| Website | https://prusa.net |
Radek Průša
- 15 Followers
- 93 Following
- 55 Posts
Neeeeeeeeeeeerd.
@EdwinG @AnnaAnthro Unfortunately, I think that this person might not be able to get their data back. As far as I remember, the device passcode has to be entered before any OS update/downgrade, and I don't think it's even possible to downgrade iOS versions anymore. Maybe a physical keyboard connected to the phone, but I think iPhones block any USB devices when in BFU, and even then, switching they physical keyboard layout might not be possible from the BFU lock screen.
@AnnaAnthro That is really interesting, I definitely have a different process for choosing passwords in different languages, and never even thought about something like this.
@AnnaAnthro I put this theory together after reading an article (https://soatok.blog/2024/11/27/beyond-bcrypt/) about bcrypt, and started thinking that since most sites have a max allowed length for passwords to prevent a DOS from having to hash extremely long passwords, they might only enfore the max length on the password form, and not the hashing and salting process.
@AnnaAnthro I don't know all that much about password hashing algorithms, but I have a theory that some hashing algorithms might turn a character like "č" into some other representation like punycode "xn--bea", which might make the password character counter on some websites get a count different from the hashing algorithm, which would then silently truncate my passwords when they go over the upper character limit. Instagram has been having issues like this since like 2016.
@AnnaAnthro I'm a native Czech speaker, and I've seen so many strange issues when using accented characters (ú,ů,ý,ž,ř,č,ó, etc.) in passwords. The worst kind is when the service says that my password was changed successfully, then I go to try and login, and get errors because the password hashing process made some changes to the password because of the accented characters, and I have to reset it.
Some services also silently truncate passwords over 56 and 72 characters.
Anna Anthro
Filippo ValsordaAlright, it's official! 💰
@matthew_d_green and I bet on what will break first, ML-KEM-768 or X25519. The loser donates to a 501(c)(3) picked by the winner.
If you have an opinion on quantum computers or lattices, you can join with a side bet. Just submit a PR!
Arch Linux 
[arch-dev-public] Update on Valve sponsored work in Q1 2026 - https://lists.archlinux.org/archives/list/[email protected]/thread/AXEAYKUI5AJVYOIUPWO6N2NZXI77X4EB/
Two papers came out last week that suggest classical asymmetric cryptography might indeed be broken by quantum computers in just a few years.
That means we need to ship post-quantum crypto now, with the tools we have: ML-KEM and ML-DSA. I didn't think PQ auth was so urgent until recently.
@lina Agreed, I was relatively new to Linux back then, but I definitely know better than to mess with files managed by package managers.
I also felt like I wouldn't be able to file a good bug report, since I was so new to Linux then, and some previous experiences with asking for help turned me away from community forums and issue trackers.