I want TGChan to display the full name and exact latitude and longitude of the poster.

The ID system is the most important part of tgchan.

That said, it should also display the phone number, address, age, nationality, gender, sexuality, and political affiliation of the poster. That way I can ignore all the suggestions from those dirty socialist Croatian lesbian men in their 20's.

Displaying more information is the way to go.

It already hides your IP well enough.

I don't really give enough of a fuck about it to want to change it.

>Does anybody actually care about the ID system and/or want something that actually hides your IP?
Yes, trolls and sockpuppeteers do.

Bob 2011/11/17(Thu)23:59 No. 18818 ID: cdb8cb
File 132160318257.jpg - (176.54KB , 1024x986 , happylamb.jpg )

I think we should have logins and premium accounts.

>>18818

stfu noob

why, think of the anonymity.

you might let strangers just waltz right in and pass themselves off as something fantastic, but aren't.

>>18818
Quests that are free2play but if you pay for a premium account your suggestions count twice?

>>18817
Nah, mods can still see the IP.

>>18822
>why, think of the anonymity.
I don't have to.

4chan is right over there as a shining example. -->

As if I care. I will continue to do it my way.

Although my own ID is pretty unreliable, I like that I can identify individuals during quests and whatnot. I would rather it stayed.

I use it to count votes because sometimes there is back and forth between suggesters. I find it invaluable and extremely helpful in actually running quests.

I fin it's anonyomous enough for all practical purposes. It's needed on a /quest/ and occasionally on /questdis/ for voting purposes. I don't see what good it is elsewhere, but it's easy enough to ignore.

IDs were enabled on request for /draw/ since people with no name set kept saying things like "oC by foo, bar, and me", and "me" is kind of unhelpful without an ID to go with it. That is what good it is.

>>18831
I'm not talking about getting rid of it, I'm talking about making it actually hide the IP of the person posting. Which means changing one line of code and resetting everyone's IDs, basically.

>>18840
Except you already can't get an IP from an ID.

>>18840
The IP space is roughly* 256 times larger than the ID space. The ID hashing function is lossy. Ergo even brute-forcing it won't get someone's IP.

* You can practically dismiss the private ranges, broadcast addresses, etc. A truly determined malcontent could perhaps also do lots of RDNS and check for domestic ISP ranges etc., but by that point it would have been easier to set up a webserver and thrown your targets a link to look at, after which Apache will dutifully log your IP address because IP addresses are not private information. I'm guessing the only reason imageboard software bothers to hash them is to make it harder for irate thirteen-year-olds to copy-paste them into botnet flood commands.

I'm curious as to what change you're proposing, since there's not a great deal else to key on, either. Anything per-browser like cookies is off to a dead start in this modern world of home wifi and laptops/netbooks/tablets as well as good ol' desktops.

>>18846
It would still use the IP as entropy but it would mix in the site's random key so that you can't reverse it into 200 potential IPs.

>Ergo even brute-forcing it won't get someone's IP.
To put some numbers to this, I just brute-forced my ID using a couple of cores (with a VM in the way), but nothing fancy like SIMD on the GPU, in a shade under half an hour (58m22.920s CPU time, UNIX nerd fans). For my efforts, I got 243 IPs, 51 of which had DNS entries pointing to them. You can eliminate a further few by eyeballing (it's pretty unlikely I'm posting from a .mil or an .invalid, which knocks out four, although if you try to find a .uk you'll be out of luck), or really go to town with whois info instead of DNS, but by this point isn't it easier to just privmsg me a tinyurl on IRC and rely on good ol' fashioned social engineering and curiosity?

(Incidentally, this is similar to how you can break weak passwords without tripping any kind of "too many wrong tries" protection if you can steal the hashes. Change your Steam passwords, people.)

>>18850
I wondered that when I was writing the above.

I don't really see the argument that the minor inconvenience of everyone's established IDs being changed doesn't outweigh the absolutely trivial "risk" that someone might get your IP this way as opposed to a number of easier ways because IP addresses aren't secrets.

>>18851

If you are on IRC you're already wide open. Anyone can see your IP without even messaging you, just by being in the same channel. In some networks anyone at all can see your IP just from the nick. Rizon ain't exactly known for its respect for security and personal privacy.

>>18857
>If you are on IRC you're already wide open.
This is kind of my point!

I think you guys are being WAY too paranoid on the matter.

We had a thread with no IDs.

It was a shithole.

>>18917
Good sir, I think you will find that the preponderance of kittens within elevated it to a status far above that of many a thread on /meep/!

(It's just a shame that it really was a no-ID/IP thread, so it couldn't do something like pick a kitten image by the modulous of your concealed ID. :V )

Mneme, is that you?