Slashdot Mirror

← Back to Stories (view on slashdot.org)

Anonymous Network I2P 0.7.2 Released

Posted by timothy on from the layers-and-layers dept.

Mathiasdm writes "The Invisible Internet Project, also known as I2P, has seen its 0.7.2 release (download). I2P uses multiple encryption layers, and routing through several other computers to hide both sender and receiver of messages. On top of the network, regular services such as mail, browsing, file sharing and chatting are supported. This release (and all of the releases since 0.7) is at the start of a new development period, in which the I2P developers wish to spread the word about the secure network. This new release includes performance improvements, a first edition of an experimental new desktop interface and security improvements (by limiting the number of tunnels a single peer can participate in)."

27 of 231 comments (clear)

  1. Wow, way to abbreviate there by Anonymous Coward · · Score: 5, Funny

    By abbreviating I2P instead of IIP they save a whole zero characters.

    1. Re:Wow, way to abbreviate there by Anonymous Coward · · Score: 4, Funny

      Here I was thinking that it was RP, damn me and my 1337 h4x0r sk1llz

    2. Re:Wow, way to abbreviate there by CarpetShark · · Score: 5, Insightful

      I find "I2P" quite recognisable as a "trademark", and more importantly, quite googleable, since it doesn't share namespace with myriad corporate TLAs. Works for me.

    3. Re:Wow, way to abbreviate there by trust_jmh · · Score: 5, Informative

      By abbreviating I2P instead of IIP they save a whole zero characters.

      It is to distinguish it from another anonymous network;
      http://en.wikipedia.org/wiki/Invisible_IRC_Project

    4. Re:Wow, way to abbreviate there by grodzix · · Score: 5, Funny

      I2P sounds better than Aye Aye Pee

      Especially if you put 'need' between 'I' & '2' [:

      --
      My Windows is NOT slow, it's special!
    5. Re:Wow, way to abbreviate there by DMUTPeregrine · · Score: 4, Informative

      I don't know IIP, but I2p has a darknet, like freenet, but also allows routing to the internet like tor. It's just as slow as any of the other onion routers, but combines good bits from freenet and tor.

      --
      Not a sentence!
    6. Re:Wow, way to abbreviate there by Anonymous Coward · · Score: 5, Informative

      I2P creates an entire seperate (though visible) network that allows tcp transport where it is impossible to connect an I2P address to an IP address. It is easy to tell who is using I2P but not what they're doing on the network. I2P also (or at least used to) includes a proxy out to the full internet. I2P is usable but often times fairly slow (mostly because alot of sites are hosted on people's cable/dsl systems).

      Invisible IRC only works for IRC, and nothing else.

      Tor is more of an anonymizing proxy than an entire seperate network. It's anonymity isn't quite as good as I2P, but in general, you'll get much better transfer rates to the regular internet through tor than I2P.

      Freenet is another approach to anonymous network, but is implemented closer to a searchable, distributed, highly redundant, encrypted filesystem. It is anonymous, but only really allows publishing and reading of content, and it is pretty much impossible to have real time (or even close) communication with it.

    7. Re:Wow, way to abbreviate there by Anonymous Coward · · Score: 4, Insightful

      Comparing I2P, Tor, and Gnunet/Freenet (so not exactly what you're asking), in order of most to least specialized:

      Gnunet and Freenet are high-latency networks set up to share files redundantly and anonymously.

      Tor is a low-latency network, which works by creating encrypted tunnels through a series of servers to proxy your internet connection anonymously. Also, there exist "hidden servers" on Tor which can only be accessed from the Tor network. They allow servers to be anonymous too. Tor can't run BitTorrent efficiently, as all connections are proxied to the normal internet, don't allow incoming connections from the normal internet, and using Tor's circuit-switched network for the many connections needed to file-share is horribly inefficient. Tor is really built for the client/server model of traditional internet browsing/hosting.

      I2P is a more generic low-latency anonymous network. Its nodes can talk to each other anonymously, and it allows other specialized applications to run over it. There is a set of applications for it to make it function similar to Tor and proxy your internet. BitTorrent can also be run on it efficiently to share between I2P users.

      Closer comparisons between I2P and Tor:
      Tor builds circuits between servers which hold whole connections. I2P packet-switches allowing each packet to find an efficient path (its own circuit in Tor-speak). So I'd guess that I2P would be quicker than Tor in many cases, by utilizing more paths efficiently.

      Personally, I'm more confident in Tor's anonymity and network, and would use where anonymity was the #1 priority. Tor is tried-and-true, was originally researched by the US Navy, and has ties with the EFF, while I2P is "still a work in progress, and should only be used for testing or development purposes prior to the 1.0 release".

  2. Did anyone else misread that? by _Hellfire_ · · Score: 5, Funny

    I initially read that as "Anonymous Network 127.0.0.1 Released" and thought "did I miss April Fools this year?"

    --
    "And then I visited Wikipedia ...and the next 8 hours are a blur..."
  3. Re:I2P vs TOR by Anonymous Coward · · Score: 5, Informative

    I'm in a bit of a rush but how is this any different then say TOR?

    http://www.i2p2.de/techintro.html#similar.tor

  4. Re:Slow as usual... by c0d3g33k · · Score: 5, Insightful

    The question should be how slow is it compared to the speed experienced after the ISP shuts you off (or the authorities confiscate computing equipment) due to an accusation of illegal activity by the *IAA. The performance hit may seem painfully slow until compared to the slowness of 0 bps. In fact, such a system IMHO should have an easy to use toggle (desktop widget, browser plugin) so that "normal browsing" goes through the usual channels and only the limited periods of "private browsing" are experienced with full protection on. Blend in with the crowd by default and leave the security for when you really need it.

  5. Re:Slow as usual... by tpwch · · Score: 5, Insightful

    Maybe it is slow, but currently that is the price for anonymity. If you don't think waiting a few seconds here and there is worth it for being anonymous then don't use services like this. There are plenty of people who think anonymity is worth a lot more than that. If you only want to be anonymous if its convenient and without negative side effects then you are probably not one of the ones who need to be anonymous.

    --
    Posted by a Debian GNU/Linux user
  6. Re:I2P vs TOR by x78 · · Score: 4, Informative

    When last I used it seemed that I2P has a whole network of ".i2p" domain things that you could only access if you were a part of the I2P network.
    Tor is just a proxying service is it not?
    I think it's something like if Tor was a private network that only Tor users could access.

    --
    Don't panic
  7. Re:I2P vs TOR by cdgeorge · · Score: 4, Funny

    i just googled for the above text by mistake, and google already found the entry comment. Is this fast or what?

  8. Pedophiles and Terrorists by MrMista_B · · Score: 4, Insightful

    Yeah, I know how this is gonna be received:

    "Shit, the people of our country might be able to share free and uncensored speech and information among themselves.

    Wait, I know how to fix this! Headlines! "OMG Secret Pedophile and Terrorist Network" - anyone who wants to be anonymous on the internet /must/ be a pedohile or a terrorist. If you have no pedophilia or terrorism plots to hide, you have nothing to hide!"

    1. Re:Pedophiles and Terrorists by Opportunist · · Score: 5, Insightful

      Really?

      With data retention becoming reality in Europe, it's only a small step until employers become interested in the data. Why did my employees gather information about certain diseases? Why are they looking at job pages? Why are they looking at my competitor's page or even exchange information with him?

      As soon as data is gathered, its abuse is not far behind.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re:Pedophiles and Terrorists by MartinSchou · · Score: 4, Insightful

      I'm damned if my resources are going to be used to propagate child pr0n.

      You do realise that your taxes are being used to build and maintain roads? How do you think these people manage to get children, rapists and recording equipment together in the same location? At some point a car is very very likely to be involved.

  9. Re:Slow as usual... by Opportunist · · Score: 4, Insightful

    By that logic, any encrypted traffic instantly becomes "interesting".

    Instead I'd recommend encrypting as much as possible. The more noise, the better.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  10. A few more features they could add by presidenteloco · · Score: 5, Interesting

    I designed one of these about a decade ago and did some prototyping. Since I don't seem to have the time to realize it, here are a few extra features that could be added (if i2p does not already include these).

    Encrypted-file-fragmenting, auto-globally-migrating, auto-redundant replicating "virtual" data store layer. Stored files automatically seek to be replicated enough times to be guaranteed perpetually persistent, and also seek to move to newer and better physical storage sites, and to globally distribute themselves, and auto-cache near user when needed.

    With this addition, we may have the basis for, for example, a Facebook-like on-line identity avatar which is not owned by a single company like Facebook but just floats around all over the P2P network, and is truly owned by the person who it is about.

    With that freeing up of the online identity from external control, we could extend it to include important identity information needed for the citizen to function in society. Medical records, different identity numbers for different government agencies, your real-world address, etc. All of these properties about you could be placed online by you following standard protocols and placed only onto a secure virtual site in the i2. Permission model would of course be default no permission, opened incrementally to authorized and authenticated other parties.

    If we had this, the onus could now be placed on governments, medical systems, post offices, etc. to come to your avatar and request permission to know your address, or your medical number etc. No more change of address rigamerole. No more problems in your paperwork or medical history maintenance because you happen to move to another state or country.
    etc.

    It all relies on the open standards for the info and privacy protocols, and on the confidence of the person to put their info into a secure, encrypted, and non-owned virtual internet location.

    --

    Where are we going and why are we in a handbasket?
  11. Re:First post? by Klaus_1250 · · Score: 4, Informative

    I've been using I2P on-and-off for quite a while, and it is way faster than 2Kbps. BitTorrent over I2P can reach speeds of 50KBps and it could probably go faster if there was a mature BitTorrent client for I2P. Latency is low as well. Overall, I2P is much more usable than TOR.

    --
    It only takes one man to change the Wisdom of the Crowd to Tyranny of the Masses.
  12. Re:I2P vs TOR by mrsteveman1 · · Score: 5, Funny

    No dammit, this is encouraging people to read things. Sure it's just a simple link this time, then sooner or later its TFA, then god forbid, TFM. We can't have that, please stop.

  13. Re:I2P vs TOR by chromas · · Score: 4, Funny

    You think that's fast? I just tried googling it and I got your comment with my reply!

  14. No HTTPS support by thasmudyan · · Score: 5, Insightful

    From their FAQ:

    Within I2P, there is no need for HTTPS, as all traffic is encrypted end-to-end.

    Sorry, I had to laugh a bit there. That's VERY naive. In anonymizing networks, HTTPS is the only thing that protects you from possibly corrupt exit nodes by encrypting the traffic between your browser and the destination webserver. To claim I2P doesn't need HTTPS support is misleading or at least ill-phrased.

    1. Re:No HTTPS support by thasmudyan · · Score: 4, Interesting

      Methinks you are a bit confused, unfortunately. As sibling posters have said, I2P has no exit nodes as Tor does.

      It's not me who's confused, and sometimes it doesn't matter how many people keep insisting on wrong things, they are still wrong. Reality is not democratic.

      As sibling posters have said, I2P has no exit nodes as Tor does.

      Yes, it does. Do me a favor. Install I2P, change the proxy settings of your browser to localhost:4444 or whatever is configured after you start the service. You'll notice that you can, via randomly chosen exit nodes, access any HTTP URL. Now do a remote host lookup to confirm where your exit node is. This will be the moment you realize that you're wrong.

      HTTPS/SSL also fails with Tor's exit nodes

      No, it does not. In fact, the text you quoted proves you wrong right here: "any exit node is in a position to capture any traffic passing through it which does not use end-to-end encryption, e.g. SSL."

      See, Tor can (and does) route SSL traffic transparently between your target webserver and your browser. There is no technical reason I2P cannot do the same and I'm guessing that they simply haven't gotten around to coding that feature yet.

  15. Re:Related to Freenet? by FreenetFan · · Score: 5, Informative

    I2P doesn't do data storage like Freenet.

    I2P only encrypts and anonymises the transport. It's up to you to host the services on your machine. I2P just means people can use those services (e.g. a webserver) without knowing who is hosting them, and without you knowing who is accessing them. IF you go off-line, your service goes offline too.

    Freenet, on the other hand, does have an encrypted and distributed data storage layer. You can go off-line and your website will remain available.

  16. Re:I2P vs TOR by Miseph · · Score: 5, Funny

    And boy were you disappointed.

    --
    Try not to take me more seriously than I take myself.
  17. Re:Slow as usual... by Znork · · Score: 4, Insightful

    Even better, don't only encrypt things you want encrypted. Add encrypted true random data to any mails you send, to web pages, etc. As the encrypted random data will be largely indistinguishable from actual content but impossible to decrypt it'll clog any listeners decryption capabilities, forcing them to either white list you or be stuck with a huge pile of largely undecipherable junk which may or may not contain something they might want to attempt to decrypt.

    The desire of our dear leaders to expand surveillance to everyone everywhere and take the authoritarian road is, perhaps, unstoppable, but fortunately it also creates a huge funnel collecting sand for the machinery.