On Thu, Nov 02, 2006 at 12:53:03PM +0100, bo-le at web.de wrote: > Am Donnerstag, 2. November 2006 02:48 schrieb toad: > > No, I'm not sure exactly what needs to be done. > > my wish: > > An option in freenat.ini, in order to prevent the client to read the DSA > private keys. No matter, what the WithPrivate= in the GetNode command says. > (always false) > > im sharing my FCP port with a friend since a long time, but give him access > to the node private key is to much love!!!
How do you share it with him? Does he have a different IP address? > > > > On Wed, Nov 01, 2006 at 11:26:22PM +0100, bbackde at googlemail.com wrote: > > > Not urgent, but nobody told me about this ticket so I assumed from > > > toads words that he is not willing to address this issue at all. Sorry > > > if I was wrong with that... > > > > > > On 11/1/06, Florent Daigni?re (NextGen$) <nextgens at freenetproject.org> > > > > > > wrote: > > > >* bbackde at googlemail.com <bbackde at googlemail.com> [2006-11-01 > > > >22:41:59]: > > > >> This sounds as if you are not willing to implement easy to use and > > > >> easy to understand stuff into the node. > > > >> You say that the client must handle it, you do not want to do anything > > > > > > > >for > > > > > > > >> it. > > > >> What about clients that just do not provide a password prompt? What to > > > >> do for the paranoid people? Nothing? > > > >> > > > >> Please, implement some of this things into the node rather than to > > > >> shift all the work to the clients. They could fail, and this would > > > >> compromise the anonymity of the (unsuspecting) user. If the node > > > >> implements it there much lesser ways for the user to fail. > > > >> > > > >> And regarding dda: if the user tells the node to not to use dda then > > > >> the node should do it. Even if you say it saves so much disk space. If > > > >> the user is aware of this disable it. > > > > > > > >There are already tickets on mantis for that IIRC ... do it yourself if > > > >you think it's urgent ;) > > > > > > > >> On 11/1/06, toad <toad at amphibian.dyndns.org> wrote: > > > >> >On Wed, Nov 01, 2006 at 09:26:03PM +0100, bbackde at googlemail.com > wrote: > > > >> >> On 11/1/06, toad <toad at amphibian.dyndns.org> wrote: > > > >> >> >On Wed, Nov 01, 2006 at 09:04:43PM +0100, bbackde at googlemail.com > > > > > > > >wrote: > > > >> >> >> A user can run clients in a VM or on another box for exactly > > > >> >> >> this reason (some users do this right now). This way bad clients > > > >> >> >> cannot read more files than their own, and they cannot read node > > > >> >> >> config files. The only way to do bad things is the FCP2 > > > >> >> >> interface. And > > > > > > > >their > > [cut] > > > > > > > > > > > > >_______________________________________________ > > > >Tech mailing list > > > >Tech at freenetproject.org > > > >http://emu.freenetproject.org/cgi-bin/mailman/listinfo/tech > > > > > > _______________________________________________ > > > Tech mailing list > > > Tech at freenetproject.org > > > http://emu.freenetproject.org/cgi-bin/mailman/listinfo/tech > > -- > Mfg > saces > _______________________________________________ > Tech mailing list > Tech at freenetproject.org > http://emu.freenetproject.org/cgi-bin/mailman/listinfo/tech > -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: Digital signature URL: <https://emu.freenetproject.org/pipermail/tech/attachments/20061102/9d58485c/attachment.pgp>
