Am 11.07.2014 17:19, schrieb Tyler Romeo:
Most likely, we would encrypt the IP with AES or something using a configuration-based secret key. That way checkusers can still reverse the hash back into normal IP addresses without having to store the mapping in the database.
There are two problems with this, I think.
1) No forward secrecy. If that key is ever leaked, all IPs become "plain". And it will be, sooner or later. This would probably not be obvious, so this feature would instill a false sense of security.
2) No range blocks. It's often quite useful to be able to block a range of IPs. This is an important tool in the fight against spammers, taking it away would be a problem.
-- daniel