One Article Review
| Source |  Errata Security |
|---|---|
| Identifiant | 220692 |
| Date de publication | 2016-10-24 23:58:00 (vue: 2016-10-24 23:58:00) |
| Titre | Lamers: the problem with bounties |
| Texte | In my last two posts, I pointed out that the anti-spam technique known as "DKIM" cryptographically verifies emails. This can be used to verify that some of the newsworthy emails are, indeed, correct and haven't been doctored. I offer a 1 btc (one bitcoin, around ~$600 at current exchange rates) bounty if anybody can challenge this assertion.Unfortunately, bounties attract lamers who think they deserve the bounty. This faked email show _undetectable_ addition of cc: field (& other fields) and whitespace in email body; no tricks #PayUpRob @ErrataRob https://t.co/X8oUplx2UL- ((( Matt Beebe ))) (@VoteBeebe) October 25, 2016This guy insists he wins the bounty because he can add spaces to the email, and add fields like "Cc:" that DKIM doesn't check. Since DKIM ignores extra spaces and only checks important fields, these changes pass. The guy claims it's "doctored" because technically, he has changed things, even though he hasn't actually changed any of the important things (From, Date, Subject, and body content).No. This doesn't qualify for the bounty. It doesn't call into question whether the Wikileaks emails say what they appear to say. It's so obvious that people have already contacted me and passed on it, knowing it wouldn't win the bounty. If I'd pay out this bounty for this lameness, one of the 10 people who came up with the idea before this lamer would get this bounty, not him. It'd probably go to this guy:@ErrataRob super lame i know, but this does pass DKIM sig check in thunderbird. base64 here https://t.co/14EyaBKfNL pic.twitter.com/dG94f5lH8o- Philip (@_miw) October 22, 2016Let me get ahead of the lamers and point to more sophisticated stuff that also doesn't count. The following DKIM verified email appears to say that Hillary admitting she eats kittens. This would be newsworthy if true, and a winner of this bounty if indeed it could trick people. This is in fact also very lame. I mean, it's damn convincing, but only to lamers. You can see my trick by looking at the email on pastebin (http://pastebin.com/wRsnz0Y6) and comparing it to the original (https://wikileaks.org/podesta-emails/emailid/2986).The trick is that I've added extra From/Subject fields before the DKIM header, so DKIM doesn't see them. DKIM only sees the fields after. It tricks other validation tools, such as this online validator. However, email readers (Thunderbi |
| Envoyé | Oui |
| Condensat | #payuprob this 2016let 2016this @erratarob @votebeebe actually add added addition administrators admitting after ahead allows already also anti any anybody anything appear appears apple are around assertion attempted attempts attract away base64 because becoming beebe been before before the bitcoin body body; both bounties bounty btc btw bug but call calls came can cc: challenge changed changes check checked checks claims co/14eyabkfnl co/x8ouplx2ul com/dg94f5lh8o com/wrsnz0y6 companies comparing computers contacted content correct could count crypto cryptographically current damn convincing date dealing deserve display dkim doctor doctored does doesn don eat eats email emails emails/emailid/2986 even exchange extra fact faked far field fields fields:since find finding first fix following fooling from from/subject full get give good gun guy guy:@erratarob hack hacked hackers has hasn have haven header headers here hillary him however http://pastebin https://t https://wikileaks idea ignores illicit important incriminating indeed industry infosec innovative insists instantly intent interesting issues just kittens know knowing known lame lameness lamer lamers lamers: last like look looking magic mail matches matt mean might military miw modifications money more mostly must newsworthy not obvious october offer offers one online only org/podesta original other out outlook package partial pass passed pastebin pay paying people philip pic point pointed posts pox probably problem products provides qualify question rates raw readers real rely rules same say screenshot see sees she shenanigans show sig since smoking some somebody something sophisticated source spaces spam spend standard stuff subject subvert such super systems taken technically technique telling than them these things think though through thunderbird tight time tools trick tricks true twitter two undetectable unfortunately unwelcome upon used using validation validator verified verifies verify very viewing way ways what whereby whether whitespace who whole wikileaks will win winner wins without would wouldn ~$600 |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.