On Friday 15 August 2008 00:42, Ian Clarke wrote: > On Thu, Aug 14, 2008 at 5:09 PM, Matthew Toseland > <toad at amphibian.dyndns.org> wrote: > > On Thursday 14 August 2008 20:01, Ian Clarke wrote: > > What do you think of my changes? > > > > "We strongly recommend that you only use Freenet in darknet mode [are we using > > the term "darknet" consistently? we can't force darknet here, since that > > would basically prevent them from using Freenet unless they know other > > freenetters]." > > > > I disagree: If they set most-paranoid then opennet should not be available > > until they change the threat level to somewhat-paranoid. > > What is the point in that? If they are intent on using Freenet, then > forcing them to select an inappropriate option doesn't make them any > more secure! The question isn't so much whether opennet is secure, > the question is whether it is more secure than the next best option - > which in many cases will probably be a HTTP proxy, which are trivial > to monitor.
The point is not to give them a false sense of security, and to make it clear that their security is reduced if they do need opennet. > > > The UI should make > > it easy to upgrade or downgrade the threat level, enable opennet etc, but > > should make it clear what the ramifications are. > > Yes, but forcing them to pretend that they have a lower threat level > than they do is pointless. They have already made the decision to ignore the threat, by enabling opennet. Having a paranoia level selector and THEN an opennet selector is utterly mad, apart from being too much to explain to people from a usability perspective. If they want security, they will need to use darknet. If they can't use darknet, they have to sacrifice some security. The current version of the page makes that reasonably clear: You cannot select the top options unless you have at least 5 friends already using Freenet. > The purpose of this mechanism must be to > inform the user, not make some futile attempt to restrict their > behavior. > > Ian. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: <https://emu.freenetproject.org/pipermail/devl/attachments/20080815/d6cedfaa/attachment.pgp>
