Author

Topic: Message (Read 1859 times)

legendary
Activity: 1526
Merit: 1134
November 24, 2013, 06:33:18 PM
#3
SSL doesn't mean a whole lot unless you're going to institute some kind of central control over who gets to run nodes. I mean, if the NSA turns up and wants to run 10,000 electrum servers, who would tell them no?

However, if Electrum is now implementing the real SPV model where it's asking a lot of different servers to give it the chain, verifying that chain, selecting the hardest one it can find etc then I agree it shouldn't have a warning anymore, although at that point I wonder why they bothered re-inventing the P2P protocol when they could have just extended it.
staff
Activity: 4242
Merit: 8672
November 24, 2013, 06:14:28 PM
#2
Worse, multibit just connects to whatever nodes are returned in a DNS query, which is easily spoofed.

If electrum really has multiple servers plus SSL authentication working now then I think its easily arguable that its security is strictly superior to multibit.
newbie
Activity: 4
Merit: 0
November 24, 2013, 06:08:12 PM
#1
Message
Jump to: