2018-12-13 00:03:54
I need a lot more test nodes

Fireduck
2018-12-13 00:03:59
and a non-ipv6 seed

Fireduck
2018-12-13 00:05:51
also a mini-PoW function, and a pony, and reasonable config defaults

Fireduck
2018-12-13 00:07:10
sounds like quite the sausage indeed

Rotonen
2018-12-13 00:18:33
I can fire you up a few small vm's on my server

mjay
2018-12-13 00:31:44
I have plenty of VMs. Just a matter of running the thing.

Fireduck
2018-12-13 00:51:49
@Fireduck I can automate things with ansible.

Clueless
2018-12-13 00:52:13
it's just or just script deployment, who cares.

Clueless
2018-12-13 01:58:25
ansible is the thing that allows ender to direct the fleet to use the little doctor on the bug planet

Fireduck
2018-12-13 15:47:05
Since we are hashing the channel id in different ways to get the dht ring position, might as well keep the channel id off the dht entirely. Then make it so peers won't discuss the channel with each other except by using the id as a shared key. This way you can join a channel just by snooping the dht traffic.

Fireduck
2018-12-13 15:47:54
Then you can make a low security semiprivate channel by just not widely sharing the id

Fireduck
2018-12-13 16:08:13
now you’re just talking of contraception

Rotonen
2018-12-13 16:48:36
If you want real security, use crypto

Fireduck
2018-12-13 16:48:55
This would just be if just a little privacy is needed

Fireduck
2018-12-13 16:49:10
Like a hangout channel for your friends

Fireduck
2018-12-13 17:58:24
We also already have ssl based on a key pair generated on each node, and the id for that key is part of the network gossip so we have pretty solid transport security without a CA

Fireduck
2018-12-13 17:58:34
I should bring that mess into snowblossom itself

Fireduck
2018-12-13 18:06:16
’ssl’?

Rotonen
2018-12-13 18:06:48
TLS

Fireduck
2018-12-13 18:17:27
For compatability the nodes make a new RSA cert on startup and put a signed message inside it from their node key pair

Fireduck
2018-12-13 18:17:51
and then I have a custom ssl cert checker that is expecting the cert extra data to contained this signed message authenticating it to the expected node id

Fireduck
2018-12-13 18:17:54
it was fun

Fireduck
2018-12-13 18:18:33
https://github.com/snowblossomcoin/channels/blob/master/src/SnowTrustManagerFactorySpi.java#L88 ```
public void checkServerTrusted(X509Certificate[] chain, String authType)
```

Fireduck
2018-12-13 18:20:06
"// It is best not to think about this"

Fireduck
2018-12-13 18:20:09
always a good comment

Fireduck
2018-12-13 18:33:07
’ssl’?

Rotonen
2018-12-13 18:35:13
Secure Sockets Layer, now known as TLS

Fireduck
2018-12-13 18:35:37
I'm not sure which one of has gone mad but I'm pretty sure one of us has

Fireduck
2018-12-13 18:36:52
not quite the same, though, but rather talk in the language of x.509

Rotonen
2018-12-13 18:38:09
though people taking you seriously is not my problem :D

Rotonen
2018-12-13 18:38:20
see also: life of brian

Rotonen
2018-12-13 18:39:47
I find that more people have a concept of what SSL is as opposed to TLS

Fireduck
2018-12-13 18:41:04
not like almost anyone can explain what a socket is

Rotonen
2018-12-13 18:42:09
now this is getting too convoluted for genuine communication, i’ll retreat back into my cave of fixing stuff

Rotonen
2018-12-13 18:42:44
ha. I appreciate your input as always.

Fireduck