From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail
From: Jean Louis <bugs@gnu.support>
Newsgroups: gmane.emacs.help
Subject: Re: Noob dumb question (extending emacs)
Date: Mon, 25 Oct 2021 15:41:55 +0300
Message-ID: <YXamE+dRfUHvTZtj@protected.localdomain>
References: <YXL6Kkm3ycVJxKqH@protected.localdomain>
 <CAP_d_8U4CaWs7qegYeZrYJop5bzpESu-0E+Qmi6e0FxFo=jXeQ@mail.gmail.com>
 <YXMre/nIphjTAzuj@protected.localdomain> <875ytnzka1.fsf@zoho.eu>
 <YXUG7NvSXrp+oaR6@protected.localdomain> <87h7d6zrx9.fsf@zoho.eu>
 <YXWaxW5Pm6Wc0KZZ@protected.localdomain> <87fssqxp1s.fsf@zoho.eu>
 <YXZE/qvLZ/EOjs94@protected.localdomain>
 <CAP_d_8W6R+51-2JHm4gRZUZF2c8Kgt4-j+NNRkZGLjOBQTyh9w@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214";
	logging-data="31323"; mail-complaints-to="usenet@ciao.gmane.io"
User-Agent: Mutt/2.0.7+183 (3d24855) (2021-05-28)
Cc: help-gnu-emacs <help-gnu-emacs@gnu.org>
To: Yuri Khan <yuri.v.khan@gmail.com>
Original-X-From: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Mon Oct 25 14:58:13 2021
Return-path: <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org>
Envelope-to: geh-help-gnu-emacs@m.gmane-mx.org
Original-Received: from lists.gnu.org ([209.51.188.17])
	by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org>)
	id 1mezYK-0007sN-FV
	for geh-help-gnu-emacs@m.gmane-mx.org; Mon, 25 Oct 2021 14:58:12 +0200
Original-Received: from localhost ([::1]:57020 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org>)
	id 1mezYJ-0000PN-Ea
	for geh-help-gnu-emacs@m.gmane-mx.org; Mon, 25 Oct 2021 08:58:11 -0400
Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:57084)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <bugs@gnu.support>) id 1mezMS-00056x-Fd
 for help-gnu-emacs@gnu.org; Mon, 25 Oct 2021 08:45:57 -0400
Original-Received: from stw1.rcdrun.com ([217.170.207.13]:47501)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <bugs@gnu.support>) id 1mezMN-0000sY-Ms
 for help-gnu-emacs@gnu.org; Mon, 25 Oct 2021 08:45:54 -0400
Original-Received: from localhost ([::ffff:41.75.189.151])
 (AUTH: PLAIN admin, TLS: TLS1.3,256bits,ECDHE_RSA_AES_256_GCM_SHA384)
 by stw1.rcdrun.com with ESMTPSA
 id 0000000000027F1B.000000006176A6F8.00002075; Mon, 25 Oct 2021 05:45:43 -0700
Mail-Followup-To: Yuri Khan <yuri.v.khan@gmail.com>,
 help-gnu-emacs <help-gnu-emacs@gnu.org>
Content-Disposition: inline
In-Reply-To: <CAP_d_8W6R+51-2JHm4gRZUZF2c8Kgt4-j+NNRkZGLjOBQTyh9w@mail.gmail.com>
Received-SPF: pass client-ip=217.170.207.13; envelope-from=bugs@gnu.support;
 helo=stw1.rcdrun.com
X-Spam_score_int: -18
X-Spam_score: -1.9
X-Spam_bar: -
X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, SPF_HELO_PASS=-0.001,
 SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: help-gnu-emacs@gnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Users list for the GNU Emacs text editor <help-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/help-gnu-emacs>,
 <mailto:help-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/help-gnu-emacs>
List-Post: <mailto:help-gnu-emacs@gnu.org>
List-Help: <mailto:help-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/help-gnu-emacs>,
 <mailto:help-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org
Original-Sender: "help-gnu-emacs"
 <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org>
Xref: news.gmane.io gmane.emacs.help:134143
Archived-At: <http://permalink.gmane.org/gmane.emacs.help/134143>

* Yuri Khan <yuri.v.khan@gmail.com> [2021-10-25 12:42]:
> On Mon, 25 Oct 2021 at 12:55, Jean Louis <bugs@gnu.support> wrote:
> 
> > In science, if there is "security implication" then it has to be
> > proven. That is why breaking crypto requires a proof which is usually
> > program or exploit that breaks it, not just a theoretical statement.
> 
> In crypto science, an algorithm is considered compromised, for
> example, if it was previously thought to require a brute force search
> of 2^128 to break, and later shown to be breakable in 2^64 attempts.
> 
> A 20-letter password contains about 120 bits of information. A user
> who requests generation of such a password reasonably expects that the
> attacker would have to bruteforce 2^120 possibilities. However, your
> generation algorithm uses only 48 bits of entropy, so the attacker
> only has to search through 2^48 possible seeds, and maybe 2^5
> different generated password lengths, and breaks the password in 2^53
> attempts, or 2^67 ≈ 1.5*10^20 times faster than expected.

That is why I said, if it is "so the attacker only has to search
through 2^48 possible seeds" then please demonstrate it, search it and
prove what would be the next char in this password. I think 50 chars
will give you enough playground to find the seeds.

(rcd-password 50) ⇒ "YQAguCWdKEiR%OiEyjuKHcttCvyVOEt}pwG5HJoUirOdA6RBOa"

Once you find first seed, let me know, that I can pay the pizza for
you Yuri.

-- 
Jean

Take action in Free Software Foundation campaigns:
https://www.fsf.org/campaigns

In support of Richard M. Stallman
https://stallmansupport.org/