idea when computers get faster and bandwidth is too expensive...

You download a byte size and checksum, your computer then makes files of that size until it hits the checksum, then you have the file without ever downloading it...

That might take a while, similar to brute-forcing a password. The computer would have to try trillions of combinations until it got the file with a matching checksum.

There can be two different files with the same checksum value though its really rare ..
Also the method you described is not feasible computationally.

That's a bit like brute forcing a password, except said password is 1 073 741 824 letters long for every gigabyte of downloading, and to make matters worse we wouldn't be able to rely on a specific alphabet for it to be written in since it isn't all human-written. ...So I guess we really want the number in bits (binary units), which would thus be 8 589 934 592 digits. Not going to happen ;)
Whatever gets saved in ISP bills gets lost in power bills and that ridiculously fast computer.

There can be two different files with the same checksum value though its really rareNot rare at all, in fact. A checksum is only for checking; it's not possible to guarantee its uniqueness, unless the checksum itself grows to the same size as the original file. A moment's reflection should show this -- just think of a file (any file) as being a number already, which it essentially is (or, can be interpreted as).

Forget the practical arguments; it's not possible even in theory.

The idea reminds me of something I read in an old sci-fi story. In the distant future, a person wishes to make a record of some written data. He transforms the data into a sequence of numbers, let's say 891345...6.

Then, he takes a piece of some advanced futuristic material and using his super ultra precise and accurate machine tools, cuts it to exactly 0.891345...6 centimeters (or other length unit).

Later, when he wishes to read the data, he simply measures the material with his super ultra precise and accurate measuring device, reads 0.891345...6, then transforms the sequence 891345...6 back into readable characters.

Simple, huh?

There can be two different files with the same checksum value though its really rare ..

According to Wikipedia, there are an infinite number of files with the same checksum, although it's extremely unlikely that anyone will ever encounter 2 files like that.

Infinite if you don't constrain the length. If you specify the size, as the OP suggested, the number is merely astronomical. :)

Consider a 400-byte file, with a 32-bit checksum. 400 bytes is 3200 bits, so that's 2^3200 different possible 400-byte files. But you only have 2^32 unique checksums for those 2^3200 files.

You can add more bits to the checksum, but as long as it's fewer bits than in the original file, it doesn't change the nature of the problem. With only a 5-byte file and a 32-bit checksum, for example, you'd still have 256 different files mapped to each checksum. And while you can easily enough generate 256 5-byte files, there's simply no way to tell which of them was the original, just from the checksum and length. That information has been lost.

A checksum is useful because it (sometimes) allows you to tell if a file has been modified, whether accidentally or on purpose -- any given modification is relatively unlikely to produce a matching checksum (although this depends on the checksum algorithm). But as a truly unique identifier, it can't work.

According to Wikipedia, there are an infinite number of files with the same checksum, although it's extremely unlikely that anyone will ever encounter 2 files like that.

Not really. MD5 sums are starting to feel little secure, and I think I read on Ars Technica about possible exploits of packages while keeping their md5sum. There's a reason why Debian (and thus Ubuntu) is moving to SHA for package integrity checking, if they haven't already. Mmm... let me check some links...

Ars Technica's MD5 exploit (http://arstechnica.com/security/news/2008/12/theoretical-attacks-yield-practical-attacks-on-ssl-pki.ars)
Debian packages use SHA (http://en.wikipedia.org/wiki/SHA_hash_functions#cite_note-4). Actually, the apt code in that reference seems to read like "check SHA256, if not go to SHA1, if not check MD5, if not the package is corrupted".

Naturally, the purpose isn't to make sure you've downloaded Ubuntu as opposed to a mountain goat. It's to check whether you've downloaded Ubuntu + something nasty or just Ubuntu :)

Not rare at all, in fact. A checksum is only for checking; it's not possible to guarantee its uniqueness, unless the checksum itself grows to the same size as the original file. A moment's reflection should show this -- just think of a file (any file) as being a number already, which it essentially is (or, can be interpreted as).

Forget the practical arguments; it's not possible even in theory.

That's what I was thinking the file is already a # though there are ways to reduce the amount of #s in a file obviously. The only way to make this work would be with some kind of super compression. Isn't that what a compressed file is? A file with less #s?

So basically this would be extremely high compression. Might be possible, but not necessarily the way you described.

So basically this would be extremely high compression. Might be possible, but not necessarily the way you described.

Quantum computing could go a long way towards reducing file sizes, if I'm understanding the way it works corectly. If it reads three states instead of two wouldn't that make files a lot smaller?

Not possible. Your standard MD5 checksum is at most a kilobyte. A kilobyte checksum literally isn't capable of holding enough information to represent a decent-sized download.


"BUT MAX!" you say. "What if you made the checksum bigger and bigger until it could represent the file, possibly augmenting it with other integrity checks and redundancy checks to make everything nice and small?"

That already exists. It's called "file compression." Typical protocols for "file compression" are "zip," "gzip," "7zip," "bzip," "rar," "z," "shar," "lzma," and a few others.

Is there an echo in here? HELLO...HELLo...HELlo...HEllo hmmmm. I guess there is.

how on earth does a mere checksum contain the binary needed for a program, picture or whatever without containing the actual binary itself? Cmon ppls that is ridiculous.

That's what I was thinking the file is already a # though there are ways to reduce the amount of #s in a file obviously. The only way to make this work would be with some kind of super compression. Isn't that what a compressed file is? A file with less #s?

compression relies on redundancy in a file. a simple example would be the tree used in zip compression. here you give a number to each byte in the original file and the result is as follows:

input: aaaabbaabbbbaaaaacccaaccbaabaaccabb
lots of a's a some b's and a few c's, total 35 bytes

a=0 <- we choose a short number for a because a is the most common.
b=10 <- b is less common, so the number we choose is longer.
c=11

output 00001010001010101000000111111001111100010001111010 10
a stream of 0's and 1's, 52 bits = 7 bytes long.

of course, you also have to save the tree, so you can decipher the stream, and the way we chose the numbers to use for a, b and c is actually the clever bit and worth reading up on on wikipedia.

the important thing to notice is that the input has a lot of redundancy. even some sore of bitmap compression (a4b2a2b4a5c3a2c2ba2ba2c2ab2) would save space here. the best method of compression depends a lot on the structure of the redundancy in the input. if the input has no redundancy (which is actually quite difficult to prove, but an intuitive understanding should be simple enough), then there exists no procedure to reduce its size.

Data compression works by removing redundancy. But there's a hard limit -- once you've squeezed out all the redundancy, that's as small as your data is going to get. Current compression algorithms can get to somewhere around half size, on typical data; more in specific circumstances. It's unlikely that they'll get substantially better in the future, because in typical data, there's just not that much more redundancy to find. Already, the best compression takes orders of magnitude longer than the next-best, for only a few percent further reduction in size.

Ah, howlingmadhowie posted while I was typing. What he said. :)

Quantum computing could go a long way towards reducing file sizes, if I'm understanding the way it works corectly. If it reads three states instead of two wouldn't that make files a lot smaller?

the way i understood it, quantum computing would allow nondeterministic finite state machines (http://en.wikipedia.org/wiki/Nondeterministic_finite_state_machine), but i've never really been interested in it, so i may be wrong.

question, if we introduce the trit as having 3 different states, which we will label 0, 1 and 2, how many trits will be necessary to save an ascii character? how much shorter will files be? :)

if you can't work it out, just ask :)

the way i understood it, quantum computing would allow nondeterministic finite state machines (http://en.wikipedia.org/wiki/Nondeterministic_finite_state_machine), but i've never really been interested in it, so i may be wrong.

question, if we introduce the trit as having 3 different states, which we will label 0, 1 and 2, how many trits will be necessary to save an ascii character? how much shorter will files be? :)

if you can't work it out, just ask :)

I'm no good with math. My brain wants to tell me at least 33% smaller, but common sense tells me that adding a 3rd state would create a huge amount of possibilities, way more than what it would take to reduce a file by 33%

I can't remember where I found this, but it's hilarious, and with this talk about files being represented by numbers, I thought it very apt.

Converting pi to binary: Don't do it!
by Keith F. Lynch

Warning: Do not calculate Pi in binary. It is conjectured that this number is normal, meaning that
it contains all finite bit strings.

If you compute it, you will be guilty of:

* Copyright infringement (of all books, all short stories, all newspapers, all magazines, all web sites, all music, all movies, and all software, including the complete Windows source code)

* Trademark infringement

* Possession of child pornography

* Espionage (unauthorized possession of top secret information)

* Possession of DVD-cracking software

* Possession of threats to the President

* Possession of everyone's SSN, everyone's credit card numbers, everyone's PIN numbers, everyone's unlisted phone numbers, and everyone's passwords

* Defaming Islam. Not technically illegal, but you'll have to go into hiding along with Salman Rushdie.

* Defaming Scientology. Which is illegal -- just ask Keith Henson.

Also, your computer will contain all of the nastiest known computer viruses. In fact, all of the nastiest possible computer viruses.

Some of the files on my PC are intensely personal, and I for one don't want you snooping through a copy of them.

You might get away with computing just a few digits, but why risk it? There's no telling how far into Pi you can go without finding the secret documents about the JFK assassination, a photograph of your neighbor's six year old daughter doing the nasty with the family dog, or a complete copy of the not-yet-released Pearl Harbor movie. So just don't do it.

The same warning applies to e, the square root of 2, Euler's constant, Phi, the cosine of any non-zero algebraic number, and the vast majority of all other real numbers.

There's a reason why these numbers are always computed and shown in decimal, after all.

Quick, someone post the checksum of the Ubuntu 25.10 DVD!

I'm reminded of something form a Jasper Fforde Novel where entire novels are compressed down to a short numerical hash that can be decoded to recreate the entire novel. Unfortunately MD5 collisions though uncommon are much more likely than say, the complete works of William Shakespeare. For now, I think I'll go on collecting keyboards and monkeys to get free downloads. :)

for some reason, this thread has me thinking about the book neuromancer and how wintermute tells case that his brain is still stuck on the "printed word" information paradigm or something like that...

what i'm thinking is that, once we shift our thinking to something more "3d" than the written word (a, 0, 1, 3.1415), "traditional" computer concerns such as file size, bandwidth and download speed are going to be irrelevant. the answer, therefore is to change the way we "think" about information, shifting it from words, bytes or whatever to something else...3d heiroglyphs perhaps..

a good illustration of such a shift, i think, would be the shift from the magnetic drive to the optical drive. i think there may have been more that could have been done to make the magnetic drive have a higher capacity, better reliablility and smaller size. however, development simply stopped or slowed down once a better medium (optical data storage) emerged...

...or maybe it's just the bbq i ate for lunch...:lolflag:

good idea, but just not practical :)

So instead of downloading a file that is 1 MB long, I take 5,000 years, till I have 20 millions file that are each 1 MB long and than I will spend the next 400,000 years to test what file is the real one?

Sounds great if you will live for eternity and don't know how to spend this, but most of us will simply download the file in one minute and save 404,999.999 years.

Right on Archmage...

My infinite monkeys can type that out in half that time!

Right on Archmage...

My infinite monkeys can type that out in half that time!

That's pretty good. All mine have ever done was define all that is Canada.

It kinda works...but the checksum would have to be so long that its pretty close to the original file size just to make collisions unlikely enough.

@howlingmadhowie: Quantum computing is inherently binary: Vertical and Horizontal allignment. No 3rd state possible.


how many trits will be necessary to save an ascii character? how much shorter will files be?
About 5.05 units with 3 possible settings. (~63%...although the % is going to drift with multiple bytes)

It kinda works...but the checksum would have to be so long that its pretty close to the original file size just to make collisions unlikely enough.

@howlingmadhowie: Quantum computing is inherently binary: Vertical and Horizontal allignment. No 3rd state possible.


About 5.05 units with 3 possible settings. (~63%...although the % is going to drift with multiple bytes)

a quick explanation of how the calculation works.

there are 128 different ascii characters (32 of which non-printing) which are traditionally represented as 7 bits with 1 bit checksum. later this became 7bits and one zero bit. there are various extensions (the iso-8859 extensions for example) which take advantage of this to define 256 different characters. so you either need to store 128 different states or 128 different states plus a checksum or 256 different states. this can be done in 7 bits or in 7 + 1 bits or in 8 bits.

one trit can store 3 different states, 2 can store 9, 3 can store 27, 4 can store 81, 5 can store 243, and 6 can store 729. to store 128 different states, you need 5 trits, to store 128 different states plus a checksum you need 6 trits, to store 256 different states, you need 6 trits. so there would be a pressure to create new character mappings for exactly 243 different characters.

with binary data this is different. consider a binary file---a long row of 0's or 1's, n long. this can be regarded as representing one out of 2^n possible files. the total number of possible files we will call x.

so 2^n = x.

but m trits can store 3^n possible combinations.

3^m=x.

so 2^n = 3^m, or

n log(2) = m log(3)
m/n = log(2)/log(3)
~ 0.631

so a trinary file in the limit would be just over 63% as long as a binary file.

reading up on quantum computing by wikipedia, it seems to be about storing a number of possible states.

one of the basic tenets of quantum states is that they take all possible states before they are observed, at which point there is a certain probability of them 'deciding to be in' one of each of the permitted classical states. for example, an electron traveling classically from a to b takes all possible roots. only when we observe it is it 'forced to decide' which root it 'actually' takes.

As I posted this idea on a few forums I have had various responses.

With adaptation there is a possible solution. We do not just send byte length and checksum, we also send clues.

We send the file type to be produced, the byte length, the checksum, the first and last few characters(?), a 1 or 0 to show if 1 or 0 is more common in the file, and well anything that would help the generating algorithm on the local computer to attempt more suitable guesses.

Like if I had a 6 sided dice in my hand I do not ask you (the algorithm) to bother with colours, numbers above 6, letters of the alphabet, animals, vegetables or politicians. I give you a much better chance of getting the answer.

So in the case of a file I say. It is a .png, 4370120bytes, checksum blablabla, starting with a 1 and mainly 1's.

..obviously I don't really know what I'm talking about ;) but I feel the idea has legs if people add such ideas to the basic premise.



..

but I feel the idea has legs if people add such ideas to the basic premise.



..

It's really not feasible though. Imagine you had a puzzle with 6 million pieces, but you are blindfolded, you can't see them at all.

It would be possible to fit the pieces together, however, it would take a long time, and then when you are done, you find out that you pieced it together upside down.

Like someone else in the thread said, I'd rather wait on 2 hour downloads rather than my computer's processor to solve a puzzle with millions of pieces...

As I posted this idea on a few forums I have had various responses.

With adaptation there is a possible solution. We do not just send byte length and checksum, we also send clues.

We send the file type to be produced, the byte length, the checksum, the first and last few characters(?), a 1 or 0 to show if 1 or 0 is more common in the file, and well anything that would help the generating algorithm on the local computer to attempt more suitable guesses.

Like if I had a 6 sided dice in my hand I do not ask you (the algorithm) to bother with colours, numbers above 6, letters of the alphabet, animals, vegetables or politicians. I give you a much better chance of getting the answer.

So in the case of a file I say. It is a .png, 4370120bytes, checksum blablabla, starting with a 1 and mainly 1's.

..obviously I don't really know what I'm talking about ;) but I feel the idea has legs if people add such ideas to the basic premise.



..

unfortunately by providing clues you are doing the same as lengthening the hashing function you are using. in order to unambiguously define a file of length 10kB with no redundancy, you need 10kB of information.

the one loophole in the above sentence is the phrase 'with no redundancy'. let's say i am recording a film. one actor is on the screen for much of the film. in some shots, his face may look almost exactly the same, so you could copy these shots. there may be a trivial translation between these shots, so you could just send the information 'like in frame 32843 but 10% darker' or something like that. it might even be worth sending a 3d model of his face, and then telling the software used to play the file to paste this face into the film. if we have 200 different actors, we could record all their different eyes in the software and then define the eyes of the 201st actor as being 'like those of 34 but with a bit or 98 around the edges' or whatever. or if the eyes are really new, we could add them to our database.

and now we're getting pretty close to how light falling onto our retinas gets transformed into a 3d model of the world in our consciousness. for the quality of the 3d model in our head, the amount of information passing along the optic nerve is ridiculously small, just a fraction of a fraction of a percent of the amount needed with the best current compression. of course, we rely on an immensely powerful computer and a vast database to do this.

In the OP I do mention that this is for the days of much faster computing and to overcome the potential of being priced out of bandwidth which is already the case in Australia.

a good illustration of such a shift, i think, would be the shift from the magnetic drive to the optical drive. i think there may have been more that could have been done to make the magnetic drive have a higher capacity, better reliablility and smaller size. however, development simply stopped or slowed down once a better medium (optical data storage) emerged...

Magnetic drives are still in use. Unless you're typing this on a Linux netbook, I guarantee you are using a magnetic drive (hard disk) right now. And, actually, in a way they do store data in 3D. DVDs and Blu-ray discs store data in 3D as well.

The only time this would be practical would be if you had astronomical amounts of processing power, but teeny, tiny bandwidth.

The amount of processor smash you'd need makes me think that we're talking decades or generations into the future here. Given the transmission delays involved in long-range space communications this could theoretically be a practical solution for sending data at an interstellar range. Since you're effectively communicating only half-duplex anyway the fact that it might take your computer a while to reconstruct the data could be a non-issue. It could be a really efficient form of data compression.

Actually, it's cunning data compression like this that makes SETI so hard. High-tech alien civilisations are likely to be compressing their comms chatter to a high degree, which makes it really hard to distinguish a signal from the background noise. At the moment we probably wouldn't detect a signal that wasn't analogue or deliberately designed to look artificial.

You can get a similar checksum from two different files but not for 2 versions of the same file.

I still think that if I say to supercomputer "make me a file with checksum xyz123 of 123456890bytes then it will more than likely, when finished, have made the same file as I originally took the checksum and byte length from.

On the slight chance it had not then there would be simple checks and the algorithm could be told "ok try again and don't make that".

..

Quick, someone post the checksum of the Ubuntu 25.10 DVD!

Haha Microsoft now you die, we've got the secret checksum weapon, and all your software will be obsolete soon, :p

Honestly guys.

there have already been at least four posts showing this is impossible.
It doesn't matter if you have infinite processing power and could compute this in the fraction of a second, you would still have to deal with the enormous number of possible files that fit the checksum.

Since some here don't understand the math based arguments, imagine the checksum is "Giraffe", how many possible images of a giraffe are there?

A checksum has absolutely nothing to do with compression.

As already shown earlier:
If you have a file of 400 bytes with a 32 bit checksum:
File: 400 bytes = 3200 bits = 2^3200 = 1,976906479e+963
Checksum: 2^32 = 4294967296
Number of 400 byte files matching checksum: 4,602844079e+953

Please please stop saying this is a good idea, or if you include the file length it could work.

The only time this would be practical would be if you had astronomical amounts of processing power, but teeny, tiny bandwidth.There is no time when this would be practical, because it's mathematically impossible. You cannot uniquely specify a file with less information than is in the original.

The best you might hope for are domain-specific and/or lossy schemes, like the one outlined by howlingmadhowie for a film. The results can be spectacular. But for general data compression, you can't just arbitrarily trade off computing time for size. Yes, it would be nice. But no, it won't work. This isn't magic; it's math.

You can get a similar checksum from two different files but not for 2 versions of the same file.

I still think that if I say to supercomputer "make me a file with checksum xyz123 of 123456890bytes then it will more than likely, when finished, have made the same file as I originally took the checksum and byte length from.

On the slight chance it had not then there would be simple checks and the algorithm could be told "ok try again and don't make that".

..

the total number of files with a 10 bit checksum and length of 100bits is 2^(100-10) = 1237940039285380274899124224 (provided the checksum function generates evenly spaced hashes). in your example, you have a checksum of 64^6 (assuming base64 encoding of the checksum) = 36bits and a file of 1234567890*8 bits, which means there are 2^(1234567890*8 ) different files of which 2^(1234567890*8 - 36) will have the same checksum.

so that you have a feeling for the amount of different files this is, 2^10000 (which multiplied by itself a million times would be smaller than the number of different files 1234567890bytes long with the same 6 character checksum) is

19950631168807583848837421626835850838234968318861 92454852008949852
94388302219466319199616840361945978993311294232091 24271556491349413
78111759378593209632395785573004679379452676524655 12660598955205500
86918193311542508608460618104685509074866089624888 09048989483800925
39416332578506215683094739025569123880652250966438 74441046759871626
98545322286853816169431577562964076283688076073222 85350916414761839
56381458969463899410840960536267821064621427333394 03652556564953060
31426802349694003359343166514592977732796657756061 72582031407994198
17960737824568376228003730288548725190083446458145 46505579296014148
33921615734588139257095379769119277800826957735674 44412306201875783
63255027283237892707103738028663930314281332414016 24195671690574061
41965434232463880124885614730520743199225961179625 01309928602417083
40807605932320161268492288496255841312844061536738 95148711425631511
10897455142033138202029316409575964647560104058458 41566072044962867
01651506192063100418642227590867090057460641785695 19114560550682512
50406007519842261898059237118054444788072906395242 54833922198270740
44731623767608466130337787060398034131971334936546 22700563169937455
50824178097281098329131440357187752476850985727693 79264332215993998
76886660808368837838027643282775172273657572744784 11229438973381086
16074232532919748131201976041782819656974758981645 31258434135959862
78413012818540628347664908869052104758088261582396 19857701224070443
30583075869039319604603404973156583208672105913300 90375282341553974
53943977152574552905102123109473216107534748257407 75273986348298498
34075693795564663862187456949927901657210370136443 31358172143117913
98222983845847334440270964182851005072927748364550 57863450110085298
78123894739286995408343461588070439591189858151457 79177143619698728
13145948378320208147498217185801138907122825090582 68174362205774759
21417653715687725614904582904992461028630081535583 30813010198767585
62343435389554091756234008448875261626435686488335 19463720377293240
09445624692325435040067802727383775537640672689863 62410374914109667
18557050759098100246789880178271925953381282421954 02830275940844895
50146766683896979968862416363133763939033734558014 07636741877711055
38422573949911018646821969658165148513049422236994 77147630691554682
17682876200362777257723781365331611196811280792669 48188720129864366
07685516398605346022978715575179473852463694469230 87894265948217008
05112032236549628816903573912136833839359175641873 38505109702716139
15439590991598154654417336311656936031122249937969 99922678173235802
31118626445752991357581750081998392362846152498810 88960232244362173
77161808635701546848405862232979285387562348655644 05369626220189635
71028812361567512543338303270029097668650568557157 50551672751889919
41297113376901499161813151715440077286505731895574 50920330185304847
11381831540732405331903846208403642176370391155063 97890007428536721
96280903477974533320468368795868580237952218629120 08074281955131794
81576244482985184615097048880272747215746881315947 50409732115080498
19045580341682694978714131606321068639151168177430 4792596709376

now that's already quite a few to sift through to find the right one.

Amusing thread. I wonder why nobody is mentioning parity files ;-)

at the crunch bang linux forums the is an exact same first post. i wonder why it should be posted in more than one forum.

Not really. MD5 sums are starting to feel little secure, and I think I read on Ars Technica about possible exploits of packages while keeping their md5sum. There's a reason why Debian (and thus Ubuntu) is moving to SHA for package integrity checking, if they haven't already. Mmm... let me check some links...

Ars Technica's MD5 exploit (http://arstechnica.com/security/news/2008/12/theoretical-attacks-yield-practical-attacks-on-ssl-pki.ars)
Debian packages use SHA (http://en.wikipedia.org/wiki/SHA_hash_functions#cite_note-4). Actually, the apt code in that reference seems to read like "check SHA256, if not go to SHA1, if not check MD5, if not the package is corrupted".
Rainbow tables. Huge ones exist for MD5 and SHA1, so everyone's running away from MD5 and SHA1 screaming.

Ubuntu uses SHA512.

Rainbow tables. Huge ones exist for MD5 and SHA1, so everyone's running away from MD5 and SHA1 screaming.

Ubuntu uses SHA512.

Thanks for pointing that out!

Hmm...more accurate:

Hardy and earlier use MD5.

Intrepid supports SHA512 and is supposed to use it out of the box. If you use Windows-migration on Intrepid though, it does it completely wrong though, and you end up in "only the first 8 characters of the password count" mode, like in old UNIX systems. Also, SHA512 may not actually happen by default (it might do MD5). If you change your password using the "passwd" command, then it'll convert you to SHA512. Use
sudo less /etc/shadow to see what it's doing. If it has $1$ it's doing MD5. If it's $6$, then it's SHA512.

Hmm...more accurate:

Hardy and earlier use MD5.

Intrepid supports SHA512 and is supposed to use it out of the box. If you use Windows-migration on Intrepid though, it does it completely wrong though, and you end up in "only the first 8 characters of the password count" mode, like in old UNIX systems. Also, SHA512 may not actually happen by default (it might do MD5). If you change your password using the "passwd" command, then it'll convert you to SHA512. Use
sudo less /etc/shadow to see what it's doing. If it has $1$ it's doing MD5. If it's $6$, then it's SHA512.

It's good to know. I don't feel all that bad about shadow (yes, I confess), since you need root privileges to be able to read it in the first place. In any case, does that apply for package integrity? I thought Debian moved away from MD5 for package integrity a looong time ago. Like... emm... Sarge or Etch.

There is no time when this would be practical, because it's mathematically impossible. You cannot uniquely specify a file with less information than is in the original.

The best you might hope for are domain-specific and/or lossy schemes, like the one outlined by howlingmadhowie for a film. The results can be spectacular. But for general data compression, you can't just arbitrarily trade off computing time for size. Yes, it would be nice. But no, it won't work. This isn't magic; it's math.

What about if you also included, say, 10% of the file? That should sort the math down to the realm of the computationally sensible, surely? Especially if you had a machine that could understand the semantic contents of the file fragment and could make some guesses about what were sensible candidates for the complete file.

What about if you also included, say, 10% of the file? That should sort the math down to the realm of the computationally sensible, surely? Especially if you had a machine that could understand the semantic contents of the file fragment and could make some guesses about what were sensible candidates for the complete file.

finally someone with creative input! thanks :)

I'll totally and utterly change my point of view here and state that thermodynamics is playing against you.

Trying to generate true 100 Mb from (even) 10 Mb of a checksum is probably as possible as dropping a boat into the sea, and the sea will get cooler so that the boat can use that difference of energy to power its engine.

thermodynamics is a myth, check out the "Electric Universe"

thermodynamics is a myth, check out the "Electric Universe"

All I've seen in google about "Electric Universe" is a music group, so I suppose you are basically pulling my leg about thermodynamics.

thermodynamics is a myth, check out the "Electric Universe"Oh God, not that too.

I'll totally and utterly change my point of view here and state that thermodynamics is playing against you.

Trying to generate true 100 Mb from (even) 10 Mb of a checksum is probably as possible as dropping a boat into the sea, and the sea will get cooler so that the boat can use that difference of energy to power its engine.

I just love how you clever guys talk. :p

So it is possible then? ;)

I propose that we skip the wholly redundant downloading step altogether.

Operation will simply be typing in a request:


Write a good science-fiction book for me, please.

And the computer will start generating a book which will be deemed complete when conditions are met:


correct_spelling=true
correct_grammar=true
is_the_next_I_robot=true

Or hang on, even better!
Why not let the computer just generate everything, user input will be superfluous since it may be generated as well.
ZOMG I'm gonna be rich!!! plz no steal idea!1

I just love how you clever guys talk. :p

So it is possible then? ;)

Look at it this way. I do a math problem (x)=10 I can't give a someone a number 10, and say "ok now you have to make 10 the same way that I did" They will get the same number in the end, but the chances that they get all the stuff in the middle right would be like monkeys typing the constitution by coincidence. There's information missing. With out this information it is imposible to get 10 the same way I did with the exeption of dumb luck. I'm not sure, but it would seem to me that the clues needed for the comp to guess the file would be longer than the file it's self. Think of it like this, you could ethier download the answer 10 or the 3 pages of clues it would take for you to figure out how a made the ten.

If checksum method saves 50% and we do it recursively.
Any size file can be reduced until they are only one bit in size...

Now all files can be downloadet by just getting 2 bits.
Filelength and Checksum

So here you are:
Ubuntu 25.10 = 0 1

Windows 2025 = 0 1

Yeah I know they seem the same, but our infinite processing power solves that it just take a couple of seconds -- no problemo.

Can we now please stop?

I just love how you clever guys talk. :p

So it is possible then? ;)

I'll run the risk of being called an unimaginative retrograde and say that no, it isn't possible. The original poster, Phonicboom, proposed:



You download a byte size and checksum, your computer then makes files of that size until it hits the checksum, then you have the file without ever downloading it.

The error in his reasoning is that, once the file size exceeds the checksum size, there are many files of the exact same size with the exact same checksum. Adding additional information (i.e. the first 10% as someone suggested) will help, but it won't be enough until the total information you have is the same as the original file.

You would end up downloading the same amount of information (bytes) and wasting CPU time that could have been spent in something more productive like watching youtube or playing openarena.

Please note that if the original file size is a mere byte longer than the total information you downloaded, you can produce 256 (2^8 ) different files that match all your requirements.

Example

We have an up to three bit system, with all the states being the following (associated to numbers for future convenience):


0 = 0
1 = 1
10 = 2
11 = 3
100 = 4
101 = 5
110 = 6
111 = 7

Yes, I know it's not very imaginative. Now, we have a one-bit checksum, that is the modulo of the "state" divided by two. In our system this matches the last number in binary form.

If you say "my file just has one bit, and its checksum is 0", then you are providing more information than the real archive (0), but at least you get it. If you say "my system has two bits, and the last number (or checksum) is 1", you provide the same information that you want to recover, and get the correct answer as a prize. But when you get to three bits... Aha! Which file has three bits and "checksum" 0? Both 4 and 6. See why the OP's point fails?

Please note that if the original file size is a mere byte longer than the total information you downloaded, you can produce 8 different files that match all your requirements.Not 8 -- 256.

Not 8 -- 256.

Silly me! Already corrected and thanks for the tip.

Imagine you gave it the first and last megabyte of a 2.5 megabyte file and the checksum for a completed file. Would the computer be able to work out the missing .5? If so then you could ask it to try more next time.

I don't think to either.

Imagine you gave it the first and last megabyte of a 2.5 megabyte file and the checksum for a completed file. Would the computer be able to work out the missing .5?No. It could only give you BIGNUM versions to choose from. (I am too lazy to work out what BIGNUM is, but trust me, it's big .)

I know it's mathematically impossible, but I conducted an experiment years ago, where I put little spikes of random data at regular intervals into video files. The video players would still play the files, even with spikes of 20 kilobytes. Obviously video playback software is tolerant to wrong data.

Therefore, if your checksum corresponded to a bunch of video files that were all fairly similar but had some wrong data at frequent intervals, you could still play it fairly well and therefore it wouldn't matter if not all the data was correct.

Obviously video playback software is tolerant to wrong data.Really not the issue here, nor does it help. The alternate files generated from the checksum would not necessarily (or even likely) be close to the original at all -- think "wrong from top to bottom", not "nearly the same", or "close enough".

Actually, if the checksum mechanism was any good, the collisions have to be very far away, and the "almost identical video" wouldn't have the same checksum. This is because one of the main requirements of a checksum is that almost identical files have terribly different checksums.

What about if you also included, say, 10% of the file? That should sort the math down to the realm of the computationally sensible, surely? Especially if you had a machine that could understand the semantic contents of the file fragment and could make some guesses about what were sensible candidates for the complete file.

you're talking about redundancy. i mentioned that above. a good compression algorithm should remove redundancy. there are of course two classes of compression: lossy and lossless. for a film or an image, you can get by with a certain loss. in fact you need it because a film in 800px * 600px image size and 25fps image rate without compression would be (* 1.5 60 60 25 800 600 3) = ca. 200GB in size (assuming no lossless reduction). For a binary software file you can use lossless compression but you should think very carefully about lossy compression.

Yeah-- the idea is that file corruption happens a few bytes at a time. If your file is corrupted, it'll only be a few bytes off. This will cause the checksum to be WAY different, and the corruption will stick out like a sore thumb.





To do what the original poster suggests, you'd basically have to brute-force guess the file's contents.

We'll start with a small example:

The amount of time required to break a 128-bit key is also daunting. Each of the 2^128 (340,282,366,920,938,463,463,374,607,431,768,211,4 56) possibilities must be checked. A device that could check a billion billion keys (10^18) per second would still require about 10^13 years to exhaust the key space. This is a thousand times longer than the age of the universe (http://en.wikipedia.org/wiki/Age_of_the_universe), which is about 13,000,000,000 (http://upload.wikimedia.org/math/1/b/4/1b479109f1d92a3207c1042f882b7da9.png) years.Source: http://en.wikipedia.org/wiki/Brute_force_attack

So assuming it only takes one instruction to check a combination, the world's most powerful computer (http://www.top500.org/system/9707) would take 781250000000000000000 (10^13*(10^18/(12.8*10^9))) years to run through all the combinations. Keep in mind that is would actually take five or six instructions per second to check a combination (if you wrote an OS specifically for that purpose that did no other tasks at all,) so the real-world time is five or six times as long.

And that's just for a 128-bit key!




Scale it up to the level of recovering entire gigabytes of data, and the laws of physics tell you that you're using many times more than the current electricity usage of the entire planet, not including any power-using components besides the processor itself.

if the output from the hash function is smaller than the input file there will always be hash function collisions. is that right?

Yes, that is right. There always will be.


If your file is 700 bits and your hash is 699 bits, there will be two possible files.

To do what the original poster suggests, you'd basically have to brute-force guess the file's contents.But the deeper problem is that there is no way, with any amount of computing power, to distinguish between the various "correct" answers, even in theory.