punkman: for other network noobs like me https://blog.cloudflare.com/ip-fragmentation-is-broken/
punkman: also starting to understand why IPv6 has so many problems
punkman: also related https://portswigger.net/daily-swig/dns-flag-day-dawns-with-renewed-effort-to-avoid-ip-fragmentation
punkman: found another keyword that leads to relevant academiwank: "broadcast authentication scheme"
punkman: and a review of such: "A survey of broadcast authentication schemes for wireless networks" https://booksc.org/book/29720770/a7506f
punkman: this one seems interesting https://netsec.ethz.ch/publications/papers/biba.pdf
PeterL: asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-19#1058819 << In the examples (4.1.1 and 4.1.2) the version should get decremented to match the version in section 1 (speaking of which, should "version" be section 1.1?)
dulapbot: Logged on 2021-09-19 23:29:13 asciilifeform: meanwhile, asciilifeform set up a running copy of the current rough draft of pest spec. currently reflects a very partially-done 0xFD. will be kept reasonably current on best-effort basis. please do NOT rely on the item at this link being static, or even consistent !!
PeterL: In section 3.1, where you discuss breaking a long message into two messages, correct me if I am wrong: these are not going to get reassembled back into one IRC message by the receiving peer, they get transmitted to the console as two IRC messages?
asciilifeform: PeterL: yes the intent is to reassemble. (and when one day there may be a dedicated client program -- to reassemble arbitrarily-long texts.) i'ma make this clear in the doc.
asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-20#1058832 << ty, will fix. the whole thing still needs a whole lotta work.
dulapbot: Logged on 2021-09-20 08:23:21 PeterL: asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-19#1058819 << In the examples (4.1.1 and 4.1.2) the version should get decremented to match the version in section 1 (speaking of which, should "version" be section 1.1?)
asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-20#1058831 << asciilifeform read this and the earlier piece: and mightily did he barf. archaetypical academibarf, and cemented asciilifeform's conclusion that hmac is by far the best looking horse in that glue factory
dulapbot: Logged on 2021-09-20 05:28:41 punkman: this one seems interesting https://netsec.ethz.ch/publications/papers/biba.pdf
asciilifeform: the 'biba' thing is particularly egregious wtf -- not only is nearly as expensive as 4096bit rsa to sign, but leaks key bits like a sieve and requires constant resupply (somehow!) of the ~10kByte~ (!) pubkey
asciilifeform: over many years (incl. some time, sadly, spent in direct professional contact with such miscreants) asciilifeform came to the conclusion that the authors of such work are far too occupied with sucking their own cocks, while so deeply impressed with own cleverness, to come up with anything of practical value whatsoever.
asciilifeform: for brief time d. bernstein was a kind of exception -- but swamp quickly swallowed him, and for many yrs now he has not been distinguishable from other swamp creatures.
asciilifeform: ever since this, asciilifeform 'hears word 'cryptographer' and reaches for pistol'.
asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-20#1058826 << moar or less accurate description.
dulapbot: Logged on 2021-09-20 02:48:03 punkman: for other network noobs like me https://blog.cloudflare.com/ip-fragmentation-is-broken/
asciilifeform: ( except that naturally the derps do not acknowledge that it is ~conceptually~ broken, rather than simply 'implementationally' )
PeterL: would you be offended if somebody called you a 'cryptographer'?
punkman: another one along the lines of biba https://tik-db.ee.ethz.ch/file/ff05e5f41354dbd53219c3620855d867/srds08.pdf
punkman: "Our signature scheme ALPS can tradeoff the three main properties public key size, signature size, and computational delay. Signatures are between 20 to 40 bytes in size. Signing and verification typically takes between merely 10 and 300 µs. And a public key a few kilobytes in size is sufficient to authenticate a live stream."
asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-20#1058847 << call me also concert violinist if you like. tho i don't play ('but i haven't tried yet!'(tm)(r)) nor perpetrated any cryptographies, lol
dulapbot: Logged on 2021-09-20 10:45:59 PeterL: would you be offended if somebody called you a 'cryptographer'?
asciilifeform: http://logs.nosuchlabs.com/log/asciilifeform/2021-09-20#1058849 << there's 'over 9000' of these atrocities. btw the target audience (aside from other academitards) is actually payware broadcasters ('sirius' et al) , the nominal adversary is a decerebrated konsoomer, not nsa
dulapbot: Logged on 2021-09-20 11:03:35 punkman: "Our signature scheme ALPS can tradeoff the three main properties public key size, signature size, and computational delay. Signatures are between 20 to 40 bytes in size. Signing and verification typically takes between merely 10 and 300 µs. And a public key a few kilobytes in size is sufficient to authenticate a live stream."
asciilifeform: $ticker btc usd
busybot: Current BTC price in USD: $43948.57
asciilifeform: !w poll
watchglass: Polling 17 nodes...
watchglass: 126.96.36.199:8333 : Could not connect!
watchglass: 188.8.131.52:8333 : Could not connect!
watchglass: 184.108.40.206:8333 : (172-6.core.ai.net) Alive: (0.081s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Return Addr=0.0.0.0:8333 Blocks=701443
watchglass: 220.127.116.11:8333 : Could not connect!
watchglass: 18.104.22.168:8333 : (ns562940.ip-54-39-156.net) Alive: (0.111s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Blocks=701442
watchglass: 22.214.171.124:8333 : (pool-71-191-220-241.washdc.fios.verizon.net) Alive: (0.034s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Blocks=701443 (Operator: asciilifeform)
watchglass: 126.96.36.199:8333 : Alive: (0.081s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Return Addr=0.0.0.0:8333 Blocks=701443
watchglass: 188.8.131.52:8333 : Alive: (0.145s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Blocks=701443 (Operator: asciilifeform)
watchglass: 184.108.40.206:8333 : (172-4.core.ai.net) Alive: (0.143s) V=70001 (/therealbitcoin.org:0.7.0.1/) Jumpers=0x1 (TRB-Compat.) Blocks=701443
watchglass: 220.127.116.11:8333 : Alive: (0.159s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Blocks=701443
watchglass: 18.104.22.168:8333 : Alive: (0.234s) V=70001 (/therealbitcoin.org:0.7.0.1/) Jumpers=0x1 (TRB-Compat.) Blocks=701443
watchglass: 22.214.171.124:8333 : Alive: (0.337s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Return Addr=0.0.0.0:8333 Blocks=701443 (Operator: whaack)
watchglass: 126.96.36.199:8333 : (ns3140226.ip-54-38-94.eu) Alive: (0.322s) V=88888 (/therealbitcoin.org:0.8.88.88/) Jumpers=0x1 (TRB-Compat.) Blocks=701443
watchglass: 188.8.131.52:8333 : Alive: (0.704s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Blocks=701443
watchglass: 184.108.40.206:8333 : (terebe.ns01.net) Alive: (0.610s) V=99999 (/therealbitcoin.org:0.9.99.99/) Jumpers=0x1 (TRB-Compat.) Blocks=701443
watchglass: 220.127.116.11:8333 : Violated BTC Protocol: Bad header length! (Operator: jurov)
watchglass: 18.104.22.168:8333 : Busy? (No answer in 100 sec.)
asciilifeform: !q uptime
dulapbot: asciilifeform: time since my last reconnect : 96d 13h 47m
punkman: in other eth lulz https://twitter.com/mdudas/status/1440022234924556291
shinohai: top kek
asciilifeform: is this 1st known shitcoin where you can pwn an idjit by sending him tx? or wat
punkman: it's not simple tx, interacting with malicious contracts, even if it looks safe, can result in exploit
asciilifeform: punkman: what's it mean to 'interact with contract' if not analogous to btc's tx ?
asciilifeform: lemme guess, have the shitcoinists with their 'smart xyz' finally devised a two-ended pistol where the shooter can never be certain whether bullet goes fwd or backward?
punkman: asciilifeform: seems clear that none of the people in that thread understand what "interact with contract" means
punkman: fuck me if I know
punkman: Something like this I think: eth tx sender addr, recipient addr, value, data. When you send data to a contract address, that's interaction with contract. If you are just sending value, it's like btc
punkman: but sender addr can be a contract too. In fact many of the eth wallets don't give you pub/private pairs, but a priv key to a smart contract that manages the actual eth addresses holding value
punkman: example "This is called “social recovery” and works as follows: when the user restores the app (e.g after having lost their phone), the trusted contacts receive requests that they have to confirm. After a majority confirms, the new private key becomes the new owner of the smart
punkman: contract holding the funds."
asciilifeform: $ticker btc usd
busybot: Current BTC price in USD: $40657.39
asciilifeform: 4$ when!
mats: remembers to harvest applicable capital loss offsets
asciilifeform: mats: ianal but doesn't this only work if you actually ~took~ the loss (i.e. sold at loss) ?
mats: its one of the few benefits of extreme price volatility in btc
mats: but it'll probably go away once the house votes on the bill this time next year
asciilifeform: mats: maybe i'm thick, but where the 'benefit' ? dontcha have to demonstrate that you actually lost money, to get (a fraction of it) back as tax writeoff ?
asciilifeform: (where 'money' means concretely usd)
asciilifeform: i.e. if you have 1btc, but you bought it in 2012 for fiddybux, it doesn't do much for you if tonight falls from 40k to 20k, if yer intent on selling it will still show massive gain, not loss, and get taxed
mats: right, i bought bitcoins recently
asciilifeform: aite, but why wouldja sell any in the dip ?
mats: to buy back right away, and bank the offsets
asciilifeform: wouldntcha end up eating the spread then ?
mats: yeah, i lose some money to egregious broker fees in the process
mats: still worth it
asciilifeform: seems to suggest the broker aint charging enuff, then, if this is somehow +ev for mats
asciilifeform wonders what the 'brain cpu time' cost of this operation is
mats: err, once the house votes on the bill this time next week*
asciilifeform: mats: what concretely is the loophole that's to be closed ? (if i understand the implication of 'house votes..' that is)
mats: i'm lazy and i don't bother unless the price slips >10%, costs ~0 time
asciilifeform: mats: ty
mats: $ticker btc usd
busybot: Current BTC price in USD: $41888.96
asciilifeform: mats: outta curiosity, what's yer plan if usg goes 'aah you paid x $, mats ? but actually you owe 5x, plox by next tues., k bye'
mats: talk to a tax attorney and then do what i'm told
asciilifeform won't be esp. surprised if retroactive tax increases, officially or otherwise
mats: i'm excited to see this vote expand the welfare state
mats: hopefully usg's credit rating gets downgraded in a couple years
asciilifeform: mats: it's already a work of fiction, it aint as if they paid bonds in gold or btc
asciilifeform: sure, will pay a++ on time, by printing
asciilifeform: mats: re tax writeoffs, they're specifically the mechanism of elite boot stamping on human face in usg reich, so they'll be abolished some time after hell freezes over
asciilifeform: ( e.g. asciilifeform doesn't get to write off anything substantial. taxed at effectively ~50%. because working, rather than dividend-drawing , doesn't borrow money, doesn't speculate )
mats: thats your own fault, you could've got a mortgage
asciilifeform: mats: 'mp's plan for wealth'(tm)(r) ?
mats: mp aside, it makes sense for some people
asciilifeform: mats: 'underwater' mortgage borrower is more firmly bound to his cardboard box than anyone was in e.g. su.
asciilifeform: i suppose for some value of 'make sense', just about anyffin 'makes sense for some people'. stuffing pine cone up own arse prolly makes sense for someone.
mats: i'm also mildly allergic to making use of nontrivial amts of credit, but at some level of interest rates it becomes rational
asciilifeform: ( would mats consider the pine cone if it came with a 10% tax deduction ?!111 )
mats: if its not worth the unpeace of mind, i get it
asciilifeform: mats: it's rational if yer personal arse is 100% insulated from the up-and-down of it. e.g. you're trump and the money is other people's (or even your own, but it aint your last nor next-to-last 100$M)
asciilifeform: mats: one of your mortgaged houses burns down, and insurance refuses to pay ? say hello to paying $M for nonexistent house for the rest of yer life
asciilifeform: y'know, rather like asciilifeform personally knew several folx who were paying for car which had years before gone to the junkyard
mats: yeah, lack of gap insurance will burn a nontrivial number of people who bought cars at a premium this year
asciilifeform: mats: not even speaking of 'lack of insurance'
asciilifeform: mats: ever try to actually get dough outta car insurer , for 100% legit damage ?
mats: yes, i never had a problem
asciilifeform: ( not even to mention, suppose you were dumb enuff to buy ~new~ auto , which is worth 30-40% than what borrower owes 5min after he gets in it and drives home from the dealer ! )
asciilifeform: *less than
asciilifeform: mats: life is great when at no point do you have a problem, eh.
mats: you know that gap insurance is a separate thing right
mats: i mean, not separate, but it is an optional rider
asciilifeform: then at some point you have problem. and maybe even fixable if you could budget the time & energy to 'fix properly' but may so happen that you can't.
mats: for auto and homeowners insurance
asciilifeform: mats: interesting re auto. asciilifeform would be excited if he weren't partial to 'disposable' cars
asciilifeform: mats: iirc 'homeowner' insurance in usa is a quasi-scam tho
asciilifeform: ( expensive, and will perma-drop you for life if you make so much as 1 claim )
mats: title insurance is the real scam
mats: https://archive.curbed.com/2018/2/26/17017142/title-insurance-scam-government-takeover detailed complaint
mats: in other news, cosmic crisp apples are otherworldly. i cut one up a couple days ago and its hardly browned at all
asciilifeform: 1992-2017 asciilifeform 'i liked apples, as a boy, not so much nao' then went to ro, to timis town market, had ~proper~ one, after this now again 'i used to like apples...'
asciilifeform: fucking hate this blighted continent. where if you want real apple, or tasty mushroom, or genuine milk, you gotta find a black marketeer to fly these things in for you
mats: have you been to whole foods
asciilifeform: mats: in fact i buy errything there that aint in season at market
asciilifeform: it aint this. 'real' apple doesn't distance-transport and you won't find it in a mass shop.
mats: maybe that's why i don't really care for apples
mats: they tend to be too sweet
asciilifeform: is why. asciilifeform's pet also 'didn't care for apples', then in ro suddenly 'holy shit'
asciilifeform: or the raw milk vending machine there... 'let's buy moar milk.' '??' 'to drink. right here.'
asciilifeform: genuine milk: 100% banned in reich. like cocaine.
mats: haven't had raw milk yet
asciilifeform: entirely other world.
thimbronion: asciilifeform: I am not clear on how to use the nonce in the red packet. I had been thinking it would be passed as the iv argument to the encryption function - then I realized - it's also needed for the decryption function, but it's not clear to me in the current scheme how the decryptor gets the iv.
asciilifeform: a glass of it almost feels like a meal
asciilifeform: thimbronion: i've been waiting for someone to ask!!
asciilifeform: thimbronion: 'iv' is an aesism. what we'll be doing instead is ct_0 := serpent_e(pt_0); ct_1 := serpent_e(pt_1 ^ ct_0); ct_2 := serpent_e(pt_2 ^ ct_1); .... ctn := serpent_e(pt_n ^ ct_n-1) .
asciilifeform: thimbronion: lemme know if makes sense to you.
asciilifeform: ( will illustrate this, and the decryption, in the spec appendix . )
asciilifeform: ct_n -- ciphertext block n ; pt_n -- plaintext block n
asciilifeform: ( 16byte blox )
thimbronion: and ^ is XOR?
asciilifeform: this is standard 'cipher block chaining'(tm)(r) but for some reason (well, cuz aes explicitly requires) heathens carry a separate 'iv' around as plaintext
asciilifeform: ^ is always xor.
asciilifeform: pt_0 so happens is our nonce.
thimbronion: Ok - I have enough to go on at least.
dulapbot: Logged on 2021-09-19 19:30:52 asciilifeform: 448 == 16 * 28
asciilifeform: thimbronion: lemme know if any part of this unclear.
asciilifeform must bbl