On 1/4/12 17:07 , IƱigo Ortiz de Urbina wrote:
As the survey shows, and as Simon just stated, I do not think that security through obscurity is the way to go, provided the nature of this volunteering measurement platform. However, it is not all that simple, IMHO. I particularly support the idea of releasing the source code gradually, even under temporary NDAs if necessary, in order to improve the security of probe or controllers by getting the code audited by more people.
Doing stuff under NDA is of course something completely different.
Enhancing the system by introducing more features (different traceroute algorithms and options) or polishing the existing ones (IPv6 support, which is currently limited by the busybox version probes are running atm, IIRC) is something possible and desirable, if we dont forget that its Atlas itself what has to improve.
We are not limited by any code we already have. In particular, we are not saying: we cannot do this or that because it is not in busybox. The probes are out there and we want to make the most of them. So if you have any ideas on what kind of measurements are worth doing that we currently cannot do, please let us know, in particular, make sure that Vesna or Ann keep track of what you want. :-)