If that is the case -- that people would dismiss it automatically -- then the community is really stupid. You are almost arguing that that is the way it should be. Allegation of not, code should always be checked, and re-checked, and re-checked. What I am seeing is that we have a ridiculously upside-down trust model -- "Trust the developers". We never asked for people to trust us. We might have "earned some" in some people's eyes, but if so it has always been false, even before this. ...

On Fri, Dec 17, 2010 at 7:59 AM, Theo de Raadt <deraadt@cvs.openbsd.org> wrote: Look, if somebody like me posted something like this here, it would be just plain dismissed. If Perry posted his email here, he'd just be under fire to show some or any proof. The reason this was so widely picked up and generated so much flame and buzz, is because you posted it here. It's an unfortunate consequence of a right action, really. I'm not even remotely saying that you intended to give it weight, or that ...

I agree with Marc - "it's hopeless" We live in a world where spin is king. Anything you say can and will be twisted against you.

Daca aveti probleme cu vizionarea acestui email dati [click aici] pentru a vizualiza varianta online! [IMAGE] [IMAGE] Newsletter 14.12.2010 [IMAGE] CaseFaraIntermediari.roUrmariti-ne pe Facebook!Urmariti-ne pe Twitter!Urmariti-ne pe Blogger! Ultimele anunturi adaugate Vezi toate anunturile [IMAGE] [IMAGE] Vila 4 camere - Bucurestii Noi Vila 4 camere - Bucurestii Noi 2.800 EUR/luna INCHIRIERE DETALII ; [IMAGE] [IMAGE] [IMAGE] [IMAGE] Vila 4 ...

I kind of disagree with you mark and I think that the diff makes sense.

Yes, and he's American, so he'd never be brave enough to break any rules and risk certain death (or worse -- forclosure). So we know for certain, or we don't. Yeah, I know -- we live in an incredibly simple world inhabited by extremely simple people, except when it isn't.

Gee, even the google page translation makes it clearer than my rusty frangais (` mon icole secondaire de trop nombreuses annies il ya). Thanks for the laughs, Marc. *** NOTE *** Please DO NOT CC me. I <am> subscribed to the list. Mail to the sender address that does not originate at the list server is tarpitted. The reply-to: address is provided for those who feel compelled to reply off list. Thankyou. Rod/ --- This life is not the real thing. It is not even in Beta. If it was, then ...

That is what I would expect. From memory, in my part of the World if you did this sort of work for an intelligence agency, your role and work is kept secret until 40 years *after* your death.

This looks like a step forward, and worth trying out. ok krw@. .... Ken

Does anyone know if there was an ultimate outcome to the investigation of side channels supposedly put into DSA by the NSA?

I'm really sorry to pitch in here, but... The centerpiece of this thread, besides technical details of how/whether to prove/disprove the so-called accusations, seems to be an argument on whether Perry's purely FUD'ing, promoting his company/pages, creating the buzz, or whether his words should be taken for their face value. I have to say that Perry here is credited with one thing he actually did not do -- publish this to the world. There has been talk of alterior motives here, but for any ...

after talking with ratchov and deraadt, I am convinced the bug is that we have a read() interface that can be interrupted but not restarted reliably. i.e. even if the application deals with EINTR, it's not reliable because data is lost in the kernel. so I took a shot at making ugen's read() interface restartable. diff is below. unfortunately it only works about 90% of the time. the original diff I sent works 100%. this diff is also a bit complicated, and still requires complicated ...