[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Satori (this crazy app thing I've been working on)



On Sun, May 4, 2014 at 5:14 PM, Griffin Boyce <griffin@xxxxxxxxxxxxx> wrote:
> Hey all,
>
>   So Satori is this app for Google Chrome that distributes circumvention
> software in a difficult-to-block way and makes it easy for users to check if
> it's been tampered with in-transit.

You might be interested in some of the ideas that have been floating
around in Bitcoin land about better tools for distributing software
updates, I've collected the ones I think are most important here:
https://en.bitcoin.it/wiki/User:Gmaxwell/update_checking_requirements

Note that it's not about automatic updates, it's about automatic
update stagingâ the user stays in control there... but the goal is to
advance the art so that users aren't just pulling updates from some
website in a way that any MITM could compromise too easily... but
without introducing centralized gate-keeping either.

I think some of these ideas might be pretty important when
distributing software specifically to 'interesting targets'â e.g. it
would give pretty good dividends to rubber hose the guy who can issue
the updates to a bunch of activist, so both for the users and the
operators safety something more robust ought to be done.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk