> For me this is not a reaction. I have been firmly in favor of clusters for
> a long time. I think implementing it now would be good timing so as to
> combat the bad reactions people will have from running that article (such
> as "I can't run a node! I'll lose my Internet access!" and "Freenet is
> vulnerble to attack!" and such).
You falsely stating that this represents a "flaw" in Freenet's design
certainly isn't helping matters. A flaw is where something doesn't
achieve its goals, Freenet's goals is to provide anonymity to producers
and consumers of information, it was never a goal to provide anonymity to
node operators. It is not a flaw when a system does not achieve something
that it was never intended to achieve.
> But of course we can't implement
> something that sucks just to assuage bad press. So we must no procede by
> either suggesting an alternative to my proposal which is better or to
> examine the flaws in my proposal in hopes of making it passable or
> figuring out how to make a better proposal. I feel that I have refuted all
> flaws with my proposal up to this point, so I need some more criticism.
How are gateways chosen?
What is to stop gateways from being taken down (using the "flaw" that you
talk about) isolating a potentially large group of nodes?
How do people reliably find another Freenet node which they trust, and
which can trust them?
Why won't the gateway become a bottleneck if all requests for information
not stored within the local cluster must pass through it?
> If you have the resources to port scan blocks of IPs (which I think is a
> reasonable power to give a theoretical attacker) then you can't make node
> fishing less effective.
Explain how someone efficiently attempts to do a DH key-exchange with
65,000 ports on a machine which could be at the end of a 56k modem?
> I stand by my position that the option to reject
> unknown connections is the only way to combat this attack and that it will
> not break Freenet.
No shit. The point is that I think that you are wrong. Also, you
suggested this before - what was the general opinion then - I seem to
recall that it resulted in Oskar making some disparaging remarks about
your understanding of how Freenet works. Can you remind me when you last
suggested it so that I can check the archives?
Ian.
PGP signature
