I wonder if there could be a way to:
- Share those peers.dat securely, so if it falls into the wrong hands it doesn’t get blacklisted.
- Make sure that that peer file doesn’t get corrupted or that the internet doesn’t get flooded with fake files with fake peers.
Think about the worst case scenario where MaidSafe would be specifically targeted to be disrupted.
So imagine yourself sitting on a desk, and you are given the task of blocking new users from adopting MaidSafe, how would you do it?
If I were the asshole in charge, I would:
Phase 1) Get the official releases, read all the hardcoded IPs, and blacklist them all. Periodically check for changes, and if there are new IPs, blacklist them automatically
Phase 2) Once the official sources are useless because of the blacklisting, those users who are craving for SafeNetwork are gonna start searching for alternate versions, so the government agencies can cater that demand by creating bogus websites that pretend to be from a decentralized MaidSafe Pod or an alternative supporting site, and distribute trojanized versions of it. Harvest more IPs to blacklist in this manner, and meanwhile steal the keys of the user who installed it, and then send a list of files to a C&C to analyze illegal content and attempt to identify the user IRL (shotgunning for illegal users within borders). Those who are detected sharing forbidden information on the SafeNetwork, are persecuted publicly as a deterrent for future users, by spreading the propaganda that the SafeNetwork IS NOT SECURE (“look how many we caught, even though it was a shot in the dark, no one will be any the wiser!”).
Phase 3) Flood the internet with fake peers.dat, in countless shitty websites and torrents, so people get frustrated and decide that the SafeNetwork software is low quality. This measure will just potentiate the demand for the trojanized versions that work.
Specific targeting is happening with TOR in China (look up China’s Great Cannon), so this is not just a wild experimental thought, it is a realistic threat to consider if we are hoping SafeNetwork to become very successful: it WILL be specifically targeted.
If any of you think these ideas are far fetched: some of the “phase 2” aspects are happening with the free VPNs offered in the internet, and some of the phase 3 was already done with companies like MediaSentry, Overpeer, Loudeye hired by the MPAA and RIAA.
A totalitarian regime like China (or even worse the future US under Trump, lookup QUANTUM attacks from the NSA ANT Catalog, that is the toy this batshit tyrant wannabe has under his belt), could execute them all three if they felt that the internet was out of their reach to be monitored or controlled.
Therefore, I was wondering:
- How can we prevent official hardcoded IPs from being blacklisted.
- Is there a technique under the sleeve would make them impossible to be blacklisted or retrieved?
- Is there a non-IP method to bootstrap?