Vulnerability 2 [FIXED]

Valmond to

TenfingersEnglish · 24 days ago

A second vulnerability have been found:

V2: A bad state actor can know that you shared a specific link file, even if you do not publish your IP:PORT address in that specific link file, if

The bad state actor has the link file as the link file contains your public RSA key.
One day gets access to any other of your shared links, as they contains the same RSA key.

Solution: Use one specific key pair per file

This has been implemented, but not yes published. It will be published when V1 has been patched.

You must log in or register to comment.

Chat

Tenfingers

tenfingers

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !tenfingers@lemmy.mindoki.com

The tenfingers protocol permits sharing of any kind of data between you and anyone else ( Whitepaper )

Your web-site, documents, music, a chat, anything digital can be shared!

It’s secure, resilient and makes your information available worldwide, or just to a selected few!

The incentive that drives the Tenfingers Protocol is not money, but sharing!

The more you share, automatically, the more you are shared!

Some tidbits about the protocol:

It permits sharing with your computer turned off
Uses strong encryption (4kRSA & 256AES)
Resilient to attacks
Modify shared data without the need to re-distribute the link
Modify your (IP) address without the need to redistribute the link
Strong incentive to share
No Crypto Currency or similar

This is all inbuilt in the protocol, there is no central power controlling anything, and everything is free!

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1 user / day
1 user / week
5 users / month
5 users / 6 months
2 local subscribers
13 subscribers
8 Posts
2 Comments
Modlog

mods:
Loulou