On August 10, 2004, Jeffrey Morton <[EMAIL PROTECTED]> wrote:
Actually, it wouldn't require much to be done in the way of a gnutella change. Design points could be as follows:
Checkboxes "Allow Encrypted Communications", "Allow Unencrypted Communications".
Server would open 2 ports and advertise each, with some sort of tag indicating encryption on one port.
SSH overlay on the encrypted port, no underlying protocol changes required. Effectively perform an SSH tunnel.
Clients would choose which port to use, preference should be given to encrypted ports where available.
That's really all it would take, servers would be running both versions for a time, unless the operator didn't want to deal with operating unencrypted. The protocol change should be minor, basically just the addition of a second advertised port.
Also: To address the question about ISP's detecting large encrypted connections on odd ports, maybe we could also allow wandering ports. I.e., allow the advertised port to change every so often. Effectively add a new port to the listened ports, advertise the new port instead of the old, and 10-60 minutes later, stop listening on the old port.
On Tue, 2004-08-10 at 11:39, Paco Arjonilla wrote:
> --- clayton rollins <[EMAIL PROTECTED]> escribió:
> > The meat of it: though I'll likely switch ISP's unless I get them to change
> > the policy, I would like to help hack some code to subvert their blocking
> > measures. I think some sort of proxying (encryption) could work.
> > Though it would depend on a new protocol (or whatever), I think the
> > idea is worth pursuing.
> I proposed the idea of encrypting all sorts of communication, but it was
> forgotten, so I also like very much the idea. However, if your ISP detects a
> lot of encrypted traffic in rare ports it may also block you. It's also a
> matter of how you send the data as well as what you share. Having a few
> connections lasting for hours is suspicious.
> The biggest problem of this is that the gnutella protocol team must agree, but
> if it finally succeeds, everyone will have protection against RIAA & friends,
> ISP blocking, etc.
Hi all,
Glad to hear there are some robust ideas already out there.
I'm mostly writing because my problem turned out to not be the ISP. (My stupid router/AP had reset to defaults somehow...)
However, I think this is still a good idea, and will be glad to test any patches or cvs commits pertaining to this.
Best regards, and thanks for any work you [have/will] [done/do] on this, Clayton
_________________________________________________________________
On the road to retirement? Check out MSN Life Events for advice on how to get there! http://lifeevents.msn.com/category.aspx?cid=Retirement
------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 _______________________________________________ Gtk-gnutella-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/gtk-gnutella-devel
