[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [GNUnet-developers] port knocking?
From: |
Alexander Winston |
Subject: |
Re: [GNUnet-developers] port knocking? |
Date: |
Fri, 27 Feb 2004 12:15:46 -0500 |
On Fri, 2004-02-27 at 11:13 -0500, Christian Grothoff wrote:
> On Friday 27 February 2004 10:11 am, Alexander Winston wrote:
> > Would it be possible to generate a unique port knocking sequence every
> > time that GNUnet is run so that only other peers know what the sequence
> > is?
>
> It would be possible to change the sequence every time, but not desireable.
> Not only may this require changing the firewall config (for the really
> paranoid) but also all 'old' HELO advertisments would no longer work,
> resulting in even longer times to connect.
>
> Besides, I fail to see the advantage of frequent changes to the sequence.
> Only other peers knew the old sequence, so where's the advantage in changing
> it? (Note that it is still a per-peer sequence, but for the same peer, the
> sequence would not change).
Ahh, I understand now. I, for some reason, assumed that the sequence
would be built-in to GNUnet and not configurable per peer. I think it's
a really great idea.
signature.asc
Description: This is a digitally signed message part