[freenet-dev] Vulnerability in inserting the manifest before finishing
Michael Rogers
m.rogers at cs.ucl.ac.uk
Fri Jan 4 02:07:07 UTC 2008
Matthew Toseland wrote:
> Well, is it possible for each node to choose which nodes it trusts and still
> be secure? Last I looked you'd get a lot of oscillation problems, statistical
> attacks (proportion of requests - correlate with how many nodes are within
> the target's horizon etc).
Yeah, it seems like there might be cases where, given a set of exit
nodes of linkable tunnels, an attacker could narrow down the number of
initiators who would trust all those exit nodes. All the required
information is common knowledge because the neighbour lists are broadcast.
Cheers,
Michael
More information about the Devl
mailing list