![]() ![]() ![]() a lot of features related to clear nodes are not needed (IP Filters, Relay, DHT, UDP, etc) which makes the software lighter and certainly more stable.your IP is hidden to everyone including friend nodes.A Tor node may therefore be a good way to keep Retroshare working in a heavily filtered network Connections through firewalls are extremely reliable and fast since Tor is very hard to filter.Retroshare will automatically create a hidden service for you and configure itself to use it (as soon as Tor is installed in the system - retroshare only looks for a Tor executable). Tor nodes have never been easier to setup: at the node creation time, select "Hidden node over Tor" instead of "Standard node", and fill your profile name and password. The change is backward compatible: new Tor v3 nodes will connect to 0.6.5 nodes without any change, provided that the 0.6.5 node you're connected to uses a version of Tor that supports v3 keys too, which means posterior to v0.3.2.9. With Tor nodes, the certificate may be a bit longer since the Tor v3 onion address is rather longer (56 bytes) than the PGP fingerprint (20 bytes). fit into a QR-code, since it only contains the node and profile names, the SSL Id and profile fingerprint, and the contact local/external IPs and ports (for clear nodes): The new home page therefore displays a much shorter certificate, which happens to be small enough to e.g. Once the profile key is received, all connections (including to other nodes of the same profile) will be validated by the same profile key. If you trust the SSL id, then any information received after connecting to this Id can be trusted as well, which includes the profile public key. It can be the SSL id (new type) or the profile public key (old type): the security level is the same. The security model of Retroshare connections is based on the fact that the original certificate you get comes from the right person. Whatever happens wrong in the process (mismatch profile keys fingerprint, mismatched SSL id) will prevent further connections. The new handshake type is indeed only used at the first connection. Once a node is connected, it will supply its own PGP key using discovery (as before), which will be checked to match the fingerprint in the certificate and then be marked to be used in type-1 handshake later on for future connections. This part of the security model is still up to the user. In both cases the handshake is eventually validated by information provided by your friend using a supposedly secure transmission (hand-to-hand, encrypted email, etc). SSL handshake It appears that we can afford to only send the PGP fingerprint instead of the full key, without losing any security. Up to v0.6.5, Retroshare used certificates containing the SSL id, the PGP public key and naming information. Use the double image below to compare both views:īoth in channels or boards, the new visualization system is now based on an abstract item model (instead of manually inserted items as it was in v0.6.5) making it much faster to load and offering a lot more possibilities for how to display the information. Two different visualization modes are possible (top right blue button, left to the search field): grid or list. Completer release notes here.Ĭhannels benefit from a new layout that is more suitable to their usage. As you will see, it was totally worth it. While we decided to stop developing new features in November 2020, it took us 4 months to fix all the bugs, mostly thanks to a really good user-feedback. In the end, lots of bugs have been introduced in the process and it took some time to reach a perfectly stable product again. token system, notifications, etc), which had us re-implement some GUI parts taking the opportunity to make them more efficient or re-designed to a better layout (e.g. This is for one simple reason: we changed lots of core features of the software (e.g. This release took even more time than the previous ones. The win32 installer automatically installs it, but you will need to first remove any more recent version of gpg4win. Notice: Under Windows you must install GPG4Win v1.1.4 RetroShare requires it without you can't create your RetroShare Key. Graphical User Interface written with Qt4 toolkit.Multiple simultaneous downloads / uploads.Serverless, encrypted Chat & Filetransfer.RetroShare provides filesharing, chat, messages, forums and channels. ![]() It lets you to securely chat and share files with your friends and family, using a web-of-trust to authenticate peers and OpenSSL to encrypt all communication. RetroShare is a Open Source cross-platform, private and secure decentralised communication platform. ![]()
0 Comments
Leave a Reply. |