[Server-devel] Antitheft: sending a fake stolen...
C. Scott Ananian
cscott at laptop.org
Mon Aug 24 18:08:55 EDT 2009
On Mon, Aug 24, 2009 at 6:05 PM, Martin
Langhoff<martin.langhoff at gmail.com> wrote:
> On Mon, Aug 24, 2009 at 11:45 PM, C. Scott Ananian<cscott at laptop.org> wrote:
>> so you should probably return a
>> lease which is valid except for the fact that the signed string has an
>> randomly-chosen UUID
>
> Exactly my thoughts -- as you can see in the bug. Implementing that
> goes beyond merely coding it -- it would mean checking that the
> various (released) versions of the client code do the right thing with
> these "mixed messages".
>
> And that is what I am postponing right now (with this bug as TODO +
> documentation).
I updated http://wiki.laptop.org/go/Theft_deterrence_protocol#Theft-deterrent_server_response
with more detail on 'real looking' leases.
--scott
--
( http://cscott.net/ )
More information about the Devel
mailing list