Theo writes: > It is true that that won't stop someone from finding if you in particular > are running a Freenet node. But something along these lines is still > useful to make it much more difficult for an upstream provider to find out > if any of its users are running Freenet nodes. With a textual announcement > you can trawl through all your traffic looking for "Freenet v1.0 DH > KeyExchange", instead of having to scan each port on each of your users > trying to Freenet handshake.
That's true, but we could have accomplished the same thing a long time ago by using a binary protocol. Or at most we could lightly encrypt with a binary equivalent of rot13. This is obscurity, not security. We may want obscurity, but it is unfortunate that we are choosing to add it at the same time that we add security. People get the two mixed up badly already. I am concerned that it is just going to add more confusion if our design tries to provide both. Hal _______________________________________________ Freenet-dev mailing list Freenet-dev at lists.sourceforge.net http://lists.sourceforge.net/mailman/listinfo/freenet-dev
