Send Freenet-dev mailing list submissions to
freenet-dev at lists.sourceforge.net
To subscribe or unsubscribe via the web, visit
http://lists.sourceforge.net/mailman/listinfo/freenet-dev
or, via email, send a message with subject or body 'help' to
freenet-dev-request at lists.sourceforge.net
You can reach the person managing the list at
freenet-dev-admin at lists.sourceforge.net
When replying, please edit your Subject line so it is more specific than
"Re: Contents of Freenet-dev digest..."
Today's Topics:
1. Re: Promoting metadata (was: Meaningless hits) (Scott G. Miller)
2. Re: Promoting metadata (Scott G. Miller)
3. Re: Suggestion for ease of use.. (Scott G. Miller)
4. Re: Promoting metadata (was: Meaningless hits) (Timm Murray)
--__--__--
Message: 1
Date: Mon, 26 Jun 2000 12:22:51 -0500
To: freenet-dev at lists.sourceforge.net
Subject: Re: [Freenet-dev] Promoting metadata (was: Meaningless hits)
protocol="application/pgp-signature"; boundary="H8ygTp4AXg6deix2"
From: "Scott G. Miller" <scgmi...@indiana.edu>
Reply-To: freenet-dev at lists.sourceforge.net
--H8ygTp4AXg6deix2
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
> sent that retraces the route back to the metadata and promotes it. This =
is
> easily accomplished by including metadata keys with the metadata items
> returned from a search request.
>=20
> Did I make any invalid assumptions here? If not, this seems to me to be a
> robust and efficient way of handling metadata promotion.
Yes, there is the assumption that the server can be well behaved. The
problem with your proposal is that it allows malicious nodes to falsely
promote metadata, by spamming with these "metadata promote" messages.
Honestly I really don't think we need any artificial
metadata-life-lengthening messages. If people continue to need to search
for an item, then those hits on the metadata will be enough. What might
be a problem is the inverse, metadata may expire *too slowly* since it
will be returned in searches even if the data it points to no longer
exists.
--H8ygTp4AXg6deix2
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE5V5FrpXyM95IyRhURAoUcAJ9ka+ajA0Qin6RpozySh1afW0S0qgCghxt3
fwP/h8kJpJSQnCZXOWGJaBg=
=LFNR
-----END PGP SIGNATURE-----
--H8ygTp4AXg6deix2--
--__--__--
Message: 2
Date: Mon, 26 Jun 2000 12:26:31 -0500
To: freenet-dev at lists.sourceforge.net
Subject: Re: [Freenet-dev] Promoting metadata
protocol="application/pgp-signature"; boundary="n/aVsWSeQ4JHkrmm"
From: "Scott G. Miller" <scgmi...@indiana.edu>
Reply-To: freenet-dev at lists.sourceforge.net
--n/aVsWSeQ4JHkrmm
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
> I didn't miss that, I just didn't note it as an assumption. Though it's =
an
> interesting point, It's not really relevant to the discussion. Even when
> running on the same computer the server is still more trustworthy than the
> client in the same way that inetd is more trustworthy than <pickyourclien=
t>.
> There will be fewer variations on servers than clients, so the behavior o=
f the
> server is much more predictable than the client. Further, it's likely th=
at the
> clients will be running as normal user programs and thus be more vulnerab=
le to
> attack. For these reasons anything that looks like routing or policy sh=
ould
> run in the server, not the client.
Thats a load of steaming BS. If an attacker wants something done, he can
engineer any sort of server he wants. Freenet has among its design
philosophies that no part of the network is trusted. Certainly a server
isn't any more trusted than a client.
> There is another way of retracing the metadata route that would have zero
> impact on message size: every node remembers enough routing data when a s=
earch
> result passes through it so that the route can be followed in reverse, as=
with
> data requests but in the opposite direction. The disadvantage of this is
> that the work is multiplied by the number of search results, and most of =
that
> routing data will never be used. An expiry policy would be needed for the
> routing data. Probably just using the metadata key is simpler.
Ahem. And the fact that if every knows the routing information then we
don't have anonymity any more.=20
--n/aVsWSeQ4JHkrmm
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE5V5JHpXyM95IyRhURAjSYAJ0eLl1X8szmFEmD0LF46Mnd/DsqcwCeNEhz
m2e1f7Ag9I7ckOKO9Fss+WM=
=Loug
-----END PGP SIGNATURE-----
--n/aVsWSeQ4JHkrmm--
--__--__--
Message: 3
Date: Mon, 26 Jun 2000 12:28:45 -0500
To: freenet-dev at lists.sourceforge.net
Subject: Re: [Freenet-dev] Suggestion for ease of use..
protocol="application/pgp-signature"; boundary="WK3l2KTTmXPVedZ6"
From: "Scott G. Miller" <scgmi...@indiana.edu>
Reply-To: freenet-dev at lists.sourceforge.net
--WK3l2KTTmXPVedZ6
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
> Even if you do run your own node, you will need to find a point of
> contact, otherwise your freenet network will be somewhat limited.. :)
> Having the freenet node look for freenet.yourdomain:19114 might
> be a step towards eliminating 'inform.php'.
Yes, this falls under the general unsolved problem of "Node
discovery". Though I agree with whoever said that this was a bad idea
because it makes it very easy to find freenet servers (ie, Big Brother
just tries to connect to freenet.* in every domain, then sends goons)
> > Obviously the end user has to find another freenet node *somehow*,
> and relying on word-of-mouth only sounds awkward..
Akward but effective, and very simplistically secure. I agree, we need
another method.
--WK3l2KTTmXPVedZ6
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE5V5LNpXyM95IyRhURAsa7AKC8fc61zFOjDHV08Ux99bdHbWL23wCgsRgW
4bvtPJMnS0J2kpTaXaWDxxw=
=C4sW
-----END PGP SIGNATURE-----
--WK3l2KTTmXPVedZ6--
--__--__--
Message: 4
From: "Timm Murray" <ad...@madtimes.com>
To: <freenet-dev at lists.sourceforge.net>
Subject: Re: [Freenet-dev] Promoting metadata (was: Meaningless hits)
Date: Mon, 26 Jun 2000 13:18:41 -0500
charset="iso-8859-1"
Reply-To: freenet-dev at lists.sourceforge.net
> This is to protect against the Popescu attack where he posts messages
> under invalid labels.
Congradulations, Marcel; you got an attack named after you :)
--__--__--
_______________________________________________
Freenet-dev mailing list
Freenet-dev at lists.sourceforge.net
http://lists.sourceforge.net/mailman/listinfo/freenet-dev
End of Freenet-dev Digest
