Notices by F4GRX Sébastien (f4grx@chaos.social)

@soatok wow I did not check your original link before.

>in my opinion such a tiny threat is not worth the additional complexity of even a single if statement.

WHAT THE FLYING FUCK

@NohatCoder @soatok if an important protection is easy to check, it has to be implemented. Not implementing the simple checks is... Somewhat... Criminal, in a way? Like, you know you should do it, it's easy to do, the consequences could be critical... And yet you dont do it. Why!

@soatok
> closed as not planned.
Lmao.

> The absence of input validation is core to the design of Monocypher, and Well documented. This allows Monocypher to simplify error handling and maximise portability. What you found was normal and expected.

Oh my dog

@lady_alys @soatok using crypto is difficult, even more so when you voluntarily don't validate inputs. Oh my dog. This lib should be in a kind of oss security blacklist!

@whitequark i HOPE there is nothing about the harry potter world in this book...

@soatok @pemensik you cant do that. Email is a de facto standard that works *everywhere*. You cant ditch that for another protocol before decades, and thats supposing tge new stuff has all the required features

It's good to be idealist but the industrial world needs practical solutions. I would love a good replacement for PGP, but lets be honest, there is no tool that can protect files and email before transfer NOW.

Maybe the path forward is fixing pgp, not yeeting it.

@whitequark it has to be, it's wired as a subharmonic mixer IIRC. Most probably anti parallel diodes.

@ignaloidas @whitequark sometimes nornal analog circuits are built with non-obvious complex tricks, branches, feedbacks, etc. not so much with RF.

In a ideal world i should do an encyclopedia of RF building blocks.

@whitequark looking at this I see a schelatic and imlediately understand what I see.

Q2 is not a transistor.

@lina @whitequark every conductor near another one is a capacitor even at DC. What matters is the influence of these low value caps of microwave signals. Since Zc=~1/(2pi f C) the impedance of a capacitor reaches low values at very high frequencies, even for very small "parasitic" caps. When you have low impedances, they act as loads on all parts of the circuit, and give non ideal behaviour.

@lina @whitequark symetrically, any piece of wire shows "increased" inductive behaviour, meaning it's not a simple piece of short circuiting wire anymore. It all depends on frequency. This behaviour is used to design components that will appear as wiggly lines and copper pours of varying shapes and sizes.

@ignaloidas @whitequark it doesnt take much to identify building blocks. I would say that RF electronics has fewer tricks, it's basically a sequence of lego blocks.

@davidrevoy @creativecommons What a shame, creative commons. What would Aaron think about this?

@ryanc @erincandescent @hovav @brouhaha thanks for all your remarks, it's true that 2^256 is still a lot of security.

@brouhaha @ryanc yeah the idea that a whole private key can be found from a potentially very much shorter seed is frightening. salting does not even help here. the whole idea sounds *very bad* , I'm not even sure what "we do it on purpose" would work here.

@erincandescent @ryanc @brouhaha 256 bits of entropy to generate a 25519 key is okay, it's just bit tumbling. 256 bits of entropy to generate a full RSA2048 key is not, it means only one in 4 bits is random.

@ryanc 'heck no'

@whitequark these are tomatoes

@SnowyCA @Vasquezz @Remittancegirl fuck that shit

@SnowyCA @Vasquezz @Remittancegirl sorry if you thought so, I am not mad at you the slightest bit, I am mad at the author of this video! I'm not even mad at the reposter, I know it's hard to spot.