shoki@lemmy.world to linuxmemes@lemmy.world · 4 months ago-----BEGIN PGP SIGNED MEME-----lemmy.worldimagemessage-square22fedilinkarrow-up1513arrow-down19
arrow-up1504arrow-down1image-----BEGIN PGP SIGNED MEME-----lemmy.worldshoki@lemmy.world to linuxmemes@lemmy.world · 4 months agomessage-square22fedilink
minus-squarewhoareu@lemmy.calinkfedilinkarrow-up49·4 months agoHas anyone confirmed that signature? I think it’s not possible to have the signature as a part of the data itself. Kinda chicken egg problem
minus-squareLeFrog@discuss.tchncs.delinkfedilinkarrow-up64arrow-down1·edit-24 months agoHere you go: https://www.bleepingcomputer.com/news/security/this-image-shows-its-own-md5-checksum-and-its-kind-of-a-big-deal/ (MD5 is not PGP, but impressive nonetheless)
minus-squareFarid@startrek.websitelinkfedilinkarrow-up20·4 months agoI opened the comment section to ask if it was possible to have an image with its own hash. Thanks.
minus-squareqprimed@lemmy.mllinkfedilinkEnglisharrow-up9·edit-24 months agomd5 has been broken for years, but thats pretty damn cool scary.
minus-squareManifish_Destiny@lemmy.worldlinkfedilinkarrow-up7·4 months agoYeah that only due to md5 hash collisions though. That wouldn’t work on sha for example
minus-squareshoki@lemmy.worldOPlinkfedilinkarrow-up20·edit-24 months ago*whispers* I stole that signature from cryptostorms warrant canary: https://cryptostorm.is/canary.txt
minus-squareSteamymoomilk@sh.itjust.workslinkfedilinkEnglisharrow-up7·4 months agoHold on I gotta pgp sign my PGP sign so my pgp is signed and I know who it came from.
minus-squareZiglin@lemmy.worldlinkfedilinkarrow-up5·4 months agoIt might be possible to keep signing with a different key until it matches. But I assume the signature is of the above text.
minus-squarerivvvver@lemmy.dbzer0.comlinkfedilinkarrow-up4·edit-24 months agoyea would be interesting. but im also too lazy to type all that text in by hand to verify
minus-squarecheezoid2@sh.itjust.workslinkfedilinkarrow-up12·4 months agoHere: iQIzBAEBCgAdFiEETYf5hKIig5JX/jalu9uZGunHyUIFAmaB8YEACgkQu9uZGunH yUKi7Q/+OJPzHWfGPtzk53KnMJ3C8KQGEUCzKkSKmE0ugdI 9h1Lj4SkvHpKWECK Y1GxNujMPRM/aAS2M97AEbtYolenWzgYm01wt131/hEG4tk+iYeB2Sfyvngbg5KI y4D7mapcVWYSf6S13vUX8VuyKeTxK6xdkp95E0wPVLfJwx505nHOnjLXxeW0IblY URLonem/yuBrJ6Ny3XX9+sKRKcdI9tOghMhTxPcQySXcTx1pAG7YE7G5UqTbJxis wy7LbYZB5Yy0F03CtRIkA+cclG4y2RMM9M9buHzXTWCyDuoQao68yEVh40dqwH1U 5AUnqdve5SiwygF/vc50Ila6VjJ4hyz1qVQnjqqD96p7CSVzVudLDDZMQZ8WvgLh gaEr51xJvH6p6/CP1ji4HHucbJf6BhtSqc8ID9KFfaXxjfZHiUtgsVDYMV0e7u9v 1hcDH/3kmw/JImX25qsEsBeQyzOJsBvx0YD31ZIwSY9+7KNGVQstFrEvCuVPHr72 BQJPIhg3+9g6m36+9Uhs1N6b8G9DsZ60gnNqr9dGturUg6CtRsLSpqoZq0ET9cLA tnFTJDaXgx1DZnsLGDSoQQYjZ3vS+YYZ8jG86KGLEyXVK+uSssvorm9YR1/GGOy7 suaxro72An+MxCczF5TIR9n3gisKvcwa8ZbdoaGd9cigyzWlYg8= =EgZm
minus-square Morphit @feddit.uklinkfedilinkarrow-up4·4 months ago----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEETYf5hKIig5JX/jalu9uZGunHyUIFAmaB8YEACgkQu9uZGunH yUKi7Q/+OJPzHWfGPtzk53KnMJ3GC8KQGEUCzKkSKmE0ugdI9h1Lj4SkvHpKWECK Y1GxNujMPRM/aAS2M97AEbtYolenWzgYmO1wt131/hEG4tk+iYeB2Sfyvngbg5KI y4D7mqpcVWYSf6S13vUX8VuyKeTxK6xdkp95E0wPVLfJwx5o5nH0njLXxeW0IblY URLonem/yuBrJ6Ny3XX9+sKRKcdI9tOqhMhTxPcQySXcTx1pAG7YE7G5UqTbJxis wy7LbYZB5Yy0FO3CtRIkA+cclG4y2RMM9M9buHzXTWCyDuoQao68yEVh4OdqwH1U 5AUnqdve5SiwygF/vc50Ila6VjJ4hyz1qVQnjqqD96p7CSVzVudLDDZMQZ8WvqLh qaFr51xJvH6p6/CP1ji4HHucbJf6BhtSqc8ID9KFfaXxjfZHiUtgsVDYMV0e7u9v lhcDH/3kmw/JImX25qsEsBeQyzOJsBvxOYD3lZrwSY9+7KNGVQstFrEvCuVPHr72 BQJPIhg3+9g6m36+9Uhs1N6b8G9DsZ6OgnNqr9dGturUg6CtRsLSpqoZq0FT9cLA tnFTJDaXgx1DZnsLGDSoQQYjZ3vS+YYZ8jG86KGLFyXVK+uSssvorm9YR1/GGOy7 suaxro72An+MxCczF5TIR9n3gisKvcwa8ZbdoaGd9cigyzWlYg8= =EgZm ----END PGP SIGNATURE-----
Has anyone confirmed that signature? I think it’s not possible to have the signature as a part of the data itself. Kinda chicken egg problem
Here you go:
https://www.bleepingcomputer.com/news/security/this-image-shows-its-own-md5-checksum-and-its-kind-of-a-big-deal/
(MD5 is not PGP, but impressive nonetheless)
I opened the comment section to ask if it was possible to have an image with its own hash.
Thanks.
md5 has been broken for years, but thats pretty damn
coolscary.Yeah that only due to md5 hash collisions though. That wouldn’t work on sha for example
*whispers* I stole that signature from cryptostorms warrant canary: https://cryptostorm.is/canary.txt
You fraud.
Hold on I gotta pgp sign my PGP sign so my pgp is signed and I know who it came from.
It might be possible to keep signing with a different key until it matches. But I assume the signature is of the above text.
yea would be interesting. but im also too lazy to type all that text in by hand to verify
Here:
iQIzBAEBCgAdFiEETYf5hKIig5JX/jalu9uZGunHyUIFAmaB8YEACgkQu9uZGunH yUKi7Q/+OJPzHWfGPtzk53KnMJ3C8KQGEUCzKkSKmE0ugdI 9h1Lj4SkvHpKWECK Y1GxNujMPRM/aAS2M97AEbtYolenWzgYm01wt131/hEG4tk+iYeB2Sfyvngbg5KI y4D7mapcVWYSf6S13vUX8VuyKeTxK6xdkp95E0wPVLfJwx505nHOnjLXxeW0IblY URLonem/yuBrJ6Ny3XX9+sKRKcdI9tOghMhTxPcQySXcTx1pAG7YE7G5UqTbJxis wy7LbYZB5Yy0F03CtRIkA+cclG4y2RMM9M9buHzXTWCyDuoQao68yEVh40dqwH1U 5AUnqdve5SiwygF/vc50Ila6VjJ4hyz1qVQnjqqD96p7CSVzVudLDDZMQZ8WvgLh gaEr51xJvH6p6/CP1ji4HHucbJf6BhtSqc8ID9KFfaXxjfZHiUtgsVDYMV0e7u9v 1hcDH/3kmw/JImX25qsEsBeQyzOJsBvx0YD31ZIwSY9+7KNGVQstFrEvCuVPHr72 BQJPIhg3+9g6m36+9Uhs1N6b8G9DsZ60gnNqr9dGturUg6CtRsLSpqoZq0ET9cLA tnFTJDaXgx1DZnsLGDSoQQYjZ3vS+YYZ8jG86KGLEyXVK+uSssvorm9YR1/GGOy7 suaxro72An+MxCczF5TIR9n3gisKvcwa8ZbdoaGd9cigyzWlYg8= =EgZm
deleted by creator