Alex wrote:
> The world is getting more deep packet inspection happy. The obvious
> next step is more routine use of encryption. I notice GTKG links
> against TLS already. Will it use encryption for all connections?

You can tell which connections are encrypted by looking for an 'E' flag
or a mention of 'TLS'.

> 1. Is the Gnutella Network P2P encrypted yet? If not do any
>    proposals/other clients propose ways to do so? I assume you would
>    have to know another node would accept encryption rather than try
>    and connect and then fall back?

gtk-gnutella and LimeWire support TLS over TCP. UDP is never encrypted.
gtk-gnutella never falls back. I've read LimeWire tries TLS first and
falls back but this might not be the case in current versions.  The fall
back option is not very sensible, but a fall forward toward TLS might be
useful. Once it's been determined that peer does indeed support TLS,
falling back to a plain connection is simply absurd.
 
> 2. Are the file fetches done with encryption? If not I guess this
>    would be the easiest place to start as the there would already be
>    information you could embed in the hit packet to say the servant
>    accepts SSL sessions?

Yes, such hint is exchanged albeit this is rather for transition than an
absolute requirement. At this point it should be supported by the vast
majority of all peers, so an optimistic use of encryption might be
sensible.

> Basically a summary of the state of encryption in the Gnutella network
> and if there are any proposals/specs that could be implemented for
> GTKG is what I'm curious about.

I'm not aware of any proposals with respect to encryption but there is
certainly room for improvements with the current implementation. I don't
think gtk-gnutella makes use of session resuming (unless GNUTLS does it
transparently) which would reduce some overhead at the price of a bit
memory. Also the "https:" URL scheme isn't supported as of yet which
also means that magnet-links do not indicate support for encryption.

-- 
Christian

-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://sourceforge.net/services/buy/index.php
_______________________________________________
gtk-gnutella-devel mailing list
gtk-gnutella-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gtk-gnutella-devel

Reply via email to