š
Original date posted:2013-11-02
š Original message:On 11/01/2013 10:01 PM, bitcoingrant at gmx.com wrote:
> Server provides a token for the client to sign.
Anyone else concerned about signing an arbitrary string? Could be a
hash of $EVIL_DOCUMENT, no? I'd want to XOR the string with my own
randomly generated nonce, sign that, then pass the nonce and the
signature back to the server for verification.
--
Johnathan Corgan, Corgan Labs
SDR Training and Development Services
http://corganlabs.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: johnathan.vcf
Type: text/x-vcard
Size: 334 bytes
Desc: not available
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20131102/09685fb5/attachment.vcf>;
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 230 bytes
Desc: OpenPGP digital signature
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20131102/09685fb5/attachment.sig>;
Johnathan Corgan [ARCHIVE] /
npub1j6ā¦jm42m
2023-06-07 15:08:27
in reply to nevent1qā¦2cgy
Author Public Key
npub1j66aek8wm7jq8vaffs2l8w43evyywd4q7tcnqyge6xqezz0vcpks7jm42mPublished at
2023-06-07 15:08:27Event JSON
{
"id": "5eed253ff5cf6315c741824514d7f3fb3be0b1d07df5fb1f7b20dd2c1f8c2180",
"pubkey": "96b5dcd8eedfa403b3a94c15f3bab1cb084736a0f2f1301119d1819109ecc06d",
"created_at": 1686150507,
"kind": 1,
"tags": [
[
"e",
"724c6f13ca667850218ef24a7051f9062418fb5d7bd972070be69e4bf08accba",
"",
"root"
],
[
"e",
"65806249c78dbee693a306df030f60b4fb9452b4d7cd52c048cf881e637102af",
"",
"reply"
],
[
"p",
"cb012a611d5ad0a4ca8a6462bb9ad518b3601f5d3fc5a7c59386056361130b5b"
]
],
"content": "š
Original date posted:2013-11-02\nš Original message:On 11/01/2013 10:01 PM, bitcoingrant at gmx.com wrote:\n\n\u003e Server provides a token for the client to sign.\n\nAnyone else concerned about signing an arbitrary string? Could be a\nhash of $EVIL_DOCUMENT, no? I'd want to XOR the string with my own\nrandomly generated nonce, sign that, then pass the nonce and the\nsignature back to the server for verification.\n\n-- \nJohnathan Corgan, Corgan Labs\nSDR Training and Development Services\nhttp://corganlabs.com\n-------------- next part --------------\nA non-text attachment was scrubbed...\nName: johnathan.vcf\nType: text/x-vcard\nSize: 334 bytes\nDesc: not available\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20131102/09685fb5/attachment.vcf\u003e\n-------------- next part --------------\nA non-text attachment was scrubbed...\nName: signature.asc\nType: application/pgp-signature\nSize: 230 bytes\nDesc: OpenPGP digital signature\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20131102/09685fb5/attachment.sig\u003e",
"sig": "9df657bbdee63a17eff70a3d3af69de8a6aa500ee609bff432fa9107e9a124194a17b11be75a00c72cc7e1ac584086f565f27fa49e2522e147f7b388182eb24a"
}