It seems like it would be so much better than tor sites for opsec. Not really understanding why its not more popular.
Freenet.
It seems like it would be so much better than tor sites for opsec. Not really understanding why its not more popular.
[2 Points] al_eberia:
[1 Points] whoiiinvitedthisguy:
What's that
[1 Points] ohnowgacklefux:
The Silk Road forums contain a wealth of information on this topic.
Quote from: kmfkewm on September 23, 2013, 08:55 am</a></div></div><blockquote class="bbc_standard_quote">Freenet isn't a bad choice. Tor is a featherweight boxer, quick but easily knocked out by a heavyweight attacker. Freenet is kind of a medium weight boxer. Mix networks are the heavyweights, slow but powerful. But it is likely if the NSA can pwn Tor they can pwn Freenet as well. It is a bit harder to pwn Freenet, but an attacker who can watch most links on the internet + who owns a decent number of Freenet nodes can break Freenet. We are assuming that the NSA can watch most links on the internet, it isn't going to be hard for them to own a decent number of Freenet nodes as well. In the case of Tor the attacker doesn't need to own a single Tor node if they can watch the majority of links on the internet. So the cost to attack Freenet in a major way is more than the cost to attack Tor in a major way, but it might in this case be the difference between someone in the Forbes top 100 buying a ten million dollar house or a twenty million dollar house.</blockquote><div class="quotefooter"><div class="botslice_quote"></div></div>The more I think about the "What's doable today?" question for building anonymous groups or marketplaces, the more I like Freenet.
The primary downside is that opennet Freenet is succeptible to Sybil attacks. Every "open, anybody can participate" anonymous network is. Stand up n many nodes, watch the nodes around Person X, figure out what Person X is requesting or posting. Some sort of lets-all-get-together darknet Freenet is a bad idea since the actual network is the intersection point.
But for a marketplace, it has a lot of advantages over Tor/i2p: 1. It funnels all user traffic into uniform static requests that are processed by the marketplace. The marketplace has a smaller attack surface. 2. Assuming strong encryption, an attacker could theoretically identify who is communicating with the marketplace, but not what they're doing. 3. Correlation should be much harder. You'd need to be able to see User X sending a request, and you'd need to see the Marketplace retrieving it. (EDIT: Actually, I'd have to do more research before I could say this is true.. as I think about it, your request to the marketplace may need an identifier so the marketplace could find it in order to receive it. ) 4. It already has plenty of other traffic to carry the network. Mostly people sharing movies and warez and shit.
It has some downsides, though: 1. It's slow. It's a disconnected, download static content and wait a while technology. 2. Inventory management is impossible with high-latency networks. If I'm selling widgets, and I have five widgets left in inventory, I could receive fifty orders for widgets before anybody sees that I'm out of stock. Really have no idea if SR handles this at all, though, since I don't use it. May be a non-issue. 3. It's hard. This is a big one. Freenet is a pain in the ass to set up. It uses Java and eats lots of resources. 4. It requires network partcipation: To use it effectively, you have to agree to route traffic for everyone else, and not just for the 30 minutes a day you're using it. You lose the fire-and-forget nature of Tor + Tails/TBB. You're going to have to run it from somewhere that can stay connected. That's going to end up being your house. Running it from a VPS negates many of Freenet's advantages. And is even more of a pain in the ass to set up.
Freenet would require a shift in how many people think about darknets, and it requires a shift in security practices. Because of the architecture, you're trusting the technology more. It's always on. And you can't do a Tails-style amnesiac experience with it like you can with Tor. You're ultimately relying on full disk encryption, but trusting the technology to keep FDE from mattering, since you're much more difficult to identify in the first place. But the whole "Aside from this Tails USB in my pocket, nothing in my house is even related to anonymous communications" option goes out the window.
It's possible to separate the Freenet routing node from the client (so you could use a Tails-like client OS with it), but it's not too easy. Most of Freenet seems to be built on the assumption that all services are available at 127.0.0.1 (the same box running the Freenet software).
My gut feeling is that in a pinch, you could move an existing marketplace with enough loyal userbase to Freenet. You probably couldn't start one from scratch, because it's too hard for new users to do properly. But if you boiled it down to just "install the Freenet jar" and "load this plugin", it's probably not a show-stopper.
[0 Points] AutoModerator:
Please give your post a meaningful title. That means for example 'Vendor Inquiry - Does anybody has experience with the vendor X' instead of 'I have a question'. Thanks.
I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.
Because it's anonymity was broken and people went to jail?
https://www.deepdotweb.com/2015/11/27/police-log-ips-making-arrest-by-planting-own-nodes-in-freenet/