On Thu, 28 Dec 2000, Oskar Sandberg wrote:
> On Wed, Dec 27, 2000 at 03:14:04PM -0600, Mark J. Roberts wrote:
> > On Wed, 27 Dec 2000, Brandon wrote:
> >
> > > > to typing "freenet:MSK@pigdog//" and having everything happen behind the
> > > > scenes where it belongs. That makes me favor your proposal. [2]
> > >
> > > This syntax looks very nice, but assumes the site to not be in a
> > > subspace. Most sites will probably look like my examples above.
> >
> > No. With automatic date-updating redirects, most sites will look just like
> > that. The KSK will be an auto-date-updating redirect to a mapfile inserted
> > in a SSK.
>
> Again no. The KSK should never be used to return to a site when one has
> the option of remembering the secure subspace key. KSKs can, and will, be
> cancered, replaced on route, lost and replaced by somebody else, etc etc.
To summarize my statements in another post:
1) KSKs are most likely to be subverted the first time you request
them. Subsequent requests will likely be found in your node's store,
because KSK redirects are so small. Remembering Mallory's SSK accomplishes
nothing except creating a false sense of security.
2) If Freenet is to grow we need simple guessable keys to make users
feel comfortable. After Freenet is well-established, we can deprecate KSKs
entirely and encourage secure links from trusted, reliable sources.
--
Mark Roberts
[EMAIL PROTECTED]
_______________________________________________
Freenet-dev mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/mailman/listinfo/freenet-dev
