Delivery-Date: Wed, 07 Jan 2015 13:25:51 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.8 required=5.0 tests=BAYES_00,FREEMAIL_FROM,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 345051E09F6
	for <archiver@seul.org>; Wed,  7 Jan 2015 13:25:49 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 97F9032B5F;
	Wed,  7 Jan 2015 18:25:45 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id E032532B20
 for <tor-talk@lists.torproject.org>; Wed,  7 Jan 2015 18:25:41 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id T6JHjGX0-My9 for <tor-talk@lists.torproject.org>;
 Wed,  7 Jan 2015 18:25:41 +0000 (UTC)
Received: from outbound004.roc2.bluetie.com (outbound004.roc2.bluetie.com
 [208.89.132.144])
 (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits))
 (Client CN "Bizanga Labs SMTP Client Certificate",
 Issuer "Bizanga Labs CA" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id A9F9D321DF
 for <tor-talk@lists.torproject.org>; Wed,  7 Jan 2015 18:25:41 +0000 (UTC)
Received: from web007.roc2.bluetie.com ([10.200.2.101])
 by outbound004.roc2.bluetie.com with outbound004
 id d6Rd1p0032Alkky016Rd83; Wed, 07 Jan 2015 13:25:37 -0500
X-CMAE-OUT-Analysis: v=2.1 cv=HcstEE08 c=1 sm=1 tr=0
 a=7X69+Egs4aEeFnNAy6RSag==:117 a=QoHJ8kPOAAAA:8 a=IkcTkHD0fZMA:10
 a=deDS6JXDAAAA:8 a=mWHYN2dGR8oA:10 a=YNv0rlydsVwA:10 a=AwIQbDszAAAA:8
 a=-8MSZLQqwlwuuK6f6vsA:9 a=QEXdDO2ut3YA:10
X-CMAE-OUT-Score: 0.00
Received: from web007.roc2.bluetie.com (localhost.localdomain [127.0.0.1])
 by web007.roc2.bluetie.com (Postfix) with ESMTP id 7881B16012F
 for <tor-talk@lists.torproject.org>; Wed,  7 Jan 2015 13:25:37 -0500 (EST)
Message-ID: <20150107132537.31717@web007.roc2.bluetie.com>
X-HTTP-Received: from Authenticated sender: freedomfighter3.myway
 [84.46.27.81] by web007.roc2.bluetie.com (BlueTie WebMail);
 Wed, 07 Jan 2015 13:25:37 -0500
X-Mailer: BlueTie MTA
Date: Wed, 07 Jan 2015 13:25:37 -0500
Cc: 
To: tor-talk@lists.torproject.org
From: "Full Name" <freedomfighter3@myway.com>
Importance: normal
Subject: Re: [tor-talk] New Software: P2P filesharing designed to use Tor
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

yes i have changed now to SHA-256 because it is said to be more secure, thank you.
Also i introduced a fourth Hash-level in the hash-tree (of 5k Blocks). They are only used now to build the higher level hashes, they are not transmitted. If needed, they can be transmitted also to do more fine grained validation.

@Aymeric Vitte
Thanks i have learned a lot now. I also saw that Tribler has published a warning that security has not yet matured.
I think file sharing of small files should work, for big files people should not use tor if they have other sources available.




-----Original Message-----
From: "SecTech" [tech@firemail.de]
Date: 01/07/2015 11:18 AM
To: tor-talk@lists.torproject.org
Subject: Re: [tor-talk] New Software: P2P filesharing designed to use Tor

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hey,
maybe I am paranoid, but could you implement an second hash computed
out of the file. SHA-256 would be perfect, because when you have
security in mind, NSA could break SHA-1. When you are using two hashing
algos than it is even harder to attack it.


- -- 
SecTech <tech@firemail.de>
GPG-ID: 0x364CFE05

-----BEGIN PGP SIGNATURE-----
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=VRxF
-----END PGP SIGNATURE-----
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk


-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

