-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Matthew Toseland wrote: > Might work. Then you run into problem 3: Forwarding the port safely.
Good point... damn. UDP rules out using the browser. So we need a way for a friend to connect to our node that doesn't require the friend to have any encryption-capable software installed. How about a mini-installer in a password-protected zip file? IIRC this is similar to an idea you suggested a couple of months ago: the mini-installer contains the most recent address of our node, and uses UDP to connect to our node and download a copy of freenet (or just adds a ref if freenet is already installed). The download connection should be encrypted, and it can be authenticated using the hash of our public key if the friend knows it. Ideally these mini-installers would be exchanged face-to-face, but it should also be possible to send them by email, ftp etc. The password protection is just to hide the contents of the zip file from filters: we don't need military-grade encryption, just obfuscation. The file should also be padded to a random size. It could be self-extracting on Windows - - not sure about other platforms (there are plenty of ways to make self-extracting binaries, but I don't know of any that are widespread enough to prevent filtering). Any thoughts? How small can one of these things be made? Is it a good idea to encourage users to execute email attachments? :-) Cheers, Michael -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (GNU/Linux) iD8DBQFEftTtyua14OQlJ3sRAs0RAKDo73Mo8AsX/9m/T8UqLkXIVw5jrwCg9Q43 Em+0rT/1sdReIazDu+YlgD0= =GK0j -----END PGP SIGNATURE-----
