On Friday 14 December 2007 09:12, Julien Cornuwel wrote: > Matthew Toseland a ?crit : > > > Your node is currently running in insecure mode. It is trivial for an attacker > > to find your node, and you could be connected to the Bad Guys right now. > > Please get some connections to people you trust and add them to the Friends > > page as soon as possible, you will be much less vulnerable. When you have at > > least 10 Friends, turn off insecure mode and your node will become invisible > > to the outside world. > > I'm not sure using the words "Insecure" and "Please get some > connections" are a good thing. Opennet is not that insecure.
Yes it is. It is very easy to find all nodes. It is relatively easy to surveil those nodes that you are connected to and determine what (of big files) is local and what is remote. And it is relatively easy to search the entire network for the originator of specific content by starting off far from them, and using what you know from the locations of those requests that reach you, to gradually narrow down the possible authors. > Of course > it is if compared to pure-darknet, Whereas these attacks are MUCH more difficult on darknet. > but it's still far more secure than > the internet. It may be more secure than the internet, but so what? > And most users just can't get connections to people they > know and trust because no one they know uses freenet. This is why we need to build a big Freenet. This is why we need opennet. And we need to build it not only from those people who absolutely must use Freenet, but also from those who are merely interested. If you have a secret source in the KGB, you probably don't want to directly connect to his node - you want to connect to your friends who eventually indirectly get to him, so that when they bust or surveil either of you, they don't get the other. > > Just yesterday, I met someone on #freenet-fr who knew nobody in the > network. But after a few readings, he decided that opennet was insecure, > refused to enable it and came to IRC to get Friends ! Isn't this just the result of the disclaimer being far too long? > He thought we used > Friends like in the friend-slots of eMule, not like in > real-life-friends. I think we should stress that point. > > What about : > Your node is not running at its maximal security level. It is trivial > for an attacker to find your node, and you could be connected to the Bad > Guys right now. If people you actually know and trust are using Freenet, > you can connect to them using the Friends page to increase your security > level. When you have at least 10 Friends, turn off insecure mode and > your node will become invisible to the outside world. What about: Freenet is running in insecure mode: It is (relatively) easy for an attacker to find out that you are running a node, connect to it, or even trace your requests. You can dramatically improve your security by adding connections to people you trust through the Friends page. When you have at least 10 Friends, please turn off insecure mode and your node will become invisible to the outside world. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: <https://emu.freenetproject.org/pipermail/devl/attachments/20071214/9c2e6838/attachment.pgp>
