On Tue, Aug 08, 2006 at 06:29:28PM -0000, anonymous freenet user wrote: > > When will 'Open-net' be deployed? > > I would like very much to migrate to 0.7, but I cannot condone doing so > until 'open-net' is active and making a wider anonymity set operational.
Opennet might increase the total number of nodes on the network by making it easier to join it. In that sense it would increase your anonymity set. However, it does not improve your anonymity in any other way. 100 opennet connections is probably less anonymous in practice than 10 true darknet connections. Because most of those 100 connections may well be to your enemy, whereas treachery is less likely. However, most people don't have many true darknet connections, so in that sense it is better than #freenet-refs or ifreed.net. > > As it is, 0.7 is not sufficiently anonymous, 0.7 opennet will not be any more anonymous than 0.7 darknet. People don't seem to understand this, I don't know why, but I will say so again: On opennet you have no control (unless you are evil) over who you connect to. That means you are probably connected to an ubernode run by the bad guys pretending to be about 5000 nodes. On darknet you have to trust your friends; on opennet you have to trust total strangers who may well be colluding because they may be the same person. In version 0.8 we will implement premix routing and some other measures which should improve your anonymity even against untrusted direct connections, but it is quite possible that these will only work on darknet. The fact that these total strangers haven't had any social contact with you does not help you in any significant way; it is very easy to convert an IP address to real world details. > If I start a node, get some > refs and start inserting content, it doesn't take a whole lot of rocket > science to figure out that new content is probably coming from the new > node. Unfortunately this is exactly the same on opennet. Except that it's worse, because it's not just the people who you know, (or even the people you found from #freenet-refs) who can attack you. It's anyone who can harvest the network, and their attacks can be more effective because they can impersonate multiple nodes. > Better by far to have open-net active, this makes it a LOT easier > for lots more people to join the 0.7 network and create a larger crowd to > get lost in. It does make it easier for people to join the network. That's its sole redeeming feature in fact, and why we will implement opennet - but not yet; adding more chaos to the current utter chaos would not help matters. The hope is that people on opennet will gradually get darknet connections as well - for security reasons, and probably for other reasons e.g. web of trust file index sharing etc. -- Matthew J Toseland - toad at amphibian.dyndns.org Freenet Project Official Codemonkey - http://freenetproject.org/ ICTHUS - Nothing is impossible. Our Boss says so. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: Digital signature URL: <https://emu.freenetproject.org/pipermail/tech/attachments/20060808/b1680246/attachment.pgp>
