[Server-devel] Antitheft: sending a fake stolen...

C. Scott Ananian cscott at laptop.org
Mon Aug 24 18:08:55 EDT 2009


On Mon, Aug 24, 2009 at 6:05 PM, Martin
Langhoff<martin.langhoff at gmail.com> wrote:
> On Mon, Aug 24, 2009 at 11:45 PM, C. Scott Ananian<cscott at laptop.org> wrote:
>> so you should probably return a
>> lease which is valid except for the fact that the signed string has an
>> randomly-chosen UUID
>
> Exactly my thoughts -- as you can see in the bug. Implementing that
> goes beyond merely coding it -- it would mean checking that the
> various (released) versions of the client code do the right thing with
> these "mixed messages".
>
> And that is what I am postponing right now (with this bug as TODO +
> documentation).

I updated http://wiki.laptop.org/go/Theft_deterrence_protocol#Theft-deterrent_server_response
with more detail on 'real looking' leases.
 --scott

-- 
                         ( http://cscott.net/ )



More information about the Devel mailing list