Oskar Sandberg schrieb: > And anyways, who is to say that you have > to grant everyone on your local host full access to your Freenet node? It > seems like this place needs a good flamethrower purging of Windows > thinkers lately. :) see below > The most basic way of doing this is simply to place a password in the > config file and require that. The client that is sent the shutdown command > could even read the users config file itself, making it automatic. It's > not great security, but it's good enough. > > Fred 0.4 will support FNP over the STS encrypted sessions used for FNP as > well as plaintext, so the RIGHT way to do it would be to only accept > the shutdown command over encrypted connections with a recognized peer PK.
I wrote in my proposal: "It would have to be possible from localhost only or *require some strict authentication*." Your poroposal is exactly what I had in mind (encryption and authentication via password), so no flamethrower on that side needed. Seb _______________________________________________ Devl mailing list Devl at freenetproject.org http://lists.freenetproject.org/mailman/listinfo/devl
