Re: [freenet-support] Privacy (Was: No subject)
On Sunday 11 October 2009 14:11:08 SmallSister development wrote:
> VolodyA! V Anarhist wrote:
> > This point has already been answered, but i feel that there is a
> > point that can be made here by answering it again.
> >
> > When you fetch something from the regular internet, the request is
> > easily traceable back to you. The warning that you see tells you that
> > for that reason. The question is how did you get Freenet to run? If
> > you have downloaded the installer from the official freenet site, or
> > even if you have just visited the site without the use of Tor,
> > somebody can potentially see that. It's the same with plug-ins.
>
> > Anyhow, back to my original point. When you download plugin (or
> > anything else Freenet-related) from the Web, you identify yourself as
> > a user of Freenet. That (in and of itself) does not tell anybody
> > exactly what you say on Freenet (although may identify how you say
> > that... downloading Freemail says that you will be sending Freemail
> > messages, downloading Frost says you will be a frost user, etc.)
>
> When you run Freenet, it will generate a specific pattern of network
> usage and it would not be too hard for an ISP to map a large part of the
> Freenet nodes if it has a few nodes on its network. (It is also possible
> to map the network by adding a monitoring node, no real privacy leak
> here for Opennet nodes.)
> Assume "The Internet" knows you are running a Freenet node. And your ISP
> (and relevant uplinks) are able to detect that you're running a Darknet
> node!
> ISPs should not know what you're reading over Freenet, but I would not
> be surprised if they could do traffic analysis and determine whether
> you're downloading or uploading large files. (Has someone tried and
> published before?)
It depends on how big the ISP is, how determined it is, what sort of hardware
is available, etc. It is true that there may be some recognisable patterns in
our current traffic: there aren't fixed signature bytes as in 0.5 and as in
most protocols, but there may be other possibilities for fingerprinting at that
level. Eventually we will support steganographic transports ("make it look like
HTTP/VoIP/whatever"), at which point it is rather more difficult, but traffic
flow analysis will probably still allow identifying nodes with reasonable
accuracy - assuming you have the hardware for it - just like any peer to peer
network can be identified. Of course, the ultimate sanction would be to simply
block all communications between IPs listed by the RBLs as domestic! Long term
I would like to see non-internet transports e.g. wifi, sneakernet, etc, which
might enable Freenet to survive even in a very hostile network environment.
However, so far most countries with national firewalls have not been very
sophisticated...
signature.asc
Description: This is a digitally signed message part.
___
Support mailing list
Support@freenetproject.org
http://news.gmane.org/gmane.network.freenet.support
Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support
Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
Re: [freenet-support] storage stats bug
On Saturday 10 October 2009 22:26:53 Toni Bergman wrote: > Installing while offline causes store and cache to stay at 0 keys/bytes. So it starts off at 0 bytes because there are no keys. And when you reconnect, and have connections, and are able to access freesites, it is still 0 bytes on the stats page? > Resizing store fixes it > 1223 was the last version of freenet that actually worked. But I guess the > term: if it aint broke dont fix it. Has newer reached that far. > For example > Certain someone said (not per word): > 1) This version of freenet works, we can now try more disruptive changes > 2) Then that certain someone made those disruptive changes and prevented > connecting to freenet 1223 with the disruptive changes versions > Yes I undestand disruptive changes can be tried once you get something > right. > No I do not understand preventing the working version from connecting again. Generally there are 2 reasons for a mandatory: 1) An important security fix, which we want everyone to have as soon as possible, or 2) An important network behaviour fix, ditto. Because Freenet is an emergent system, having half of the network behaving in the old way and half of it behaving in the new way is likely both messy and very problematic. > > Please don't reply to me, just feel bad about whoever's logic. signature.asc Description: This is a digitally signed message part. ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
Re: [freenet-support] No subject
On Sunday 11 October 2009 09:31:49 Dsoslglece wrote: > l...@hushmail.com a écrit : > > The viewer can see, as did I, that “Fetch over Freenet is checked > > AND that it says, > > “This is untraceable, safe….” NOW, untraceable means anonymous. > > The other choice available is to, “Fetch over the web from > > Freenet’s central servers…and is “TRACEABLE”, meaning NOT > > ANONYMOUS! > The meaning is : > > “Fetch over Freenet, this is untraceable, safe….: > > To download the plugin, you use freenet (of course this is safe). > > “Fetch over the web from > Freenet’s central servers…and is “TRACEABLE" > > > To download the plugin, you go out of freenet and from the web, in the > big dark forest, using your browser and all nude, you go to freenet's > central servers. > and this obviously is traceable and not safe, since you are not using > freenet anymore... (of course, doing this, you still can use Tor, or > jap for some protection) You could if we asked you about proxies... signature.asc Description: This is a digitally signed message part. ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
Re: [freenet-support] deleting freenet
On Tuesday 20 October 2009 14:14:15 harald goddertz wrote: > Hi, i could not uninstall freenet from my windows xp so i ended up > deleting the folder via cmd and rd freenet /s > however, it keeps 'reinstalling' itself and the folder keeps > reappearing! i have completely searched my computer from top to bottom > but cannot find any other related 'freenet' folders or files. > i want to fully remove freenet and am actually not comfortable with > the fact that it is able to reinstall itself after deletion? > how do i get rid of this please? > cheers, Harald I have no idea what is happening, but you should use the uninstaller. signature.asc Description: This is a digitally signed message part. ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
Re: [freenet-support] JVM Problems
On Thursday 22 October 2009 00:46:42 Mason Brake wrote: > > Hello. > > I recently downloaded Freenet, so I am pretty new to it. Anyways, I installed > and set everything up on Firefox, when it gives me this Error: > > > > Upgrade your Java immediately! Freenet has disabled important functions > including search to limit damage due to a severe vulnerability in your > JVM! PLEASE DO NOT USE THAW OR FREETALK, and if you have untrusted > people on your local network then please SHUT DOWN FREENET NOW! > > > > Your installed version of Java is vulnerable to a severe remote exploit > (remote code execution!). You must upgrade to at least Java 5 update 20 > or Java 6 update 15 as soon as possible. Freenet has disabled any > plugins handling XML for the time being, but this includes searching > and chat so you should upgrade ASAP! See > http://www.cert.fi/en/reports/2009/vulnerability2009085.html for > details. Also, please do not use Thaw or Freetalk. The UPnP plugin is > enabled, it might present a risk if you have bad guys on your LAN, but > without it Freenet will not be able to port forward and will have > severe problems. > > > I had the version of Java installed, reinstalled the VERY new one, and made > sure that Firefox ran it as a plug-in. I still can't get in. What do I need > to do? What operating system? Mac OS/X? Debian? ... signature.asc Description: This is a digitally signed message part. ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
Re: [freenet-support] 1238 many of these
On Thursday 29 October 2009 13:16:17 uec wrote: > > Internal error: please report > > java.lang.NoSuchMethodError: java.lang.String.isEmpty()Z > at > freenet.clients.http.filter.CSSTokenizerFilter$CSSPropertyVerifier.recursive > ParserExpressionVerifier(CSSTokenizerFilter.java:3308) > at > freenet.clients.http.filter.CSSTokenizerFilter$CSSPropertyVerifier.checkVali > dity(CSSTokenizerFilter.java:3237) > at > freenet.clients.http.filter.CSSTokenizerFilter.verifyToken(CSSTokenizerFilte > r.java:989) > at > freenet.clients.http.filter.CSSTokenizerFilter.parse(CSSTokenizerFilter.java > :1960) > at > freenet.clients.http.filter.HTMLFilter.sanitizeStyle(HTMLFilter.java:2123) > at > freenet.clients.http.filter.HTMLFilter$StyleTagVerifier.processStyle(HTMLFil > ter.java:1528) > at > freenet.clients.http.filter.HTMLFilter$ScriptStyleTagVerifier.finish(HTMLFil > ter.java:1470) > at > freenet.clients.http.filter.HTMLFilter$ScriptStyleTagVerifier.sanitizeHash(H > TMLFilter.java:1449) > at > freenet.clients.http.filter.HTMLFilter$TagVerifier.sanitize(HTMLFilter.java: > 1326) > at > freenet.clients.http.filter.HTMLFilter$ParsedTag.sanitize(HTMLFilter.java:64 > 1) > at > freenet.clients.http.filter.HTMLFilter.processTag(HTMLFilter.java:506) > at > freenet.clients.http.filter.HTMLFilter$HTMLParseContext.run(HTMLFilter.java: > 274) > at > freenet.clients.http.filter.HTMLFilter.readFilter(HTMLFilter.java:76) > at > freenet.clients.http.filter.ContentFilter.filter(ContentFilter.java:201) > at > freenet.clients.http.FProxyToadlet.handleDownload(FProxyToadlet.java:149) > at > freenet.clients.http.FProxyToadlet.handleMethodGET(FProxyToadlet.java:708) > at sun.reflect.GeneratedMethodAccessor26.invoke(Unknown Source) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) > at java.lang.reflect.Method.invoke(Unknown Source) > at > freenet.clients.http.ToadletContextImpl.handle(ToadletContextImpl.java:504) > at > freenet.clients.http.SimpleToadletServer$SocketHandler.run(SimpleToadletServ > er.java:751) > at > freenet.support.PooledExecutor$MyThread.realRun(PooledExecutor.java:227) > at freenet.support.io.NativeThread.run(NativeThread.java:101) > Argh. 1238 was released built for Java 1.6. I am sorry, 1239 will be built for 1.5, 1.5 will be end-of-lined by Sun soon but it is still true afaik that some platforms (notably older macs) only have 1.5. I will release a testing snapshot soon which is built against 1.5, will notify here. signature.asc Description: This is a digitally signed message part. ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
Re: [freenet-support] Verification of download files; GPG .sig fails to verify
On Friday 30 October 2009 08:31:03 Spetznaz wrote: > I've decided I'd like to try out Freenet, so I downloaded the .jar file and > the GPG-signature file. When I check out the gpg-signature, I get the > following results: > > gpg --verify new_installer_offline_1238.jar.sig > new_installer_offline_1238.jar > gpg: Signature made Tue 27 Oct 2009 01:22:14 PM EDT using RSA key ID > BEC4F4C3 > gpg: BAD signature from "Matthew John Toseland (2008-2010 key) > " This is because the certificate is configured to use SHA-1 but gpg is configured to use SHA-256 for digest. You should be able to verify this ... somehow ... > > >From what I can see on the download site, there don't appear to be any > hashes to verify whether the downloads are correct or not. I've made two > download attempts, one using Firefox, and the other using wget, and I get > the same results, so it's not the result of a failed download. Depends on how you access them e.g. https://checksums.freenetproject.org/latest/[filename] optionally .sha1 ... > > Needless to say, I didn't attempt to install when the GPG-signature check > failed. > > Any ideas? > > Here are the hashes of both the .jar file and the GPG-signature file: > > new_installer_offline_1238.jar: > > MD5:F1 F8 2C 1C 8A 08 0F 15 10 19 75 55 72 F6 BE 59 > > SHA1: CB29 1DA7 2EFC 2407 28D0 C6CA FF00 AF69 74C0 8303 > > SHA256: FF6BA594 1C80777E 81BF73ED 5C550663 8FA49A3B 96E7A6B4 A637E9A0 > D7B56876 > > === > > new_installer_offline_1238.jar.sig: > > MD5:68 71 78 A4 43 EB C4 4C F8 5A B5 C0 C6 CB C8 23 > > SHA1: DA34 8E12 BA11 913A 462E 72E8 D5B3 4B6D AC2F 0706 > > SHA256: 8172A0F6 1DAECFF8 0A1DEFD2 8A44BB4E 8DB51806 66BAB3D9 F80AF7F4 > 19216A24 > > > Spetznaz signature.asc Description: This is a digitally signed message part. ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
[freenet-support] 1238 many of these
Internal error: please report java.lang.NoSuchMethodError: java.lang.String.isEmpty()Z at freenet.clients.http.filter.CSSTokenizerFilter$CSSPropertyVerifier.recursive ParserExpressionVerifier(CSSTokenizerFilter.java:3308) at freenet.clients.http.filter.CSSTokenizerFilter$CSSPropertyVerifier.checkVali dity(CSSTokenizerFilter.java:3237) at freenet.clients.http.filter.CSSTokenizerFilter.verifyToken(CSSTokenizerFilte r.java:989) at freenet.clients.http.filter.CSSTokenizerFilter.parse(CSSTokenizerFilter.java :1960) at freenet.clients.http.filter.HTMLFilter.sanitizeStyle(HTMLFilter.java:2123) at freenet.clients.http.filter.HTMLFilter$StyleTagVerifier.processStyle(HTMLFil ter.java:1528) at freenet.clients.http.filter.HTMLFilter$ScriptStyleTagVerifier.finish(HTMLFil ter.java:1470) at freenet.clients.http.filter.HTMLFilter$ScriptStyleTagVerifier.sanitizeHash(H TMLFilter.java:1449) at freenet.clients.http.filter.HTMLFilter$TagVerifier.sanitize(HTMLFilter.java: 1326) at freenet.clients.http.filter.HTMLFilter$ParsedTag.sanitize(HTMLFilter.java:64 1) at freenet.clients.http.filter.HTMLFilter.processTag(HTMLFilter.java:506) at freenet.clients.http.filter.HTMLFilter$HTMLParseContext.run(HTMLFilter.java: 274) at freenet.clients.http.filter.HTMLFilter.readFilter(HTMLFilter.java:76) at freenet.clients.http.filter.ContentFilter.filter(ContentFilter.java:201) at freenet.clients.http.FProxyToadlet.handleDownload(FProxyToadlet.java:149) at freenet.clients.http.FProxyToadlet.handleMethodGET(FProxyToadlet.java:708) at sun.reflect.GeneratedMethodAccessor26.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at freenet.clients.http.ToadletContextImpl.handle(ToadletContextImpl.java:504) at freenet.clients.http.SimpleToadletServer$SocketHandler.run(SimpleToadletServ er.java:751) at freenet.support.PooledExecutor$MyThread.realRun(PooledExecutor.java:227) at freenet.support.io.NativeThread.run(NativeThread.java:101) ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
[freenet-support] Bug report
Hello, i've had a problem with Freenet, the message is the following: 1 des noeuds auxquels vous êtes connectés ont de sérieux problèmes (données non reconnues même après 10 minutes). Ceci est probablement dû a un bug dans le code. Veuillez svp nous faire un rapport en utilisant le gestionnaire de bug à l'adresse suivante : https://bugs.freenetproject.org/ ou sur la mailing de support supp...@freenetproject.org. Veuillez indiquer ce message et la version utilisé par votre noeud. Les noeuds concernés (vous pouvez ne pas vouloir inclure ceux connectés en darknet) sont : 88.107.27.200:31413 ./run.sh status returns: Freenet 0.7 is running (10131). Thank you for Freenet___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:support-requ...@freenetproject.org?subject=unsubscribe
