Spike Gronim:
> > Without cryptographic trust mechanisms like content hashes and
> > digital signatures, Freenet would be useless. And those won't work
> > for key discovery, since you're searching for an unknown key posted
> > by someone you don't know.
>
> Upon further thought: Why not only support searching for SSKs? The
> published descriptions can be signed. This doesn't prevent malicious
> individuals from setting up their own subspace and responding to all requests
> with malicious content, but it does allow flexible searching among individuals
> who trust eachother somehow. Perhaps a PGP style "web of trust"?
It seems possible: the search request contains some search
parameters ("black sabbath") and the identities of the people you
will accept results posted by ("joe, sally, and tom"). Then each
node along the chain verifies that the results sent back actually
meet the criteria.
Unfortunately it's not much use, since if you already know whose
data you want, it's pretty easy for that person to just post a list
of URIs.
What you propose would be akin to constraining a google search to
documents under http://freenetproject.org/. It's not totally
useless, but I don't think I've ever used that feature, for one,
since it's usually easy enough to go to freenetproject.org and find
the document I want.
_______________________________________________
freenet-tech mailing list
[EMAIL PROTECTED]
http://lists.freenetproject.org/mailman/listinfo/tech
