[ home / board list / faq / random / create / bans / search / manage / irc ] [ ]

/hydrus/ - Hydrus Network

Bug reports, feature requests, and other discussion for the hydrus network.

Catalog

See 8chan's new software in development (discuss) (help out)
Advertise on this site
Name
Email
Subject
Comment *
File
* = required field[▶ Show post options & limits]
Confused? See the FAQ.
Embed
(replaces files and can be used instead)
Options
Password (For file and post deletion.)

Allowed file types:jpg, jpeg, gif, png, webm, mp4, swf, pdf
Max filesize is 8 MB.
Max image dimensions are 10000 x 10000.
You may upload 5 per post.


New user? Start here ---> http://hydrusnetwork.github.io/hydrus/

File: 1445284313718.jpg (33.75 KB, 500x707, 500:707, large.png.jpg)

 No.1254

Could you please update your docs with HTTPS URLs such as the MediaFire and 8chan links (others too)? Thank you.

 No.1255

File: 1445359564462.jpg (147.11 KB, 1024x793, 1024:793, 9cc7b0eeb3ca3d0b6cf4077507….jpg)

I couldn't get https://hydrus.tumblr.com to load, not sure why, but I have updated the others. Thanks for letting me know.


 No.1259

>>1255

Welp, certain sites don't support HTTPS yet.


 No.1264

File: 1445412711231.jpg (176.54 KB, 550x880, 5:8, d95185e7bb5083be979ae29a23….jpg)

>>1259

>>1255

> 2015 + Tumblr + https == false

Who the fuck works there

Obviously people without a brain


 No.1265

>>1264

Yeah, especially when HTTP is being slowly but gradually deprecated in favor of HTTPS and HTTP/2 (which is encrypted with at least TLS 1.2 by default).


 No.1267

File: 1445448382879.jpg (82.76 KB, 480x650, 48:65, e5da6440f37cbc320ff3ee0ce1….jpg)

>>1259

>>1264

>>1265

Yeah, it is odd because https://www.tumblr.com does work for me, but hydrus.tumblr.com just hangs, no 'we don't have a cert' error or redirection to http. Same thing for another random tumblr I just clicked on. I guess there is some subdomain issue with their certificate? Maybe because people can stick their own css and stuff on their tumblrs, so it opens up to some kind of XSS attack? Or maybe I just clicked some checkbox wrong when I set it up.

I don't know much about this stuff. Hydrus still works on http/1.1, but I'd love to move to something better in the new year without having to mess around with cert authorities and fixed domain requirements and all that. I'll have to put some time aside to researching how p2p networks do it. I presume I'll end up with user-acceptance of certs through a dialog like how Filezilla does it.


 No.1269


 No.1276

File: 1445544908377.jpg (170.89 KB, 1260x400, 63:20, 76a5ed04697d8cd62d51a1d10a….jpg)

>>1269

I had heard that EFF were involved in that, but I forgot the name–thank you for reminding me.

Now, I'll reiterate that I know very little about this, but doesn't regular cert verification require a static web address? Normal https will verify based on DNS domain name, which means it won't work for a p2p network where servers/supernodes only have non-static IPs. i.e. https://[ip address]/muh_request is always invalid.

I assume it means you have to either:

Throw up a clientside dialog, like how FileZilla does with FTP over TLS, that says "Hey this server has this cert, does this sound ok?" and then remember that cert in future.

Have a different verification scheme with a custom hydrus authentication service, where instead of asking about example.com, we say "Hey, authentication server, does [unique server id] have [public certificate id]?"

Say 'screw it' and automatically accept all certs clientside, which I imagine makes you vulnerable to man-in-the-middle attacks or whatever and may well destroy the whole house of cards.

Or something else. (likely using a different protocol)

I am not sure how much you can screw around with the https libraries in python, and indeed if doing so is a terrible idea. If I remember right, some of them don't even do verification, so this whole question might be moot. If I can interact with the library's cert cache, then I can throw up a dialog or write my own verification schema. Still, I suspect https is just something p2p networks shouldn't try, and instead I should be looking at something else, like this:

https://twistedmatrix.com/documents/current/api/twisted.protocols.amp.html

Which I have played with a bit and had small success with. Again, I think I need to put some time aside and read through some other project's source code.


 No.1277

OP here. Perhaps I missed something but the links are still the same…? I'm not criticizing or anything, I'm just confused.

https://hydrusnetwork.github.io/hydrus/


 No.1283

>>1277

Shit, I forgot my github index.html! That's stored in a different location in my code directories, so I missed it. I'll update it for next week, thank you.


 No.1284

>>1283

It's OK, things happen :P




[Return][Go to top][Catalog][Post a Reply]
Delete Post [ ]
[]
[ home / board list / faq / random / create / bans / search / manage / irc ] [ ]