«

On 2010-09-03, Pubkeybreaker <> wrote:
> On Sep 3, 3:05?am, Ari Silverstein <AriSilverst...@yahoo.com> wrote:
>> On Thu, 2 Sep 2010 22:29:02 -0700, Joseph Ashwood wrote:
>> > "Mark Murray" <w.h.o...@example.com> wrote in message
>> >news:4c7fcd1f$0$2516$...
>> >> On 09/02/10 15:48, Pubkeybreaker wrote:
>>
>> >>> If you want your code vetted, ?you can hire me at $400.00/hr. ?And I
>> >>> do have both the required software and crypto background.
>>
>> >> Based on the above RSA detail missed, are you really worth $400 an hour?
>>
>> > Yes, he really is. He is a world renowned, world recognised, undeniably
>> > brilliant public key researcher with extensive experience in the research
>> > department of RSA Security. If anything $400/hour is not enough for his
>> > level of capability.
>>
>> > This is from someone who has been at odds with him on multiple occassions. I
>> > obviously have great respect for him, and more than once I have recommended
>> > him to my clients.
>>
>> > He is absolutely worth $400 an hour.
>> > ? ? ? ? ? ? ? ? ? ? Joe
>>
>> Damn, Joe, he'd better get $400/hr to pay you for this extra-glorious
>> endorsement.
>>
>> I kid.
>>
>> But you might give him a few lessons in following Usenet conversations
>> (who replied to whom) and using a newsreader, dumping Google Groups.
>
> And *YOU* might do something to reduce both your arrogance and your
> ignorance.
>
> Did it ever occur to you that I might have to work under certain
> restrictions?
>
> Did it ever occur to you that someone who works in information
> security for
> a DOD contractor might have such restrictions?
>

I suppose that is possible which would be totally bizare. Googlegroups
is pretty insecure, so how in the world can they allow you to go through
them? Besides google has assured us that they data mine the stuff going
through them. So your contractors do not mind?

> The answer is obvious: Of course it didn't occur to you.
>
> I use google groups because it is what I am allowed to access from my
> desk.

On Fri, 3 Sep 2010 04:52:07 -0700 (PDT), Pubkeybreaker wrote:

> On Sep 3, 3:05*am, Ari Silverstein <AriSilverst...@yahoo.com> wrote:
>> On Thu, 2 Sep 2010 22:29:02 -0700, Joseph Ashwood wrote:
>>> "Mark Murray" <w.h.o...@example.com> wrote in message
>>>news:4c7fcd1f$0$2516$. ..
>>>> On 09/02/10 15:48, Pubkeybreaker wrote:
>>
>>>>> If you want your code vetted, *you can hire me at $400.00/hr. *And I
>>>>> do have both the required software and crypto background.
>>
>>>> Based on the above RSA detail missed, are you really worth $400 an hour?
>>
>>> Yes, he really is. He is a world renowned, world recognised, undeniably
>>> brilliant public key researcher with extensive experience in the research
>>> department of RSA Security. If anything $400/hour is not enough for his
>>> level of capability.
>>
>>> This is from someone who has been at odds with him on multiple occassions. I
>>> obviously have great respect for him, and more than once I have recommended
>>> him to my clients.
>>
>>> He is absolutely worth $400 an hour.
>>> * * * * * * * * * * Joe
>>
>> Damn, Joe, he'd better get $400/hr to pay you for this extra-glorious
>> endorsement.
>>
>> I kid.
>>
>> But you might give him a few lessons in following Usenet conversations
>> (who replied to whom) and using a newsreader, dumping Google Groups.
>
> And *YOU* might do something to reduce both your arrogance and your
> ignorance.

I did. I just deleted your post.

*LOL
--
´Looking Above and Beyond the Ramp: A Study of Buffalo Studentsÿ
Attitudes toward Alternative Modes of Transportation"

On Fri, 03 Sep 2010 13:38:29 GMT, unruh wrote:

> On 2010-09-03, Pubkeybreaker <> wrote:
>> On Sep 3, 3:05?am, Ari Silverstein <AriSilverst...@yahoo.com> wrote:
>>> On Thu, 2 Sep 2010 22:29:02 -0700, Joseph Ashwood wrote:
>>> > "Mark Murray" <w.h.o...@example.com> wrote in message
>>> >news:4c7fcd1f$0$2516$...
>>> >> On 09/02/10 15:48, Pubkeybreaker wrote:
>>>
>>> >>> If you want your code vetted, ?you can hire me at $400.00/hr. ?And I
>>> >>> do have both the required software and crypto background.
>>>
>>> >> Based on the above RSA detail missed, are you really worth $400 an hour?
>>>
>>> > Yes, he really is. He is a world renowned, world recognised, undeniably
>>> > brilliant public key researcher with extensive experience in the research
>>> > department of RSA Security. If anything $400/hour is not enough for his
>>> > level of capability.
>>>
>>> > This is from someone who has been at odds with him on multiple occassions. I
>>> > obviously have great respect for him, and more than once I have recommended
>>> > him to my clients.
>>>
>>> > He is absolutely worth $400 an hour.
>>> > ? ? ? ? ? ? ? ? ? ? Joe
>>>
>>> Damn, Joe, he'd better get $400/hr to pay you for this extra-glorious
>>> endorsement.
>>>
>>> I kid.
>>>
>>> But you might give him a few lessons in following Usenet conversations
>>> (who replied to whom) and using a newsreader, dumping Google Groups.
>>
>> And *YOU* might do something to reduce both your arrogance and your
>> ignorance.
>>
>> Did it ever occur to you that I might have to work under certain
>> restrictions?
>>
>> Did it ever occur to you that someone who works in information
>> security for
>> a DOD contractor might have such restrictions?
>>
>
> I suppose that is possible which would be totally bizare. Googlegroups
> is pretty insecure, so how in the world can they allow you to go through
> them? Besides google has assured us that they data mine the stuff going
> through them. So your contractors do not mind?

And surely Bob does this accessing on his own time. At $400/hr, if I
found him ****ing around on Usenet leaving my corporate machine's
tracks all over GGroups, on his time or not, I'd drop him with his
termination papers at the nearest bus stop.

But that just me. The DoD I am sure is pleased with his outbound
efforts.
--
´Looking Above and Beyond the Ramp: A Study of Buffalo Studentsÿ
Attitudes toward Alternative Modes of Transportation"

On Fri, 3 Sep 2010 03:27:39 -0700 (PDT), Pubkeybreaker wrote:

> On Sep 3, 1:29*am, "Joseph Ashwood" <ashw...@msn.com> wrote:
>> "Mark Murray" <w.h.o...@example.com> wrote in message
>>
>
>> This is from someone who has been at odds with him on multiple occassions. I
>> obviously have great respect for him, and more than once I have recommended
>> him to my clients.
>>
>> He is absolutely worth $400 an hour.
>> * * * * * * * * * * Joe
>
> Thanks for the kind words.
>
> BTW:
>
> A typical big city lawyer charges this.

So does a NYC hooker, and more, and your point is....?
--
´Looking Above and Beyond the Ramp: A Study of Buffalo Studentsÿ
Attitudes toward Alternative Modes of Transportation"

On Sep 3, 3:38*pm, unruh <un...@wormhole.physics.ubc.ca> wrote:
> On 2010-09-03, Pubkeybreaker <pubkeybrea...@aol.com> wrote:
> > Did it ever occur to you that someone who works in information
> > security for
> > a DOD contractor might have such restrictions?
>
> I suppose that is possible which would be totally bizare. Googlegroups
> is pretty insecure, so how in the world can they allow you to go through
> them? Besides google has assured us that they data mine the stuff going
> through them. So your contractors do not mind?

How insecure? All what he posts there including his username is public
anyway, his email is easy to find out, and everybody knows it. What
remains is his googlegroups password, which (I hope) is not the same
as his password for the DoD. He uses a web browser, so what's the
risk?

On Sep 3, 5:55*pm, David Eather <eat...@tpg.com.au> wrote:
> Hey Trulymail is using the crypto library provided by Microsoft. Do you
> *really* trust a company that can't sort out how to add 2 unsigned
> 64-bit numbers even after 3 years of trying.

Could you please elaborate on this? A pointer would be nice.

On Wed, 01 Sep 2010 17:54:42 GMT, nemo_outis wrote:

> Ari Silverstein <> wrote in
> news::
>
> Ari the puppetmaster defends his puppet. How long before the
> puppet chimes in to defend the puppetmaster?

You blithering on, still, about Steve Terry being a sock? *LOL*

Take time to use G-o-o-g-l-e yet Old Man?
--
Talk about F-Cars - www.ferrarichat.com/forum/member.php?u=89702

"Ari Silverstein" <> wrote in message
news:...
> On Wed, 01 Sep 2010 17:54:42 GMT, nemo_outis wrote:
>
>> Ari Silverstein <> wrote in
>> news::
>>
>> Ari the puppetmaster defends his puppet. How long before the
>> puppet chimes in to defend the puppetmaster?
>
> You blithering on, still, about Steve Terry being a sock? *LOL*
>
> Take time to use G-o-o-g-l-e yet Old Man?
>
>
Google?!
He still has to get his mother to switch his PC on for him

I'm hard to find, i only have about 5000 usenet postings archived
since 1995

Steve Terry
--
"I would like to plead for my right to investigate natural phenomena
without having guns pointed at me.
I also ask for the right to be wrong without being hanged for it."
- Wilhelm Reich, November 1947

"Ari Silverstein" <> wrote in message
news:...
> Joe, I wouldn't expect a response from Trulymail, maybe I will be
> wrong. If Trulymail responds, there are only two outcomes. More
> self-inflicted ruination and heaping amounts of self-inflicted
> ruination.

I'm not expecting much either, it ticks too many checkboxes for snake-oil to
not have major mistakes.
Joe

"Mark Murray" <> wrote in message
news:4c80eaef$0$12164$...
> On 09/03/10 13:02, Pubkeybreaker wrote:
>> Do you have any idea as to the degree of pedantry that is required to
>> fully vet someone else's software?
>
> Somewhat.
>
> But I see that this debate has got so far into the splitting hairs
> domain that I suspect we are going to see quarks soon.
>
> The question "What algorithms do you use?" has been answered by the
> OP (VERY BADLY, I agree) as "RSA for keys and AES for the message",
> without giving any other useful detail.

There's far, far, far more to the algorithms question than RSA and AES, what
algorithm selects the primes for N? What algorithm protects the private key?
What chaining mode? What algorithm selects the symmetric keys? What
algorithm is used to pad the RSA plaintext? What signature method is used?
Is there a MAC? How is the MAC key determined? There are dozens of more
question. Beyond this the answer was far from clear, the 4096-bit key almost
certainly refers to RSA, but I have not seen a reasonable statement that
clearly states which symmetric algorithm (PROV_RSA_AES has RC2, RC4, and
AES).

Saying it uses PROV_RSA_AES does not answer any question.
Joe

Ari Silverstein wrote:

> On Fri, 3 Sep 2010 04:52:07 -0700 (PDT), Pubkeybreaker wrote:
>> And *YOU* might do something to reduce both your arrogance and your
>> ignorance.
>
> I did. I just deleted your post.
>
> *LOL

ROTFL!

Your wannabe Sliverdick ass just got mega-spanked by someone who IS the
expert your loser self lies about being, so you ran away like a mangina
with the very best you could muster in retaliation being the same old
boring "lol" inanity you fall back on as a last resort when all your
other inanities leave you cold.

Do you have ANY clue how pathetic you really are?