Encrypted Fileserver with Bittorrent Web Interface

mistermark writes "I built a fully encrypted (samba) fileserver with a web interface for managing torrent downloads on it. All I used is OpenBSD 3.6 and its package collection, except for the TorrentFlux-interface (which you need to install separately). Anyway, it can be built using binary packages only. I included a rough HOWTO on how to make one of these yourself."

why?

[Anonymous Coward]

Pertend I'm stupid, why would I want this?

Re:Piracy how-tos?

[Anonymous Coward]

ummm, are you a moron? Just because it says "torrent" does NOT mean piracy. There are many legitimate uses for bittorrent and many legitimate reason to want to encrypt files....put them together and what do you get? RTFA next time you fucking mpaa monkey.

Re:Piracy how-tos?

[Rakshasa Taisab]

Much is illegal and depending on your ethical belifs much more may be immoral. But do not assume one is a superset/subset of the other. Most you can propably say about it is that they intersect.

Defeats the purpose...

[Doodhwala]

So, what exactly does this accomplish? When you use Bittorrent, the protocol both downloads and uploads data at the same time (look up the tit-for-tat policy followed by BT to ensure fairness). If you were in the US, all the RIAA needs to do to sue you is download a single chunk of data from you. They don't need to break your door down and cart the computer away. So, the encryption is moot anyway.

Re:why?

[caluml]

Yeah, I can't work this out either. The problem with torrents is not storing them safely, or downloading them safely. It's that when you start downloading a file using torrents, your IP address is known by the tracker which gives away the fact you're a downloader.
Sure, store them on an AES-256 encrypted filesystem, sure, use SSL for the transfer. But it doesn't help the fact that the downloaders/uploaders are known.

Re:Piracy how-tos?

[MPHellwig]

Please repeat after me: The media is not the content en should be judge accordingly.

Don't worry I'll probably will repeat it till we all get it (end of time I guess).

Re:why?

[theraccoon]

I don't know. TFA says:

"You at least need to proof the person actually possesses the data and in my case... good luck proofing that."

Actually... Bittorrent shows who's connected to you, who's uploading to you, and who's downloading from you. Those logs, at least in the good 'ole US of A, are proof enough for God the RIAA to file a lawsuit against you (or as the case may be, your IP address). The RIAA has never had to confiscate a file sharer's HD or computer, but I bet if they did, they could find someone or some way to de-crypt the files on that server. A fun experiment, but as far as I can see, it's not very practical in terms of stopping a lawsuit.

Differentl laws in that country make this useful!

[orionware]

At first I thought, "wtf good is that?!". I figured it was for the ultra paranoid. Then I realized. He lives in a country where the law has to actually have physical proof of you breaking the law. Here in the US I don't think they feds need to kick in the door and find your mp3s being fed to the world to actually charge you. They just strongarm your ISP for your info.

The theory in his country being if they can't find anything on your drive, then they can't prove shit.

Must be nice...

Re:Obstruction of justice

[galdur]

I wonder how the data retention^h^h^h^h^h^h^h^h^h deletion policies corporations such as Microsoft have put in place on e-mail would fare in that regard....

Re:Be very, very careful when using EFS!!!

[Universal Indicator]

11 years of research without a single backup? Sounds like the person was asking for it!

Re:Obstruction of justice

[fbjon]

Ok, so what if the key is only held in memory, or perhaps some kind of self-destructing key such that the loss of the key is invoked by the authorities, not the accused... is there a line somewhere?

Re:Be very, very careful when using EFS!!!

[LnxAddct]

Perhaps he was encrypting his backups because of the nature of the research.
Regards,
Steve

Re:Be very, very careful when using EFS!!!

[greenrd]

Well, that just goes to prove: if you're encrypting your backups - don't use a closed-source product, and definitely don't use a closed-source, poorly-documented product, to do so.

404 Fried too

[bshroyer]

Cool! First we /. the website, then we /. the 404 page. Where can we go from here?

Re:why?

[Elshar]

I'm pretty sure that no HTTP proxy service would be terribly thrilled should you start hammering their connection with your warez'd bittorrent transfers.

Not to mention you don't know if they are logging who uses their proxy servers. It wouldn't be hard to track + log connections. And, should they get a subpeona, they WILL relinquish that information.