I am NOT experienced with python, so reading lots of examples.
I have installed python3-pycryptodomex on my old F35 system (will mess up my F37 system later).
Preparing : 1/1 Installing : python3-pycryptodomex-3.15.0-1.fc35.x86_64 1/1 Running scriptlet: python3-pycryptodomex-3.15.0-1.fc35.x86_64 1/1 Verifying : python3-pycryptodomex-3.15.0-1.fc35.x86_64 1/1
Installed: python3-pycryptodomex-3.15.0-1.fc35.x86_64
I go into python and try importing salsa per:
https://pycryptodome.readthedocs.io/en/v3.15.0/src/cipher/cipher.html
from Crypto.Cipher import Salsa20
Traceback (most recent call last): File "<stdin>", line 1, in <module> ModuleNotFoundError: No module named 'Crypto'
I then tried the self test from: https://pycryptodome.readthedocs.io/en/v3.15.0/src/installation.html
python -m Cryptodome.SelfTest /usr/bin/python: No module named Cryptodome.SelfTest
Obviously I am missing something very fundamental here in getting the crypto module available to python...
Help?
thanks
2023-04-20 15:59 UTC+02:00, Robert Moskowitz rgm@htt-consult.com:
from Crypto.Cipher import Salsa20
Traceback (most recent call last): File "<stdin>", line 1, in <module> ModuleNotFoundError: No module named 'Crypto'
Courtesy of TAB-completion in ipython:
from Cryptodome.Cipher import Salsa20
On 4/20/23 10:10, Andras Simon wrote:
2023-04-20 15:59 UTC+02:00, Robert Moskowitz rgm@htt-consult.com:
from Crypto.Cipher import Salsa20
Traceback (most recent call last): File "<stdin>", line 1, in <module> ModuleNotFoundError: No module named 'Crypto'
Courtesy of TAB-completion in ipython:
from Cryptodome.Cipher import Salsa20
So I learned 2 things here.
Use TAB-comp
Look for fundamental differences between wikis and running code.
:)
thanks!
Now I am pulling out my hair (what little I still have) in getting the public ECC key.
The example in
https://pycryptodome.readthedocs.io/en/v3.15.0/src/public_key/ecc.html
easily creates the PEM formatted private key. But I can't figure out how to get to the public key value. And public_key() does something different that my little skill set is not groking.
Anyone here can point me to additional resources on this? I have been googling for the last hour and the google groups is basically no one there. :(
Any, keep on plugging away....
On Thu, 20 Apr 2023 11:33:01 -0400 Robert Moskowitz rgm@htt-consult.com wrote:
Now I am pulling out my hair (what little I still have) in getting the public ECC key.
The example in
https://pycryptodome.readthedocs.io/en/v3.15.0/src/public_key/ecc.html
easily creates the PEM formatted private key. But I can't figure out how to get to the public key value. And public_key() does something different that my little skill set is not groking.
Anyone here can point me to additional resources on this? I have been googling for the last hour and the google groups is basically no one there. :(
I've been reading more and more commentary that google has ceased to be a useful means of searching. They are focusing more and more on using search as a means to bring in revenue. It is common to find people saying, I didn't find anything until I looked through five or ten pages. One suggestion is to put reddit in all searches. :-)
Maybe it is just information overload, but the simpler explanation is monetization.
I'm not sure what you are doing, but it sounds similar to what is done to create a local key to sign a custom kernel build so it will boot UEFI.
Here is a link to that, the part at the top.
https://docs.fedoraproject.org/en-US/quick-docs/kernel/build-custom-kernel/#...
A general reference page I found.
On Thu, 20 Apr 2023 09:53:00 -0700 stan upaitag@zoho.com wrote:
I'm not sure what you are doing, but it sounds similar to what is done to create a local key to sign a custom kernel build so it will boot UEFI.
Here is a link to that, the part at the top.
https://docs.fedoraproject.org/en-US/quick-docs/kernel/build-custom-kernel/#...
A general reference page I found.
Another link to the UEFI kernel signing procedure.
On 04/20/2023 10:53 AM, stan via users wrote:
I've been reading more and more commentary that google has ceased to be a useful means of searching.
You may want to try Startpage: https://www.startpage.com/ It uses Google as a backend, but all of its queries are anonymized so that Google has no way of knowing who made the request, and they keep no logs.
On Thu, 20 Apr 2023 14:29:12 -0600 Joe Zeff joe@zeff.us wrote:
On 04/20/2023 10:53 AM, stan via users wrote:
I've been reading more and more commentary that google has ceased to be a useful means of searching.
You may want to try Startpage: https://www.startpage.com/ It uses Google as a backend, but all of its queries are anonymized so that Google has no way of knowing who made the request, and they keep no logs.
I used to use startpage (now using DuckDuckGo mostly), and shifted before they started the anonymity. Unless they filter the results from Google, they will have the same issue. Perhaps they implemented my idea of using a search within a search, and filter out all the 'pay for exposure' and 'recommend the better customer' results. In their defense, search is hard for complex queries. I used to use their advanced form where it was possible to exclude and allow selectively (always or preferred). I don't seem to get the form anymore (it was really writing input to a SQL query). Maybe it became too compute intensive on their databases.
On Thu, 2023-04-20 at 09:53 -0700, stan via users wrote:
I've been reading more and more commentary that google has ceased to be a useful means of searching. They are focusing more and more on using search as a means to bring in revenue. It is common to find people saying, I didn't find anything until I looked through five or ten pages. One suggestion is to put reddit in all searches. :-)
I was under the impression that Google is less worse, now, than it used to be (not a good overall recommendation, I know). And when I found references to reddit, the information on that was utter crap.
On Fri, 21 Apr 2023 09:00:23 +0930 Tim via users users@lists.fedoraproject.org wrote:
On Thu, 2023-04-20 at 09:53 -0700, stan via users wrote:
I've been reading more and more commentary that google has ceased to be a useful means of searching. They are focusing more and more on using search as a means to bring in revenue. It is common to find people saying, I didn't find anything until I looked through five or ten pages. One suggestion is to put reddit in all searches. :-)
I was under the impression that Google is less worse, now, than it used to be (not a good overall recommendation, I know). And when I found references to reddit, the information on that was utter crap.
I guess I should have added, YMMV (Your Mileage Might Vary). I don't use that, I just noticed a lot of people saying that they got better results using it. I use DuckDuckGo, for the most part, and in the past, when I've tried Google because DDG didn't give a good result, it was worse. I remember when "I'm feeling lucky" had a good hit rate. Not anymore.
This will all be irrelevant when the AI platforms begin doing search. We'll write a paragraph, and then they'll 'understand' what we are looking for, and give us relevant results. At least until they start monetizing their results like Google.
On Sun, 2023-04-23 at 11:48 -0700, stan via users wrote:
This will all be irrelevant when the AI platforms begin doing search. We'll write a paragraph, and then they'll 'understand' what we are looking for, and give us relevant results. At least until they start monetizing their results like Google.
That'll need more work... Currently, try doing something like a google search for a potato bake recipe without greens, and all the results are *with* greens.
And just imagining the future AI robot cops in America: The suspect raises their hands and says "don't shoot," and instantly gets shot.
They don't understand language, it's just reacting to keywords the programmers thought of. Giving odd results for things the programmers didn't think of. It's not really AI at this stage, it's like those contests trying to fool the Turing Tests.
Who remembers trying to pick the brains of Eliza? Finding the trigger words for it, trying to make it say something inappropriate...
When the Internet was new, back around the turn of the century, I did a search for one of my favorite movies: Eddie and the Cruisers. With a minimal amount of searching, I found a site that some individual user put together about the movie which contained some very interesting background info on where certain scenes were shot, etc. This person had put forth a fair amount of effort to put this together; it was a treasure because it was clearly not common knowledge. I don't see myself finding stuff like that anymore on the current Internet. Search for 'Eddie and the Cruisers' now, and you get multiple entries from IMDB, Amazon and other revenue sites, but not much useful information.Particularly rankling is 'must contain: -keyword- ' On Sunday, April 23, 2023 at 03:25:18 PM EDT, Tim via users users@lists.fedoraproject.org wrote:
On Sun, 2023-04-23 at 11:48 -0700, stan via users wrote:
This will all be irrelevant when the AI platforms begin doing search. We'll write a paragraph, and then they'll 'understand' what we are looking for, and give us relevant results. At least until they start monetizing their results like Google.
That'll need more work... Currently, try doing something like a google search for a potato bake recipe without greens, and all the results are *with* greens.
And just imagining the future AI robot cops in America: The suspect raises their hands and says "don't shoot," and instantly gets shot.
They don't understand language, it's just reacting to keywords the programmers thought of. Giving odd results for things the programmers didn't think of. It's not really AI at this stage, it's like those contests trying to fool the Turing Tests.
Who remembers trying to pick the brains of Eliza? Finding the trigger words for it, trying to make it say something inappropriate...
On 20 Apr 2023, at 16:33, Robert Moskowitz rgm@htt-consult.com wrote:
Now I am pulling out my hair (what little I still have) in getting the public ECC key.
The example in
https://pycryptodome.readthedocs.io/en/v3.15.0/src/public_key/ecc.html
easily creates the PEM formatted private key. But I can't figure out how to get to the public key value. And public_key() does something different that my little skill set is not groking.
Anyone here can point me to additional resources on this? I have been googling for the last hour and the google groups is basically no one there. :(
You need a crypto expert to help or the authors of this package.
Oh and…
Any, keep on plugging away....
I read the docs you linked to but the use of Crypto was it turns out an error as Crypto is used by a very important package.
Elsewhere it says this..
a library independent of the old PyCrypto. You install it with:
pip install pycryptodomex In this case, all modules are installed under the Cryptodome package. PyCrypto and PyCryptodome can coexist.
users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
On 4/20/23 13:12, Barry wrote:
On 20 Apr 2023, at 16:33, Robert Moskowitz rgm@htt-consult.com wrote:
Now I am pulling out my hair (what little I still have) in getting the public ECC key.
The example in
https://pycryptodome.readthedocs.io/en/v3.15.0/src/public_key/ecc.html
easily creates the PEM formatted private key. But I can't figure out how to get to the public key value. And public_key() does something different that my little skill set is not groking.
Anyone here can point me to additional resources on this? I have been googling for the last hour and the google groups is basically no one there. :(
You need a crypto expert to help or the authors of this package.
And I am getting it and making headway.
Got the public raw key in a variable where I need it. Now to crack cSHAKE.
:)
But first off to the dentist. :(
;)
Just wanted to get back with a thank you.
I have my first feeble script working:
https://github.com/ietf-wg-drip/drip-scripts/blob/master/det-gen.py
But pycryptodomex does not support EdDSA signing. So for that step I will use openssl. But what I need (-rawin) is only supported in openssl 3, which came out in F36, but I have to see if that is acceptable to others in the workgroup.
-
Andras Simon -
Barry -
Joe Zeff -
Montague Bestes -
Robert Moskowitz -
stan -
Tim