Hi, > Say you've got one Freenet 'friend' you do trust with your IP address, > and it's no problem he can see much of what you do because you trust > him. … That friend you can actually trust and let him have the > keys to your house? … > If you are doing things LE wants to know badly, chances are good your > darknet will be infiltrated. … > These problems do not exist on Opennet because you can not be > recognized as a real person, Frost/FMS/Sone identities can't be traced > to your IP address.
This reasoning falls for 3 misconceptions: 1. You do not give your Darknet friends the key to your house. You only make it easier for them to break in by letting them see the insides as if they looked through the windows. In Opennet everybody can get a connection to you and run exactly the same attacks a darknet friend can run. So by switching to darknet, you pull down the blinds and *only* your Darknet friends can look through. With Opennet you do not have blids, so everyone can look through. 2. If you are doing things LE wants to know badly and they already know your physical identity, nothing can protect you. If they do not know your physical identity, they also do not know your friends. If they get to know your friends, they also get to know you, which gives them your IP address, allowing them to run all Opennet attacks against you — which are easier than darknet attacks. 3. You do not give your Darknet friends your in-Freenet identities. To be safe you have to start a *new* identity in Freenet, without ties to people you know physically. Best wishes, Arne Anonymous Remailer (austria) writes: > Moses wrote: > >> <x...@freenetproject.org> wrote: >>> On Thursday, April 21, 2016 03:20:07 PM Moses wrote: >>>> Hi, >>>> >>>> I trust my friend, but still not want them to see my IP directly on >>>> the freenet web page when I give them my noderef, how to prevent my IP >>>> display on their freenet? >>> >>> It is not technically possible to implement Darknet connections without >>> revealing IP addresses: The purpose of Darknet connections is to establish a >>> direct Internet connection between you and your friend, and direct >>> connections >>> over the Internet work by using IP addresses. > [....] > >> I trust my friends, I just want to hide my node's physical location >> and keep my little privacy/anonymity. That's different. And consider a >> extreme situation that if friends are questioned by police, If they do >> not know, they would have nothing to tell. The best way to keep a >> secret is not tell anybody. Anyway, if hide IP is not technically >> possible, I will have to use a VPN or not adding any friend... > > Your reasoning is smart. > If you have the skills to run a Freenet node from a masked IP > address, > more power to you. > Do not use Darknet though. > > Darknet is good for a secure intranet with one individual, or a few > you can trust > with your wallet and the keys to your house. > > The big problem however is: you can't trust anyone. > For a simple reason: can you know what exactly you trust them with? > On top, the more people it's about, the more you should distrust > them. > > Say you've got one Freenet 'friend' you do trust with your IP > address, > and it's no problem he can see much of what you do because you > trust him. > But can you know what that trusted, for your business trusted > friend does? > That friend you can actually trust and let him have the keys to > your house? > > Maybe he is doing completely unrelated, but dangerous things on > other networks, > like bittorrent, maybe he does dangerous things on the open net. > Maybe he is doing something in real life that will have his > computer confiscated. > You are in trouble too if his computer is not bulletproof LE > resistant, > or if he hands down his passwords. > His friends connection may then be taken over by your friendly > officer, and he > can now see way too much of you and everybody else in your > 'dark'net. > Effectively you have given the friendly officer the keys to your > house now. > > To connect to the 'big Freenet', in order to insert/download public > files, > publish/visit freesites everybody can see, at least one of your > 'friends' > needs to connect to Opennet, the 'strangers' network. > > If you are doing things LE wants to know badly, chances are good > your darknet > will be infiltrated. > > Darknet may seem more secure because traffic within a 'closed' > darknet can > not easily be recognized as you running a Freenet node. > But this provides a false security because of the problems just > described. > These problems do not exist on Opennet because you can not be > recognized as > a real person, Frost/FMS/Sone identities can't be traced to your IP > address. > Also, files you download/insert, freesites and messages can not be > linked to your > identities by a third party. This is the good news on the > distributed, decentralized > peer network Freenet is. > Freenet is pretty smart at hiding which node downloads a file, or > inserts one. > In particular small files can't be traced because there is no time > for an attacker > to 'see' it. > > > If you need anonymity, do not touch Darknet but stick to Opennet. > _______________________________________________ > Support mailing list > Support@freenetproject.org > http://news.gmane.org/gmane.network.freenet.support > Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support > Or mailto:support-requ...@freenetproject.org?subject=unsubscribe -- Unpolitisch sein heißt politisch sein ohne es zu merken
signature.asc
Description: PGP signature
_______________________________________________ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
