On Wed, Feb 16, 2005 at 03:29:21PM +, Ian G wrote:
Peter Gutmann wrote:
Barry Shein [EMAIL PROTECTED] writes:
Eventually email will just collapse (as it's doing) and the RBOCs et al will
inherit it and we'll all be paying 15c per message like their SMS services.
And the spammers will
On Wed, Feb 16, 2005 at 07:55:15AM -0500, R.A. Hettinga wrote:
From: Serguei Osokine [EMAIL PROTECTED]
To: Peer-to-peer development. [EMAIL PROTECTED]
Subject: RE: [p2p-hackers] SHA1 broken?
Date: Wed, 16 Feb 2005 00:11:07 -0800
Okay, so the effective SHA-1 length is 138 bits instead of
On Thu, Feb 03, 2005 at 11:51:57AM -0500, Trei, Peter wrote:
It could easily be leveraged to make motherboards
which will only run 'authorized' OSs, and OSs
which will run only 'authorized' software.
[..]
If you 'take ownership' as you put it, the internal
keys and certs change, and all
On Wed, Dec 22, 2004 at 09:48:01PM -0500, Tyler Durden wrote:
Oh no, it gets really interesting. He claims to be an ex-German TLA-type
(how many Ls do German TLAs normally have?), and had advanced knowledge of
9/11. That's not super-implausible.
[..]
Me? I suspect he just pulled all this
On Thu, Nov 11, 2004 at 10:16:11AM +0100, privacy.at Anonymous Remailer wrote:
I've noticed a very high increase of incoming virii and malicious code of
various sorts to one of my nyms. Since the nym is not used anywhere
publically I really wonder if these are deliberate attacks to try to
On Sat, Oct 30, 2004 at 02:29:51PM -0400, Tyler Durden wrote:
GodDAMN George W is a dumb fuck.
If the guy's IQ had broken the 3-digit barrier he might have figured out
that by nearly directly replying to the new bin Laden video he's basically
elevating bin Laden to a hostile head-of-state.
On Tue, Aug 31, 2004 at 11:30:35AM -0400, Sunder wrote:
Oops! Is that a cat exiting the bag?
http://www.blackboxvoting.org/?q=node/view/78
Apparently so. Going to www.blackboxvoting.org now just gives:
This Account Has Been Suspended
Please contact the billing/support department as soon
http://sports.yahoo.com/oly/news?slug=ap-securitytechprov=aptype=lgns
Unprecedented electronic net over the Olympics
By MIRON VAROUHAKIS, Associated Press Writer
August 9, 2004
ATHENS, Greece (AP) -- If you're going to the Olympics, you'd better be
careful what you say and do in public.
On Sun, Aug 01, 2004 at 10:20:38AM -0500, J.A. Terranson wrote:
On Sat, 31 Jul 2004, Major Variola (ret) wrote:
Tyler D asked about how the NSA could be so far ahead.
Besides their ability to make 2 sq. chips at 10% yield (not
something a commercial entity could get away with)
What,
Does anyone know of a manufacturer of FIPS 140 certified or
certifiable 1u/2u rack mount chassis?
For a seperate project, does anyone know of a small linux-ready/able
box with ethernet?
Gumstix looks cool but I need hardwire networking.
Last, I'm looking for a Linux expert security engineer
Does anyone know of a recent brute-force work
factor calculation for the various common symmetric ciphers?
I.e. it'll take X 3.2gh Xeons Y years to brute cipher Z.
I know there's a table of these in Schneier and there's the Seven
Cryptographers paper but they're both pretty old at this point.
On Fri, Feb 13, 2004 at 03:25:11PM -0800, Major Variola (ret) wrote:
I wonder if frags of OSS code can be found in proprietary binaries.
Of course.
Here's an example of MS using BSD code:
http://www.kuro5hin.org/?op=displaystory;sid=2001/6/19/05641/7357
and another:
On Fri, Feb 13, 2004 at 11:45:34AM -0800, Major Variola (ret) wrote:
(in reply to someone else)
Lots has been said about OSS developers not wanting to look at this
for fear that they will be tainted. While it is true that simply
the act of looking at the code is unauthorized and illegal,
On Mon, Dec 29, 2003 at 11:42:56AM -0600, Harmon Seaver wrote:
Hmm, maybe Eric needs to undo his spam filter so people can unsub from
lne.com. I just tried to, but it was rejected as undeliverable spam. Tried
I'm experimenting with a new sendmail milter.
(the SMTP HELO arg needs to be
On Mon, Dec 29, 2003 at 07:58:03PM +0100, Thomas Shaddack wrote:
Another alternative could be a couple lines of PHP or perl, unsubscribing
via a web form.
On related note, what's a good node to migrate to?
pro-ns.net is running a CDR similar to lne.
A number of other people have gotten my
The lne.com CDR node will stop accepting new
subscriptions on Jan 1 2004, and will stop forwarding
cypherpunks mail on Jan 15. There are other nodes
currently and hopefully more will announce themselves.
I've learned a lot on the cpunks list over the last
10 years and I'd like to thank some of
On Tue, Dec 09, 2003 at 03:05:29PM -0800, Tim May wrote:
Since Eric Murray has expressed distaste with my views
I pretty much agree with your views, minus the racism and misogny.
On days that the brilliant thoughtful Tim posts, I'm in awe.
When Tim the asshole posts, I'm disgusted
On Mon, Dec 08, 2003 at 12:21:21AM -0800, Sarad AV wrote:
I prefer not getting flamed like every one else and that
too in quick succesion :-). so my guess is that as far
as newbies are concerned all the discussions are taken
private.
This is why the cpunks list has very little new
On Mon, Dec 08, 2003 at 08:31:07AM -0800, Major Variola (ret) wrote:
The advantage of eg Yahoo groups (and presumably blogs)
is their moderation; the lack thereof enabled spammers to
bulldoze the commons of usenet. Inevitable.
I've been hearing about blog-spamming lately, and I've
seen
Sorry about the mail storm. Someone at monash.edu.au has
apparently set up a mail loop that was resubmitting cpunks mails.
Eric
- Forwarded message from Declan McCullagh [EMAIL PROTECTED] -
Date: Wed, 05 Nov 2003 17:01:52 -0500
To: [EMAIL PROTECTED]
From: Declan McCullagh [EMAIL PROTECTED]
Subject: [Politech] FBI visits John Young, asks about anti-government activity [fs]
John Young is a longtime supporter of
On Thu, Oct 23, 2003 at 11:59:47AM -0700, Major Variola (ret) wrote:
And virii that infect the immune system can be fun too --imagine a virus
infecting your antiviral program. HIV for Windows.
Or a virus that modifes your other programs to make them appear to
be known virii. You'd have to
ISC is releasing a new BIND to deal with the Verisign land-grab:
http://www.bayarea.com/mld/mercurynews/business/6791550.htm
On Fri, Sep 12, 2003 at 02:08:00PM -0400, Damian Gerow wrote:
Configure your demime to *not* strip attachments of
application/pgp-signature.
If someone knows how, please tell me.
Eric
On Thu, Sep 04, 2003 at 09:02:30PM -0400, Steve Furlong wrote:
On Tuesday 02 September 2003 19:00, Thomas Shaddack wrote:
Spammers recently adopted tactics of using randomly generated words,
eg. wryqf, in both the subject and the body of the message.
...
Could the pseudowords be easily
On Thu, Sep 04, 2003 at 10:48:55PM -0700, James A. Donald wrote:
On 4 Sep 2003 at 7:56, Eric Murray wrote:
..which means that it [ssh-- ericm] still requires an OOB authentication.
(or blinding typing 'yes' and ignoring the consequences). But
that's another subject.
Not true. Think
On Wed, Sep 03, 2003 at 08:27:18AM -0700, James A. Donald wrote:
--
SSH server public/private keys are widely deployed. PKI public
keys are not. Reason is that each SSH server just whips up its
own keys without asking anyone's permission, or getting any
certificates.
.which means
Hi. The last couple days I've gotten a lot of mail bounces from cpunks
subscribers who are blocking lne.com because it's on the osirusoft spam
blacklist. There is no way to get off this list; in fact the site
appears to be down. Lne.com doesn't send spam; I don't know why we are on
this list.
Food for thought and grounds for further research:
- Forwarded message from Bernie, CTA [EMAIL PROTECTED] -
Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm
Precedence: bulk
List-Id: bugtraq.list-id.securityfocus.com
List-Post: mailto:[EMAIL PROTECTED]
List-Help: mailto:[EMAIL
Some kids put up all your base are belong to us flyers in
Missouri and the police arrested them for being terrorists.
http://sturgisjournal.com/display/inn_news/news1.txt
On Fri, Apr 04, 2003 at 06:57:50PM -0600, Roy M.Silvernail wrote:
On Friday 04 April 2003 03:54 pm, Eric spake:
Some kids put up all your base are belong to us flyers in
Missouri and the police arrested them for being terrorists.
http://sturgisjournal.com/display/inn_news/news1.txt
Getting a 503 or any HTTP error means that you are getting
through to something that is too busy.
An HTTP error jibes with the usual result of a web site hack
that takes down the server. But it also could be a result of
too many connection attempts.
Not being able to resolve the name indicates
On Wed, Mar 26, 2003 at 03:24:01AM -0800, Sarad AV wrote:
it doesnt matter as long as Al-Jazeera is live and
kicking and the camera's are rolling.
Yesterday morning I could get to english.aljazeera.net.
As of yesterday afternoon, it has become unavailable.
Supposedly they are victims of
Apparently the CIA and MI6 have been faking WMD evidence for quite a while:
http://www.newyorker.com/fact/content/?030331fa_fact1
On Sat, Mar 22, 2003 at 09:40:50AM +, [EMAIL PROTECTED] wrote:
IDEA is listed on the fourth line, so it seems IDEA was installed with
OpenSSL, but MixMaster's install may be improperly detecting that IDEA
is absent. It's when I run the Mixmaster install that I get the
error:
...
On Tue, Mar 18, 2003 at 01:17:21PM -0500, Sunder wrote:
Interesting, lne.com flagged this as spam.
We probably rejected the SMTP connection as coming from
a source that's sent us spam in the past. Read the
bounce message and use the URL to send me the ID code please.
There's no content-based
On Sat, Mar 01, 2003 at 01:43:58PM -0800, Eric Cordian wrote:
Tim May wrote:
P.S. I plan to make strong efforts to stop my new address from being
harvested by spammers, such as using [EMAIL PROTECTED] in
Usenet posts. I hope this works.
I'm pretty sure, based on my spam volume, that
On Thu, Feb 20, 2003 at 11:32:43PM -0500, Major Variola (ret) wrote:
Carburetor? Didn't that connect to the phonograph through a cat's whisker?
Carburetor is French for leave it alone.
While only one of my cars is old enough to have a carb, all but one of
the 10 or so motorcycles in the
On Wed, Feb 19, 2003 at 08:27:31PM -0500, Major Variola (ret) wrote:
Hackers don't work on their own brakes for a reason: evolution.
I do. That way I know they were done right.
Specialization is for insects.
Eric
On Tue, Feb 18, 2003 at 01:22:21PM -0800, Joseph Ashwood wrote:
I was just wondering if anyone has a digital certificate issuing system I
could get a few certificates issued from. Trust is not an issue since these
are development-only certs, and won't be used for anything except testing
On Mon, Feb 03, 2003 at 05:01:41PM -0600, Harmon Seaver wrote:
The biggest question there is why didn't they inspect it? Seems very
bizarre, since that's what they did in the past.
All the KH-71s were busy mapping Iraq's oil fields
and photographing Saddam's nose hairs.
Eric
On Sun, Feb 02, 2003 at 10:19:27AM -0800, Tim May wrote:
A real journalist would just roll his eyes and say Look, folks, NASA
wants these pieces to be aid in reconstructing the accident. There are
no traces of liquid propellants and deadly chemicals on these pieces.
And they certainly
On Thu, Dec 12, 2002 at 04:11:21PM -0500, Trei, Peter wrote:
I was poking around thinkgeek, and it appears that
the CDR now has it's own tee-shirt.
Suitable for old farts and wannabes alike.
Now available in black!
Peter Trei
http://www.thinkgeek.com/tshirts/coder/57ee/
Not The Fedz
I've just been made aware of a bug in my CDR code
that causes MIME-encoded mail that uses the (rare)
Content-Type: multipart/mixed to get dropped into the bit bucket.
I'll fix it soon, but in the mean time please post in plain ASCII.
You should post in plain ascii anyhow since any MIME gets
On Sun, Oct 27, 2002 at 06:31:40PM -0800, Tim May wrote:
On Sunday, October 27, 2002, at 01:04 PM, Bill Stewart wrote:
[Hmm. lne.com spam-blocked me on the first attempt.
Can you provide details?
If lne.com is blocking posts, I will have to find another CP node.
Lne has been
On Mon, Oct 21, 2002 at 03:37:33PM +0100, David Howe wrote:
at Monday, October 21, 2002 3:14 PM, Trei, Peter
[EMAIL PROTECTED] was seen to say:
I'd be nervous about a availability with centralized servers,
even if they are triple redundant with two sites. DDOS
attacks, infrastructure
On Wed, Oct 09, 2002 at 11:01:21PM +0100, Ben Laurie wrote:
Bill Stewart wrote:
Somebody backdoored the source code for Sendmail on the official server.
So if you recompile from scratch, your sendmail is 0wned.
Another reason not to run mail systems as root
In this case, as I
On Thu, Oct 10, 2002 at 02:28:26AM -, anonimo arancio wrote:
[..]
But I am wondering if Cypherpunks have mentioned the 'obvious'.
The government knows exactly what it's doing. It wants to discourage the use of
encryption by any means necessary, because of sheer numbers.
Basically, the
Someone who's sending from a mailer that lne.com blocks because
of spam said:
- Forwarded message from [EMAIL PROTECTED] -
[...]
When Chaumian money comes into wide use, I think that for most
end users we will have to stash
On Tue, Sep 24, 2002 at 07:12:47PM +1200, Peter Gutmann wrote:
James A. Donald [EMAIL PROTECTED] writes:
Increasingly however, we see smartcard interfaces sold for PCs. What for, I
wonder?
A previous company I worked for made a secure smart-card reader
chip/system that used smart cards to
It looks like one of the CDRs, possibly algebra, is
changing the Message-ID on cpunks mail and redistributing
it to the CDRs-- I'm seeing two copies of each message, one
of which has an X-Algebra header in it.
Could the algebra maintainer check this out?
Thanks.
Eric
On Fri, Aug 09, 2002 at 10:05:15AM -0700, AARG! Anonymous wrote:
On Gnutella discussion sites, programmers are discussing a number of
technical proposals that would make access to the network contingent
on good behavior: If you write code that hurts Gnutella, in other
words, you don't
On Thu, Aug 01, 2002 at 02:33:43PM -0700, James A. Donald wrote:
According to Microsoft, the end user can turn the palladium
hardware off, and the computer will still boot. As long as that
is true, it is an end user option and no one can object.
But this is not what the content
On Tue, Jul 23, 2002 at 09:42:49AM -0400, Trei, Peter wrote:
If you're interested in tunneling other protocols
than HTTP, things get more complex. Assuming
SSL tunneling is allowed you can run other
protocols through it if you can set up the software
at each end appropriatly.
So who's
On Sun, Jul 07, 2002 at 07:13:54AM -0700, Optimizzin Al-gorithym wrote:
At 07:05 PM 7/6/02 -0700, Lucky Green wrote:,
Adding the cost of an EMBASSY or SEE environment to the,purchase of
every new PC is more than the market for bare-bones or even,mid-range
PC's will bear.,,--Lucky,
Too bad
On Fri, May 24, 2002 at 12:07:48PM -0700, Curt Smith wrote:
While we are on the subject of issuing your own X.509
certificates:
1. How do you create a X.509 signing hierarchy?
Do a web search on openssl certificate authority.
2. Can you add additional algorithms (ie. Twofish)?
Yes, if
On Fri, May 24, 2002 at 11:17:08AM -0700, [EMAIL PROTECTED] wrote:
--
On 23 May 2002 at 0:24, Lucky Green wrote:
Tell me about it. PGP, GPG, and all its variants need to die
before S/MIME will be able to break into the Open Source
community, thus removing the last, but persistent,
On Sat, May 11, 2002 at 04:35:29AM +1000, Julian Assange wrote:
Australia needs your help!
The Howard government is using the `war on terrorism' as justification
to introduce so called `Asian Values' (a euphonism used by Mahathir
to explain his governments removal of rights from the
58 matches
Mail list logo