The Jedi Academy. THE Place for Jedi training.
Forums
Content
Content
News
Servers
Articles
Links
The Academy
Learn
Communicate
Personal


Forums | Crazy Stuff
How smart are you? :p
Jun 20 2004 11:42pm

Aron
 - Retired
Aron
 The Q bot has been updated (not officially yet, but I know "stuff";)...

This is the command that has been added:

Quote:

/msg Q@CServe.quakenet.org CHALLENGE
Requests a challenge for use in challenge-response identification.
The bot will return a line with:
CHALLENGE <digest function> <hexed challenge>
To identify with the bot:
/msg Q@CServe.quakenet.org CHALLENGEAUTH <authame> DIGESTFUNCTION(<authname> <password> <dehexed challenge> )
Where DIGESTFUNCTION is the type of digest that should be used on the data (response be hexed),
<dehexed challenge> is the challenge given (by this command, dehexed),
and <authname> and <password> are your authname and password, respectively.


I'll give the first person that can explain me what the command does a cookie! :P

This post was edited by Aron on Jun 20 2004 11:44pm.

  Login and add your comment!  
Comments
Jun 21 2004 11:53am

_cmad_
 - Ex-Student
 _cmad_

Quote:
dude

challenge response authentification is a zero-knowledge method. the client identifies himself without passing a secret, but by demonstrating knowledge of a secret.
so the actual secret is never transmitted, and cant thus be sniffed.

and md5 is kinda one opportunity, but in fact you can use looots of one way functions, or hashe functions.

normally, stuff like (real) randomness is added, timestamps and "salt" which should make it difficult for attackers to use replay and interleave attacks.


So you solved it?
_______________
Your friends of today, are your enemies of tomorrow.

Jun 21 2004 11:51am

_cmad_
 - Ex-Student
 _cmad_

Quote:
Didn't you mean this thread to be called "How nerd are you? :p" ... :P

agreed :P :D
_______________
Your friends of today, are your enemies of tomorrow.

Jun 21 2004 11:47am

Fizz of Belouve
 - Student
 Fizz of Belouve

dude

challenge response authentification is a zero-knowledge method. the client identifies himself without passing a secret, but by demonstrating knowledge of a secret.
so the actual secret is never transmitted, and cant thus be sniffed.

and md5 is kinda one opportunity, but in fact you can use looots of one way functions, or hashe functions.

normally, stuff like (real) randomness is added, timestamps and "salt" which should make it difficult for attackers to use replay and interleave attacks.
_______________
One of the Belouve boys, founder of the mighty FiZZsters
Midbie council #20 - Fizz - #1933 - Jan '03 - Aug '04

"Renfield, you idiot!"

Jun 21 2004 11:39am

_cmad_
 - Ex-Student
 _cmad_

Okay my first guess didn't work (how unusual :P)

My first guess was:

on 1:NOTICE:CHALLENGE MD5 *:?:{
if ($nick != Q) {
return
}
/ccc $3
}

/ccc {
set %i 1
set %md5text
while (%i <= 31) {
set %md5text %md5text $+ $chr($calc(16 * $getnumx($mid($1,%i,1)) + $getnumx($mid($1,$calc(%i + 1),1))))
inc %i 2
}
msg Q@CServe.quakenet.org challengeauth cMADx DIGESTFUNCTION(cMADx MyPassHere %md5text $+ )
echo -a Result: %md5text
}

(i even replaced "DIGESTFUNCTION" with "MD5";)


-------

I'm starting to become suspicious as to why this thread is in "Crazy Stuff" :P :D I bet there's a silly @ss solution to this "CHALLENGE" :P
_______________
Your friends of today, are your enemies of tomorrow.

Jun 21 2004 10:47am

aph3x
 - Retired
 aph3x

isnt that for like, authenticating with Q?

Jun 21 2004 10:38am

Aron
 - Retired
 Aron

Quote:
Aron do you "know" the answer or are you just forcing 1000 ppl to find the answer for ya? :P


of course I know; I'm the IRC guy! :D

Jun 21 2004 10:11am

Jacen Aratan
 - Student

STFU LEIF! ;)

Jun 21 2004 09:53am

Fire
 - Student
 Fire

I agreed with Sete but....:P I R DUMB! :D

Jun 21 2004 09:32am

Odan-Wei Belouve
 - Student
 Odan-Wei Belouve

Didn't you mean this thread to be called "How nerd are you? :p" ... :P

/me reads Aron's post
/me runs away screaming
_______________
Padawan and brother to SmilyKrazy :D - Adopted in the Belouve Family by Fizz and Bubu, BELOUVE ON! :D - Vladarion, you'll always be in my heart and memories - Spam-Padawan of Jacen Aratan ;) - [DJ is my beloved wife! :P - JA Family: Brothers:
Virtue, Furi0us, Vladarion, Hardwired, Janus, Axion, D@RtHM@UL, Motrec, Mike , xAnAtOs , Luke Skywalker; Little bro to SilkMonkey ; Special kind of brother to Kenyon ; Sisters in-law: Rosered, Ain-Soph Aur]
Photoshop works: click here


Jun 21 2004 08:26am

_cmad_
 - Ex-Student
 _cmad_

Aron do you "know" the answer or are you just forcing 1000 ppl to find the answer for ya? :P
_______________
Your friends of today, are your enemies of tomorrow.

Jun 21 2004 12:20am

DJK
 - Student
 DJK

Must......figure............it.....*Zzzzzzz*


:P:D:P

Jun 20 2004 11:49pm

Aron
 - Retired
 Aron

wrong! :D

Jun 20 2004 11:48pm

Setementor
 - Jedi Master
 Setementor

Hmm, Maybe it you challenege Q to a duel? :P

  Login and add your comment!  

#Jedi-Academy on irc.quakenet.org

Administration:

Chris "doobie" DuBois - Academy Leader
Kevin "DJ Sith" Laude - Academy Website and Game Server Administrator
Gonçalo "Jacen 'Lone Wolf' Solo" Trindade - European Management
Jens "Hardwired" Nilsson - The Enforcer
Adam "Virtue" Fearn - Community Liasion
Questions? Comments? Snide Remarks? Email one of us.

This site has nothing to do with LucasArts, LucasFilm, Raven Software, or George Lucas. We are simply big fans of the games and the movies, and Star Wars, Jedi Academy, Jedi Outcast, Jedi Knight, and content directly from the game, along with the Jedi Academy name, are their copyrights and should be credited to them and no one else. Thank you, and have a nice day.

Site Design Copyright ©2004 Chris DuBois and Kevin Laude