F11 for the X01- shutdown
Daniel Drake
dsd at laptop.org
Sat Aug 1 04:47:54 UTC 2009
2009/8/1 Martin Langhoff <martin.langhoff at gmail.com>:
> But! The server response _does_ seem to say 'stolen'.
>
> Am I missing anything?
Yes.
Read http://wiki.laptop.org/go/Theft_deterrence_protocol carefully.
The wording is not blindingly clear but it does explain.
It advises that a server *always* sends a 'stolen' tag in the message,
so that a man-in-the-middle cannot simply filter out messages
including "stolen"
This is also why a hash is used, in order to make the messages always
the same length and the contents non-obvious.
Of the two possible values of stolen:
sha256(<uuid>:<nonce>) means NOT stolen
sha256(<uuid>:<nonce>:STOLEN) means stolen
Judging from James's feedback (i.e. the patch that he tested) the
server is only sending the "not stolen" tag. I would imagine this is
true for everyone seeing this issue.
Daniel
More information about the Fedora-olpc-list
mailing list