Re: [freenet-chat] Re: Growing pains
On 4/5/06, Lars Juel Nielsen [EMAIL PROTECTED] wrote: I don't see that; you're only giving your IP address to people you've grown to trust -- via an encrypted-to-them message. If there's mutual trust between you and anybody else, in any way, then they can connect your IP to however it is they know you. Am I missing something? They might have gathered the noderef from the postings on IRC and thus going through the extra work is pointless. I have been (or rather pretended to be) careful about sending my node information only to people I know and trust (which simply meant were willing exchange node refs in private chat rather than in full view of the world). I could also set up two nodes, one at school and one at home, both with the same Frost identity. My initial connections are from school but I only use trusted connections at home --- and I can very tightly control who gets my home node info. If there's a security/anonymity hole in the plan I've laid out, please tell me. The alpha darknet is not too early to start thinking about realistic connection procedures. --Joel ___ chat mailing list chat@freenetproject.org Archived: http://news.gmane.org/gmane.network.freenet.general Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/chat Or mailto:[EMAIL PROTECTED]
Re: [freenet-chat] Re: Growing pains
On Wed, Apr 05, 2006 at 03:31:42AM -0400, Joel Salomon wrote: If there's a security/anonymity hole in the plan I've laid out, please tell me. The alpha darknet is not too early to start thinking about realistic connection procedures. If you trust somebody on Frost, that doesn't automatically mean you want to connect to them. Firstly, they get your IP address; they need to be very trustworthy for this; far more than other connections, as they know who you are on Frost. Secondly, it's possible that the connection will be exposed by e.g. traffic analysis (although obviously this is very bad, and we want to avoid it by means of alternate transports). --Joel -- Matthew J Toseland - [EMAIL PROTECTED] Freenet Project Official Codemonkey - http://freenetproject.org/ ICTHUS - Nothing is impossible. Our Boss says so. signature.asc Description: Digital signature ___ chat mailing list chat@freenetproject.org Archived: http://news.gmane.org/gmane.network.freenet.general Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/chat Or mailto:[EMAIL PROTECTED]
Re: [freenet-chat] Re: Growing pains
On 4/5/06, Joel Salomon [EMAIL PROTECTED] wrote: I could also set up two nodes, one at school and one at home, both with the same Frost identity. My initial connections are from school but I only use trusted connections at home --- and I can very tightly control who gets my home node info. I'm going to stick with this plan. My home computer (the primary use of freenet) is connected only to a computer I know is not malicious (my school PC). Even if my school computer is connected to a Snooping Bad Guy node, request coming from me at home are (or should be) indistinguishable from those of anyone else I've connected to. Does controlling two separate computers give me Freenet's secure anonymity? --Joel ___ chat mailing list chat@freenetproject.org Archived: http://news.gmane.org/gmane.network.freenet.general Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/chat Or mailto:[EMAIL PROTECTED]
Re: [freenet-chat] Re: Growing pains
On Tue, Apr 04, 2006 at 01:01:35PM -0400, Joel Salomon wrote: On 4/4/06, Joel Salomon [EMAIL PROTECTED] wrote: Does anyone see a problem with this idea? Are encrypted Frost messages secure enough even while the darknet isn't quite dark? On IRC, Terrasque responded: Horovits, im paranoid :) and have a personal interest in security. I'd rather swap with random people over irc than with trusted people over freenet For those who have done the math and security calculations: Whose risk is greater here? Ought we to move to floppy disc and hidden drop exchange of refs? The problem is people on Frost know what you've been doing on the network, and can connect all your illegal libellous remarks with your IP address. --Joel -- Matthew J Toseland - [EMAIL PROTECTED] Freenet Project Official Codemonkey - http://freenetproject.org/ ICTHUS - Nothing is impossible. Our Boss says so. signature.asc Description: Digital signature ___ chat mailing list chat@freenetproject.org Archived: http://news.gmane.org/gmane.network.freenet.general Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/chat Or mailto:[EMAIL PROTECTED]
Re: [freenet-chat] Re: Growing pains
On 4/4/06, Matthew Toseland [EMAIL PROTECTED] wrote: The problem is people on Frost know what you've been doing on the network, and can connect all your illegal libellous remarks with your IP address. I don't see that; you're only giving your IP address to people you've grown to trust -- via an encrypted-to-them message. If there's mutual trust between you and anybody else, in any way, then they can connect your IP to however it is they know you. Am I missing something? --Joel ___ chat mailing list chat@freenetproject.org Archived: http://news.gmane.org/gmane.network.freenet.general Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/chat Or mailto:[EMAIL PROTECTED]
