Cryptography nerd
LinkedIn tried blocking scraping that way but as long as the scraping isn’t burdensome it’s basically legal but you can still be bound by TOS and civil claims
https://natlawreview.com/article/hiq-and-linkedin-reach-proposed-settlement-landmark-scraping-case
This is why I want supported ports of SteamOS to the competitor devices
That’s a second pre-image attacks when you’re targeting existing state (attacking hash values of existing data by creating a second file matching it). For some reason even with MD5 that’s still infeasible - but collision attacks where you don’t have a target output value, but instead have partial target inputs which need to have the same output hash, are however practical and fast.
Tldr, modern hash algorithms process data in fixed size blocks. For MD5 you take 128 bits at a time.
The core function in a hash is a little scrambler function (permutation) that takes two different inputs and gives you a single output back.
So it starts with a fixed value built into the algorithm, and then scrambles the first block of the message with it. Then it takes that scrambled piece and mixes that with the next block of the message, then takes THAT scrambled piece and mixes it with the next block. And so on until the end of the message. The last scrambled piece is the hash value.
Collision attacks target that core function by figuring out how to tweak multiple messages so that their scrambler outputs “collide”, ending up equal. So you can hash two tweaked messages and get the same hash value. These tweaks usually include a bunch of random looking bits to work.
Then for a multicollision we don’t just do it for two messages. We do it for every letter in the alphabet. For a HTML document we encode something like <div hidden garbage=xyz>a</div> and repeat for every letter. Every letter gets a distinct random looking value. Then we have many documents with the same hash and one letter different. We can show you a hash and then pick which letter to present you with in the document. All of them checks out.
But then we repeat the attack. We add another whole alphabet right after the first one! Now we have <div hidden_garbage=xyz>a</div> <div hidden_garbage_2=xyz>a</div>. And because the second letter is in a different block, that works just fine! Adding a second letter don’t change the first intermediate value, and you can attack the second intermediate value for the second letter separately. So you add the whole alphabet again (with new associated calculated garbage for every letter in the second position), and now after the second letter we have a new intermediate value which is the same regardless of which letter we pick in the second position.
So now we can independently pick a random letter in the first position and in the second position too! Every combination of two letters has the same hash because of the hidden calculated garbage after each letter!
Then we just repeat the multicollision attack on the whole alphabet over and over until your document is long enough to encode your message. And that message may include the document’s own hash.
He could encourage states to join
Appointments are for life, but I’ve seen arguments it’s possible to “retire” justices to powerless seats so they technically keep the job and title. Or rotate them out of SCOTUS cases to the federal circuits, so they still keep their title but have the role and power of regular judges.
Looks like that dev haven’t kept it up but I’ve seen 2 other people announce working on it
Pretty Good Privacy (proprietary original)
GNU Privacy Guard (open source clone)
OpenPGP is the shared spec
I mean if you’re prepared to do it 2^128 times in a row…
It’s using a combination of multicollision attacks against MD5 and sequences of groups of alternate blocks of data representing the alphabet encoded in a way compatible with the file format.
It’s basically <[a+random]/[b+random]/[c+random]…> * (length of message). The random data is crafted by the attack tool so each block has the exact same effect on the MD5 hashing algorithm as it processes each block. You need to decide how many variable blocks you need and where and their encoding in advance. You encode the blocks so the randomness isn’t visible in the final rendered file.
When you have that prepped, you compute the final hash, then at each block position you select the block representing the letter you want (and its associated random data). So then you can select letters matching the actual file hash value.
It only works against hash functions with practical multicollision attacks. Doesn’t work on SHA256 and newer hashes.
You can but you need to define what part of the data the signature covers (a signature can’t sign itself, so it must be excluded from the data bundle). Signed PDF files has the signature appended after the document data
I’ve had 3x nephews over for several days in a row, more than once. Oh god no thanks I won’t have children of my own. Was sure of it already as a teen long before that, have not changed my mind since.
Candidate, candidate, camera, TV
I don’t think the timing was planned in advance.
But I think he was getting tired, probably had enough commitments for support to Kamala (he probably gave everybody who demanded he steps down an ultimatum, support her or he stays), and decided there wasn’t going to be a better time to do it. Seems like he was right
This ain’t the movie Speed?
You don’t know the (binding!) DNC rules? He had the delegates committed to him and couldn’t have been forced out. And he didn’t want to quit. It was a pressure campaign to make him look out of control, and he’s always been better at negotiating behind closed doors than he is at PR so he couldn’t fight back effectively. Pretty much a chicken race to see who backs down first.
From the timing of everything going on I suspect that with the combination of the media campaign, backstabbing in the party, him being sick x2 and tired, and finally a Republican convention and VP pick being newsworthily weird (and probably also with some commitments from others to back Kamala if he stepped down) I bet he thought there wouldn’t be any better opportunity to do it.
(I was expecting the switch to end in chaos, somehow for once DNC managed to do something coordinated, DESPITE many donors also wanting to ditch Kamala)
I certainly hope Kamala will be harsher against Netanyahu and back the ICC rulings
https://www.theguardian.com/sport/article/2024/jul/24/russian-chef-arrested-in-paris-over-alleged-large-scale-olympic-games-plot-paris-2024