I'm not from the iceweasel team, but I can assure you that most, if not
all, of the bugs in Firefox have been accidental.
If you are concerned about privacy (which is a good thing!), then I
recommend that you use the Tor browser.
If you don't trust that because it's based on Firefox, then try to
On 06/02/15 02:58, Korte wrote:
> On Thu, 5 Feb 2015 08:35:08 -0500
> Michael Stone wrote:
>
>> [I suggested using ftp.us.debian.org rather than http.debian.net because
>> of problems with squeeze-lts on the latter]
>>
>> On Thu, Feb 05, 2015 at 01:57:34PM +0100, Ml Ml wrote:
>>> Looks good!
>>>
> running, for example `dictd -s regexp [a-z]` would return the entire
Sorry; I mean `dict -s regexp [a-z].
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54bc8b
concern is that for larger dictionaries, an attacker could repeatedly
make requests for significant portions of the dictionary, thus leading
to denial of service. This could potentially be mitigated by imposing a
limit on the amount of data that can be sent per request.
Yours sincerely,
Riley Baird
tion about signify can be obtained from
http://www.tedunangst.com/flak/post/signify
Yours sincerely,
Riley Baird
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54ae2908.60...@bitmessage.ch
On 02/12/14 20:11, Kalai Nbm wrote:
> Plz help kernal version upload
Can you be any more specific?
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/547d9e36.4010..
code.
>
> Regards
> Leslie
> Mr. Leslie Satenstein
> Montréal Québec, Canada
>
>
>
> From: Riley Baird
> To: Leslie S Satenstein
> Cc: "debian-security@lists.debian.org"
> Sent: Sunday, November 2, 2014 12:09 AM
> Subject: Re: streql
max_time.
>
> What is the application requirement that requires a waste of cpu cycles to
> yield constant time? It is not for security, or multitasking, so what is it?
> Regards
> Leslie
> Mr. Leslie Satenstein
> Montréal Québec, Canada
>
>
>
>
>> Would you be willing to sponsor the upstream streql,
>
> Not sure what you mean there.
I was asking if you would be able to upload the Debian package of streql
that I made into the Debian archive. When I wrote it, I thought you were
a DD, but upon checking it seems that you aren't. So, are the
nstant-time string comparison
>
> Here's the result of my work to this point:
>
> ---
> /* Near-constant run time string/memory compare, with test frame.
> ** by Joel Rees,
> ** derived from work by Peter Scott, Riley Baird, et. al., see
> ** https://lists.deb
n
>
> I gotta quit coding when I should be asleep.
>
> On Fri, Oct 31, 2014 at 12:38 AM, Joel Rees wrote:
>> Here's the result of my work to this point:
>>
>> ---
>> /* Near-constant run time string/memory compare, with test frame.
>
ory compare, with test frame.
>> ** by Joel Rees,
>> ** derived from work by Peter Scott, Riley Baird, et. al., see
>> ** https://lists.debian.org/debian-security/2014/10/msg00060.html
>> ** https://github.com/PeterScott/streql
>> **
>> ** Use allowed under GPL
gt; Regards
> Leslie
> Mr. Leslie Satenstein
> Montréal Québec, Canada
>
>
>
> From: Riley Baird
> To: Leslie S Satenstein
> Cc: "debian-security@lists.debian.org" ;
> 765...@bugs.debian.org
> Sent: Wednesday, October 29, 2014 4:16 PM
&
ose the files are in the order of 200,000 records each. Or, if in
> banking, or government applications, in the order of 20 million records per
> file.
>
> Regards
> Leslie
> Mr. Leslie Satenstein
> Montréal Québec, Canada
>
>
>
> From: Riley Baird
>
On 30/10/14 01:34, Leslie S Satenstein wrote:
> Hi Riley
>
> Suppose the strings are 10k bytes each (10240), but they differ at byte zero,
> where is the break instruction to stop the compare?
Why would there need to be a break instruction? That would mean that the
time taken to compare strings
On 29/10/14 19:55, Richard van den Berg wrote:
> On 28-10-14 20:59 , Riley Baird wrote:
>> As far as I can tell, your code ensures that even if the strings are of
>> different length, an equality calculation should be performed anyway,
>> however returning 0, on the grounds th
On 29/10/14 17:00, Joel Rees wrote:
> 2014/10/29 4:59 "Riley Baird" <
> bm-2cvqnduybau5do2dfjtrn7zbaj246s4...@bitmessage.ch>:
>>
>> On 29/10/14 00:20, Joel Rees wrote:
>>> On Tue, Oct 28, 2014 at 12:08 PM, Riley Baird
>>> wrote:
>>>>
On 29/10/14 00:20, Joel Rees wrote:
> On Tue, Oct 28, 2014 at 12:08 PM, Riley Baird
> wrote:
>> Dear debian-security,
>>
>> I am looking for a sponsor for my package "streql".
>>
>> In Python, the code for testing the equality of strings is suscept
, one can download the package with dget using this command:
dget -x
http://mentors.debian.net/debian/pool/main/s/streql/streql_3.0.2-1.dsc
Changes since last upload:
* Initial release (Closes: #764443)
Regards,
Riley Baird
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
19 matches
Mail list logo
