>
> I would like to avoid a break in compatability if possible, and it
> seems that we are very close to achieving this. Perhaps allowing 0.4
> to accept connections from 0.3 nodes if a configuration parameter is
> set to true, and setting this to true by default in 0.4, but to false
> by default in 0.5.
Yeah, that would likely be okay. Especially if I find some
authentication systems that let us leave the DH key exchange in place and
simply add authentication.
> On that subject, is there really any advantage of using this PK
> mechanism over the current key-exchange algorithm?
Yeah, PK breaks MITM, where currently Mallory is undeterred.
Scott
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL:
<https://emu.freenetproject.org/pipermail/devl/attachments/20000816/968bd706/attachment.pgp>
