Discovery resiliency / DHT

Manu · March 20, 2016, 2:43pm

How ? You can’t know which is the syncthing public key in the value.

So you will know that this person want this key but you can’t know the owner of this key and you can know that this person created this key but you can’t know which is the syncthing’s id in the value.

In addition, you can see a very very small part of the DHT so you can’t see the key/value of a person.

AudriusButkevicius · March 20, 2016, 3:29pm

You can easily get the public key by trying to connect to port 22000 of the guy who creates the key. Size doesn’t matter much, if you are an attacker with some budget, you can probably spin up many VM’s and own more than 50% of the key space.