Fr Robert Ballecer, SJ Bryan Burnett

[G+_Joel G. J]

Fr. Robert Ballecer, SJ Bryan Burnett

 

Hey there!

I am probably one of a few people who wants to use torrents for legitimate ways. IS there any way to speed up torrent downloads by configuring certain settings? Can you make torrenting more "secure" with certain settings?

 

[G+_Eddie Foy]

I use it for legit uses too. Help promote it is valuable for legit.  distros, podcasts, leaked data dumps, etc

secure?  how so?  Check the MD5Sums and you should be good (unless thats been compromised on the website like one of the linux distros a few months back. mint maybe?)

You can should use the encrypted transfer settings.

 

 

Speeding up, that's a bit tougher. watch your limits, if you have any.  Your ISP might be throttling them.  Years ago my ISP told me they throttled it. (and they did, hard, down to dial up speeds)  Try a VPN and see if it gets better.  but most VPNs, in general, will be far below the speeds of your ISP.

Use DHTs (distributed hash tables)

[G+_Travis Hershberger]

Torrents are the fastest way to download something that has been developed and is actually in use. I use them all the time to get the iso of different Linux distributions. Security wise, you give up any sort of security in order to speed up the download, it's just how the system works, and so it's a trade off of security vs speedy download. Only you can decide.

[G+_Eddie Foy]

Travis Hershberger what/where is the security lacking/falling short?  checksums (if known) cures the Trojan aspect.

[G+_Travis Hershberger]

Eddie Foy The system uses IP addresses and NAT bypass, otherwise it doesn't work. Also, anyone else using the same transfer can insert different data into your stream. If the client doesn't automatically do a checksum of the final file(s), you're wide open for someone to mess with you.

[G+_Eddie Foy]

Don't know about that NAT bypass.  All the transfers show up in my router's NAT table.

 

And on the insert, yup, you don't do a checksum verification, you just clicked on a email link. The old Buyer be ware.

[G+_Keith Mallett]

You can use torrents for legal reasons?!?! Wow, what will they think of next?

 

I made my torrent digger a VM so I can Snapshot and Sandbox it but if you are using physical hardware I would recommend you put your torrent digger in your DMZ so you can turn off some of the security (if you're running windows) or at least in a separate subnet. Then set you upload limits to 0 and upload ports to 0. Most torrent programs have the Uploads set to unlimited by default so you are uploading the files as soon as the packets are reassembled on your side. If you don't have a DMZ maybe consider setting up the three dumb routers config https://www.grc.com/sn/sn-545.pdf or getting the Edge router Steve Gibson mention on SN https://www.ubnt.com/edgemax/edgerouter-x/

 

You could also play with the QOS settings on your routing device and treat the digger as voip device but I honestly didn't see any improvement. It is connection based peer-to-peer setup and that doesn't mean your connection is the restrictive connection. I didn't even see an increase in performance when I put my digger inside a data-centre as a test.

 

Even if you are using it for legit reasons, I would recommend using a vpn service that doesn't keep logs and use an exit node in another city or country just to be safe. I use ProXPN (Steve Gibson's recommendation).

[G+_Eddie Foy]

Keith Mallett   Do QoS settings work on a DMZ?

[G+_Keith Mallett]

QOS settings work downstream of the router like PAT, on the private side of the your gateway. Most people use a router for a gateway but that is not the only choice. You can have a computer, a server, a firewall or a UTM device. Basically, the gateway translates public to private but the private side can be staged, hence the DMZ. If you have multiple routers then yes you can have a DMZ with QOS. The first router would use QOS to regulate traffic between the other two routers.

 

A DMZ without a device between your server and the modem isn't really a DMZ, it more like No-Man's Land as anything in that area is completely exposed.

 

However, you can also crate a DMZ without multiple routers. If your ISP provides you with static IPs (you need at least two) you can put a switch right after your modem. If you get a sigle IP address from your ISP and it is DHCP then this won't work (most residential services are setup this way).

 

I think the three dumb routers is the best solution for the home setup and would give Joel G. J at least two physical networks and a DMZ. With some level of security. He could just put his torrent digger in the DMZ. If his routers support QOS then yes play with the settings.... keep track of the changes though. When I make changes to my home network and it effects the connection to the ISP I have four angry teens to deal with...

 

Of course, they don't understand the difference between the wifi going down and the ISP going down... Its always "Dad! The Internet is down!"

[G+_Keith Mallett]

Joel G. J are you using a physical computer or a virtual machine for your digger?