theymos [ARCHIVE] on Nostr: π
Original date posted:2011-09-08 ποΈ Summary of this message: Alert system is ...
π
Original date posted:2011-09-08
ποΈ Summary of this message: Alert system is crucial for network's security against attackers with >50% computational power. GUI client should restrict transactions during alerts.
π Original message:The alert system will be very important if there are ever any critical
problems in the network. For example, it is currently Bitcoin's only
defense against an attacker with >50% of the computational power, where
alerts would be used to tell people to stop accepting transactions.
Displaying a message is pretty harmless. In fact, I don't think the
message is prominent enough. The GUI client should not allow people to
see received transactions or send new transactions while an alert is in
effect (with an opt-out), and there should be an opt-in feature that
puts RPC into safe mode in response to an alert.
Alerts are no worse than transactions as a DoS attack vector. They're
much safer than typical HTTPS because there are no CAs that can break
its security.
(FYI: I also have a copy of the alert key.)
Published at
2023-06-07 02:24:00Event JSON
{
"id": "7b0159cdd1ce5cfec2f302965376181d668150764bd23376e6eee18a1a7146ab",
"pubkey": "7b17a27b7a85e67ba7923c452fbb08ed536244f667a20168dfc3172a83c992df",
"created_at": 1686104640,
"kind": 1,
"tags": [
[
"e",
"ca408b8b7b03516434afb6ed3ea91dc7bfaee26114c11ca355743da9846401b2",
"",
"root"
],
[
"e",
"87c25503d5d2f19409053b2f8669d872106a62117076909a4953e0492075852c",
"",
"reply"
],
[
"p",
"3f9150a6b18e9a0b1c8e4ae479047666171f873edaeb20476d469ea0d1dd1338"
]
],
"content": "π
Original date posted:2011-09-08\nποΈ Summary of this message: Alert system is crucial for network's security against attackers with \u003e50% computational power. GUI client should restrict transactions during alerts.\nπ Original message:The alert system will be very important if there are ever any critical\nproblems in the network. For example, it is currently Bitcoin's only\ndefense against an attacker with \u003e50% of the computational power, where\nalerts would be used to tell people to stop accepting transactions.\n\nDisplaying a message is pretty harmless. In fact, I don't think the\nmessage is prominent enough. The GUI client should not allow people to\nsee received transactions or send new transactions while an alert is in\neffect (with an opt-out), and there should be an opt-in feature that\nputs RPC into safe mode in response to an alert.\n\nAlerts are no worse than transactions as a DoS attack vector. They're\nmuch safer than typical HTTPS because there are no CAs that can break\nits security.\n\n(FYI: I also have a copy of the alert key.)",
"sig": "47328cbc6ae06b575cf146c1d9342b4bab9508b79e5fdfca0d2c6bcbab07886640b587f5cc81baed2d1d0d7a5677d9a217b0fa3da083d15d60e820c1ed043b52"
}