On 26 Dec 2000, Mr.Bad wrote:
> API> I am very frightened for Freenet because of this technology.
>
> Join the club. Until I figger out a way to protect myself, my nodes
> are off and I'm not updating Pigdog Journal in Freenet (sorry,
> folks).
And what are the best defences against this MediaOverLordDominator thing?
1) They can't change IPs that often. If node operators (and even
people who aren't node operators) configured their systems to detect
portscans, and then reported them somehow, we could use updated
IP-banlists to block their scans. They will also be on really fat pipes
that should be easy to identify. Scanning millions of IP addresses --
EVERY port -- takes serious bandwidth.
2) Portscans are easy to block, if the OS is configured to do so.
Block them and report them.
3) They have ISPs, too. When a portscan is reported, send an email to
the ISP in question reporting it and demanding action. Better, send a real
letter. Send big boxes full of lead pipes. They'll go nuts. We could
certainly organize something like this. They certainly can't hide.
Etc. This is really some great Slashdot material. People would go nuts.
We should also keep in mind that we don't even know whether or not they
will bother doing a complete portscan of every IP they scan. I doubt
it. They'll probably concentrate on sitting ducks like Napster
shares. Then we won't have much to worry about.
It would be a very good idea to push for the deployment of robust
connection logging at file-sharing hot-spots like universities, as well as
just random net connections. Even if they only try four or five ports, it
will be identifiable and reportable. Then the identities of the attackers
and their ISP can be identified and published. Again, lead pipes in boxes.
Make their lives difficult.
Immediately, we must randomize the FProxy port. Otherwise, Freenet nodes
are sitting ducks too. I will work on this tonight if nobody else
volunteers.
--
Mark Roberts
[EMAIL PROTECTED]
_______________________________________________
Freenet-chat mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/mailman/listinfo/freenet-chat
