I visited the mutella sourceforge forums (mutella.sf.net) to tell their developer not to set the requery interval to a very low value (it's 60 seconds atm). I...
I can't figure out how Mutella developer(s) could make a decent servent without getting their information from the GDF and its documents. Even QTrax spam-devs...
What is the role of the very extensive signature in GTK-Gnutella User-Agent signatures ? Examples: User-Agent: gtk-gnutella/0.91.1 (22/11/2002; X11; Linux...
... It shows me all the information I need in the advent of a problem. ... Revealing the kernel version is necessary in case there is a bug. For instance,...
Raphael_Manfredi@...
Mar 1, 2003 11:27 am
14452
... Listen up close and listen up well. Having a single vendor proprietary network is less work that interoperating. It is also less risk. If you own a company...
The mutella developer does not seem to read this mailinglist. He said so in his forums. Maybe he just reads through the files section. I don't think the...
... Less risk for...? Abuse? Hacking? In the end, what matters is not whether you can or cannot become a proprietary network. I'm sure you can. What matters...
Raphael_Manfredi@...
Mar 1, 2003 1:18 pm
14455
Hi Max, My name is Raphael Manfredi, I am the author of the open-source linux Gnutella program called gtk-gnutella. On behalf of the whole GDF (Gnutella...
Raphael Manfredi
Raphael_Manfredi@...
Mar 1, 2003 1:50 pm
14456
From: <Raphael_Manfredi@...> ... User-Agent ... the ... I just think that for statistics purpose, it makes more sense to abbreviate this string, because...
Philippe, ... I appreciate your willing-ness to redesign the user-agent string of GTKG. However, changes won't happen any time soon. So forget about it. May I...
Raphael_Manfredi@...
Mar 1, 2003 4:14 pm
14458
I just want to be sure that this string is effectively parsable. If so, I know how to simplify it. My idea was not to show you "the" best way to do it, just to...
... Well, it needs to be parseable, human-readable and of course compatible (with existing implementations out there). ... Oh, I know. I can see that others...
Raphael_Manfredi@...
Mar 1, 2003 4:49 pm
14460
OK, thanks for your comments. Now I see that I don't need the comments part, because the processor info is not specified, and what really counts is the part of...
... Thats just his way. I don't agree with everything he has to say, but I have to admit he writes with a good style. Having Philippe's comment on any subject...
... Note that BearShare uses the "Machine" header in the handshake, with a comma separated list of integers. Each operating system is assigned a small integer,...
Gien the growing level of malicious servents that try to mimic legitimate servents, couldn't we find a way to include a digital signature in our released...
... Why don't we start with the mail clients? I'm sick of spam, and that will surely help. Then move to the browsers and web servers - these pop-ups are really...
It seems to me the only thing that could make a servent malicious is its behaviour. Who cares if it mimicks the name of another servent as long as it is...
From: <info@...> ... That was not my intention. I just wanted to know how an external vendor can recognize, in a identification string what is really...
Hi Philippe ... Afaik we don't. Any since we are not a business, I don't see why we actually should. We do this out of personal interest and if we are happy ...
Richard Eckart
wyldfire@...
Mar 1, 2003 6:22 pm
14468
From: "Sam Berlin" <sab275@...> ... and ... analyze ... So what can you do when you know that a servent is malicious but cannot be distinguished from an...
... You're welcome any time. Starting by requesting comments on my part first would have spared you the time to write your first lengthy message. ;-) ... ...
Raphael_Manfredi@...
Mar 1, 2003 6:31 pm
14470
... Why do you think that you need an hardcoded private key in the distributed software or in its sources ? The simple solution used in the software industry...
... Exactly. That's what GTKG does with its banning policies. It also informs the other party about what is wrong using a BYE message. For instance, broken...
Raphael_Manfredi@...
Mar 1, 2003 6:35 pm
14472
The problem is that you are relying on a User-Agent header or a key exchange to denote trust. Trust should come about by looking at the particular instance of...
... How do you suggest that people compile the sourcecode themselves? According to that scheme, those people would not be able to get access to the network on...
Richard Eckart
wyldfire@...
Mar 1, 2003 6:44 pm
14474
From: "Sam Berlin" <sab275@...> ... exchange ... is ... the ... If all could be true, we would not have to suffer so much problems from either...
... Sam, I am somewhat warming to that idea but the problem is that in a p2p network, you can inject queries at multiple (unbounded) locations which makes...
... and reoriginate queries, then it can be >fairly hard to distinguish them from a regular connection with an active user. If it is possible to mentally...
