[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Proposal of a new hidden wiki

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Proposal of a new hidden wiki
From: "Josh McFarlane" <josh.mcfarlane@xxxxxxxxx>
Date: Thu, 9 Aug 2007 12:28:10 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 09 Aug 2007 13:28:21 -0400
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=l5FGPLh3a3aNvX4WC89QOtz+QxWZRWtXL7zv0rtzn7zb1sO4Aq4LJ7o15RyGCgtBljR0lHetoaPmyx3dpvAE1hIl8flXRlzx2usUMqq7utK0fUM2CbOuRQkAFX3HxcUr7w+iRiC9CL0hZzcrRVKrA/0vDVhEVkLt89xRbbFFDOU=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=AVS8hI/sDSRuBVCR2/HQ3wvZcris7bi7mtvxHg/6ha/WSTyIRM3N9b2WbEp40J3vsir1Ed55tHf6vL+VzaaWEDf3Clq6EGgPrLIMciRSyQWz0U+KUVPK4SOBwe3vvqHIMd+T/yyIijqWt1Eo7HE3W5ZZVUDecU8qzgFLXMStZM4=
In-reply-to: <3922422b0708081352o70dd8bb3sf12c04571e0b1e93@xxxxxxxxxxxxxx>
References: <550747.41331.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <3922422b0708071318j44a7dc9ek5bee9b38d9d58915@xxxxxxxxxxxxxx> <46B9063B.5080708@xxxxxxxxx> <4a3225290708081110p75378133h78b59e0ee6441a4a@xxxxxxxxxxxxxx> <3922422b0708081114m4a6e4bf8ua6239ebfdedcc948@xxxxxxxxxxxxxx> <4a3225290708081128y5f19ba79kc68064bfc2063e20@xxxxxxxxxxxxxx> <46BA1C68.2020404@xxxxxxx> <3922422b0708081245q6bd4a92bqaf83c6e3398f5f94@xxxxxxxxxxxxxx> <46BA2B62.2090107@xxxxxxxxx> <3922422b0708081352o70dd8bb3sf12c04571e0b1e93@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On 8/8/07, Ringo Kamens <2600denver@xxxxxxxxx> wrote:
> I appreciate the concern, but I think that while freenet is a viable
> option and certainly there should be a backup on it, tor users need a
> central link cache (so they can use the tor hidden network). I think
> that tor is the right network for unbreakable hidden website,
> especially if we use redundant services (through RAID-over-network?).
> The reason we can do this on the "real internet" is that it would get
> censored. Really quickly. Many countries have laws banning such
> activities or linking to certain sites, like cryptography sites, which
> is why tor links must be linked to from a hidden wiki.

The problem is setting up a system that is easy to replicate, but at
the same time immune to attacks.

If we attempted to implement an automated distributed service
function, where you could have multiple sites under the same key,
you'd have to have some method to prevent an attacker from simply
launching a massive amount of sites under this key to destroy it. 1000
fake sites would cause probably cause the load balancer to refer to
the fake sites the majority of the time, effectively take it off line.

Perhaps the best way to do a distributed service like this would be to
allow it to have a list of sites that it allows to substitute for
itself.

So, if three people wanted to host the Wiki, they would first have to
set up a method to keep all 3 wikis current.

Then, all three could launch their wikis. After the service was
operational, they could update their service definition with 'links'
to the other 2 services. Anytime someone requested one of the
services, it would randomly choose between any of the listed.

This would require the least amount of change but allow a basic
multiple-backend service to go up without allowing it to be
compromised by an attacker.

One could argue that you could also put the replication into Tor, but
I think that may be too complex to integrate directly.

Any ideas / comments?

-- 
Thanks,
Josh McFarlane
http://www.joshmcfarlane.com

Follow-Ups:
- Re: Proposal of a new hidden wiki
  - From: Ringo Kamens

References:
- Proposal of a new hidden wiki
  - From: Frozen Flame
- Re: Proposal of a new hidden wiki
  - From: Ringo Kamens
- Re: Proposal of a new hidden wiki
  - From: vikingserver@xxxxxxxxx
- Re: Proposal of a new hidden wiki
  - From: Eduardo Costa Lisboa
- Re: Proposal of a new hidden wiki
  - From: Ringo Kamens
- Re: Proposal of a new hidden wiki
  - From: Eduardo Costa Lisboa
- Re: Proposal of a new hidden wiki
  - From: Karsten Loesing
- Re: Proposal of a new hidden wiki
  - From: Ringo Kamens
- Re: Proposal of a new hidden wiki
  - From: vikingserver@xxxxxxxxx
- Re: Proposal of a new hidden wiki
  - From: Ringo Kamens

Prev by Author: Re: Has anyone had the identity revealed in Tor?
Next by Author: Re: Proposal of a new hidden wiki
Previous by thread: Re: Proposal of a new hidden wiki
Next by thread: Re: Proposal of a new hidden wiki
Index(es):
- Author
- Thread