Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://social.coop/users/cwebber/statuses/113528594368172844">Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 05:54:55 JST</a><a href="https://social.coop/@cwebber" title="cwebber@social.coop"><img src="https://gnusocial.jp/avatar/295917-48-20241114200524.webp" width="48" height="48" alt="Christine Lemmer-Webber" style="position: absolute; left: 0; top: 0;">Christine Lemmer-Webber</a><div><a href="https://social.coop/@cwebber/113528577816040377" rel="in-reply-to">in reply to</a></div></section><article><p>One way in which the truncation shows up in that blogpost which I thought was curious is that the attack involved generating a *longer* truncated hash</p><p>The fix ended up resulting in codifying the hash length: 24 characters, and no longer <a href="https://github.com/did-method-plc/did-method-plc/pull/31" rel="nofollow noreferrer">https://github.com/did-method-plc/did-method-plc/pull/31</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4052975#notice-7919745">In conversation</a><time datetime="2024-11-23T05:54:55+09:00" title="Saturday, 23-Nov-2024 05:54:55 JST">about a year ago</time> <span>from <span><a href="https://social.coop/@cwebber/113528594368172844" rel="external" title="Sent from social.coop via ActivityPub">social.coop</a></span></span><a href="https://social.coop/@cwebber/113528594368172844">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: opengraph.githubassets.com</div><h5><a href="https://github.com/did-method-plc/did-method-plc/pull/31">Constant identifier len of 24 by dholms · Pull Request #31 · did-method-plc/did-method-plc</a></h5><div></div></header><div>Locks down the truncated hash to 24 chars
Closes #27</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 05:54:55 JST Christine Lemmer-Webber
in reply to
One way in which the truncation shows up in that blogpost which I thought was curious is that the attack involved generating a *longer* truncated hash
The fix ended up resulting in codifying the hash length: 24 characters, and no longer https://github.com/did-method-plc/did-method-plc/pull/31
In conversationabout a year ago from social.cooppermalink
Attachments
1. Domain not in remote thumbnail source whitelist: opengraph.githubassets.com
  Constant identifier len of 24 by dholms · Pull Request #31 · did-method-plc/did-method-plc
  Locks down the truncated hash to 24 chars Closes #27

Public

Embed Notice

HTML Code

Corresponding Notice