Marko Rauhamaa writes:
> It is also correct that /dev/urandom depletes the entropy pool as
> effectively as /dev/random.
I think see what's confusing you: the above is a misconception that is
probably held by lots of people. Entropy is not water and from a
cryptographic standpoint there is esse
Steven D'Aprano :
> On Tue, 23 Feb 2016 06:32 am, Marko Rauhamaa wrote:
>> Under Linux, /dev/random is the way to go when strong security is
>> needed. Note that /dev/random is a scarce resource on ordinary
>> systems.
>
> That's actually incorrect, but you're not the only one to have been
> misle
This site was recommended by a friend, it looks really well put
together, I thought it might be of interest to people considering online
tutorials.
http://www.python-course.eu/index.php
--
https://mail.python.org/mailman/listinfo/python-list
Chris Angelico writes:
> How much future are you expecting?
This is old but its methodology still seems ok:
http://saluc.engr.uconn.edu/refs/keymgr/blaze95minimalkeylength.pdf
I also like this:
http://cr.yp.to/talks/2015.10.05/slides-djb-20151005-a4.pdf
Quote (slide 37):
The crypto us
On Tue, Feb 23, 2016 at 1:27 PM, Paul Rubin wrote:
> 3) The default token length should be long enough to not have to "change
> in the future". If the user wants a shorter token, they ask for that,
> or can truncate a longer one that they receive from the default.
How much future are you e
Steven D'Aprano writes:
> https://www.python.org/dev/peps/pep-0506/
I didn't know about this! The discussion was all on mailing lists?
A few things I suggest changing:
1) the default system RNG for Linux should be getrandom(2) on kernels
that support it (3.17 and later).
2) Some effort
On 2016-02-23, Ben Finney wrote:
> Oscar Benjamin writes:
>> What does unpredictable mean in this context? Maybe I'm reading too
>> much into that...
>
> I think you may be, yes. The request in this thread requires making
> direct use of the “generate a new valid temporary fielsystem path”
> func
On Tue, Feb 23, 2016 at 11:44 AM, Jon Ribbens
wrote:
> On 2016-02-23, Chris Angelico wrote:
>> On Tue, Feb 23, 2016 at 11:26 AM, Jon Ribbens
>> wrote:
>>> On 2016-02-23, Chris Angelico wrote:
On Tue, Feb 23, 2016 at 11:08 AM, Jon Ribbens
wrote:
>> If you generate 2**128 + 1 such nu
On 2016-02-23, Chris Angelico wrote:
> On Tue, Feb 23, 2016 at 11:26 AM, Jon Ribbens
> wrote:
>> On 2016-02-23, Chris Angelico wrote:
>>> On Tue, Feb 23, 2016 at 11:08 AM, Jon Ribbens
>>> wrote:
> If you generate 2**128 + 1 such numbers, you are *guaranteed* to
... have expired due
On Mon, Feb 22, 2016 at 3:16 PM, Sven R. Kunze wrote:
> Is something like shown in 12:50 ( cout << tcp_reader(1000).get() ) possible
> with asyncio? (tcp_reader would be async def)
loop = asyncio.get_event_loop()
print(loop.run_until_complete(tcp_reader(1000)))
--
https://mail.python.org/mailman
On Tue, 23 Feb 2016 06:32 am, Marko Rauhamaa wrote:
> Jon Ribbens :
>
>> Suppose you had code like this:
>>
>> filename = binascii.hexlify(os.urandom(16)).decode("ascii")
>>
>> Do we really think that is insecure or that there are any practical
>> attacks against it? It would be basically the s
On Tue, Feb 23, 2016 at 11:26 AM, Jon Ribbens
wrote:
> On 2016-02-23, Chris Angelico wrote:
>> On Tue, Feb 23, 2016 at 11:08 AM, Jon Ribbens
>> wrote:
If you generate 2**128 + 1 such numbers, you are *guaranteed* to
>>>
>>> ... have expired due to the heat death of the universe.
>>
>> Maybe.
Oscar Benjamin writes:
> What does unpredictable mean in this context? Maybe I'm reading too
> much into that...
I think you may be, yes. The request in this thread requires making
direct use of the “generate a new valid temporary fielsystem path”
functionality already implemented in ‘tempfile’.
On 2016-02-23, Chris Angelico wrote:
> On Tue, Feb 23, 2016 at 11:08 AM, Jon Ribbens
> wrote:
>>> If you generate 2**128 + 1 such numbers, you are *guaranteed* to
>>
>> ... have expired due to the heat death of the universe.
>
> Maybe... but by the time you get to 2**64 of them, you have a 50%
> c
On Tue, 23 Feb 2016 05:17 am, Jon Ribbens wrote:
> On 2016-02-22, Ethan Furman wrote:
>> On 02/14/2016 04:08 PM, Ben Finney wrote:
>>> I am unconcerned with whether there is a real filesystem entry of that
>>> name; the goal entails having no filesystem activity for this. I want a
>>> valid uniqu
On Tue, Feb 23, 2016 at 11:08 AM, Jon Ribbens
wrote:
> On 2016-02-22, Steven D'Aprano wrote:
>> On Tue, 23 Feb 2016 05:48 am, Marko Rauhamaa wrote:
>>> Jon Ribbens :
I was under the impression that the point of UUIDs is that you can be
*so* confident that there won't be a collision that
On 2016-02-22, Steven D'Aprano wrote:
> On Tue, 23 Feb 2016 05:48 am, Marko Rauhamaa wrote:
>> Jon Ribbens :
>>> I was under the impression that the point of UUIDs is that you can be
>>> *so* confident that there won't be a collision that for all practical
>>> purposes it's indistinguishable from
On 2016-02-23, Steven D'Aprano wrote:
> On Tue, 23 Feb 2016 06:22 am, Jon Ribbens wrote:
>> Suppose you had code like this:
>>
>> filename = binascii.hexlify(os.urandom(16)).decode("ascii")
>>
>> Do we really think that is insecure or that there are any practical
>> attacks against it? It would
On Tue, 23 Feb 2016 06:22 am, Jon Ribbens wrote:
> Suppose you had code like this:
>
> filename = binascii.hexlify(os.urandom(16)).decode("ascii")
>
> Do we really think that is insecure or that there are any practical
> attacks against it? It would be basically the same as saying that
> urandom
On 22 Feb 2016 22:50, "Ben Finney" wrote:
>
> Ethan Furman writes:
>
> > On 02/14/2016 04:08 PM, Ben Finney wrote:
> >
> > > I am unconcerned with whether there is a real filesystem entry of that
> > > name; the goal entails having no filesystem activity for this. I want
a
> > > valid unique file
On Tue, 23 Feb 2016 06:22 am, Paul Rubin wrote:
> Chris Angelico writes:
>>> I was under the impression that the point of UUIDs is that you can be
>>> *so* confident that there won't be a collision that for all practical
>>> purposes it's indistinguishable from being certain.
>> Maybe, if everyon
On Tue, 23 Feb 2016 05:48 am, Marko Rauhamaa wrote:
> Jon Ribbens :
>
>> I was under the impression that the point of UUIDs is that you can be
>> *so* confident that there won't be a collision that for all practical
>> purposes it's indistinguishable from being certain.
>
> Yes, if you generate
Marko Rauhamaa writes:
http://www.2uo.de/myths-about-urandom/
>> I don't know what web pamphlet you mean,
> The only one linked above.
Oh, I wouldn't have called that a pamphlet. I could quibble with the
writing style but the points in the article are basically correct.
> getrandom(2) is a
On 22Feb2016 12:34, Alan Bawden wrote:
Cameron Simpson writes:
On 16Feb2016 19:24, Alan Bawden wrote:
So in the FIFO case, I might write something like the following:
def make_temp_fifo(mode=0o600):
while True:
path = tempfile.mktemp()
try:
os
On 02/22/2016 02:25 PM, Cameron Simpson wrote:
On 22Feb2016 10:11, Ethan Furman wrote:
On 02/14/2016 04:08 PM, Ben Finney wrote:
I am unconcerned with whether there is a real filesystem entry of that
name; the goal entails having no filesystem activity for this. I want a
valid unique filesyst
Ethan Furman writes:
> On 02/14/2016 04:08 PM, Ben Finney wrote:
>
> > I am unconcerned with whether there is a real filesystem entry of that
> > name; the goal entails having no filesystem activity for this. I want a
> > valid unique filesystem path, without touching the filesystem.
>
> This is
On 22Feb2016 10:11, Ethan Furman wrote:
On 02/14/2016 04:08 PM, Ben Finney wrote:
I am unconcerned with whether there is a real filesystem entry of that
name; the goal entails having no filesystem activity for this. I want a
valid unique filesystem path, without touching the filesystem.
This
On 20.02.2016 07:53, Christian Gollwitzer wrote:
If you have difficulties wit hthe overall concept, and if you are open
to discussions in another language, take a look at this video:
https://channel9.msdn.com/Shows/C9-GoingNative/GoingNative-39-await-co-routines
MS has added coroutine suppo
BartC wrote:
Our system must have been more advanced then, or designed for training.
We used a time-sharing 'dec-system 10' and it was usually accessed via
interactive terminals, either teletypes or the odd VDU.
According to Wikipedia the first interactive version of
Dartmouth BASIC appeared i
Paul Rubin :
>>> http://www.2uo.de/myths-about-urandom/
>> Did you post the link because you agreed with the Web pamphlet?
>
> I don't know what web pamphlet you mean,
The only one linked above.
Cryptography is tricky business, indeed. I know enough about it not to
improvise too much. Infinitesi
Marko Rauhamaa writes:
>> http://www.2uo.de/myths-about-urandom/
> Did you post the link because you agreed with the Web pamphlet?
I don't know what web pamphlet you mean, but the right thing to use now
is getrandom(2). The random/urandom interface was poorly designed and
misleadingly documented
Random832 :
> On Mon, Feb 22, 2016, at 14:32, Marko Rauhamaa wrote:
>> urandom() is not quite random and so should not be considered
>> cryptographically airtight.
>>
>> Under Linux, /dev/random is the way to go when strong security is
>> needed. Note that /dev/random is a scarce resource on ordi
On Mon, Feb 22, 2016, at 14:32, Marko Rauhamaa wrote:
> urandom() is not quite random and so should not be considered
> cryptographically airtight.
>
> Under Linux, /dev/random is the way to go when strong security is
> needed. Note that /dev/random is a scarce resource on ordinary systems.
http:
On Tue, Feb 23, 2016 at 6:22 AM, Jon Ribbens
wrote:
>> Maybe, if everyone's cooperating. I'm not sure how they fare in the
>> face of malice though.
>
> Suppose you had code like this:
>
> filename = binascii.hexlify(os.urandom(16)).decode("ascii")
>
> Do we really think that is insecure or that
Jon Ribbens :
> Suppose you had code like this:
>
> filename = binascii.hexlify(os.urandom(16)).decode("ascii")
>
> Do we really think that is insecure or that there are any practical
> attacks against it? It would be basically the same as saying that
> urandom() is broken, surely?
urandom() is
On 2016-02-22, Chris Angelico wrote:
> On Tue, Feb 23, 2016 at 5:39 AM, Jon Ribbens
> wrote:
>> On 2016-02-22, Chris Angelico wrote:
>>> On Tue, Feb 23, 2016 at 5:17 AM, Jon Ribbens
>>> wrote:
Weell, I have a lot of sympathy for that point, but on the other
hand the whole concept of
Chris Angelico writes:
>> I was under the impression that the point of UUIDs is that you can be
>> *so* confident that there won't be a collision that for all practical
>> purposes it's indistinguishable from being certain.
> Maybe, if everyone's cooperating. I'm not sure how they fare in the
> fa
El martes, 22 de diciembre de 2015, 13:46:01 (UTC-3), eryk sun escribió:
> On Tue, Dec 22, 2015 at 8:02 AM, muizz hasan wrote:
> > Hi there! I've been recently trying to install Python for Windows 10
> > and I've been encountering some issues. Every time i try to install
> > the program it just s
On Tue, Feb 23, 2016 at 5:39 AM, Jon Ribbens
wrote:
> On 2016-02-22, Chris Angelico wrote:
>> On Tue, Feb 23, 2016 at 5:17 AM, Jon Ribbens
>> wrote:
>>> Weell, I have a lot of sympathy for that point, but on the other
>>> hand the whole concept of UUIDs ("import uuid") is predicated on the
>>
Le dimanche 21 février 2016 11:42:33 UTC+1, cpol...@gmail.com a écrit :
> Hello,
>
> There is an issue with PyPDF2 and merging file
> https://github.com/mstamy2/PyPDF2/issues/189
>
> Does anybody know an alternate library to merge PDF and produce optimized pdf
> file ?
>
> Thanks a lot
>
> Cle
Jon Ribbens :
> I was under the impression that the point of UUIDs is that you can be
> *so* confident that there won't be a collision that for all practical
> purposes it's indistinguishable from being certain.
Yes, if you generate a random 128-bit number, it will be unique --
unless someone clo
On 2016-02-22, Chris Angelico wrote:
> On Tue, Feb 23, 2016 at 5:17 AM, Jon Ribbens
> wrote:
>> Weell, I have a lot of sympathy for that point, but on the other
>> hand the whole concept of UUIDs ("import uuid") is predicated on the
>> opposite assumption.
>
> Not quite opposite. Ethan is asse
On 2016-02-22, Ethan Furman wrote:
> On 02/14/2016 04:08 PM, Ben Finney wrote:
>> I am unconcerned with whether there is a real filesystem entry of that
>> name; the goal entails having no filesystem activity for this. I want a
>> valid unique filesystem path, without touching the filesystem.
>
>
On Tue, Feb 23, 2016 at 5:17 AM, Jon Ribbens
wrote:
> On 2016-02-22, Ethan Furman wrote:
>> On 02/14/2016 04:08 PM, Ben Finney wrote:
>>> I am unconcerned with whether there is a real filesystem entry of that
>>> name; the goal entails having no filesystem activity for this. I want a
>>> valid un
On 02/14/2016 04:08 PM, Ben Finney wrote:
I am unconcerned with whether there is a real filesystem entry of that
name; the goal entails having no filesystem activity for this. I want a
valid unique filesystem path, without touching the filesystem.
This is impossible. If you don't touch the fi
Cameron Simpson writes:
> On 16Feb2016 19:24, Alan Bawden wrote:
>>So in the FIFO case, I might write something like the following:
>>
>>def make_temp_fifo(mode=0o600):
>>while True:
>>path = tempfile.mktemp()
>>try:
>>os.mkfifo(path, mode=mode
On 22/02/2016 10:46, Steven D'Aprano wrote:
On Mon, 22 Feb 2016 08:52 am, Jussi Piitulainen wrote:
BartC writes:
IIRC, the first programming exercise I ever did (in 1976 using Algol
60) involved reading 3 numbers from the teletype and working out if
those could form sides of a triangle.
Th
On Mon, Feb 22, 2016 at 8:38 AM, Arshpreet Singh wrote:
> On Monday, 22 February 2016 19:05:24 UTC+5:30, Peter Otten wrote:
>> or the slightly less convoluted
>>
>> sys.stdout.writelines(map("{}\n".format, read_pdf("book.pdf")))
>
> Actually I am using this function in Android App which is being
On Tue, Feb 23, 2016 at 2:38 AM, Arshpreet Singh wrote:
>> next(filter(print, read_pdf("book.pdf")), None)
>
> Why we are w=using filter here?
It's a beautiful hack. It'll filter according to the "print"
predicate, which always returns None, and will thus filter everything
out. One single call to
On Monday, 22 February 2016 19:05:24 UTC+5:30, Peter Otten wrote:
> Arshpreet Singh wrote:
>
> > Hi, I am converting PDF into text file, I am using following code.
> >
> > from pypdf2 import PdfFileReader
> >
> > def read_pdf(pdfFileName):
> >
> > pdf = PdfFileReader(pdfFileName)
> >
> >
On Mon, Feb 22, 2016, at 05:46, Steven D'Aprano wrote:
> Jussi, I think you have an inflated expectation of what was available in
> 1976. Command line? What's that? Programs ran in batch mode,
> and 'interactive' meant that you could easily slip out one punched card,
> replace it with a different o
Arshpreet Singh wrote:
> Hi, I am converting PDF into text file, I am using following code.
>
> from pypdf2 import PdfFileReader
>
> def read_pdf(pdfFileName):
>
> pdf = PdfFileReader(pdfFileName)
>
> yield from (pg.extractText() for pg in pdf.pages)
>
> for i in read_pdf('book.pdf'):
On Mon, Feb 22, 2016 at 11:51 PM, BartC wrote:
> Yes, I mentioned that point. In the OP's language, the variables can be
> declared as a particular type; in Python they could perhaps be 'declared' by
> first assigning with 0, 0.0 or "" for example. But that would need reference
> parameters to mak
On 22/02/2016 11:16, Steven D'Aprano wrote:
On Mon, 22 Feb 2016 12:16 am, BartC wrote:
[...]
No need for anyone to re-invent the
wheel! ;-)
I keep seeing this in the thread. Python has all this capability, yet it
still requires a lot of fiddly code to be added to get anywhere near as
simple
After the Call for Proposals for EuroPython 2016 last week, we are now
calling out to everyone interested in signing up as EuroPython
attendee early. You will be able to benefit from reduced ticket prices
for a short period of time.
Our early bird ticket sales are limited to 300 tickets. Regular s
On 22/02/2016 08:50, Jussi Piitulainen wrote:
BartC writes:
Reading stuff from an interactive console or terminal, is such an
important part of the history of computing, still being used now, that
you'd think a language would provide simple, ready-to-use methods ways
to do it.
I think it doe
On Sunday, 21 February 2016 21:21:54 UTC+5:30, Skip Montanaro wrote:
> This isn't strictly a Python question, however... Once I get myself
> authenticated, I intend to use the Python Google API to pump archived
> mail messages from a few defunct mailing lists into Google Groups. I
> thought it wou
Steven D'Aprano writes:
> On Mon, 22 Feb 2016 08:52 am, Jussi Piitulainen wrote:
>
>> BartC writes:
>
>>> IIRC, the first programming exercise I ever did (in 1976 using Algol
>>> 60) involved reading 3 numbers from the teletype and working out if
>>> those could form sides of a triangle.
>>
>> Th
Hi, I am converting PDF into text file, I am using following code.
from pypdf2 import PdfFileReader
def read_pdf(pdfFileName):
pdf = PdfFileReader(pdfFileName)
yield from (pg.extractText() for pg in pdf.pages)
for i in read_pdf('book.pdf'):
print(i)
I want to avoid for
On Mon, 22 Feb 2016 12:16 am, BartC wrote:
[...]
>> No need for anyone to re-invent the
>> wheel! ;-)
>
> I keep seeing this in the thread. Python has all this capability, yet it
> still requires a lot of fiddly code to be added to get anywhere near as
> simple as this:
>
>read f, a, b, c
On Mon, 22 Feb 2016 08:52 am, Jussi Piitulainen wrote:
> BartC writes:
>> IIRC, the first programming exercise I ever did (in 1976 using Algol
>> 60) involved reading 3 numbers from the teletype and working out if
>> those could form sides of a triangle.
>
> That was a lousy user interface even
On Mon, 22 Feb 2016 03:12 am, Ganesh Pal wrote:
> Hi Team,
>
> Iam on python 2.6 , need input on the below piece of code.
>
>
> EXIT_STATUS_ERROR=1
>
> def create_dataset():
> """
> """
> logging.info("Dataset create.Started !!!")
> try:
> if os.path.ismount("/nfs_
Dear all,
SciPy 2016, the Fifteenth Annual Conference on Python in Science, takes
place in Austin, TX on July, 11th to 17th. The conference features two days
of tutorials by followed by three days of presentations, and concludes with
two days of developer sprints on projects of interest to attende
On Mon, Feb 22, 2016 at 7:40 PM, Klaus Jantzen wrote:
>That did not work because I did not install Python 3.5. with apt-get
>but downloaded the source and compiled myself.
>Thus apt-get does not have any information about the Python 3.5
>installation.
It generally does work; the b
BartC writes:
> On 21/02/2016 21:52, Jussi Piitulainen wrote:
[...]
> def istriangle(*threeintegers):
>> a,b,c = sorted(threeintegers)
>> return a*a + b*b == c*c
>
> (That detects right-angled triangles. I think 'return a+b>c' is the
> correct test for any triangle. It beco
On 02/22/2016 02:44 AM, Chris Angelico wrote:
On Mon, Feb 22, 2016 at 8:37 AM, Albert-Jan Roskam
[1] wrote:
IIRC, you have to do
sudo apt-get install build-essential python-dev
... then re-compile python
That may well work, but it's probably easier to work this way:
sudo apt-get build
On 02/21/2016 10:37 PM, Albert-Jan Roskam wrote:
(Sorry for top posting)
IIRC, you have to do
sudo apt-get install build-essential python-dev
... then re-compile python
> To: [1]python-list@python.org
> From: [2]k.d.jant...@mailbox.org
> Subject: SQLite
Note that you can continue using your existing vb6 code from python through COM
using pywin32 or pythonnet, until you decide to rewrite it.
--
https://mail.python.org/mailman/listinfo/python-list
68 matches
Mail list logo
