Pirated Windows 7 Builds Botnet with Trojan

and that is where SHA-1 comes into play....
my source is my own knowledge and one of my favorite podcasts...
security now (link)...
specifically episode 35 where he explains crypto hashes...
basically while md5 collisions may take place
SHA-1 collisions are next to impossible....:)
remember 2^63 is alot of numbers...:)
but like always we are talking about probability...
there is a very very very very very very small chance that the hash is collisional and that you can build from there...
but the chance is so small that you might as well give up...

there is a saying that amateurs go to cryptography and professionals goes into stats...

jimbo45 said:

Hi all
It CAN be done using modern cryptology methods
BUT you need these in place to be able to do it.

1) The ENTIRE computing resources of the planet at your disposal
2) A time period longer than the estimated remaining lifetime of the Sun (around 4.5 Billion years - but mankind will be extinct LONG LONG before that).

Once we get into the realms of "Quantum Computing" then it can be done quickly and easily --in fact any current encryption - even DES 128 bit stuff etc etc can be broken -- the problem is that nobody has built a Quantum computer yet that contain more than a few "Qubits" which have a "coherence" i.e lifetime of more than a few seconds.

As far as people on these Forums are concerned if the set of Hashes match then the image is 100% OK. No if's, no Buts. It's just a fact - unless you've found a way of circumventing the laws of Physics and Mathematics.

Cheers
jimbo

im pretty sure you are talking about triple DES as a old plain DES key is only 56 bits long

This is ingenious. Much like that Conficker thing.

I have NO IDEA what you guys are babbling about
oh well.

i guess logically people who even suspect their version is infected should just go to M$ and get a new clean copy and reinstall. and hope to whichever divinity they believe in, that their precious information hasn't been stolen.

holo88 said:

I have NO IDEA what you guys are babbling about
oh well.

i guess logically people who even suspect their version is infected should just go to M$ and get a new clean copy and reinstall. and hope to whichever divinity they believe in, that their precious information hasn't been stolen.

just look at the link i gave and listen to that podcast Crypto Issues (30), Crypto 102 (31), Symmetric Block Ciphers (33), and Public Key Cryptography (34) finally ending up with Cryptographic Hashes (35)....
that will give a good basic understanding of crypto (i like to think of it more like a crash course..) and will not be too hard to follow as they have transcripts so can follow along with what they say...

wut?


lol.
guess im just tired, its 5am on my block.

I'm with 'holo88'......wazzzzzzz Upppppp?

redsoxm16 said:

no no. Satch is referring to when Night Hawk was going on about some windows.old file and some russian stuff in it or something, which then led to him saying even if the hashes match up from a leaked build to a MS released build there can be a difference...
logic says there can't be a difference.
Satch is waiting for Night Hawk to prove logic wrong.
Correct me if i'm wrong Satch

edit: i don't want to be dragged into the whole Night Hawk/Satch thing.
i was just trying to clear up what i saw satch as saying

Yep, you are correct redsoxm16. And there is no Night Hawk/Satch thing! I've just simply asked a question (or proof) that I'm not getting a straight answer for.

Plantje said:

Ok, sorry, my bad

No worries.