At 04.13 06/02/02 -0600, you wrote: >Marco A. Calamari: > > this tool is an useful debugging and administration tool. > >I passionately hate the concept of node administration. Nodes aren't >cars, they don't require oil changes every 3,000 requests.
Ok, open another thread; this isn't the subject > > this is just an hole in the "deep security" model of Freenet as a > > whole; I cannot say why, because is just another weapon for an > > attacker, but I can say that not giving one more weapon is better. > >(In this case, the attacker is someone who refuses to distribute >certain keys.) No, you cannot know who is the attacker or what is the objective or what mean it will use. >Now be serious. I already was. > Can you really imagine these responsible censors >constantly hovering over the delete key armed with a big book of >prohibited keys, occasionally vaporizing an unwanted invader? > >Right, I can't either. That's an absurd idea. Here in the real >world, someone would add a couple hundred lines of code to Fred, in >order to refuse any requests for specified keys. > >And guess what? Nothing you or I do will stop them. So get over it! Obviously a fake node can do everything it want + everything that normal node allow. Tjis is not the point. If normal node doesn't allow key deletion there is one less possible way to exploit a bug. JM2(serious)C Marco Oh, note that we agree on the subject; Say no to ClientDelete * Marco A. Calamari marco at freenetproject.org * il Progetto Freenet - segui il coniglio bianco the Freenet Project - follow the white rabbit _______________________________________________ Devl mailing list Devl at freenetproject.org http://lists.freenetproject.org/mailman/listinfo/devl
