What about this: Is Freenet vulnerable to flooding attacks? Short answer: no.
Long answer: We don't think so. Aside from protecting freedom of speech, Freenet is also designed to be an efficient dynamic caching system. If information is requested a lot from a limited number of nodes, the nodes that the requests pass through will cache the information, lowering the load on the network. If information is inserted on a limited set of nodes and then subsequently requested a lot from a separate set of nodes, with repetition, the sets will close in on one another in the network topology until they are "neighbors" and only the originally targeted nodes are suffering from the attack. In other words, in order to harm Freenet with a flood you need to consistently change your point of entry into the network and continually insert and request new data, and you will still only increase the workload for the network that is linear to your own. Given an immense will and capacity greater than the total of the entire network, it is possible to cripple any public network (including the Internet itself) with floods, but it is our intention to always keep Freenet as resistant to this as theoretically possible. -----Original Message----- From: Some Guy <[EMAIL PROTECTED]> Sent: Sep 11, 2003 8:50 AM To: Discussion of development issues <[EMAIL PROTECTED]> Subject: Re: [freenet-dev] CHK collision and denial of service For a DNS attack the adversary just has to build up a bank of items whose hashes are "close enough" to be routed to the same machines as the item they are tring to censor. Generating such an item takes O(N) time. Example: if there are a 1000 nodes and each specialized in about 0.001 of the hash space, 1/1000 pieces of junk data would wind up on the same node as the the one with the data. If you send a bunch of inserts and requests for these junk items you can overload nodes of that specialization and possibly even get the target item dumped from cache. _______________________________________________ Devl mailing list [EMAIL PROTECTED] http://dodo.freenetproject.org/cgi-bin/mailman/listinfo/devl
