Send Freenet-dev mailing list submissions to freenet-dev at lists.sourceforge.net
To subscribe or unsubscribe via the web, visit http://lists.sourceforge.net/mailman/listinfo/freenet-dev or, via email, send a message with subject or body 'help' to freenet-dev-request at lists.sourceforge.net You can reach the person managing the list at freenet-dev-admin at lists.sourceforge.net When replying, please edit your Subject line so it is more specific than "Re: Contents of Freenet-dev digest..." Today's Topics: 1. Re: Promoting metadata (was: Meaningless hits) (Scott G. Miller) 2. Re: Promoting metadata (Scott G. Miller) 3. Re: Suggestion for ease of use.. (Scott G. Miller) 4. Re: Promoting metadata (was: Meaningless hits) (Timm Murray) --__--__-- Message: 1 Date: Mon, 26 Jun 2000 12:22:51 -0500 To: freenet-dev at lists.sourceforge.net Subject: Re: [Freenet-dev] Promoting metadata (was: Meaningless hits) protocol="application/pgp-signature"; boundary="H8ygTp4AXg6deix2" From: "Scott G. Miller" <scgmi...@indiana.edu> Reply-To: freenet-dev at lists.sourceforge.net --H8ygTp4AXg6deix2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable > sent that retraces the route back to the metadata and promotes it. This = is > easily accomplished by including metadata keys with the metadata items > returned from a search request. >=20 > Did I make any invalid assumptions here? If not, this seems to me to be a > robust and efficient way of handling metadata promotion. Yes, there is the assumption that the server can be well behaved. The problem with your proposal is that it allows malicious nodes to falsely promote metadata, by spamming with these "metadata promote" messages. Honestly I really don't think we need any artificial metadata-life-lengthening messages. If people continue to need to search for an item, then those hits on the metadata will be enough. What might be a problem is the inverse, metadata may expire *too slowly* since it will be returned in searches even if the data it points to no longer exists. --H8ygTp4AXg6deix2 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE5V5FrpXyM95IyRhURAoUcAJ9ka+ajA0Qin6RpozySh1afW0S0qgCghxt3 fwP/h8kJpJSQnCZXOWGJaBg= =LFNR -----END PGP SIGNATURE----- --H8ygTp4AXg6deix2-- --__--__-- Message: 2 Date: Mon, 26 Jun 2000 12:26:31 -0500 To: freenet-dev at lists.sourceforge.net Subject: Re: [Freenet-dev] Promoting metadata protocol="application/pgp-signature"; boundary="n/aVsWSeQ4JHkrmm" From: "Scott G. Miller" <scgmi...@indiana.edu> Reply-To: freenet-dev at lists.sourceforge.net --n/aVsWSeQ4JHkrmm Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable > I didn't miss that, I just didn't note it as an assumption. Though it's = an > interesting point, It's not really relevant to the discussion. Even when > running on the same computer the server is still more trustworthy than the > client in the same way that inetd is more trustworthy than <pickyourclien= t>. > There will be fewer variations on servers than clients, so the behavior o= f the > server is much more predictable than the client. Further, it's likely th= at the > clients will be running as normal user programs and thus be more vulnerab= le to > attack. For these reasons anything that looks like routing or policy sh= ould > run in the server, not the client. Thats a load of steaming BS. If an attacker wants something done, he can engineer any sort of server he wants. Freenet has among its design philosophies that no part of the network is trusted. Certainly a server isn't any more trusted than a client. > There is another way of retracing the metadata route that would have zero > impact on message size: every node remembers enough routing data when a s= earch > result passes through it so that the route can be followed in reverse, as= with > data requests but in the opposite direction. The disadvantage of this is > that the work is multiplied by the number of search results, and most of = that > routing data will never be used. An expiry policy would be needed for the > routing data. Probably just using the metadata key is simpler. Ahem. And the fact that if every knows the routing information then we don't have anonymity any more.=20 --n/aVsWSeQ4JHkrmm Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE5V5JHpXyM95IyRhURAjSYAJ0eLl1X8szmFEmD0LF46Mnd/DsqcwCeNEhz m2e1f7Ag9I7ckOKO9Fss+WM= =Loug -----END PGP SIGNATURE----- --n/aVsWSeQ4JHkrmm-- --__--__-- Message: 3 Date: Mon, 26 Jun 2000 12:28:45 -0500 To: freenet-dev at lists.sourceforge.net Subject: Re: [Freenet-dev] Suggestion for ease of use.. protocol="application/pgp-signature"; boundary="WK3l2KTTmXPVedZ6" From: "Scott G. Miller" <scgmi...@indiana.edu> Reply-To: freenet-dev at lists.sourceforge.net --WK3l2KTTmXPVedZ6 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline > Even if you do run your own node, you will need to find a point of > contact, otherwise your freenet network will be somewhat limited.. :) > Having the freenet node look for freenet.yourdomain:19114 might > be a step towards eliminating 'inform.php'. Yes, this falls under the general unsolved problem of "Node discovery". Though I agree with whoever said that this was a bad idea because it makes it very easy to find freenet servers (ie, Big Brother just tries to connect to freenet.* in every domain, then sends goons) > > Obviously the end user has to find another freenet node *somehow*, > and relying on word-of-mouth only sounds awkward.. Akward but effective, and very simplistically secure. I agree, we need another method. --WK3l2KTTmXPVedZ6 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE5V5LNpXyM95IyRhURAsa7AKC8fc61zFOjDHV08Ux99bdHbWL23wCgsRgW 4bvtPJMnS0J2kpTaXaWDxxw= =C4sW -----END PGP SIGNATURE----- --WK3l2KTTmXPVedZ6-- --__--__-- Message: 4 From: "Timm Murray" <ad...@madtimes.com> To: <freenet-dev at lists.sourceforge.net> Subject: Re: [Freenet-dev] Promoting metadata (was: Meaningless hits) Date: Mon, 26 Jun 2000 13:18:41 -0500 charset="iso-8859-1" Reply-To: freenet-dev at lists.sourceforge.net > This is to protect against the Popescu attack where he posts messages > under invalid labels. Congradulations, Marcel; you got an attack named after you :) --__--__-- _______________________________________________ Freenet-dev mailing list Freenet-dev at lists.sourceforge.net http://lists.sourceforge.net/mailman/listinfo/freenet-dev End of Freenet-dev Digest