Peer-to-peer package repository

bitmason
  8 years ago
  13
  Considered

I know that mint is currently in sync with the Ubuntu and Debian repositories, but I think that mint could benefit from a Peer-to-peer repository system, perhaps using a sort of "traffic control" server to check for package reliability, and a torrent-style client/system to disseminate packages, taking the traffic load off of main repository servers.

http://www.springerlink.com/content/4404528353627k35/
Latest comments
blueXrider 8 years ago

I like trusted sources.


Ioseph 8 years ago

Somewhat underway as it seems. Check in on Deb-torrent. Several problems trying to keep the background network traffic low and the files up to date. Anyways I support the idea but think the same problems will still happen.


Alexio 8 years ago

We can install apt-p2p to save bandwidth for the repository servers and to speed up your download speed. In the repositories you can also find and install DebTorrent together with apt-transport-debtorrent.


bitmason 8 years ago

It would require a custom client for dissemination, which would connect to a dedicated "traffic control" server that would verify both package integrity via the checksum system already in place, as well as the redundancy measures needed to ensure package availability. for example, users would need to host a handful of packages. the packages that a user would host would be based both on demand for those packages, as well as the user's connection reliability. the user would retrieve package information the same way as now, but the traffic control server would check to see which users has the file needed, the amount of traffic that users are dealing with, and running security tests on the client side - with their permission, of course - in order to open up that user's client to other package peers.

another benefit from this system is that developers need only use the client for distribution of their software, and would simply get clearance from the administrators of the traffic control server to allow their packages to be listed in the repository database.

another excellent white paper was done on this idea, laying out all the details.

www.camrdale.org/apt-p2p/motivation.pdf


remoulder 8 years ago

I'm not sure that mint could do this by itself but it's an intriguing idea, gets my vote.


Alexio 8 years ago

There is a research paper about "Malugo: A peer-to-peer storage system".


orionthehunter 8 years ago

I dunno about the security of this but it's an intriguing idea. One of the intentions of having repositories is that they are supposed to be secure and stable.