Discussion:
p2p webserver
Zwiebelcode
2013-06-22 13:08:00 UTC
Permalink
If java would be more secure, then a decentral webserver would be
nice... users upload java classes into freenet und freenet is spreading
it to the network... and then some users execute to class files with
restricted java policies.

Or more easily: Lets allow java applets on client side. These java
applets could be more restricted than normal applets. And then make an
api for those applets, where the applets can fetch or upload chk, ssk,
ssk,...

just another thought :-)
Matthew Toseland
2013-06-29 11:54:50 UTC
Permalink
Post by Zwiebelcode
If java would be more secure, then a decentral webserver would be
nice... users upload java classes into freenet und freenet is spreading
it to the network... and then some users execute to class files with
restricted java policies.
Or more easily: Lets allow java applets on client side. These java
applets could be more restricted than normal applets. And then make an
api for those applets, where the applets can fetch or upload chk, ssk,
ssk,...
just another thought :-)
Unfortunately, even if we assume Java's sandboxing code works (it breaks regularly), building a sandboxed API for Freenet that doesn't allow bad things is really hard.

For example, just the ability to insert and request, and time those requests, is enough for a malicious applet to discover a great deal about the user: Roughly where they are on the network, what they have in their client cache (i.e. what they download / what forums they follow), etc.
Zwiebelcode
2013-06-29 12:01:06 UTC
Permalink
Post by Matthew Toseland
Post by Zwiebelcode
If java would be more secure, then a decentral webserver would be
nice... users upload java classes into freenet und freenet is spreading
it to the network... and then some users execute to class files with
restricted java policies.
Or more easily: Lets allow java applets on client side. These java
applets could be more restricted than normal applets. And then make an
api for those applets, where the applets can fetch or upload chk, ssk,
ssk,...
just another thought :-)
Unfortunately, even if we assume Java's sandboxing code works (it
breaks regularly), building a sandboxed API for Freenet that doesn't
allow bad things is really hard.
Post by Matthew Toseland
For example, just the ability to insert and request, and time those
requests, is enough for a malicious applet to discover a great deal
about the user: Roughly where they are on the network, what they have in
their client cache (i.e. what they download / what forums they follow), etc.
yes, i forgot about these problems

Loading...