📅 Original date posted:2011-09-08
🗒️ Summary of this message: The Bitcoin alert system has been questioned for its potential for abuse, but it is valuable for urgent notifications and not a DoS target.
📝 Original message:On Thu, 2011-09-08 at 07:42 -0700, David Perry wrote:
> There has been some discussion on the new Bitcoin StackExchange site
> lately about the alert protocol. A few have suggested that it might
> carry the potential for abuse (spam/DoS) and others have argued that
> it's merely deprecated. In any case, enough have voiced concerns that
> I've forked bitcoin/bitcoin, removed the snippet of code from main.cpp
> that makes the questionable call and submitted a pull request. On that
> pull request it was noted by Gavin Andresen that it merited discussion
> here and some kind of consensus should be reached before acting on
> that pull request. It was also mentioned that he thought the feature
> was still more useful than dangerous and that he would argue against.
>
>
> So I pose the question to you fine fellows: Is the alert system
> valuable, an unnecessary risk or merely a snippet of deprecated code?
> Should it be removed?
The alert system requires a signature verification when it receives an
alert, but so do blocks and transactions so it really isn't a DoS target
(remember that the alert system requires alerts to be signed by a key
that only gavin and satoshi have).
The alert system could prove very, very valuable. In much software it
carries the risk for abuse or simply seems wrong that the developers can
send a message to everyone's computer to notify them of something, but
keep in mind that Bitcoin is financial software. If there is an urgent
problem (like the overflow bug) there must be a way to notify people to
upgrade immediately, which is exactly what alerts provide. Since alerts
no longer carry the ability to put Bitcoin into RPC safe-mode, they are
literally just a message and I see no reason why they should be removed.
Matt Corallo [ARCHIVE] /
npub1e4…jxmcu
2023-06-07 02:23:54
in reply to nevent1q…6wz0
Author Public Key
npub1e46n428mcyfwznl7nlsf6d3s7rhlwm9x3cmkuqzt3emmdpadmkaqqjxmcuPublished at
2023-06-07 02:23:54Event JSON
{
"id": "fa07cae3e1b911e9ccd266898861a12d7b8695cbfa891b9a458e329846873906",
"pubkey": "cd753aa8fbc112e14ffe9fe09d3630f0eff76ca68e376e004b8e77b687adddba",
"created_at": 1686104634,
"kind": 1,
"tags": [
[
"e",
"ca408b8b7b03516434afb6ed3ea91dc7bfaee26114c11ca355743da9846401b2",
"",
"root"
],
[
"e",
"d8e0bd5510bb788d432ebdb5fbadf0ee38ca4d3fd3311975caa85883433ee744",
"",
"reply"
],
[
"p",
"366b04144886caf61d1988df75165b74b9c6e3ed325d8177a2e06f4251ea7c98"
]
],
"content": "📅 Original date posted:2011-09-08\n🗒️ Summary of this message: The Bitcoin alert system has been questioned for its potential for abuse, but it is valuable for urgent notifications and not a DoS target.\n📝 Original message:On Thu, 2011-09-08 at 07:42 -0700, David Perry wrote:\n\u003e There has been some discussion on the new Bitcoin StackExchange site\n\u003e lately about the alert protocol. A few have suggested that it might\n\u003e carry the potential for abuse (spam/DoS) and others have argued that\n\u003e it's merely deprecated. In any case, enough have voiced concerns that\n\u003e I've forked bitcoin/bitcoin, removed the snippet of code from main.cpp\n\u003e that makes the questionable call and submitted a pull request. On that\n\u003e pull request it was noted by Gavin Andresen that it merited discussion\n\u003e here and some kind of consensus should be reached before acting on\n\u003e that pull request. It was also mentioned that he thought the feature\n\u003e was still more useful than dangerous and that he would argue against.\n\u003e \n\u003e \n\u003e So I pose the question to you fine fellows: Is the alert system\n\u003e valuable, an unnecessary risk or merely a snippet of deprecated code?\n\u003e Should it be removed?\n\nThe alert system requires a signature verification when it receives an\nalert, but so do blocks and transactions so it really isn't a DoS target\n(remember that the alert system requires alerts to be signed by a key\nthat only gavin and satoshi have).\n\nThe alert system could prove very, very valuable. In much software it\ncarries the risk for abuse or simply seems wrong that the developers can\nsend a message to everyone's computer to notify them of something, but\nkeep in mind that Bitcoin is financial software. If there is an urgent\nproblem (like the overflow bug) there must be a way to notify people to\nupgrade immediately, which is exactly what alerts provide. Since alerts\nno longer carry the ability to put Bitcoin into RPC safe-mode, they are\nliterally just a message and I see no reason why they should be removed.",
"sig": "e75dd4b95c443923800d2a860a7cd5d794b81688c50278f696ab256de9a1bf1325739e7f47e2e048d6117467c5d4da0a8bb2fb6c05840dadb0505f1902e82aac"
}