On Tue, Jul 01, 2008 at 11:36:38AM +0200, Christian Biere wrote:
> Alex wrote:
> > On Tue, Jul 01, 2008 at 02:25:27AM +0200, Christian Biere wrote:
> > > Alex wrote:
> > We could default to TLS and only fall back if that fails (maybe gated
> > by config switch?).
> 
> Yes, that could be done.

Cool. I shall have to break out the src tree and have a poke about.

> > I assume from a health point of few the entire
> > query network should be encrypted within the next year or so?
> 
> No, not the entire network. People will be using deprecated software
> for years, decades, centuries and millennia as they always do. I don't
> think you would lose a noteworthy amount of peers if you restricted
> connections to those capable of encryption.

True but I would of thought this is a case of moving things on by
policy (much like GTKG does with old CVS builds). 

> > >  The fall back option is not very sensible, but a fall forward toward TLS
> > >  might be useful.
>  
> > Ok, although at that point won't DPI of already figured out whats
> > going on?
> 
> Maybe.
>  
> > > I'm not aware of any proposals with respect to encryption but there is
> > > certainly room for improvements with the current implementation. I don't
> > > think gtk-gnutella makes use of session resuming (unless GNUTLS does it
> > > transparently) which would reduce some overhead at the price of a bit
> > > memory.
>  
> > I assume this is a cost when the servant gets the next chunk of a
> > multipart file?
> 
> Not necessarily. Normally connections are persistent. It simply applies
> to every connect after a previous successful connection attempt. Download
> requests are certainly the most-likely case.

OK, that would require some reading about the guts of GNU TLS.

> > > Also the "https:" URL scheme isn't supported as of yet which
> > > also means that magnet-links do not indicate support for encryption.
> 
> > I don't understand.
> 
> Then read upon it.
> 
> > I thought magnet links where a pure content
> > identifier rather than what hosts had it?
> 
> A magnet provides information about a file including optionally one
> or more URLs.

Ahh, the wikipedia article let me down in summary. Are we talking
about the "mt" tag here? The spec I can see is quite old (v0.1 2002)
and doesn't give many examples.

-- 
Alex, homepage: http://www.bennee.com/~alex/
        "I keep seeing spots in front of my eyes."
        "Did you ever see a doctor?"
        "No, just spots."

-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://sourceforge.net/services/buy/index.php
_______________________________________________
gtk-gnutella-devel mailing list
gtk-gnutella-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gtk-gnutella-devel

Reply via email to