10-19 14:01, Nils Dagsson Moskopp wrote:
A. Rauschenbach rauschenb...@annuo.de schrieb am Fri, 19 Oct 2012
13:50:04 +0200:
I'm sick of coping the checksum of important files by hand or QR-code
to the download manager or console.
To solve the problem I suggest a checksum attribute in
Anne van Kesteren, 2012-10-19 14:57 (Europe/Helsinki):
On Fri, Oct 19, 2012 at 1:50 PM, A. Rauschenbach rauschenb...@annuo.de
wrote:
I'm sick of coping the checksum of important files by hand or QR-code to the
download manager or console.
To solve the problem I suggest a checksum attribute
On 2012/10/24 15:11, Mikko Rantalainen wrote:
Checksum can help even with encrypted connections.
I agree. I have checksum and GPG signature verification failures often
enough on files I have downloaded via https that I always check them.
Automation would be welcome.
Regards
-Mark
--
On Wed, 24 Oct 2012, Mikko Rantalainen wrote:
Checksum can help even with encrypted connections.
Example scenario:
User connects to https://download.manufacturer.com/ and clicks link
a href=phone-firmware-15.img
On Fri, Oct 19, 2012 at 1:50 PM, A. Rauschenbach rauschenb...@annuo.de wrote:
I'm sick of coping the checksum of important files by hand or QR-code to the
download manager or console.
To solve the problem I suggest a checksum attribute in the a href tag.
example: a
A. Rauschenbach rauschenb...@annuo.de schrieb am Fri, 19 Oct 2012
13:50:04 +0200:
I'm sick of coping the checksum of important files by hand or QR-code
to the download manager or console.
To solve the problem I suggest a checksum attribute in the a href
tag.
It seems that problem is
Am 2012-10-19 14:01, schrieb Nils Dagsson Moskopp:
It seems that problem is solved at the HTTP level with RFC 1864:
http://tools.ietf.org/html/rfc1864
If I get it right this works fine if you serve it from your server, but
not if you link to foreign server.
Another advantage is that your
If you serve important files over HTTP without TLS I don't think a
checksum is going to help anyone much.
With important I meant the file as to work right here and right now not
any security issues.
On Fri, 19 Oct 2012, A. Rauschenbach wrote:
I'm sick of coping the checksum of important files by hand or QR-code to
the download manager or console.
To solve the problem I suggest a checksum attribute in the a href tag.
example: a href=http://example.com/important.file;
Am 2012-10-19 18:49, schrieb Ian Hickson:
What is the attack scenario you are trying to avoid?
Without a discussion of what problem you're trying to solve, it's
unclear
how to evaluate the proposal.
The idea of a hash= or checksum= attribute on a href has come
up
before -- about once a
On Fri, Oct 19, 2012 at 11:46 AM, A. Rauschenbach rauschenb...@annuo.de wrote:
Am 2012-10-19 18:49, schrieb Ian Hickson:
What is the attack scenario you are trying to avoid?
Without a discussion of what problem you're trying to solve, it's unclear
how to evaluate the proposal.
The idea of a
On Fri, 19 Oct 2012, A. Rauschenbach wrote:
If I write an article and link to other documents I want a solution that
the visitor can be sure that the document he opens is the document I
originally linked to. (And if its not he gets informed. So he knows that
the information maybe differ
A. Rauschenbach rauschenb...@annuo.de schrieb am Fri, 19 Oct 2012
20:46:24 +0200:
[…]
If I write an article and link to other documents I want a solution
that the visitor can be sure that the document he opens is the
document I originally linked to.
Mirror the information.
--
Nils
15 matches
Mail list logo