On Thu, Jun 12, 2008 at 5:53 PM, Matthew Toseland <toad at amphibian.dyndns.org> wrote: > IMHO we should, in the near future, try a prototype of this.
Woah, wait a minute! This is voodoo security, we need to think this through before we implement anything, there are some fundamental questions that must be answered first. For example: What are the specific threats that we are currently vulnerable to, that this approach will prevent, and how does it prevent them? What are the assumptions they are making about the capabilities of the attacker? What will be the real-world performance impact of implementing something like this? Are we now going to be talking about minutes rather than seconds to respond to requests? If so, we may make Freenet more secure, but this will be a pyrrhic victory as we will have also made Freenet useless. This requires a lot more discussion and consideration before a line of code is written. Ian. -- Email: ian at uprizer.com Cell: +1 512 422 3588 Skype: sanity
