New "Dark" Freenet Available for Testing

Sanity writes "The Freenet Project has just released the first alpha version of the much anticipated Freenet 0.7 branch. This is a major departure from past approaches to peer-to-peer network design, embracing a 'scalable darknet' architecture, where security is increased by allowing users to limit which other peers their peer will communicate with directly, rather than the typical 'promiscuous' approach of classic P2P networks. This means that not only does Freenet aim to prevent others from finding out what you are doing with Freenet, it makes it extremely difficult for them to even know that you are running a Freenet node at all. This is not the first P2P application to use this approach, other examples include Waste, however those networks are limited to just a few users, while Freenet can scale up almost indefinitely. The new version also includes support for NAT hole-punching, and has an API for third-party tool development. As always, the Freenet team are asking that people support the development of the software by donating."

Re: Hooray!

[Slithe]

You can also use TOR.

Re:Will this ever succeed in full?

[Sanity]

I wish there was a way that I could view websites without giving any IP or client information. However, that kind of information is important to webmasters and business.

Check out Tor.

Re:Will this ever succeed in full?

[Slithe]

Well, it is not a foolproof solution, but you can try using TOR: The Onion Router (http://tor.eff.org/). It will act as a random daisy-chain of proxies that pass all the information (except for the final hop) encrypted.

Failing that, you could always buy a laptop/PDA/etc. and a cheap wifi card and connect to random WAPs using a spoofed MAC address.

Re:Will this ever succeed in full?

[Beryllium+Sphere(tm)]

>I wish there was a way that I could view websites without giving any IP or client information

Anonymizer.com, cotse, and many others.

There's some loss of functionality. For example if you have Java turned on then a remote web site can grab your IP even through a proxy. So you have to turn off Java, and Anonymizer disables Javascript as well.

Re:Fantastic

[Reality+Master+101]

The difference between Freenet and your examples is that Freenet is designed to be untraceable, while your examples are not (even though they sometimes are, they're not designed to be). In other words, Freenet seeks to implement a level of anonymity that resolves people of responsibility.

Which is fine if you think that's something worthwhile, but is quite different in practice from your examples.

Re:Will this ever succeed in full?

[ystar]

One should note that Tor won't attempt to hide the fact that you're running a node

Java is coming along

[Sanity]

Modern Java virtual machines can actually be more efficient than native code in many situations. The old criticism of Java, that it is slow, and a CPU/memory hog relative to native compiled code, was definitely valid back in the 90s, but is much less-so now. Check out some recent benchmarks involving Java if you don't believe me.

Recent post on Freenet mailing list

[moosehooey]

On 31 Mar 2006, at 20:08:
> This isn't about *technical* support, I just wanted to tell Matthew
> thanks
> for working on this project. The US government is really scaring
> me and
> I'm glad someone's working on this. You're doing a great job man.
>
> One question I have is that the paypal balance on the home page
> usually
> says something like a few hundred $, and I was wondering if it's
> actually
> generating the required $2300 per month, or if it's falling short.
> I've
> had a monthly donation set up for quite a while now, and I just
> want to
> make sure everything is going well financially for the project.

We have been fortunate enough to generate just about enough to pay
for Matthew for the past few years, but donations have been tailing
off as we haven't put out any new releases in quite a while due to
our work on 0.7, and the financial situation is actually quite
precarious just now.

Our hope is that with the 0.7 alpha release we will get some
donations, but if anyone can contribute, now would really be the time
(as there can be no guarantee that the 0.7 alpha release will
generate the level of publicity we have seen for previous releases).

Ian.

Help the project...

I have an automatic donation to Freenet of $20 per month set up. These guys really need some support, especially now between versions.

Re:Fantastic

[adpowers]

There is always one of you per Freenet discussion.

I've used Freenet off and on for a number of years and I don't see much churn in the number of free sites. The most active free sites tend to be FLOGs (Blogs on Freenet). Many of the sites in Freenet have been there since what seems like the beginning of time. There are new ones added (like someone mentioned the Diebold files), but they tend to not be kiddie porn.

Here's an idea... run a node, access the non-kiddie porn content, post your own content, and use the network. The network is changed by observing it, so by accessing non-kiddie porn, you are encouraging it to be replicated across the network, while also making the kiddie porn hard to find.

Andrew

Re:Darknet + Bittorrent = Mass Appeal !

[Sanity]

1. Take a look at Frost (see here)
2. Not sure what this means, even at this early stage Freenet 0.7 is pretty anonymous compared to the competition
3. You can change Freenet's port very easily in the freenet config file, the initial port is selected randomly
4. This would probably be overkill for the monitoring mechanisms in existence today
5. Not sure what this means
6. This either

Re:Fantastic

You can be sued, and unless you can prove that you know that he was helping to distribute child porn, you will lose.
Interesting logic: I must support Ian Clarke and his ideals of absolute freedom of speech, otherwise he might sue me for saying bad things about him?

You're evading the statement. What you said was:

but he is actively helping people to distribute child pornography, and so are you if you run a Freenet node, whether you know it or not

You are making an assertion that Clarke is knowingly and actively involved in an illegal activity. This assertion is sufficient for Clarke to sue you for libel. You can disagree with what Clarke is doing (eg: "I do not wish to support Freenet, because it makes it easier for people to distribute child pornography"), but to phrase it in the way you have is a direct attack upon Clarke's standing in the community. That is what makes your statement libellous. Not your disagreement with Freenet, but the way you express it.

All Clarke has to do is demonstrate that Freenet has legitimate uses other than child porn -- which it most certainly has -- and you're in deep doo-doo.

Re:Trust...whom?

[IgnoramusMaximus]

Good plan, and the Information and Internet Ministry approves of commercial use of SSL sites, to prevent thieves interfering with the National Business, except that the Totalitarian Information Ministry also requires all SSL sites to have all of their keys in escrow with the Ministry. That is a pre-condition of doing business. Any non-escrowed site you are accessing, will be either a) blocked and/or b) you will have a visit from a very friedly Ministry Staff to question you on your indiscretions and educate your as to any further use of the Approved Internet and avoidance of web sites where Enemies' of the State lurk.

Any questions?

Re:Fantastic

[Kjella]

Everything on Freenet has a timestamp. If a wiretap shows your node pushing an original key with a timestamp newer than when the wiretap started, you're the source.

Say again? Bulk data keys (CHK) come directly from a hash of the source, no timestamp involved. Some Freesites have a rotating key system (really stupid) which means new keys must be inserted to keep a site alive which could sorta be what you're talking about. but I think these have pretty much died out and even so the timestamps could be forged. All current Freesites I know of use static SSKs. These are signed (unlike CHKs) but don't contain a timestamp. "Userspace" timestamps like those in Frost are meaningless. I could set my computer's clock to next week and post "in next week".

As for the rest, your basic wiretap would show an encrypted connection, nothing more. Maybe if you're talking about some wiretap/poison node combination you could get somewhere. In fact, forget the wiretap. If I got a node talking to your node, I have a lot better chance of making a statistical case (enough for "reasonable suspicion and a search warrant) than a wiretap.

You misunderstand the structure of darknets.

[Julian+Morrison]

In this new Freenet, network connections only pass through a select few friends, but the routing layer hides this - files are globally available, as they used to be. You've misunderstood the protocol design.

Also, you've even misunderstood the "select few friends" thing. It's not that you can exclude people. It's that you have to actively include people - and you have to have their permission first.

An analogy would be: passing messages between people by telling a trusted friend, he tells his trusted friend, and so on until it reaches the destination.

Re:Waste

[psycho8me]

More importantly to me is that this is free software which requires a big ugly chuck of non-free software to run. Java sucks because there are no good and free implementations. Freenet hasn't worked with a free implementation in a looong time.