From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.7 required=5.0 tests=DKIM_ADSP_CUSTOM_MED, DKIM_SIGNED,DKIM_VALID,FREEMAIL_FORGED_FROMDOMAIN,FREEMAIL_FROM, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE autolearn=ham autolearn_force=no version=3.4.4 Received: from tb-ob0.topicbox.com (tb-ob0.topicbox.com [64.147.108.117]) by inbox.vuxu.org (Postfix) with ESMTP id AE0A621773 for ; Mon, 13 May 2024 13:01:09 +0200 (CEST) Received: from tb-mx0.topicbox.com (tb-mx0.nyi.icgroup.com [10.90.30.73]) by tb-ob0.topicbox.com (Postfix) with ESMTP id AC1F9233D4 for ; Mon, 13 May 2024 07:01:08 -0400 (EDT) (envelope-from bounce.mM925311bc2b8c990e6ba917ed.r522be890-2105-11eb-b15e-8d699134e1fa@9fans.bounce.topicbox.com) Received: by tb-mx0.topicbox.com (Postfix, from userid 1132) id 9FFB5188D916; Mon, 13 May 2024 07:01:08 -0400 (EDT) ARC-Authentication-Results: i=2; topicbox.com; arc=pass; dkim=pass (2048-bit rsa key sha256) header.d=gmail.com header.i=@gmail.com header.b=nD4f0V2Z header.a=rsa-sha256 header.s=20230601 x-bits=2048; dmarc=pass policy.published-domain-policy=none policy.published-subdomain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=none,sp=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=gmail.com; spf=pass smtp.mailfrom=23hiro@gmail.com smtp.helo=mail-pj1-f44.google.com; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=mime-version:references:in-reply-to:from:date :message-id:subject:to:content-type:list-help:list-id:list-post :list-subscribe:reply-to:content-transfer-encoding :list-unsubscribe; s=sysmsg-1; t=1715598068; bh=a5k2BWxEuZNsHtbT glJzGo6QowqVrwQzPt2680KeXeY=; b=GQkZOPb/9Y5uKWNeCJKrdkyOe2gVfg8D 5ehRKEDNEtYOSxEtuFK1CFzL0ZqjElZ4zlYsLiq+Dml/yFWlGtHSsEQi+w/KYWSp vJTq5XFziuaxo6poTURN8YKBQhQhA8t110zBoIsmtra3QjELWYoO/UEOPxo5s0uA a7wavrbOhYc= ARC-Seal: i=2; a=rsa-sha256; cv=pass; d=topicbox.com; s=sysmsg-1; t= 1715598068; b=Wkc4rG0l9yR0vS2lHeTNuxOsNl0N508ySB/oeTaa+UjpRedxLQ oHMnmtBtZ7Yrvc8aej0t6I/dY2AyefyFgJ3jnxaOC63+D9FjDUzE8hQY9BGoMFJi 5Q4nF7a7R3pGz/NXCst9CzxuCivRPK/xiniVi0YL7i3InaJxM+KQqYiwA= Authentication-Results: topicbox.com; arc=pass; dkim=pass (2048-bit rsa key sha256) header.d=gmail.com header.i=@gmail.com header.b=nD4f0V2Z header.a=rsa-sha256 header.s=20230601 x-bits=2048; dmarc=pass policy.published-domain-policy=none policy.published-subdomain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=none,sp=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=gmail.com; spf=pass smtp.mailfrom=23hiro@gmail.com smtp.helo=mail-pj1-f44.google.com; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) X-Received-Authentication-Results: tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=pass (2048-bit rsa key sha256) header.d=gmail.com header.i=@gmail.com header.b=nD4f0V2Z header.a=rsa-sha256 header.s=20230601 x-bits=2048; dmarc=pass policy.published-domain-policy=none policy.published-subdomain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=none,sp=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=gmail.com; iprev=pass smtp.remote-ip=209.85.216.44 (mail-pj1-f44.google.com); spf=pass smtp.mailfrom=23hiro@gmail.com smtp.helo=mail-pj1-f44.google.com; x-aligned-from=pass (Address match); x-google-dkim=pass (2048-bit rsa key) header.d=1e100.net header.i=@1e100.net header.b=Eiptb4JP; x-me-sender=none; x-ptr=pass smtp.helo=mail-pj1-f44.google.com policy.ptr=mail-pj1-f44.google.com; x-return-mx=pass header.domain=gmail.com policy.is_org=yes (MX Records found: alt3.gmail-smtp-in.l.google.com,gmail-smtp-in.l.google.com,alt2.gmail-smtp-in.l.google.com,alt1.gmail-smtp-in.l.google.com,alt4.gmail-smtp-in.l.google.com); x-return-mx=pass smtp.domain=gmail.com policy.is_org=yes (MX Records found: alt3.gmail-smtp-in.l.google.com,gmail-smtp-in.l.google.com,alt2.gmail-smtp-in.l.google.com,alt1.gmail-smtp-in.l.google.com,alt4.gmail-smtp-in.l.google.com); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=9fans.net; h= mime-version:references:in-reply-to:from:date:message-id:subject :to:content-type:list-help:list-id:list-post:list-subscribe :reply-to:content-transfer-encoding:list-unsubscribe; s=dkim-1; t=1715598068; x=1715684468; bh=a5k2BWxEuZNsHtbTglJzGo6QowqVrwQz Pt2680KeXeY=; b=oOalJ9haEFb/JLbYAQRhRqbFiwqi48w/YEt9vNo7CFThj3rf 7NyhyAgrE9f09cYmRqQDnlzTVWDi0eJSIDJmZsiac0Ray/5oAA7meIgFhF2nZtqk RSndkJ5x3f22Y0HdiSspVaKCYb1VUYdWbt1j7oRuWlRbi2BcCx1TLrWNMq8= Received: from tb-mx0.topicbox.com (localhost.local [127.0.0.1]) by tb-mx0.topicbox.com (Postfix) with ESMTP id 11B89188D4EB for <9fans@9fans.net>; Mon, 13 May 2024 07:00:53 -0400 (EDT) (envelope-from 23hiro@gmail.com) Received: from tb-mx0.topicbox.com (localhost [127.0.0.1]) by tb-mx0.topicbox.com (Authentication Milter) with ESMTP id F158DFD611E; Mon, 13 May 2024 07:00:53 -0400 ARC-Seal: i=1; a=rsa-sha256; cv=none; d=topicbox.com; s=arcseal; t= 1715598053; b=VIv9bvd/rsSG394hBOmgEodwsYB7b/X8V+2NHbuPvpCAD6VODC BoZ3TAewwksvU9wDnXN3L5ujIp4NM0Ox0S/WMeI7Fb1F/GndQHvtsKDshczAfAFn irj9n9UToOUDKJEIjE3EaiEpmnjwVwqb99sShgZLrsbVL7vV+mWitZa41MqjdJmA t1ozsFqSHaRltfJBHD53UwJ70n1gDN7LfCfYJj9wK9YepozybLcNJJPOTaRIGKJL LdJkPjn9tq8LU+OwjK4NiXZMM2h4tjPAVD0qC8Py5Huz8XDflcgcoRqDleWgFiOT 2ktYneyzqdQFxNWBT2edjW9vgg0SKm7edtYQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=mime-version:references:in-reply-to:from:date :message-id:subject:to:content-type; s=arcseal; t=1715598053; bh=INcA5s1COkjNVGdGi3dyww4V9xGTt1F/Lmx5C6uZ/BE=; b=h5kE6i4RRlBQ SHZJYGxG6t766hjbYTYUFWNmfHpa36+HOAO1TRuOMxKgCPYTvEMfVyaj2zE62TZC wKP3abhSjkcmGuKtCJNoRt5W7ov4gVjvAWSOlmBG6fuCP2Nj3i4lNQ69PW8DFpWp OBNzzdudGE/hfpGXdncgxe+hIloHHY967mvQ96fYGyps3ND1d8M0+syTU4SehrXb RFFLL2TVg7U2iQoFRusndhOIc15WRcJ9A4leEnmypZNYOvWk95GuRaKXY0/ioXVP XNM6MPUg8RYkyu8uUpoi05ZfBTWT9+KxgnZmhgI9VE320WhUmmSTxxiXTf0MLNfD NK+XrSVnsA== ARC-Authentication-Results: i=1; tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=pass (2048-bit rsa key sha256) header.d=gmail.com header.i=@gmail.com header.b=nD4f0V2Z header.a=rsa-sha256 header.s=20230601 x-bits=2048; dmarc=pass policy.published-domain-policy=none policy.published-subdomain-policy=quarantine policy.applied-disposition=none policy.evaluated-disposition=none (p=none,sp=quarantine,d=none,d.eval=none) policy.policy-from=p header.from=gmail.com; iprev=pass smtp.remote-ip=209.85.216.44 (mail-pj1-f44.google.com); spf=pass smtp.mailfrom=23hiro@gmail.com smtp.helo=mail-pj1-f44.google.com; x-aligned-from=pass (Address match); x-google-dkim=pass (2048-bit rsa key) header.d=1e100.net header.i=@1e100.net header.b=Eiptb4JP; x-me-sender=none; x-ptr=pass smtp.helo=mail-pj1-f44.google.com policy.ptr=mail-pj1-f44.google.com; x-return-mx=pass header.domain=gmail.com policy.is_org=yes (MX Records found: alt3.gmail-smtp-in.l.google.com,gmail-smtp-in.l.google.com,alt2.gmail-smtp-in.l.google.com,alt1.gmail-smtp-in.l.google.com,alt4.gmail-smtp-in.l.google.com); x-return-mx=pass smtp.domain=gmail.com policy.is_org=yes (MX Records found: alt3.gmail-smtp-in.l.google.com,gmail-smtp-in.l.google.com,alt2.gmail-smtp-in.l.google.com,alt1.gmail-smtp-in.l.google.com,alt4.gmail-smtp-in.l.google.com); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgedvledrvdeggedgfeehucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgfnhhsuhgsshgtrhhisggvpdfu rfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttdenucenucfjughrpeggfhgjhf ffkffuvfgtsehttdertddttdejnecuhfhrohhmpehhihhrohcuoedvfehhihhrohesghhm rghilhdrtghomheqnecuggftrfgrthhtvghrnhepteeltdeflefhffehieeuieeggeekud ehgfefkeejiedthefhudeuffekvdeuhefgnecukfhppedvtdelrdekhedrvdduiedrgeeg necuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehinhgvthepvddtledrkeehrd dvudeirdeggedphhgvlhhopehmrghilhdqphhjuddqfheggedrghhoohhglhgvrdgtohhm pdhmrghilhhfrhhomhepoedvfehhihhrohesghhmrghilhdrtghomheqpdhnsggprhgtph htthhopedupdhrtghpthhtohepoeelfhgrnhhsseelfhgrnhhsrdhnvghtqe X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (gmail.com ... _spf.google.com: Sender is authorized to use '23hiro@gmail.com' in 'mfrom' identity (mechanism 'include:_netblocks.google.com' matched)) receiver=tb-mx0.topicbox.com; identity=mailfrom; envelope-from="23hiro@gmail.com"; helo=mail-pj1-f44.google.com; client-ip=209.85.216.44 Received: from mail-pj1-f44.google.com (mail-pj1-f44.google.com [209.85.216.44]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tb-mx0.topicbox.com (Postfix) with ESMTPS for <9fans@9fans.net>; Mon, 13 May 2024 07:00:52 -0400 (EDT) (envelope-from 23hiro@gmail.com) Received: by mail-pj1-f44.google.com with SMTP id 98e67ed59e1d1-2b8efd5ee5dso255202a91.3 for <9fans@9fans.net>; Mon, 13 May 2024 04:00:52 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1715598051; x=1716202851; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=INcA5s1COkjNVGdGi3dyww4V9xGTt1F/Lmx5C6uZ/BE=; b=Eiptb4JPlHgPbYywINi8DNhMLL7FdhmqLFiqmERkv3uMKtISOwJiy9i9X7bH4MXQlZ XIXQQr7lJ+t/FZkQ3apOUkq0czHmAN0ASohhoHWs4ieacP8j5EbRbhWZ5kjZ+JGuO6cu OvQSqzqGYY7c+HAIEv7AXR4+BoOILyflepwK51esJU7rPfVAXicvMasBJUjammcODgbc AVqVajebZq8wNdY8dp3dRYrzFdIR3ey9qURwzVnblM6+yNr/PJJOzqRxQy4n7Mq6F4L9 kdpedexHTv5xjqiRh85Qi1st9Ryw7+PyDtAsiZ3MyClr7OiZ73GV29lYhxRym8mBZOgd DEVg== X-Gm-Message-State: AOJu0YwEZ5xfKSUxkTqYqK1GbcqYs3R4h9vLKDwhDoJGq1VvxCdh8Vpe EOXL1YswZXmYac2VhvYeeC0j5u6R3ct9l/xCOVkd88C5kOqxpWcH9zmpNtMn7fz3b6YzTIIpVzQ Izp/kOQZ8UApyCQxI1/55wZgzZ+9yihBu X-Google-Smtp-Source: AGHT+IGq3HDObHHZgAmBuN01rcAH101baKEL2FG4GQZqSRVltnLgLuYp3411sCix8YHDCbwaDsVRcT0q28TRIrkqE4o= X-Received: by 2002:a17:90a:dc13:b0:2b2:78a7:1b02 with SMTP id 98e67ed59e1d1-2b6cc2448d8mr8558524a91.1.1715598051488; Mon, 13 May 2024 04:00:51 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: hiro <23hiro@gmail.com> Date: Mon, 13 May 2024 13:00:39 +0200 Message-ID: Subject: Re: [9fans] one weird trick to break p9sk1 ? To: 9fans <9fans@9fans.net> Content-Type: text/plain; charset=UTF-8 Topicbox-Policy-Reasoning: allow: sender is a member Topicbox-Message-UUID: 13a88234-1118-11ef-bee8-f7d9078c7b06 Archived-At: =?UTF-8?B?PGh0dHBzOi8vOWZhbnMudG9waWNib3guY29tL2dyb3Vwcy85?= =?UTF-8?B?ZmFucy9UNTYzOTdlZmY2MjY5YWYyNy1NOTI1MzExYmMyYjhjOTkwZTZiYTkx?= =?UTF-8?B?N2VkPg==?= List-Help: List-Id: "9fans" <9fans.9fans.net> List-Post: List-Software: Topicbox v0 List-Subscribe: Precedence: list Reply-To: 9fans <9fans@9fans.net> Content-Transfer-Encoding: quoted-printable List-Unsubscribe: , Topicbox-Delivery-ID: 2:9fans:437d30aa-c441-11e9-8a57-d036212d11b0:522be890-2105-11eb-b15e-8d699134e1fa:M925311bc2b8c990e6ba917ed:1:qF0u71IyjmJ2xo-LM8_t-pdfI-hDKPUs2y-AXyzf4og > Have a look at authsrv(6) in the manual. The authenticator sends a > pair of tickets to the client, one encrypted with the client's own > key and one encrypted with the server's key. That's what allows > both the client and server to authenticate each other. i stand corrected. also i confused cpuserver and authserver. and i still don't have the details paged in, so thank you for contributing another good summary :) > Yes, I think you're probably right. I was thinking in terms of minimum > lines of code to change, but other factors are also important. i generally use the same tactic in regards to minimal changes, and i certainly see it isn't used often enough in the field. i think the rule also doesn't conflict with what happened: replacement of outdated systems without good incremental path for future improvements, with useful high-quality software developed from scratch. it can happen, despite the late hype around "enshittification". lastly, rules are meant to be broken. the details just happen to matter more than the rule of thumb here. and again, anybody who knows crypthographers, since the approach is rather modern, please help share cinap's paper, maybe even the code, have a look, the more eyes the more better ;) ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/T56397eff6269af27-M92531= 1bc2b8c990e6ba917ed Delivery options: https://9fans.topicbox.com/groups/9fans/subscription