D. J. Bernstein

Mailing lists at cr.yp.to


applied-cryptographers-at-crypto: The Crypto conference series still has the rump session, the sunshine, the dorms, the strawberries, and the late-night chats---but theoretical "cryptography" is consuming more and more of the program and has already killed the BoFs. It's time for applied cryptographers to take back the UCSB campus! To subscribe, send an empty message to applied-cryptographers-at-crypto-subscribe@list.cr.yp.to. This mailing list replaces the Google group by the same name. Google does not make migration easy so you have to resubscribe; sorry.
BNIs: Anything of interest to implementors of large-integer arithmetic packages. To subscribe, send an empty message to bnis-subscribe@list.cr.yp.to.
boring-crypto:
How many RSA-1024 keys can be factored every year by NSA, or by a botnet, or by China? Is SHA-1 really broken? How hard is it to exploit OpenSSL's timing leaks? If you care about the answers then your crypto is much too exciting for us. We build boring, conservative, constant-time crypto software.
To subscribe, send an empty message to boring-crypto-subscribe@list.cr.yp.to. This mailing list replaces the Google group by the same name. Google does not make migration easy so you have to resubscribe; sorry.
cdb: The cdb package. To subscribe, send an empty message to cdb-subscribe@list.cr.yp.to.
clean-i18n: Eliminating the horrors of multiple character sets and encodings. To subscribe, send an empty message to clean-i18n-subscribe@list.cr.yp.to.
cryptanalytic-algorithms:
Public research into design+analysis of algorithms for attacking cryptographic systems. Mission: Understand, and warn users about, what the attackers can do with sophisticated cryptanalytic algorithms. Old Testament: Knuth, Art of Computer Programming. New Testament: Joux, Algorithmic Cryptanalysis.
To subscribe, send an empty message to cryptanalytic-algorithms-subscribe@list.cr.yp.to. This mailing list replaces the Google group by the same name. Google does not make migration easy so you have to resubscribe; sorry.
crypto-competitions:
CAESAR (Competition for Authenticated Encryption: Security, Applicability, Robustness) is an ongoing project to identify new authenticated ciphers suitable for widespread adoption. CAESAR follows in the footsteps of the AES, eSTREAM, and SHA-3 competitions.
To subscribe, send an empty message to crypto-competitions-subscribe@list.cr.yp.to. This mailing list replaces the Google group by the same name. Google does not make migration easy so you have to resubscribe; sorry.
dns: Free BIND replacements under UNIX, such as the djbdns package. To subscribe, send an empty message to dns-subscribe@list.cr.yp.to. There is a hypertext archive of the mailing list at marc.theaimsgroup.com.
Don't ask for free advice about djbdns if you haven't read the documentation. Third-party commercial support is available for people who don't have time to read and follow instructions.
If you've followed the instructions and you're still having problems, set up a web page with complete answers to the following three questions:
  1. What exactly did you do? Make sure to include the commands you typed, and copies of the files you created or modified.
  2. What exactly did the computer do? Make sure to include the computer's responses to your commands, and copies of /service/*dns*/log/main/*. If you're having trouble resolving the name www.cnn.com, set up a web page with the output of dnstrace a www.cnn.com 198.41.0.4. If you're having trouble reverse-resolving the IP address 1.2.3.4, set up a web page with the output of dnstrace ptr 4.3.2.1.in-addr.arpa 198.41.0.4,
  3. What exactly did you expect the computer to do differently?
Then send a message to the mailing list summarizing what happened and giving the URL of that web page.
export: Public discussions related to the Bernstein v. United States court case. To subscribe, send an empty message to export-subscribe@list.cr.yp.to.
export-announce: Announcements of activity in the Bernstein v. United States court case. To subscribe, send an empty message to export-announce-subscribe@list.cr.yp.to.
export-news: Press releases in the Bernstein v. United States court case. To subscribe, send an empty message to export-news-subscribe@list.cr.yp.to.
ezmlm: The ezmlm package. To subscribe, send an empty message to ezmlm-subscribe@list.cr.yp.to.
ftpparse: The ftpparse library. To subscribe, send an empty message to ftpparse-subscribe@list.cr.yp.to.
hash127: The hash127 library. List is now closed; all hash127 users should switch to Poly1305.
IM2000: The Internet Mail 2000 project. To subscribe, send an empty message to im2000-subscribe@list.cr.yp.to.
IMIs: Anything of interest to Internet mail implementors. To subscribe, send an empty message to imis-subscribe@list.cr.yp.to.
libtai: The libtai package. Also covers the clockspeed package, the TAI64 time format, and related time-measurement issues. To subscribe, send an empty message to libtai-subscribe@list.cr.yp.to.
log: Replacements for syslog, such as the logging utilities in the daemontools package. To subscribe, send an empty message to log-subscribe@list.cr.yp.to.
mathcopyright: Copyrights on math papers. To subscribe, send an empty message to mathcopyright-subscribe@list.cr.yp.to.
misc: Miscellaneous low-traffic discussions. To subscribe, send an empty message to misc-subscribe@list.cr.yp.to.
package: The /package hierarchy. To subscribe, send an empty message to package-subscribe@list.cr.yp.to.
pari-announce: Announcements of new versions of pari/gp. This list has moved; see http://pari.math.u-bordeaux.fr/lists-index.html for the new list.
pari-dev: Development of pari/gp. This list has moved; see http://pari.math.u-bordeaux.fr/lists-index.html for the new list.
pari-users: Using pari/gp. This list has moved; see http://pari.math.u-bordeaux.fr/lists-index.html for the new list.
password: The checkpassword package and other packages offering the same interface. To subscribe, send an empty message to password-subscribe@list.cr.yp.to.
poly1305: The Poly1305 function, and in particular the Poly1305-AES message-authentication code. To subscribe, send an empty message to poly1305-subscribe@list.cr.yp.to.
ptyget: The ptyget package. To subscribe, send an empty message to ptyget-subscribe@list.cr.yp.to.
publicfile: The publicfile package. To subscribe, send an empty message to publicfile-subscribe@list.cr.yp.to.
qhasm: The qhasm package. To subscribe, send an empty message to qhasm-subscribe@list.cr.yp.to.
qmail: The qmail package, the qmailanalog package, the dot-forward package, and the fastforward package. To subscribe, send an empty message to qmail-subscribe@list.cr.yp.to. This list is unmoderated and high-volume. There is a hypertext archive of the mailing list at ORNL.
Please read FAQ, PIC.*, and the other documentation in the qmail package before sending your question to the qmail mailing list.
qmailannounce: qmail-related announcements. To subscribe, send an empty message to qmailannounce-subscribe@list.cr.yp.to. This list is moderated and low-volume.
qmaildist: Distribution of qmail-related packages. To subscribe, send an empty message to qmaildist-subscribe@list.cr.yp.to.
randomness-generation: Cryptographers discussing fixes for "Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices" (USENIX Security 2012) and "Ron was wrong, Whit is right" aka "Public keys" (Crypto 2012). Group created as followup to randomness-generation BoF session at Crypto 2012. More detail:
Users today cannot reasonably trust the quality of the random numbers used in cryptography. The papers "Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices" (USENIX Security 2012) and "Ron was wrong, Whit is right" aka "Public keys" (Crypto 2012) showed that tens of thousands of RSA public keys visible on the Internet had been generated from bad randomness, allowing attackers to figure out the secret keys and undermining the entire security provided by those keys. Compromised SSL servers included IBM Remote Server Administration cards, Juniper routers, and many other embedded devices. The first paper also exploited bad signature randomness to break tens of thousands of SSH DSA keys. These papers triggered a flurry of uncoordinated activity, with questionable fixes bolted onto applications, libraries, operating systems, hypervisors, and chips. The randomness-generation mailing list is meant to centralize discussions and coordinate actions, with the goal of providing trustworthy randomness for future cryptographic users.
To subscribe, send an empty message to randomness-generation-subscribe@list.cr.yp.to. This mailing list replaces the Google group by the same name. Google does not make migration easy so you have to resubscribe; sorry.
reversible: Reversible computations (e.g., modular exponentiation built from CNOT and Toffoli), reversible programming languages (including the non-quantum subsets of quantum languages), reversible algorithms, etc. To subscribe, send an empty message to reversible-subscribe@list.cr.yp.to.
securesoftware
serialmail: The serialmail package. To subscribe, send an empty message to serialmail-subscribe@list.cr.yp.to.
sigs: The sigs package. To subscribe, send an empty message to sigs-subscribe@list.cr.yp.to.
snakeoil:
Security experts tracking dishonest security claims. Willful ignorance qualifies as dishonesty. Dishonesty does not have to be as severe as the Quantum Manifesto to be within scope. Legitimate security disputes and security questions are out of scope. Classic medicinal snake oil is out of scope.
To subscribe, send an empty message to snakeoil-subscribe@list.cr.yp.to. This mailing list replaces the Google group by the same name. Google does not make migration easy so you have to resubscribe; sorry.
zeroseek: The zeroseek package. To subscribe, send an empty message to zeroseek-subscribe@list.cr.yp.to.