Peer-to-peer technology from Hacktivismo, which may become the Internet's next killer app, allows secureand anonymousInternet activity. eWEEK Labs assesses the potential and the threat.
The Six/Four System is peer-to-peer technology that makes it possible to carry out almost any Internet activity securely andmore importantly, for all sorts of reasonsanonymously. The Hacktivismo system, or anything based on it, just may become the Internets next killer app.
Many who will be affected by Six/Four might use the term "killer" in another sense of the wordfrom record industry executives fearing a file sharing network where they cant see whos sharing what, to law enforcement personnel tracking illegal activity, to oppressive governments attempting to filter information to its citizens.
This last is the reason that Hacktivismo created Six/Four. An offshoot of the Cult of the Dead Cow hacker group, Hacktivismo is dedicated to preventing state-sponsored censorship of the Internet. It created the Six/Four System, which is named for the June 4, 1989, date of the Tiananmen Square massacre, to make it possible to access information anywhere on the Internet and put a big hole in things like Chinas Internet firewall.
eWEEK Labs evaluated a beta version of the developers edition of the Six/Four System, which became available this week, and found that Hacktivismo hasnt quite achieved its goals. The peer-to-peer network, which relies on many node clients with some trusted peers that handle routing, is understandably very small right now. Also, the Six/Four Systems capabilities are very raw.
The main application in the beta we tested was the Web proxy. Once we set up Six/Four on a Red Hat Linux system, we were able to define our local host as a proxy in our browser, then use the Six/Four network to anonymously go to Web sites. The process worked much like the old SafeWeb site.
This will be useful to those who want or, due to restrictive governments or ISPs, need to surf anonymously. However, in its current beta form, Six/Four will likely be too difficult for novices to install and use effectively.
Web surfing just scratches the surface of Six/Fours capabilities. It works with any TCP or UDP application, so a large number of applications could use itall it would take is a simple system call to make use of Six/Four with messaging, collaboration, file sharing and other applications.
And thats exactly what will make Six/Four a security problem. Black-hat types could use Six/Four to break into networks and systems without fear of being tracked.
Six/Four does have some safeguards against such usage: Trusted peer administrators must apply to Hacktivismo for a certificate that client peer nodes will use to identify legitimate trusted peers. At that point, trusted peers can block specific services and protocols that may be used maliciously.
The beta of the developers edition of the Six/Four System can be downloaded at www.hacktivismo.com
. Since the application includes munitions-level encryption to download the code, you must first state that you are not in or a citizen of Cuba, Iran, Iraq, Libya, North Korea, Sudan or Syria.
Also, you must select the option that says you are not on the Commerce Departments Denied Persons list. Finally, you must select that you are a certified patriot, which basically means you selected "No" for all of the above.
eWEEK Labs East Coast Technical Director Jim Rapoza can be reached at email@example.com.
Most Recent eWEEK Labs Reviews:
Search for more stories by Jim Rapoza.