XPost: alt.privacy.anon-server, it.test

Gabx wrote:

This web interface implements a Hashcash/Proof-of-work system that requires a sender to perform a small amount of computational work before sending a message.
This computation yields a unique token (the Hashcash stamp).
Each Hashcash token includes a UTC timestamp, limiting its validity to a short window and preventing the same stamp from being reused repeatedly.
Because generating such a token costs CPU effort, it significantly raises the expense of automated spam and abuse.

Gabx

https://m2usenet.virebent.art

# often offline, I'll fix it as soon as I have some time

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

Il 05/04/2025 00:46, Gabx ha scritto:

Because generating such

https://youtu.be/KNJg0G0HDE8?si=XAtKTlXTHxmTpYtS

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

This web interface implements a Hashcash/Proof-of-work system that requires a sender to perform a small amount of computational work before sending a message.
This computation yields a unique token (the Hashcash stamp).
Each Hashcash token includes a UTC timestamp, limiting its validity to a short window and preventing the same stamp from being reused repeatedly.
Because generating such a token costs CPU effort, it significantly raises the expense of automated spam and abuse.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Fri, 04 Apr 2025 22:46:05 GMT, Gabx <nessuno@domain.invalid> wrote:

This web interface implements a Hashcash/Proof-of-work system that requires a sender to perform a small amount of computational work before sending a message.

I sucessfully made a test post. Here's the headers:


Message-ID: <1743826655.4195@mail2usenet.local>
Date: Sat, 05 Apr 2025 04:17:35 GMT
From: Tester078
Newsgroups: ak.test
Subject: test virebent
Path: not-for-mail
Organization: m2usenet gateway
X-Hashcash: 1:16:202504050415:Tester078:::J9UReCWm:10289
X-No-Archive: Yes
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

In article <vspo6k$19r4k$1@news.tcpreset.net> Gabx wrote:

Gabx wrote:

This web interface implements a Hashcash/Proof-of-work system that requires a sender to perform a small amount of computational work before sending a message.
This computation yields a unique token (the Hashcash stamp).
Each Hashcash token includes a UTC timestamp, limiting its validity to a short window and preventing the same stamp from being reused repeatedly.
Because generating such a token costs CPU effort, it significantly raises the expense of automated spam and abuse.

Gabx

https://m2usenet.virebent.art

# often offline, I'll fix it as soon as I have some time

| X-Hashcash: 1:16:202504050827:test@test.example:::Yh7SGdhy:56725

I doubt you get anything with a 16 bit Hashcash token minted in
milliseconds furthermore calculated at your server instead of the
client. That may even be too small for a DOS attack on your service.
;-)

| H Hashcash value after 0,0 sec. is '1:16:250404:test@test.example::DjMt8LWLG8ebvqp+:00000000000000000000000000000000000000000000062S'

Better only accept users that provide the complete token, which means
they themselves have to pay for and are thereby handicapped by the
calculation.

Then activate Hashcash's database for double spending detection (-d),
allow an expiry period of at least 2 days (-e) and do without the exact
time using only the date (YYMMDD).

Apart from going without an expiry period due to unpredictable remailer latencies the same goes with Sec3's m2n gateway. And with computers
getting much faster I'd ask for at least a 28 bit token to hurt mass
mailers.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

Nomen Nescio wrote:

In article <vspo6k$19r4k$1@news.tcpreset.net> Gabx wrote:

Gabx wrote:

This web interface implements a Hashcash/Proof-of-work system that requires a sender to perform a small amount of computational work before sending a message.
This computation yields a unique token (the Hashcash stamp).
Each Hashcash token includes a UTC timestamp, limiting its validity to a short window and preventing the same stamp from being reused repeatedly.
Because generating such a token costs CPU effort, it significantly raises the expense of automated spam and abuse.

Gabx

https://m2usenet.virebent.art

# often offline, I'll fix it as soon as I have some time

| X-Hashcash: 1:16:202504050827:test@test.example:::Yh7SGdhy:56725

I doubt you get anything with a 16 bit Hashcash token minted in
milliseconds furthermore calculated at your server instead of the
client. That may even be too small for a DOS attack on your service.
;-)

| H Hashcash value after 0,0 sec. is '1:16:250404:test@test.example::DjMt8LWLG8ebvqp+:00000000000000000000000000000000000000000000062S'

Better only accept users that provide the complete token, which means
they themselves have to pay for and are thereby handicapped by the calculation.

That's what I am doing with my m2n.

Then activate Hashcash's database for double spending detection (-d),
allow an expiry period of at least 2 days (-e) and do without the exact
time using only the date (YYMMDD).

Actually you don't need an expirey date, as I have figured out, because
the database takes care if tokens are already used. And users can feel
free to submit their tokens when they are ready to spend them.

Apart from going without an expiry period due to unpredictable remailer latencies the same goes with Sec3's m2n gateway. And with computers
getting much faster I'd ask for at least a 28 bit token to hurt mass
mailers.

I am using 26 bit for my m2n and have not seen much of a difference with 28.

I am wondering also if Gabx uses the reference inplementation, because his tokens look a bit different to regular ones.

Regards
Stefan

--
Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

Stefan Claas wrote:

I am using 26 bit for my m2n and have not seen much of a difference with 28.

| c:\hashcash-1.22-win32-dll>hashcash -m -v -b 28 -X -u -z 6 -t 2504050930 -r test@test.example
| core: xxxxxx
| speed: 16777216 preimage tests per second
| compression: 0
| mint: 28 bit partial hash preimage
| expected: 268435456 tries (= 2^28 tries)
| time estimate: 16 seconds
| tries: 516963658 193% of expected
| time: 36 seconds
| X-Hashcash: 1:28:250405:test@test.example::BdBVK5rPOZE1LACI:00000000000000000000
| 00000000000000000000000Uq3r8
|
| c:\hashcash-1.22-win32-dll>hashcash -m -v -b 26 -X -u -z 6 -t 2504050930 -r test@test.example
| core: xxxxxx
| speed: 15768061 preimage tests per second
| compression: 0
| mint: 26 bit partial hash preimage
| expected: 67108864 tries (= 2^26 tries)
| time estimate: 5 seconds
| tries: 61312466 91% of expected
| time: 5 seconds
| X-Hashcash: 1:26:250405:test@test.example::tPoWAVogIELbWh+b:00000000000000000000
| 000000000000000000000003futH
|
| c:\hashcash-1.22-win32-dll>

So on my standard computer 5 seconds of minting result in 12 (spam)
messages per minute whereas with 28 bits you achieve a third of that
number, which still is a lot.

I am wondering also if Gabx uses the reference inplementation, because his >tokens look a bit different to regular ones.

Regards
Stefan

Unfortunately till now my OmniMix postings with headers

| To: mail2news@oc2mx.net
| Newsgroups: alt.privacy.anon-server
| References: <d0b88a773d.1743809313@kfxhz.xa>
| Subject: Re: ping - Gabx
| MIME-Version: 1.0
| Content-Type: text/plain; charset=us-ascii
| Content-Transfer-Encoding: 7bit
| X-Hashcash: 1:26:250405:mail2news::kC/drhYJVOYo8ddI:00000000e1Ng

and

| To: mail2news@oc2mx.net
| Newsgroups: alt.privacy.anon-server
| References: <d0b88a773d.1743809313@kfxhz.xa>
| Subject: Re: ping - Gabx
| MIME-Version: 1.0
| Content-Type: text/plain; charset=us-ascii
| Content-Transfer-Encoding: 7bit
| X-Hashcash: 1:26:250404:mail2news::AyJm78q1rpfcc6PR:00000000unvP

didn't make it.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

Nomen Nescio wrote:

Stefan Claas wrote:

I am using 26 bit for my m2n and have not seen much of a difference with 28.

| c:\hashcash-1.22-win32-dll>hashcash -m -v -b 28 -X -u -z 6 -t 2504050930 -r test@test.example
| core: xxxxxx
| speed: 16777216 preimage tests per second
| compression: 0
| mint: 28 bit partial hash preimage
| expected: 268435456 tries (= 2^28 tries)
| time estimate: 16 seconds
| tries: 516963658 193% of expected
| time: 36 seconds
| X-Hashcash: 1:28:250405:test@test.example::BdBVK5rPOZE1LACI:00000000000000000000
| 00000000000000000000000Uq3r8
|
| c:\hashcash-1.22-win32-dll>hashcash -m -v -b 26 -X -u -z 6 -t 2504050930 -r test@test.example
| core: xxxxxx
| speed: 15768061 preimage tests per second
| compression: 0
| mint: 26 bit partial hash preimage
| expected: 67108864 tries (= 2^26 tries)
| time estimate: 5 seconds
| tries: 61312466 91% of expected
| time: 5 seconds
| X-Hashcash: 1:26:250405:test@test.example::tPoWAVogIELbWh+b:00000000000000000000
| 000000000000000000000003futH
|
| c:\hashcash-1.22-win32-dll>

So on my standard computer 5 seconds of minting result in 12 (spam)
messages per minute whereas with 28 bits you achieve a third of that
number, which still is a lot.

Well, sort of. I can increase the value, but what should we use, so
that users are not complaining too much?

I am wondering also if Gabx uses the reference inplementation, because his tokens look a bit different to regular ones.

Regards
Stefan

Unfortunately till now my OmniMix postings with headers

| To: mail2news@oc2mx.net
| Newsgroups: alt.privacy.anon-server
| References: <d0b88a773d.1743809313@kfxhz.xa>
| Subject: Re: ping - Gabx
| MIME-Version: 1.0
| Content-Type: text/plain; charset=us-ascii
| Content-Transfer-Encoding: 7bit
| X-Hashcash: 1:26:250405:mail2news::kC/drhYJVOYo8ddI:00000000e1Ng

and

| To: mail2news@oc2mx.net
| Newsgroups: alt.privacy.anon-server
| References: <d0b88a773d.1743809313@kfxhz.xa>
| Subject: Re: ping - Gabx
| MIME-Version: 1.0
| Content-Type: text/plain; charset=us-ascii
| Content-Transfer-Encoding: 7bit
| X-Hashcash: 1:26:250404:mail2news::AyJm78q1rpfcc6PR:00000000unvP

didn't make it.

The tokens are valid, but I have the same problem for a couple of days
now and do not know what is causing this. Mixmaster and YAMN messages
I have send to my gateway only worked until a couple of days ago. Now
no longer.

If you would try my m2n with Mini Mailer or Onion Courier or standard
email services, with smtp access, all messages will come through, as
I have tested until this afternoon.

Regards
Stefan

--
Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: alt.privacy.anon-server, it.test

Stefan Claas wrote:

If you would try my m2n with Mini Mailer or Onion Courier or standard
email services, with smtp access, all messages will come through, as
I have tested until this afternoon.

Just a quick test with Mini Mailer via the Tor Network and mail.ru
a very large Russian email Service Provider, which can be accessed
via Tor.

--
Regards
Stefan

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)