On Tue, 18 Apr 2000, Ian Clarke wrote: <snip> > If we do it like this, we would need to exercise *extreme* caution to > ensure that we don't create a security hole through which people could > shutdown Freenet nodes, or worse, crack machines running nodes. It > would probably need to have a password system (relying on IP addresses > is no good as they can be faked), and that password would probably need > to be encrypted using some kind of handshake mechanism. This rapidly > becomes very very complicated. > > Much easier to just allow communication via STDIN and STDOUT.
Exactly. The only way to make this safe IMHO is to integrate an SSH server into the node so that can be used for authenication, but that is really a hell of a lot of work for a small feature - and the goal with the reference node should be to keep it minimal where possible. Instead, use STDIN and STDOUT, and if somebody wants remote admin, they can set up a Freenet admin package using pipes. > Ian. > > _______________________________________________ > Freenet-dev mailing list > Freenet-dev at lists.sourceforge.net > http://lists.sourceforge.net/mailman/listinfo/freenet-dev -- Oskar Sandberg md98-osa at nada.kth.se #!/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj $/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1 lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/) _______________________________________________ Freenet-dev mailing list Freenet-dev at lists.sourceforge.net http://lists.sourceforge.net/mailman/listinfo/freenet-dev
