> The sort of thing you are talking about is what we have discussed as adding > true node authenication. This is a very complicated problem, and can only be > solved by a full scale PK solution. I agree with Hal that it would be better > to > get simple encryption of node to node communication in there for now, because > that is something we can realistically achieve. The node does not limit who it > talks to right now anyways, so there is nothing to authenticate.
I'm not sure there's any value at all to half a loaf here. Certainly we have to implement data store encryption, and even a simple implementation of that accomplishes important goals. But what important goal can be accomplished by simple node-to-node encryption? Without the full monty of PK authentication, it will be possible to identify Freenet traffic whether encrypted or not, and simple data estore ncryption will prevent content-based attacks. -- Lee Daniel Crocker <lee at piclab.com> <http://www.piclab.com/lcrocker.html> "All inventions or works of authorship original to me, herein and past, are placed irrevocably in the public domain, and may be used or modified for any purpose, without permission, attribution, or notification."--LDC _______________________________________________ Freenet-dev mailing list Freenet-dev at lists.sourceforge.net http://lists.sourceforge.net/mailman/listinfo/freenet-dev
