Retroshare thread 2

>hey guys join my filesharing club
Lol.

yeah, this is why I mentioned in the fucking first post that its not only about filesharing.
Of course BT is superior, but BT does not offer distributed social networking at all.

>social networking
Literally why.

>asking that question on a social website

>entire thread is people asking why they'd ever use OP's shitty service and him giving no reasons

Cool fucking thread man.

>11 year old
>my club
>open source
>my club

>you
>smrt

because Twitter is literally SJW-central and even Sup Forums is not unaffected. Also because its cool.

With social networking I mean mostly the distributed message board function.

In other news I found a very easy newbie guide:

retroshare.wikidot.com/

And for those asking to be "sold" here is the feature list:

retroshare.readthedocs.io/en/latest/

everything is in my original post you caveman.
Apparently some kiddies here are quite reading-impaired.

Fucking millenial scum, you want me to feed it to you in 140 character chunks?

>gets called on his shit and starts flinging insults.
dude just stop.

no one called me out.
They are just being retards as usual.
Its called the dunning-kruger effect.

I mean if you are seriously not able to read the freaking text, or to logically deduce that a freee and open source software that has been developed for 11 years is most probably not some NSA honeypot, then I cant help you either

He is literally spoon-feeding all of you fucking retards, if you are not interested then don't visit this thread.

why not freenet or gnunet?

because those are slow as fuck.
I mean, less than 56k slow.
And they focus completely on anonymity.
Those things are nice if you are a dissident in China but for your average user here looking to shitpost and fileswap this is complete overkill

>And they focus completely on anonymity.
Which is a good thing. Fuck off with your botnet.

>Those things are nice if you are a dissident in China
Or in the UK, Canada, Australia, etc...

>Files are represented by their SHA-1 hash value
Lmao

This is any different from Soulseek how?

>Soulseek
nonfree

yeah no.
what you want is reasonable privacy in those countries, nothing more.
No one gets shot here or there because they posted some rare pepes.

And of course your statement about botnet shows a blatant lack of understanding of both, botnets and Retroshare.

this is funny because?

Soulseek is filesharing only (read the fucking text guys!) Retroshare is not only filesharing

and of course RS is free and open source, no danger of backdoors or honeypots.

>this is funny because?
Because this shows how shit it is?
Because it shows that it is made by clueless fucks?

>No one gets shot here or there because they posted some rare pepes.
They do go to jail however for visiting gelbooru or for insulting someone over tweeter.

zeronet.io/

>sha1 for file identification
>shit
I am not quite following you there.

looks interesting, I will look at it. Thanks.

It is in this specific case.

you the sha1 guy or the zeronet guy?

Sha1

alright, now give me a reasonable explanation, using complete english sentences and well reasoned arguments why sha1 is unsuitable for file identification

Sha1 was already proven to be broken and you can make two files with the same sha1 string. Obviously that will get even easier as CPUs / GPUs improve. So sha1 should just die and not be trusted.

Does it use it in order to check the integrity of the file afterwards? My guess is that this is the case but just making sure.

just as I suspected: a victim of FUD.

sha1 was broken using a dedicated supercomputer and using very specific kinds of files where large parts of the file is invisible (pdfs for example).

Now if you were using sha1 to assure the integrity of such files in a security sensitive context, then yes you should not use sha1 (but then again you should not have used it since 2005 when it became known that it has huge weaknesses).

However here it is just used to identify a file, and dont worry the NSA has better uses for their supercomputer than to create a hash collision for that porn movie you are about to download from Retroshare.

this. And to make sure that it is fileA and not fileB.

In this context only the accidental hash collision is important, and for sha1 this rate is utterly tiny. You could hash random files for the next billions of years without finding a single one

>sha1 was broken using a dedicated supercomputer
An array of gpus that you can rent for cheap.

>and using very specific kinds of files where large parts of the file is invisible (pdfs for example).
Can apply to most image formats, binaries, archives, etc.

>Now if you were using sha1 to assure the integrity of such files
>this
So, it seems that it does use sha1 to assure the integrity of the files, interesting.

>but then again you should not have used it since 2005 when it became known that it has huge weaknesses
2009

>However here it is just used to identify a file
That the NSA might have modified.

>for that porn movie you are about to download from Retroshare
So, it is useless for anything serious and you are better off using bittorrent.

>In this context only the accidental hash collision is important
You assume that the network is trustworthy. Here is an attack scenario: you are trying to download a 10GB file and one of your peers sends incorrect data, either intentionally or by mistake. You will have to download the whole file again.
Instead in a proper protocol one would use merkle trees or some other form of hashing in order to make sure of the integrity of each part of the file.

here, I'm not , however I still see 0 reason to use decentralized encrypted network that uses algo with a known hole in it. You can't use it in a case you're a serious dissident or whatever and just fucking around seems pointless anyway.

>An array of gpus that you can rent for cheap.
No not at all for cheap and it took them a long time.

>Can apply to most image formats, binaries, archives, etc.
Not compressed archives or binaries

>So, it is useless for anything serious and you are better off using bittorrent.
If you were actually competent and not a semen addicted trollfaggot, you would know that BT also uses sha1.

>You assume that the network is trustworthy. Here is an attack scenario: you are trying to download a 10GB file and one of your peers sends incorrect data, either intentionally or by mistake. You will have to download the whole file again.
Instead in a proper protocol one would use merkle trees or some other form of hashing in order to make sure of the integrity of each part of the file.
Again your lack of clue and refusal to do so makes me want to strangle your over the internet:
Read retroshare.sourceforge.net/wiki/index.php/File_transfer_protocol

serisously, are you 13?

you too, see above: in this context this is not a hole. Particularly since you are communicating with nodes that you first have to manually add, contrary to BT where you are forced to take data from any nodes with the chunks you want.

You can also upvote or downvote nodes based on their behaviour (this is done using PKC signatures).
You too: read the fucking links already. this is supposed to be a technology forum, not the special ed school.

So this is like syncthing, but much bigger with social networking and all that?

>No not at all for cheap
For very cheap.

>and it took them a long time
A year, and it won't get slower.

>Not compressed archives or binaries
Many places to hide shit in them.

>If you were actually competent and not a semen addicted trollfaggot, you would know that BT also uses sha1.
The magnet links in bt contain the hash of the torrent file. The torrent file contains the individual hashes of each chunk.

>Read retroshare.sourceforge.net/wiki/index.php/File_transfer_protocol
Done so, it seems to agree with me.

I still have 0 idea why I would use it.

As a normal person, I have no reason to use anything decentralized or encrypted at this scope. And if I was a dissident I wouldn't use a network relying on ages old crypto. So what IS the point?

>Particularly since you are communicating with nodes that you first have to manually add
What is the point? Seems bad

>syncthing
Idk what that is, is it something like zeronet?

yeah it has social networking which is also completely distributed and serverless.

Just installed it, it looks really polished and seems to have tons of features, especially since its only 2 years old. awesome.

>For very cheap
>A year, and it won't get slower.
you just dont quit do you, does it not hurt to have your foot this deep in your mouth?
1 year of fulltime running a massive GPU cluster cannot be cheap even if you only have to pay the electricity bill.

>Many places to hide shit in them.
I take: what is entropy for 40 shannon-bucks

>The magnet links in bt contain the hash of the torrent file. The torrent file contains the individual hashes of each chunk.
and the algorithm for those chunks is again the sha1 algorithm.
Check and mate!

>Done so, it seems to agree with me.
clearly not.
At least pretend.

1. beause its cool?
2. because its nice to know that no one can take down your stuff no matter how hard they try
3. its a nice integrated solution, no need for 10 different packages.

no its a security feature

>join my CP sharing network
how about you fuck off

No, and already answered:

>1 year of fulltime running a massive GPU cluster cannot be cheap even if you only have to pay the electricity bill.
You can rent it for cheap.

>I take: what is entropy
Something irrelevant to the discussion.

>and the algorithm for those chunks is again the sha1 algorithm.
Yes, did I claim otherwise?
My problem from the start was that this crapware used sha1 to hash the whole file.

>clearly not.
Did you even bother to read it?
Fucking troll.

>no its a security feature
It protects you from what exactly?

>all this FUD and normalfaggotry in this thread
Hello NSA

This
OP is a shill

No, the shills are the ones who are advocating against an open-source project offering an encrypted, decentralized network.

In other words: fuck you shill.

>The shills are the ones who argue against a badly designed honeypot project
lol k, nice try nsa

>everything that provides privacy is a honeypot
Literally nsa tactics.

>You can rent it for cheap.
Look up the prices on AWS then

>Something irrelevant to the discussion.
What is theoretical computer science?

>My problem from the start was that this crapware used sha1 to hash the whole file.
No, dont you wiggle out of this: you claimed that it was insecure because sha1 has been broken.

>It protects you from what exactly?
from what you described in your other posts: malicious files and chunks of files being sent your way.

>11 year old software
>developed with privacy in mind
>FOSS
>used by thousands
yeah but Im a shill and RS is a NSA honeypot.

seriously, the average IQ on this board could freeze Nitrogen...

this.

fuck off and die

>putting words in my mouth
nice try

>privacy
>he didn't read
A literal honeypot. Nice try agent.

>NSA does not use open source software that has been developed for 11 years.
github.com/NationalSecurityAgency/qgis-shapetools-plugin

I'm not putting words into your mouth, you saying this is a honeypot without providing an alternative, you are literally one of those faggots that yell 'honeypot' under every privacy oriented software. Name a better alternative if that's not the case.

If someone had a Retroshare with alot of Hentai, I'd be all game.

Not interested in books and shit though.

>What is theoretical computer science?
The field of my degree. What are you trying to meme?

>you claimed that it was insecure because sha1 has been broken
Never did so.

>malicious files and chunks of files being sent your way.
Because they did not bother to implement a sane system to check for file integrity? That would be much better than blindly trusting third parties.

>he ignored the part where I rekted him
So, do you admit that you were wrong when you claimed that this protocol does not hash the whole files with sha1 directly, huh?

FUD

>you saying this is a honeypot without providing an alternative
Nobody asked me.

>you are literally one of those faggots that yell 'honeypot' under every privacy oriented software
Yeah, simply because I criticise a single shitty attempt at it, right?

>Name a better alternative
Freenet, GNUNet, IPFS, BT (the last 2 can be used over tor and/or i2p)

Yeah, yell FUD without any argument. This ain't gonna work nsa.

It doesn't work. I installed it on Gentoo and after creating a user, I try to log in and it works, but it comes up with the Retroshare splash screen. Then that disappears and no GUI appears. It shows up fine on the console (doesn't report any error), but I can't use it if I can't see it. Stops here:
bdNode::setNodeDhtMode(768), origFlags: 0
bdNode::setNodeDhtMode() newFlags: 768
p3BitDht::setRelayMode(17)
bdNode::setNodeDhtMode(4096), origFlags: 768
bdSpace::clean_node_flags(524288)
bdNode::setNodeDhtMode() newFlags: 4864
Found plugin /usr/lib/retroshare/extensions6/libVOIP.so
Loading plugin...
Loading plugin /usr/lib/retroshare/extensions6/libVOIP.so
-> hashing.
-> hash = 7a0c5790fd868079fa7c8e0aafa0e9f5fd666937
Local changes in trust database. Writing to disk...
Done.
and then says nothing else.

so this is how people still get busted for "P2P File sharing"

hi iyra

honeypots only work in a client-server model, more precisely in a one to many configuration, never in a pure p2p topology with manually approved peers and strong cryptography.

They do not use it AS HONEYPOT you aids-ridden catamite!

its like im trying to teach apes here!

just ignore him, he is either clinically retarded or another troll

>The field of my degree. What are you trying to meme?
Then you must be Pajeet from Streetshit-U or another diploma mill if you do not understand the relationship between free entropy and embeddable or changeable information in a piece of data

>Never did so.
Here:
>Sha1 was already proven to be broken and you can make two files with the same sha1 string. Obviously that will get even easier as CPUs / GPUs improve. So sha1 should just die and not be trusted.

>Because they did not bother to implement a sane system to check for file integrity? That would be much better than blindly trusting third parties.
What the hell else do you want but a combined SHA1-CRC check?

this

>Freenet, GNUNet, IPFS, BT (the last 2 can be used over tor and/or i2p)
Again your retardednes shows: First two yes, latter two provide zero privacy at all, they are purely for distributing files as fast as possible.

>gentoo
I have already a suspicion where your problem could lie.
Google for a gentoo specific manual, im on Mint.

No this is how you avoid just that, see above about the "hand aproved peers" part for the reason why.

>proves his argument is incorrect
>starts calling you names
man Sup Forums is spilling out hard today
somthing happend there today?

>Then you must be Pajeet from Streetshit-U or another diploma mill if you do not understand the relationship between free entropy and embeddable or changeable information in a piece of data
The irony.

>Here:
>>Sha1 was already proven to be broken and you can make two files with the same sha1 string. Obviously that will get even easier as CPUs / GPUs improve. So sha1 should just die and not be trusted.
Not me. You must be a real shitter in order to confuse us two.

>What the hell else do you want but a combined SHA1-CRC check?
Don't make me repeat myself please. I talked about it a few posts above.

>this
Nice circle-jerk

>latter two provide zero privacy at all
Which is why I mentioned
>(the last 2 can be used over tor and/or i2p)

I was mildly interested until I saw OP acting like a dumb faggot ITT.

Fuck off shill

>Not me. You must be a real shitter in order to confuse us two.
right, nice try.
Coincidentally in this small thread there are two people who have no idea about sha1.
makes perfect sense...

>Which is why I mentioned
>(the last 2 can be used over tor and/or i2p)
You might as well have mentioned the WWW because it can be used over tor too.
head->deak

well you should see the kinds of subhumans im forced to deal with in this thread.

I mean I start talking about distributed message boards and they end up misunderstanding what the flaws of sha1 mean for BT. And some cuck seriously argueing that 1 year is "fast" and 1 year of electricity for a gpu cluster is "cheap"
And not even understanding a damn thing about entropy.

>there are two people who have no idea about sha1
Only one person in this thread has no idea about sha1: you
Quite ironic, considering that you admitted that we were two different people here >You might as well have mentioned the WWW because it can be used over tor too.
Not a peer to peer file sharing service.

>they end up misunderstanding what the flaws of sha1 mean for BT
What?

>And not even understanding a damn thing about entropy.
Entropy is irrelevant to everything that was posted in this thread, please stop posting random words that you have no idea what they mean.

You still haven't replied to any of my actual arguments on why this protocol sucks, instead you insist on trolling instead.

I actually got interested due to this shilling against it. Will install it out of spite.

Might be worth it to just shift from Sup Forums to retroshare to avoid the retards.

So is it just filled to the brim with polfags like you? If so, I'll take a pass.

>muh Sup Forums boogeyman
It's ok, we don't want you leftkikes anyways.

>This also strongly limits anything illigal like CP as those IDs will be downvoted a lot.
>tfw loli is also illegal
>tfw loli will also be downvoted to hell
nice censorship

Try again. I just don't like Zionists who support crypto-Jews like Sup Forumsfags.

Enjoy your shitty protocol and enjoy having to download the same file 100 times because the hash does not match.

>enjoy having to download the same file 100 times because the hash does not match
yeah just like in bittorrent, eh nsa

>I have no idea how bittorrent works
--you

im not from pol you cocksucking kikeloving mexican cuck!

[ ] I have understood how hashing works
[x] I am still a clueless retard who thinks ricing out his case makes him a computer scientist

It works using the very thing you criticize. It seems you've got entangled in your own web of shilling.

>I have no idea how hashing works so I will project my inability to understand on people that dislike my favourite piece of software
--you

You either have no idea how bittorrent works or you have no idea how this protocol works.

>being so anally devastated because you can't have your pedo drawings in a certain network

You're one to call someone retarded when you fail basic English and reading comprehension even when it's clearly spelled out for you you fucking imbecile.

I may have misunderstood cryptography, but you can't even keep up with a conversation, congratulations.

>phoneposter

This is pretty neat. Is there anything worth downloading from there?

you claimed that you will have to redownload the whole file because of one fautlty block.
This claim is evidently false as anyone who has read the page about the RS file transfer protocol will understand (its linked in one of my posts).
So instead of getting worked up, follow the link and read the page.

Also phoneposter: HAHA

not that much to be honest. I have my 80k books, I saw others who had movies, pictures, software and mangas but if you want only filesharing, bittorrent is probably best for you.

Im "shilling" it because of the distributed social features. And also because I thought that Sup Forums would like to discover new and interesting software with me (well just look that the thread to see how wrong I was), after all I only started using it yesterday.

...no, that was the other guy you idiot. Do I really need to spoonfeed you everything so you can understand the basic concept of a conversation?

I seriously dont give a fuck which one of the trolls you are, I respond to whatever post I quoted.

>Sup Forums server was the only place that had that data.
you DO know there are archives right?

This looks awesome and I have no idea how I haven't seen it before. I'm a huge nerd for decentralized things.

Add me OP:

pastebin.com/jpZ3qauj

>I'm arguing something you never said and I don't give a shit I look like a retard while doing so

Sounds pretty spot on

as well as those weird fake forums that scrape Sup Forums posts and add random names while presenting them as a functioning forum full of people.

that can't possibly be benign. Many people are archiving Sup Forums posts.

I like retroshare but I don't have friends to use it. Actually I don't have any friends at all.

I really like it, even though it has it flaws. Very easy for the user thanks to its js interface