Topic: Please remove Bitcoin from Sourceforge.net (Read 5917 times)

bittorrent?

DHT?

you can literally share bittorrent with just a URI.

Notepad++ left them for similar reasons iirc.

Perhaps he could go to the Bitcoin World Expo in NYC tomorrow.  I'm sure plenty of people there use PGP and could sign his key.

The idea is that you would have Jeff's PGP already, and not simply download it whenever you are checking a new binary. When you get the key for the first time, as with all PGP public keys, you should not trust its validity until you are convinced it is correct. You make this decision based on several factors such as where you obtained the key, what other sources agree that this key is legitimate, the PGP web-of-trust, etc.

Jeff's key could use more signatures. Somebody make him attend a keysigning party.

Actually I do compile gcc, but not for security reasons, lol.

And you are right about it being better to provide no checkfiles then provide a false sense of security.

What you could do is also mirror http://sourceforge.net/projects/bitcoin/files/Bitcoin/bitcoin-0.3.24/SHA1SUMS.asc/download and provide a link  to http://bitcoin.org/jgarzik-exmulti.asc which an earlier post said is the right signature to verify.  Now you have not only provided a way to check your mirrored files, but that no one has changed the sf ones since you mirrored them.

I don't really get it, how can I possibly protect others when the binaries I serve can potentially be malicious and I can potentially have malicious intentions ?

Should I post checksums ? Doesn't work :
 - if I have malicious intentions the checksums will match the malicious binaries.
 - if the binaries get changed without me knowing it means that the server got compromised, the checksums shouldn't then be trusted either
 - if I post a link to SF, that won't help since some users won't be able to access it and it also could be compromised

Let's face it, if you're truly paranoid, you read the source and then you compile it. Oh wait, you'd need to compile gcc too

If you have better ideas than the couple I exposed I'm open. But I'd rather give no checksums than a false sense of security.

Lets not be so jumpy here.  I'm sure he means well.

I agree though, it has nothing to do with if you trust yourself.  It is to protect others.

It is not to protect you.  It is to protect anyone using your download mirror.   Also would help detect if someone changed it on you later etc....   how would someone who cant get to sf check your mirror?
It also would allow someone to double check that the sf binaries were not changed after you fetched them.  Has zero to do with if you trust yourself.    Would just make your mirroring service have a lot more useful by adding a link and a mirror of another small file.     Odd you are so quick to say no.

Problem Solved?

No. I trust myself. If you don't, feel free to check the binaries MD5/SHA

Would it be possible to use Code Signing to actually sing the executable themselves?  At least on Windows this would be effective as far as I know.

May want to add a link to the verification file and the signature to use to verify it.

hmm...  http://sourceforge.net/apps/wordpress/sourceforge/2011/01/27/sourceforge-net-attack-update/  they still seem to be around,  also recall issues  7 years or so back.  They also do not need to compromise sf,  just the accounts that can update the bitcoin stuff.  Hopefully it is not the same user  account that can update the binaries and change the bitcoin.org page!



The simple idea is that adding another factor makes distributing compromised binaries a lot more likely to be caught quickly.  It also gives me as a user some steps I can take to try and protect myself, rather then waiting for someone else to maybe verify it.  How often is it being checked really?  When set up properly I should at least know that it required tampering with two sites and/or two different users to spoof me. (of course I need to make sure my dns is not spoofed etc etc.... but this would still be a lot better then how it is right now)

It still all is moot though.  As the bitcoin.org site itself is hosted on sourceforge.  So even now that I know this,  I am still not protected, as you are right I can not trust the site to confirm sf is not giving me bad files, even knowing who's sig to now check.

One issue brought up was what if some government orders sf to plant a tampered binary.  They say give all those Freedoinians this binary instead.  Now  sf sets up geotargeting so they get those binaries and their version of the sf page.  Even knowing to check it with Jeff's signature, they get results that say it is ok.  Odds that the people that do check the signature are in the targeted country are also pretty low.  If the person that can check is not being targeted,  it does not matter that they can check even if they do it ever minute.

The bitcoin binaries are now mirrored and available for download on Bitcoin-Central.net

For those of you concerned about privacy and other stuff,I suggest we try mirrors based on Icelandic or Swiss servers due to good protection (Neither of these are in the EU yet so won't be subject to the monitoring of internet communications laws as such,however this is no guarantee that there won't be these types of laws in the future).I know because I live in a country that's part of the EU.

The simple reality is, if you don't already know who the trusted developers are, how could you trust who the site says should be signing it? Point is, it'd create a false sense of security if the site said who can be trusted to sign the files.

As long as somebody can verify the files as having not come from a trusted developer, the word will spread that SourceForge was hacked. That would be the end of SourceForge.

By the way, Jeff Garzik is a trusted developer.

May a bittorent distribution could be used as well?

Yeah, I probably inadvertently picked up his usage of the terms, as the first I really learned about this was talking to him at a Usenix conference.

Should be true,  but where does it show who is supposed to be signing it and the information for me to check it?  Right now if someone else signed it , or it even showed up as an unsigned file, as a user, downloading from the links on the front page, would I ever know? I still need more information from a source that is not sf to test this.

There are more attack that do make it weaker. Just no collisions yet. But I completely agree that it should not be used in new projects.

Bruce Schneier agrees with you the this counts as "broken." I am just not a big fan of that specific definition of broken since it would mean that algorithms like AES that are still quite strong would count as "broken."


Sure, you could replace SHA1SUMS.asc, but you wouldn't be able to change it without invalidating the PGP signature.