n2n icon indicating copy to clipboard operation
n2n copied to clipboard

Published 20 hours ago verified publisher icon ntop

encrypt locally preferred socket

Open Logan007 opened this issue 2 years ago • 3 comments

To not leak any local network information, I would love to see the -e-provided locally preferred socket encrypted for transmission to the supernode, for storage, and transmission back to the querying edge. The supernode shall not be able to decrpyt it.

I guess, we should use the -k provided key as it is known only to the edges.

Logan007 avatar Sep 11 '21 22:09 Logan007

Although it is impossible to imagine what kind of security problems will be caused (unless there are loopholes in the edge itself), it is safer to do so.

fengdaolong avatar Sep 12 '21 04:09 fengdaolong

agree

lucktu avatar Sep 12 '21 09:09 lucktu

For the sake of compatibility throughout the 3.x series, this can be implemented at 3.9/4.0 at the earliest.

Logan007 avatar Oct 31 '21 09:10 Logan007