On Tue, Sep 23, 2003 at 11:59:43AM +0200, Benny Amorsen spake thusly: > Right now freenet is most commonly downloaded from a non-secure site, > just authenticated by a non-secure DNS lookup. Most people use the > precompiled jar file, and even the source-compiled one fetches binary > stuff to put in the jar. It is even encouraged to "spread freenet", > which means downloading off of temporary sites.
If it is determined that freenetproject.org has been compromised it can be taken down and cleaned up. If the SSK on an official freenet freesite gets compromised it is impossible to remove the trojan'd fred. This is by the design of freenet. This is the problem. -- Tracy Reed http://copilotconsulting.com
pgp00000.pgp
Description: PGP signature
_______________________________________________ Devl mailing list [EMAIL PROTECTED] http://dodo.freenetproject.org/cgi-bin/mailman/listinfo/devl
