2018-12-13 00:03:54
I need a lot more test nodes
Fireduck
2018-12-13 00:03:59
and a non-ipv6 seed
Fireduck
2018-12-13 00:05:51
also a mini-PoW function, and a pony, and reasonable config defaults
Fireduck
2018-12-13 00:07:10
sounds like quite the sausage indeed
Rotonen
2018-12-13 00:18:33
I can fire you up a few small vm's on my server
mjay
2018-12-13 00:31:44
I have plenty of VMs. Just a matter of running the thing.
Fireduck
2018-12-13 00:51:49
@Fireduck I can automate things with ansible.
Clueless
2018-12-13 00:52:13
it's just or just script deployment, who cares.
Clueless
2018-12-13 01:58:25
ansible is the thing that allows ender to direct the fleet to use the little doctor on the bug planet
Fireduck
2018-12-13 15:47:05
Since we are hashing the channel id in different ways to get the dht ring position, might as well keep the channel id off the dht entirely. Then make it so peers won't discuss the channel with each other except by using the id as a shared key. This way you can join a channel just by snooping the dht traffic.
Fireduck
2018-12-13 15:47:54
Then you can make a low security semiprivate channel by just not widely sharing the id
Fireduck
2018-12-13 16:08:13
now you’re just talking of contraception
Rotonen
2018-12-13 16:48:36
If you want real security, use crypto
Fireduck
2018-12-13 16:48:55
This would just be if just a little privacy is needed
Fireduck
2018-12-13 16:49:10
Like a hangout channel for your friends
Fireduck
2018-12-13 17:58:24
We also already have ssl based on a key pair generated on each node, and the id for that key is part of the network gossip so we have pretty solid transport security without a CA
Fireduck
2018-12-13 17:58:34
I should bring that mess into snowblossom itself
Fireduck
2018-12-13 18:06:16
’ssl’?
Rotonen
2018-12-13 18:06:48
TLS
Fireduck
2018-12-13 18:17:27
For compatability the nodes make a new RSA cert on startup and put a signed message inside it from their node key pair
Fireduck
2018-12-13 18:17:51
and then I have a custom ssl cert checker that is expecting the cert extra data to contained this signed message authenticating it to the expected node id
Fireduck
2018-12-13 18:17:54
it was fun
Fireduck
2018-12-13 18:18:33
https://github.com/snowblossomcoin/channels/blob/master/src/SnowTrustManagerFactorySpi.java#L88 ```
public void checkServerTrusted(X509Certificate[] chain, String authType)
```
Fireduck
2018-12-13 18:20:06
"// It is best not to think about this"
Fireduck
2018-12-13 18:20:09
always a good comment
Fireduck
2018-12-13 18:33:07
’ssl’?
Rotonen
2018-12-13 18:35:13
Secure Sockets Layer, now known as TLS
Fireduck
2018-12-13 18:35:37
I'm not sure which one of has gone mad but I'm pretty sure one of us has
Fireduck
2018-12-13 18:36:52
not quite the same, though, but rather talk in the language of x.509
Rotonen
2018-12-13 18:38:09
though people taking you seriously is not my problem :D
Rotonen
2018-12-13 18:38:20
see also: life of brian
Rotonen
2018-12-13 18:39:47
I find that more people have a concept of what SSL is as opposed to TLS
Fireduck
2018-12-13 18:41:04
not like almost anyone can explain what a socket is
Rotonen
2018-12-13 18:42:09
now this is getting too convoluted for genuine communication, i’ll retreat back into my cave of fixing stuff
Rotonen
2018-12-13 18:42:44
ha. I appreciate your input as always.
Fireduck