for a FreeNet Process
> Hi JF, > > this discussion should move to the tech list as it's not related to > day-to-day freenet development. Ok I'll pose it there. > > Anyways... I don't understand how you your idea will work. Where does the > executable code come from? How is it supposed to be executed? If untrusted > code is to be run on nodes, this is clearly a major security risk. Not even > the Java sandbox is safe enough for this porpuse (it is susceptible to > denial of service attacks by consuming all CPU and/or memory, for example). > If U mean DOS in the sense that tons of useless commands are directd towards a process, then u are right. I'm unfamiliar with the Java sandbox, but any computer or process is susceptable already to useless comands. Of course you could implement pattern recognition proceses that would effictively identify repetative type attacks and re-route them to harmless NULL space. The point is by distributing the process amonst the nodes, a hacker would not be able to break into the particular machine the process was running on and affect it that way. This is a much more serious and dangerous type of crack than DOS. The code of course is trusted in the freenet, but it is encrypted. The security problem arises when u have to decrypt the code to execute a nodes portion of the process. A "Cancer" node could screw with you there. But again the cancer node would never know which process it was screwing with as it can't determine the node location of the process. A Cancer node would therefore have to guess and hope the particular target process was in its own node. Of course tons of Cancerous nodes would be able to crack things. But of course as I read, cancer nodes are already a serious problem with the current freenet. Freenet does not guarantee anonymity and immunity from atacks, it simply makes it much more dificult to implement an attack. Anyway I'll get on the tech list for this. _______________________________________________ Devl mailing list Devl at freenetproject.org http://lists.freenetproject.org/mailman/listinfo/devl
