[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Integrating PGP 3.0 Library with INN



Adam Shostack <[email protected]> writes:

> Igor Chudov wrote:
>
> | Has anyone thought of integrating PGP 3.0 library with INN?
> |
> | I was thinking along the lines of having PGPMoose support built
> | right into INN: if an arriving article is posted to a moderated
> | newsgroup for which a PGP key is available in the INN's keyring,
> | INN verifies existence and correctness of a PGP signature.
>
>
> | If moderators choose short enough keys (512 bits for example), this
> | verification will not take any significant amount of CPU time.
>
> Its my experience that at full feed sites, there isn't enough cpu to
> do this.  A p-90 can get ovewhelmed pretty easily trying to keep up
> with the load.  Trying to look into the body of an article means at
> least a few hundred more ops per article.  You could do this on a leaf
> node.  However, you cut the reliability of the system by adding things
> to go wrong.  Better to have a scanner that checks specific moderated
> groups after INN has deposited the articles.

It's wasteful to run this checking at every Usenet node.

It would be more efficient to run PHPMoose checking at a few trusted sites
and have them issue NoCeMs for articles that fail the check.

---

<a href="mailto:[email protected]">Dr.Dimitri Vulis KOTM</a>
Brighton Beach Boardwalk BBS, Forest Hills, N.Y.: +1-718-261-2013, 14.4Kbps