Yes. I worked with Nick Mathewson on simplifying the MixMinion API so
that it would be more convenient for other Python code to use it as a
transport layer.

Just to show you what I'm talking about, I'll attach the last version
that I sent to Nick, but be aware that the API that Nick eventually
decides to support will be rather different from this one. Also I'll
Cc: him.

Nick: please see this thread: [1] for context.

Regards,

Zooko

[1]
http://lists.mnetproject.org/pipermail/mnet-devel/2004-July/003429.html

When one mixminion node talks to another it doesn't use SMTP, but rather
a MixMinion Transport Protocol (MMTP). I don't know for sure what it
adds beyond link encryption and padding.

If you had a middleman server (e.g. doesn't except mail directly,
doesn't deliver mail directly) your node would only talk MMTP to the
rest of the world, so you could say you don't do email at all.

Email's are just big packets anyway :).

My problem with Mnet-over-Mixminion is the FEC algo that we use. The
largest message you can have in a Mixminion net is 2kb (I think). To
reply to that you have to use a Single Use Reply Block that's around 2k.
Using the current FEC (or any other FEC not covered by the Low Rate
FEC patent) will making fitting a file of a large size will be a mega
CPU intensive operation. (I'm hoping I have that wrong.)

icepick

Dear p2p-hackers:

Someone wrote to the mnet-devel mailing list and wanted to know how
Mnet compared to similar open source p2p systems, because he wanted to
work on one of them. You can read the <a
href="http://lists.mnetproject.org/pipermail/mnet-devel/2004-July/
003429.html"> thread so far </a> in which Kademlia, eDonkey, and
BitTorrent are dismissed and GNUnet, Circle, MixMinion, and Tor
introduced.

In writing the following response, I thought it was of sufficiently
general interest that I should Cc: it to p2p-hackers.
Beats me. I guess nowadays it doesn't, anymore. Anyway, it isn't
exactly the same service. Circle doesn't offer anonymity, for example.
(Although <a href="http://thecircle.org.au/about.html"> the Circle web
page </a> confusingly tells me that it offers anonymous "news" but not
anonymous "file-sharing".)
I would say all four are similarly "mature". Freenet and Mnet are the
oldest (both began in 1999 or so, if you count Mnet's ancestor Mojo
Nation), but the newer GNUnet and Circle probably benefited from
starting with newer ideas and a fresh codebase.

Mnet v0.7 has newer, simpler ideas and a fresh codebase relative to
Mnet v0.6, which had simpler ideas and a fresh codebase relative to
Mojo Nation. :-)

I think you should try picking up one or more of these projects and
then report back about how easy or hard it was to pick up, or other
observations you have. Trying it out is probably a better way to
decide which you like than talking about it is.

There are some important architectural differences. Mnet is
(currently) strictly a "publish/download" model of shared decentralized
storage, as is Freenet. GNUnet offers the option of "file-sharing" in
which you can store your own file on your own hard drive and also make
it available to peers. I don't know about Circle. There are lots of
other differences too, of course.
I rather disagree. These four projects are exploring different parts
of the design space. Any one of them is quite likely to fail (or at
least to lose a lot of time) by attempting to colonize parts of the
design space that turn out to be inhospitable. Also, these various
parts of the design space might prove to be good for some uses but bad
for other uses. Finally, inasmuch as these are all public, Free
Software and non-patented projects, they can learn from one another's
successes and failures. I say the more independent explorers the
better! Happily, there are a lot of them. I'm sure there are at least
half a dozen other similar projects which I don't even know about.

Also, open source projects that are primarily exploratory probably
don't scale up well to very many developers. For example, I perceive
that Freenet has suffered more than it has benefited from its
popularity among would-be helpers. In the entire four year history of
Mojo-Nation-then-Mnet as an open source, volunteer project, we've had
eight people who have contributed lots of work over a long period of
time, plus fourteen people who have contributed enough work to be
credited in <a href="http://mnetproject.org/repos/mnet/CREDITS"> the
CREDITS file </a>, plus uncounted hundreds of people who offered
suggestions, criticism, or encouragement.


Anyway, I'm quite confident that having an argument about which Free
Software decentralized filesystem(ish) project is best would waste a
lot of time and energy and would result in all projects progressing
more slowly rather than any project progressing faster.


Regards,

Zooko

I'm going to reply but send my reply to the p2p-hackers mailing list.
--Z

I'm going to move this discussion from mnet-devel to p2p-hackers, even
though p2p-hackers has grown to 724 subscribers and it is intimidating
to disturb the peace of so many e-mail addresses. Because what is this
the list for, then, if it is so big, and so full of prestigious
researchers, that no one dare post to it? --Zooko
seberino:

This is a good question! (By which I mean: I have to actually think in
order to answer this one.)

I'm thinking about the difference between "censorship resistance" and
"anonymity".

Mnet current attempts censorship resistance without anonymity. An
attacker who wants to delete a file from Mnet needs to overcomes the
erasure coding and the tendency of nodes to replicate data blocks.

Freenet also includes those two defenses, plus it attempts to hide the
identity of the server from the attacker.

MixMinion provides two kinds of anonymity: sender anonymity and
recipient anonymity. They are very different, because if you are going
to send a message to an anonymous recipient, you must first acquire a
cryptographic blob that enables your message to route to him without
enabling you to track him down. That's tricky! But MixMinion does a
pretty good job of it, while paying a price in increased complexity,
latency, and rates of packet loss.

In a hypothetical Mnet+MixMinion (which I'll call "M+MM") if the Mnet
nodes used recipient-anonymity then they would have the same kind of
protection that Freenode nodes have except that their anonymity would
be stronger (see below) and their communications less efficient.

Why would M+MM nodes have stronger recipient-anonymity than Freenet
nodes have? At the risk of over-simplifying, MixMinion is designed to
withstand an attacker with more points of attack, and at lower levels
of the network protocol stack. Freenet is designed to provide
anonymity against an attacker who runs Freenet nodes. MixMinion is
designed to provide anonymity against an attacker who runs many of the
IP routers than your nodes use for their Internet service (in addition
to running MixMinion nodes)

The reason that such an attacker can penetrate the recipient-anonymity
of Freenet is that he can do traffic analysis -- he can observe the
timing and patterns of messages that pass among Freenet nodes, even if
he doesn't know the contents of most of them. For example, if there is
an attacker who has packet sniffers on the right IP routers, then he
can inject a request for a file into the Freenet network by sending the
request to Freenet node 1. Then he simply watches and sees what
happens next. If Freenet node 1 sends a message back containing the
file, without having exchanged messages with anyone else in the
interim, then he knows for certain that Freenet node 1 is storing a
copy of that file. If Freenet node 1 instead sends a message to
Freenet node 2, then he has to see what Freenet node 2 does.

Anonymity researchers have developed extensive understanding of how
such traffic analysis attacks can strip away the anonymity from mixes
such as Freenet, even when those mixes use sophisticated and expensive
countermeasures which Freenet currently does not. [1]


So I think the bottom line on the question of integration versus
layering of censorship resistance is that the Freenet concept of
"anonymity as censorship resistance" can be understood as
"recipient-anonymity for the servers that store data and respond to
requests for that data". That feature could be implemented with a
separate anonymity layer as long as the anonymity layer offers
recipient-anonymity.


I would love to know if I've missed anything important in that analysis.


Even if you, seberino, still think that Freenet's integrated
filesystem/anonymity/censorship-resistance layer is the way to go, that
doesn't mean Freenet is the only current project that you can work on.
Freenet has inspired several similar projects such as AntsP2P and Mute
[2]. I haven't looked into them and know little other than that they
are new and are somewhat inspired by Freenet. There is also, of
course, GNUnet [3]. It is not new, and it does integrate anonymity,
censorship resistance, and file-system. There are also the other
systems that we have discussed before. If you've investigated some of
them and want to report on what you've learned I would love to hear it.


This is not to say that you shouldn't work on Freenet! Of course you
should. Freenet is a good project.


Regards,

Zooko

[1] http://www.freehaven.net/anonbib/
[2] http://www.infoanarchy.org/story/2004/9/23/185140/280
[3] http://www.ovmj.org/GNUnet/