search

haveno-dex / haveno

Decentralized P2P exchange platform built on Monero and Tor
https://haveno.exchange
GNU Affero General Public License v3.0
1.02k stars 113 forks source link

I2P support #751

Open kovalensky opened 9 months ago

kovalensky commented 9 months ago

Any plans to support I2P in the future?

Pheromon commented 5 months ago

I was going to open an issue about that!

Please support I2P, it is efficient and secure and unlike TOR its nodes are not run by three-letters agencies ;-)

chefnaphtha commented 5 months ago

I was going to open an issue about that!

Please support I2P, it is efficient and secure and unlike TOR its nodes are not run by three-letters agencies ;-)

tor crypto is pretty audited and battle tested. the GLOWING problem with tor is the exit nodes that allow you to connect to clearnet, which allow ssl downgrade attacks and sniffing of data. haveno does not use exit nodes in any capacity afaik, it's all hidden services, which again, are safe

Pheromon commented 5 months ago

Ok, good to know.

Anyway I was told (but I'm not able to verify) that most (stable) TOR nodes are run by them and this is enough to de-anonimize the traffic inside the onion.

Also, while TOR has been developed mostly for exit nodes, I2P has been developed for services inside the network and it works really well for that.

chefnaphtha commented 5 months ago

it's impossible to decrypt hidden service traffic because the thing that comes before .onion IS the hidden service's public key. you can not decrypt traffic unless you have the hidden service's private key

Pheromon commented 5 months ago

In fact I didn't talk about decrypting traffic, but deanonimizing the users, i.e., getting the real ip of the pc using tor

preland commented 5 months ago

I will say that I am personally interested in seeing Haveno come to I2P.

Unfortunately, I won't be able to work on it until some of the more pressing concerns for Haveno get addressed.

If we do end up going the "federation" route (which I still do not recommend), it is entirely feasible for an interested party to create a Haveno instance that runs entirely on I2P.

Federation or not though, an I2P Haveno network will likely be its own isolated thing, unless there are enough nodes running both Tor and I2P.

preland commented 5 months ago

As far as Tor goes, I don't have any gripes with it, outside of its obvious lack of scalability. Admittedly, I2P isn't much better, but at least a single popular service won't cause harm to the entire network or put strain on "exit nodes".