Basiley
Newbie
Offline
Activity: 42
Merit: 0
|
|
June 13, 2011, 02:59:22 PM |
|
"is see no problem in problem" is just as hilarious as newspapers/e-news. its could bring interesting alternative to UPnP itself, as long as HTLM5-specified "WebServices" will fixed/updated and re-enabled back. and plenty of web-browser applets for similar purpose will re-surface quickly. for quick examples, check some Opera Unity widgets.
|
|
|
|
|
|
According to NIST and ECRYPT II, the cryptographic algorithms used in
Bitcoin are expected to be strong until at least 2030. (After that, it
will not be too difficult to transition to different algorithms.)
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
Theo
Newbie
Offline
Activity: 22
Merit: 0
|
|
June 13, 2011, 04:15:39 PM |
|
I have no statistics on routers and which % have UPnP enabled by default. Do you?
We did a test with 40 random NAT users in Germany, out of which 10% had UPnP enabled.
|
|
|
|
Man From The Future (OP)
|
|
June 13, 2011, 05:00:29 PM |
|
The important part there is Germany. Try, for example, in Britain, and almost any BT users will have it enabled, as their "Home Hub" routers have it by default.
|
|
|
|
ShadowOfHarbringer
Legendary
Offline
Activity: 1470
Merit: 1005
Bringing Legendary Har® to you since 1952
|
|
June 13, 2011, 05:03:46 PM Last edit: June 13, 2011, 05:21:45 PM by ShadowOfHarbringer |
|
This doesnt help or hinder bitcoin in anyway, but in the future you are far less likely to find a router that supports it inherently.
"the future"? You mean when IPv6 has been introduced everywhere and UPNP is no longer needed? I don't think that IPv6 will invalidate NAT and therefore UPNP. There are many people who like to have a closed network behind a NATed firewall. I belong to these people. I know a little about network security, and nobody can tell me that giving IPv6 address to every machine in the house is safe. Because it isn't. The NAT-way, where all machines in a subnetwork are protected by additional firewall, is simply better.
|
|
|
|
Nesetalis
|
|
June 13, 2011, 05:09:38 PM |
|
you dont need nat to run a firewall. For instance, my network we have 6 IP addresses, 3 of which go to specific computers, 2 go to internal nats to rout to the individual computers, but it is all behind a single firewall.
Nat is not necessary.
|
ZOMG Moo!
|
|
|
ShadowOfHarbringer
Legendary
Offline
Activity: 1470
Merit: 1005
Bringing Legendary Har® to you since 1952
|
|
June 13, 2011, 05:25:10 PM |
|
you dont need nat to run a firewall. For instance, my network we have 6 IP addresses, 3 of which go to specific computers, 2 go to internal nats to rout to the individual computers, but it is all behind a single firewall.
Nat is not necessary.
You are probably correct, however in many cases still like the NAT-way better than single IP for everything. There are some small specialized devices that simply don't neet their own external IP address. Also, there is the security-by-obscurity concern. Nobody needs to know how many devices exactly is in my network.
|
|
|
|
Nesetalis
|
|
June 13, 2011, 05:45:55 PM |
|
why shouldnt a small device have its own IP? there is absolutely no reason to add the extra complexity of a nat. The only times when something like that is useful, is when you are letting two isolated networks touch, say, an intranet in a buisness and the internet. IPv6 allows enough addresses for every computer, toaster, person and cellphone to have a handful of IP addresses. The only reason to put up a nat, is if you are running a separate network, which yes there are reasons for it, but the average user would never need or want a NAT.
|
ZOMG Moo!
|
|
|
ShadowOfHarbringer
Legendary
Offline
Activity: 1470
Merit: 1005
Bringing Legendary Har® to you since 1952
|
|
June 13, 2011, 07:26:42 PM |
|
IPv6 allows enough addresses for every computer, toaster, person and cellphone to have a handful of IP addresses.
But why would i want my toaster to have an external IP address ? This is just potential another unnecessary security risk. I want all devices in my network (except servers) to be completely invisible from outside. I do not want _ANY_ interaction between the outside world and these devices. Security concerns. Therefore i find "ip-for-your-toaster" idea foolish.
|
|
|
|
Nesetalis
|
|
June 13, 2011, 07:48:18 PM |
|
again, firewall != nat. your home network would be behind a firewall, so no risk, unless you have a really bad firewall.
|
ZOMG Moo!
|
|
|
Man From The Future (OP)
|
|
June 13, 2011, 08:30:09 PM |
|
IP for me toaster, why? I hardly want to make toast in my house while away from my house...
|
|
|
|
Basiley
Newbie
Offline
Activity: 42
Merit: 0
|
|
June 13, 2011, 08:51:07 PM |
|
actually, "larger address space" is only one [from many]IPv6 advantages over IPv4, like transparent/seamless encryption[say buy-bye to IPSec armchair], hierarchy architecture. point is both UPnP was ALREADY abused by feds and corporate spies for intel gathering, for years, like they do with flash traffic or binary downstram.
|
|
|
|
Schleicher
|
|
June 14, 2011, 06:50:25 AM |
|
But why would i want my toaster to have an external IP address ? This is just potential another unnecessary security risk.
Well, nobody is forcing you to assign global addresses to all devices. In ipv6 you have also "unique local adresses" that only work locally: http://en.wikipedia.org/wiki/Unique_local_address
|
|
|
|
jgarzik
Legendary
Offline
Activity: 1596
Merit: 1091
|
|
June 14, 2011, 06:58:52 AM |
|
I see a whole lot of handwaving in this thread, and very little substance. But Mike makes a relevant point, UPnP is a de-facto standard that's used by virtually all p2p software. The fact that it's even an option puts Bitcoin behind apps like Skype in terms of UI simplicity. It's definitely worth enabling it by default, at minimum.
The relevant question to me is: what widely used software enables UPNP by default? If UPNP is enabled by default on widely used software, as your post seems to indicate, then it seems reasonable that bitcoin may follow suit. I know plenty of P2P software supports UPNP, but what about default-on?
|
Jeff Garzik, Bloq CEO, former bitcoin core dev team; opinions are my own. Visit bloq.com / metronome.io Donations / tip jar: 1BrufViLKnSWtuWGkryPsKsxonV2NQ7Tcj
|
|
|
theymos
Administrator
Legendary
Offline
Activity: 5194
Merit: 12974
|
|
June 14, 2011, 07:07:12 AM |
|
The only software I know of that enables UPnP by default actually requires the port to be open in order to work properly. Bitcoin does not. I don't think it's right for the program to donate resources by default.
In the future perhaps there will be a first-run screen asking, "Do you want to help the network?". If the user accepts, run UPnP and become a full node / hub.
|
1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
|
|
|
|