--- Toad <[EMAIL PROTECTED]> wrote: > On Fri, Oct 10, 2003 at 11:16:55PM +0200, Frank v Waveren wrote: > > On Fri, Oct 10, 2003 at 07:20:15PM +0100, Toad wrote: > > > There is also a trust question. Why should we trust the node that said > > > it had seen the message before? > > You can treat it the same as the node returning DNF (which nodes to which > > you route can do anyway), there will still be more of a bias to routing > > that area of the keyspace to the node that actually specialises in it than > > to other nodes. > > > > Malicious nodes trying to get into everybodies routing table could then > > pretend to never already have seen messages and try to route them on, > > but that 'attack' is already possible, anybody can proxy all incoming > > requests to new requests with a higher HTL in an effort to return data > > in a specific key area (within the bounds of time limits ofcourse) > > Anybody can what? I don't follow you. Anybody can DNF on everything > after a nice long timeout, sure.
I think you guys are talking past each other. There are two attacks being discussed here: A) Pretending to handle a request as if you passed it on to the rest of the net, but returning DNF. B) Increasing the HTL on requests you process, so that the network has to work harder for you to make your node look good. Toad asked about A. Frank seems to be answering about A and B. Both of these attacks are possible now. Similar attacks would be possible if you trust a node to say that it has detected a cycle. So as far as I'm concerned this cycle idea: 1) does seem to protect against probing a datastore 2) increases routing times to something like a worst case 3) requires the network to work pretty well so cycles happen quickly 4) still has vunerablity to A and B 5) Could let you cache the data more at the specialized nodes, by sending data through the cycle There's a piece of code somewhere that is supposed to reject a request/insert if you've already gotten it. It'd be interesting to know how often this happens and at what HTL it happens. It should only happen at relatively low HTL. __________________________________________________________________ Gesendet von Yahoo! Mail - http://mail.yahoo.de Logos und Klingelt�ne f�rs Handy bei http://sms.yahoo.de _______________________________________________ Devl mailing list [EMAIL PROTECTED] http://dodo.freenetproject.org/cgi-bin/mailman/listinfo/devl
