We've had discussions about using anonymity software on the nodes before. One of the major reasons for it is to protect the node owners liability (eg. if one of their users abuses the system they can't get in trouble for it). However since we also want to build a reliable and scalable solution it means we need a way of removing abusive patterns of use, as you can imagine this has the potential to get pretty tricky. One good solution is ExtrusionDetection (or Reverse IntrusionDetection), the big problem we have with that right now is that there's no central aggregation point where an ExtrusionDetection box could go and most of the leaf nodes are either commercial AccessPoints or old hardware like FreeGeek boxes, neither of which have enough CPU power to run something like snort.

Here's a list of some software that might be interesting.

• Cebolla - Written by Portlander Zach Brown

  • http://www.zabbo.net/cebolla/

• Freedom - From Zero Knowlege Systems. It was OpenSourced once ZKS stopped trying to sell it, but apparently their release is still pretty rough around the edges and I'm not sure if anyone has actually gotten it working.

  • http://opensource.zeroknowledge.com/

• Arbitroweb - Web anonymising proxy. Not nearly as sexxy as Freedom or Cebolla but might be an easy first step.

  • Note From Author of Arbitroweb (Joakim Erdfelt): Current version (0.6) provides little protection for the end user when javascript is enabled in the end users browser. Malicious sites can exploit this flaw. (See: Cross Site Scripting Attack)

  • Official Project Page: http://sourceforge.net/projects/arbitroweb/

  • Live Arbitroweb: http://anon.luniac.com/

• Mixmaster - An encrypted anonymous remailer.

  • http://www.obscura.com/~loki/remailer/

[CategorySoftware]