info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
isn't this the worst possible report??
3 views
Skip to first unread message
Jules Gilbert via freebsd-security
Oct 5, 2016, 10:25:03 AM10/5/16
to freebsd-...@freebsd.org
Well maybe worse, that the deal with AT&T for the BSD franchise has fallen apart...
Okay, so I have a FreeBSD 10.1 CD-ROM, believed to be a true copy and authentic copy.
And I loaded it on a computer. I did this entirely offline. I also supplied passwords.
Then I went online to get packages.
Nothing unusual happened UNTIL the machine seized and when I rebooted I discovered it would hang and reboot. A loop.
I had done nothing to cause this. I had not opened an X session nor done anything other than load packages such as maxima, cproto. Nothing involved in the area of security.
I had thought this was pretty much impossible... Remember, this machine was brand new, I'd loaded FBSD-10.1 on it no more than an hour prior and had not messed with any of the internals.
_______________________________________________
freebsd-...@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-securi...@freebsd.org"
Okay, so I have a FreeBSD 10.1 CD-ROM, believed to be a true copy and authentic copy.
And I loaded it on a computer. I did this entirely offline. I also supplied passwords.
Then I went online to get packages.
Nothing unusual happened UNTIL the machine seized and when I rebooted I discovered it would hang and reboot. A loop.
I had done nothing to cause this. I had not opened an X session nor done anything other than load packages such as maxima, cproto. Nothing involved in the area of security.
I had thought this was pretty much impossible... Remember, this machine was brand new, I'd loaded FBSD-10.1 on it no more than an hour prior and had not messed with any of the internals.
_______________________________________________
freebsd-...@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-securi...@freebsd.org"
Julian Elischer
Oct 5, 2016, 3:15:26 PM10/5/16
to freebsd-...@freebsd.org
mortality problem.. (failure in computer or drive).
(brand new machines have a much higher chance of failure than middle
aged machines, as all the components burn in.)
why is this in 'security'?
Jules Gilbert via freebsd-security
Oct 5, 2016, 10:15:48 PM10/5/16
to freebsd-...@freebsd.org
See attachment, Simple program, in C. Without access to a file, it "partially characterizes" it. (My term for weakly predicting it.) Why is this useful?, read on.
But please help me. These attacks are limiting my work efforts.
----- Forwarded Message -----
From: Jules Gilbert <repeatable_...@yahoo.com>
To: Julian Elischer <jul...@freebsd.org>
Sent: Thursday, October 6, 2016 2:07 AM
Subject: Re: isn't this the worst possible report?? -- i went back and put a copy on a memstick; see attachment
First, the machine wasn't new, it's more than five years old. Sorry, I thought my post was obvious, that the OS environment was brand-new. Sorry to confuse you.
Second, I've been getting hit everyday, everytime I put up a non-CDROM based OS. No matter the day, no matter the time, (which makes me think it's not one person.)
And why am I in this situation?
Well, not that I know the reason, but I actually do have repeatable compression, except lot's of folks don't believe me.
Some in the FreeBSD community have my give-away demo. What I describe is available, it's in C and not difficult for any programmer to follow. (And, except for the usual fopen/fgetc/similar, the program contains no API references.) I'm running off a CD, so I don't have it on the disk (how do I mount the underlying disk? I'm running Lubuntu, it's the disk I had on hand.) My point, if you ask I'll send you a copy.
About my demo; it serves two purposes.
SCENARIO #1: You are on machine 1, you want a file from machine 2. This is without wires, wireless, media transfer, it's all done by guessing, nothing else. Lot's of people think it's right 50% of the time, not so. It's right (this version,) 75% of the time.
You have the system PRNG (a random-number generator that is restartable; Both the SEND and RCVE machines must use the same key-seed. How about 1.0?
It guesses 'p', where:
int p = r >= d;
(The function that does this is called "rdRELATION" in the code, it returns a one or zero.)
Without knowing or having any access to 'd'. The demo version is right with a probability of 0.75 (that's 75%.) The commercial version is correct with a probability of 1.
Now if you know 'p', then you can do a lot to infer 'd'. You can iterate, XOR'ing 'r' through a sequence of values. Let me not detail the works but instead just say that deriving 'd' is easy.
Again, to those people who work on FreeBSD, ask and I'll send you a copy. (I just spent a few minutes putting a copy on a memstick and attaching it.)
Okay, now it get's deep...
SCENARIO #2: Basically, the same problem, except now the file containing the 'd' vector of values doesn't exist. That file won't exist for a week, which is when you'll sit down and write the message to yourself.
When you're done laughing...
Except we (we geeks,) already do something very similar to this. I'm not kidding.
But please help me. These attacks are limiting my work efforts.
----- Forwarded Message -----
From: Jules Gilbert <repeatable_...@yahoo.com>
To: Julian Elischer <jul...@freebsd.org>
Sent: Thursday, October 6, 2016 2:07 AM
Subject: Re: isn't this the worst possible report?? -- i went back and put a copy on a memstick; see attachment
First, the machine wasn't new, it's more than five years old. Sorry, I thought my post was obvious, that the OS environment was brand-new. Sorry to confuse you.
Second, I've been getting hit everyday, everytime I put up a non-CDROM based OS. No matter the day, no matter the time, (which makes me think it's not one person.)
And why am I in this situation?
Well, not that I know the reason, but I actually do have repeatable compression, except lot's of folks don't believe me.
Some in the FreeBSD community have my give-away demo. What I describe is available, it's in C and not difficult for any programmer to follow. (And, except for the usual fopen/fgetc/similar, the program contains no API references.) I'm running off a CD, so I don't have it on the disk (how do I mount the underlying disk? I'm running Lubuntu, it's the disk I had on hand.) My point, if you ask I'll send you a copy.
About my demo; it serves two purposes.
SCENARIO #1: You are on machine 1, you want a file from machine 2. This is without wires, wireless, media transfer, it's all done by guessing, nothing else. Lot's of people think it's right 50% of the time, not so. It's right (this version,) 75% of the time.
You have the system PRNG (a random-number generator that is restartable; Both the SEND and RCVE machines must use the same key-seed. How about 1.0?
It guesses 'p', where:
int p = r >= d;
(The function that does this is called "rdRELATION" in the code, it returns a one or zero.)
Without knowing or having any access to 'd'. The demo version is right with a probability of 0.75 (that's 75%.) The commercial version is correct with a probability of 1.
Now if you know 'p', then you can do a lot to infer 'd'. You can iterate, XOR'ing 'r' through a sequence of values. Let me not detail the works but instead just say that deriving 'd' is easy.
Again, to those people who work on FreeBSD, ask and I'll send you a copy. (I just spent a few minutes putting a copy on a memstick and attaching it.)
Okay, now it get's deep...
SCENARIO #2: Basically, the same problem, except now the file containing the 'd' vector of values doesn't exist. That file won't exist for a week, which is when you'll sit down and write the message to yourself.
When you're done laughing...
Except we (we geeks,) already do something very similar to this. I'm not kidding.
Ian Smith
Oct 6, 2016, 2:02:28 AM10/6/16
to Jules Gilbert, freebsd-...@freebsd.org
On Thu, 6 Oct 2016 02:12:25 +0000, Jules Gilbert via freebsd-security wrote:
> But please help me. These attacks are limiting my work efforts.
A lot of people make the mistake of using cheap aluminium foil.
> But please help me. These attacks are limiting my work efforts.
You have to use real tin.
HTH, Ian
Jules Gilbert via freebsd-security
Oct 6, 2016, 7:03:25 AM10/6/16
to freebsd-...@freebsd.org
To: Ian Smith <smi...@nimnet.asn.au>
Sent: Thursday, October 6, 2016 10:08 AM
Subject: Re: Fw: isn't this the worst possible report?? -- i went back and put a copy on a memstick; see attachment
what is wrong with you, Mr. Smith -- I was hit, I'm getting attacked by someone obviously skilled in such arts, and rather than trying to help or if not that, being silent, you're being a jerk. Why?, why would you do that??
If you think my work a fraud -- well, I give away that demo program for a reason!, run it, try it. If it doesn't do what I say then you would have a complaint, but surely not yet, I posted it only five hours ago... My guess, you're just a bully at heart.
TO OTHERS: Please help me; I blog at: emmettbrownblog.wordpress.com
My current work isn't related tile compression, that's done. Now I'm trying to design a Key-Exhange system for passing information to a prior-time receiver station. In fact I'm working on a demo of modest power. I really need the 'net!
Sent: Thursday, October 6, 2016 10:08 AM
Subject: Re: Fw: isn't this the worst possible report?? -- i went back and put a copy on a memstick; see attachment
what is wrong with you, Mr. Smith -- I was hit, I'm getting attacked by someone obviously skilled in such arts, and rather than trying to help or if not that, being silent, you're being a jerk. Why?, why would you do that??
If you think my work a fraud -- well, I give away that demo program for a reason!, run it, try it. If it doesn't do what I say then you would have a complaint, but surely not yet, I posted it only five hours ago... My guess, you're just a bully at heart.
TO OTHERS: Please help me; I blog at: emmettbrownblog.wordpress.com
My current work isn't related tile compression, that's done. Now I'm trying to design a Key-Exhange system for passing information to a prior-time receiver station. In fact I'm working on a demo of modest power. I really need the 'net!
Lowell Gilbert
Oct 6, 2016, 9:24:10 AM10/6/16
to freebsd-...@freebsd.org
Ian Smith <smi...@nimnet.asn.au> writes:
> On Thu, 6 Oct 2016 02:12:25 +0000, Jules Gilbert via freebsd-security wrote:
>
> > But please help me. These attacks are limiting my work efforts.
>
> A lot of people make the mistake of using cheap aluminium foil.
>
> You have to use real tin.
Jules Gilbert has been peddling the data-compression equivalent of
> On Thu, 6 Oct 2016 02:12:25 +0000, Jules Gilbert via freebsd-security wrote:
>
> > But please help me. These attacks are limiting my work efforts.
>
> A lot of people make the mistake of using cheap aluminium foil.
>
> You have to use real tin.
perpetual motion machines in various fora for over two decades
now. Neither insults nor ignoring him have been effective ways of
getting him to go away.
Jules Gilbert via freebsd-security
Oct 6, 2016, 9:44:13 AM10/6/16
to Lowell Gilbert, freebsd-...@freebsd.org
Have you run the demo program I attached? Because your remarks are well, you can't tell the turth even on cnce in a row. I guess you're still working on twice...)
Fact1: Yes I have been involved in compression work for two decades. (I wonder Lowell, two decades ago, did you even know what a computer was??)
Fact2: Yes I have a working system, and because it is pretty novel I give away the demo. It does what I say, eg., it predicts byte values in files that may not even exist at the time the program is run.
What the demo does is to predict the arithmetic relation, ("r >= d"), where 'd' is a client data value, and it's right 75% of the time. Since this is a demo, it does look at the client file, but only to calculate the match success.
And Lowell, change your name!, I don't want people to think you're a relative...
This will be my last post here... I would like help securing my computer -- I've always regarded Linux as the weaker/dumber sibling of FreeBSD. But now, to get on the net free of hacking, I'm using a Lubuntu CD-ROM. Anyway...
Fact1: Yes I have been involved in compression work for two decades. (I wonder Lowell, two decades ago, did you even know what a computer was??)
Fact2: Yes I have a working system, and because it is pretty novel I give away the demo. It does what I say, eg., it predicts byte values in files that may not even exist at the time the program is run.
What the demo does is to predict the arithmetic relation, ("r >= d"), where 'd' is a client data value, and it's right 75% of the time. Since this is a demo, it does look at the client file, but only to calculate the match success.
And Lowell, change your name!, I don't want people to think you're a relative...
This will be my last post here... I would like help securing my computer -- I've always regarded Linux as the weaker/dumber sibling of FreeBSD. But now, to get on the net free of hacking, I'm using a Lubuntu CD-ROM. Anyway...
0 new messages