[tahoe-dev] Building a more resistant introducer

Francois Deppierraz francois at ctrlaltdel.ch
Fri Dec 11 10:55:36 PST 2009


Brian Warner wrote:

> That said, for our purposes, I think it'd be fine to publish this
> private key, or merely hand it out to anyone who asks for it.

Ok, as a first step, I'll send it to everybody which setup a DNS alias.

> Incidentally, we should only run one introducer at a time. Clients will
> attempt to connect to all of the FURL's "connection hints"
> simultaneously, and the first correct response will win.

Oh, interesting, I was sure this process was sequential.  That's even
better because it makes the attack of creating a rogue introducer by
someone having access to one of the DNS zone present in the furl much
more difficult.  This rogue introducer needs to have lower latency than
the regular introducer to be able to attract a majority of the nodes.

> I can run a third. Name it "testgrid.lothar.com" and I'll set up the DNS
> mapping later.

I'd prefer if you call it 'volunteergrid.lothar.com' so we won't confuse
the VolunteerGrid with the TestGrid which runs only on allmydata.com
servers.

François


More information about the tahoe-dev mailing list