<div dir="ltr">Lets be super clear here. We're not building a general use ISP. It's an experimental open network. We'll provide the best integrity controls we can, but there are no promises and every participant should know exactly what they're getting in to.</div>
<div class="gmail_extra"><br><br><div class="gmail_quote">On Fri, Feb 22, 2013 at 2:12 PM, The Doctor <span dir="ltr"><<a href="mailto:drwho@virtadpt.net" target="_blank">drwho@virtadpt.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<div class="im"><br>
On 02/21/2013 05:05 PM, Benjamin Krueger wrote:<br>
> We really need to think long and hard about whether it's a good<br>
> idea to connect this network to the internet. I am still<br>
> unconvinced of the value of this proposition, and it causes a great<br>
> many extremely difficult technical and legal challenges.<br>
<br>
</div>In the US, unless the account you have with a broadband ISP<br>
specifically permits connection sharing (especially public connection<br>
sharing), they may threaten to kill your access unless you take the<br>
gateway to the mesh network down. They may also decide to drop you as<br>
a customer entirely and be done with you.<br>
<br>
Additionally, there are several states that have laws against doing<br>
just this. Community wireless networks run into this problem a lot<br>
and not a few have been shut down here. It was a common complaint<br>
from USian projects at the last International Summit for Community<br>
Wireless Networks (this link was referenced a lot during the "State of<br>
wireless" roundtable discussion:<br>
<a href="http://www.cybertelecom.org/broadband/muni.htm" target="_blank">http://www.cybertelecom.org/broadband/muni.htm</a>).<br>
<div class="im"><br>
> If nothing else, it is a distraction for us today. If we really<br>
> want to explore that feature of the network, we should do it in a<br>
> future phase after the network is already established. In the<br>
> meantime, we can block<br>
<br>
</div>That would be a good strategy. In addition, you will want to have a<br>
large community of active users to help you make a case for not being<br>
shut down if it comes to it.<br>
<div class="im"><br>
> traditionally encrypted ports on the network as standard practice;<br>
> no need for one-off changes from end-users.<br>
<br>
</div>The problem there is that you will then be forcing users to connect to<br>
online services insecurely. Passive attackers will be able to easily<br>
record authentication credentials to webmail services (which are<br>
increasingly being used as authentication providers by other services<br>
- - Google Mail comes to mind immediately), banks, and other sites.<br>
<br>
You might be incurring additional liability if you set that policy.<br>
You might also want to reconsider setting up network gateways for this<br>
reason.<br>
<br>
- --<br>
The Doctor [412/724/301/703] [ZS]<br>
Developer, Project Byzantium: <a href="http://project-byzantium.org/" target="_blank">http://project-byzantium.org/</a><br>
<br>
PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F DD89 3BD8 FF2B 807B 17C1<br>
WWW: <a href="https://drwho.virtadpt.net/" target="_blank">https://drwho.virtadpt.net/</a><br>
<br>
"I'm prophetic, not infallible." --Mr. Morden<br>
<br>
-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v2.0.19 (GNU/Linux)<br>
Comment: Using GnuPG with undefined - <a href="http://www.enigmail.net/" target="_blank">http://www.enigmail.net/</a><br>
<br>
iEYEARECAAYFAlEn7T0ACgkQO9j/K4B7F8GNJQCeJSnodhgNVAo0OG+UUs4Dhj4z<br>
Q6EAoKoHM9VH2aPdOkFW6LWPIl35y1Zt<br>
=R4B0<br>
-----END PGP SIGNATURE-----<br>
<div class="HOEnZb"><div class="h5"><br>
_______________________________________________<br>
PSDR mailing list<br>
<a href="mailto:PSDR@hamwan.org">PSDR@hamwan.org</a><br>
<a href="http://mail.hamwan.org/mailman/listinfo/psdr_hamwan.org" target="_blank">http://mail.hamwan.org/mailman/listinfo/psdr_hamwan.org</a><br>
</div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br><div dir="ltr">Benjamin<br></div>
</div>