On Thursday 06 May 2010 14:58:34 Aidan Thornton wrote: > On Wed, May 5, 2010 at 8:30 PM, Matthew Toseland > <toad at amphibian.dyndns.org> wrote: > > Maybe we should always check signatures after generating them if the > > seclevel is sufficiently paranoid? > > > > http://news.bbc.co.uk/1/hi/technology/8637845.stm > > Probably not worthwhile except in very exotic circumstances; if the > attacker has the level of hardware access required to pull this trick > off, you're generally screwed anyway.
But what if your system is flaky anyway (e.g. overclocked)? -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 197 bytes Desc: This is a digitally signed message part. URL: <https://emu.freenetproject.org/pipermail/tech/attachments/20100511/fab5802b/attachment.pgp>
