D'oh

IWETHEY v. 0.3.0 | TODO

1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User

Welcome to IWETHEY!

Post #28,460

by ben_tilly

2/15/02 8:14:49 AM

D'oh

I had misread [link|http://arstechnica.com/paedia/n/net/net-2.html|page 2]. I had thought that they just used a hash to sign the file so that any change to the file broke linking. They don't. Instead they cryptographically sign the hash value. Only with access to the private key can you produce a new file which will link with the old.

So they can make reasonable patches.

It does raise questions about key management though.

Cheers,
Ben

Good link on .NET - (ben_tilly) - (27) - Feb. 14, 2002, 04:12:13 AM EST

Just confirms it-who couldn't figure as much 1 or 2 yrs ago? -NT - (CRConrad) - Feb. 14, 2002, 09:19:06 AM EST

Stack-based security - (admin) - Feb. 14, 2002, 09:43:24 AM EST

A different .NET link, makes me sick - (bluke) - (3) - Feb. 14, 2002, 03:10:00 PM EST

Some get to be sharks... - (ben_tilly) - Feb. 14, 2002, 06:01:24 PM EST

Blink blink - (wharris2) - Feb. 15, 2002, 04:13:01 AM EST

Dunno if he really believes it, but he has a reason to gush - (CRConrad) - Feb. 15, 2002, 12:52:27 PM EST

.NET Visual Studio - (tuberculosis) - (1) - Feb. 14, 2002, 03:10:31 PM EST

...has at least one security-related compiler bug already - (CRConrad) - Feb. 15, 2002, 01:01:10 PM EST

Sounds about like I expected - (tonytib) - (8) - Feb. 14, 2002, 09:55:36 PM EST

Something nasty that I just realized (oops, I was wrong) - (ben_tilly) - (5) - Feb. 15, 2002, 08:15:35 AM EST

Not sure you are right about the linking part. - (a6l6e6x) - (4) - Feb. 15, 2002, 01:06:55 AM EST

Getting interfaces right - (wharris2) - (2) - Feb. 15, 2002, 04:17:26 AM EST

When you're innovating at internet speed,... - (a6l6e6x) - (1) - Feb. 15, 2002, 08:40:44 PM EST

I know the sign, and I endorse it :=) -NT - (wharris2) - Feb. 15, 2002, 11:25:26 PM EST

D'oh - (ben_tilly) - Feb. 15, 2002, 08:14:49 AM EST

Re: Side note for Ben - (a6l6e6x) - (1) - Feb. 15, 2002, 12:00:57 AM EST

You have to understand the context - (tonytib) - Feb. 15, 2002, 12:47:26 AM EST

I would miss dynamic typing. - (static) - (9) - Feb. 16, 2002, 05:44:20 AM EST

Take your pick - (ben_tilly) - (8) - Feb. 16, 2002, 11:08:12 AM EST

Please, sir... - (static) - (7) - Feb. 19, 2002, 12:25:30 AM EST

Very simple - (ben_tilly) - (6) - Feb. 19, 2002, 02:50:14 AM EST

Versions peresnt during packaging? - (Arkadiy) - (3) - Feb. 19, 2002, 10:02:52 AM EST

No - (ben_tilly) - (2) - Feb. 19, 2002, 11:43:41 AM EST

To do library versioning dynamically... - (neelk) - (1) - Feb. 19, 2002, 12:11:24 PM EST

Huh, interesting - (ben_tilly) - Feb. 20, 2002, 06:54:05 AM EST

Yes, it makes sense now. - (static) - Feb. 20, 2002, 12:32:47 AM EST

Specify prefered libraries up front - (tablizer) - March 1, 2002, 11:15:38 PM EST

iwethey.org

Stop looking over your shoulder and invent something!
59 ms