On Tue, Nov 05, 2002 at 10:31:06AM +0100, Tld wrote: > > Zlatin Balevsky wrote: > > >The network is getting bigger and bigger. Most of my requests DNF with > >htl 15 but are retrieved with 25. Maybe its time to up the defaults a bit. > > There is a bigger problems with actual implementation of HTLs: unless a > node operator explicitly asks otherwise, all requests get out with HTL=15. > This means that the node you send the request to will be able to guess > (with low probability of error!) that you are the originator of the request. > Fixed default HTL is evil. Add (signed) a random number to each request. Even that is not sufficient. If you access a site with lots of images and many of the requests go through a particular node, then it can deduce a probability for you being the originator, which gets pretty high if it's a big freesite. The correct response is to implement mixmastered first two hops, which we will not implement before 1.0. > Fixed default maximum HTL is even more evil. To be more protected you must > not use that number, so you have a max HTL=24, with might not suffice for > some content. Hmmm. Why? BTW, please don't modify the maximum HTL parameter unless you _really_ know what you are doing, if you modify it by hand then future increases in the default value won't be implemented by your node because it will use the overridden value. > > Iff I manage to understand the code I'll try to offer a patch to this > problem. Menawhile you are advised to change your configuration from 15/25. > > -- > --- TLD > "There is no Good, one thorough, there is no Evil, there is only Flesh" > [Pinhead]
-- Matthew Toseland [EMAIL PROTECTED] [EMAIL PROTECTED] Freenet/Coldstore open source hacker. Employed full time by Freenet Project Inc. from 11/9/02 to 11/11/02. http://freenetproject.org/
msg01996/pgp00000.pgp
Description: PGP signature
