Mark J Roberts: > One should also disable HTTP inserts, which are another way to > divulge compromising information. > > httpInserts=false > > (Note that I've just checked in support for this. Feedback and fixes > are obviously welcome.)
I've also implemented a companion "fcpInserts" option, which is useful if you would like to use a client besides FProxy from your sandbox. Naturally, you will have to configure iptables to accept FCP connections. Matthew kindly pointed out that I am not passing the httpInserts option to the servlet properly. We decided that it would be best to explicitly disable the loading of InsertServlet, rather than having an option to do the same, but I'm not comfortable doing that much hacking, for fear of messing things up even more. Also, it is possible that compromising information might be encoded by an exploited application into freenet keys which, when requested, would be intercepted and decoded by hostile nodes. This seems more or less impossible to frustrate. _______________________________________________ devl mailing list [EMAIL PROTECTED] http://hawk.freenetproject.org:8080/cgi-bin/mailman/listinfo/devl
