📅 Original date posted:2011-09-15
🗒️ Summary of this message: The debate is whether response messages should be given to potential attackers, as it may provide another attack vector, or to the sender for better debugging.
📝 Original message:> If I think you're trying to DoS me, why would I be nice to you?
The issue is, what if I'm not trying to DoS you, but something went wrong?
> think response messages would just give an attacker another potential
> attack vector, and it is clear from the debug.log what triggers a ban.
Only clear to the node owner. Not the sender, who may in a better
position to debug.
It's pretty common for protocols to return useful errors even in DoS
conditions. Eg, http servers will often return 503 Service Unavailable
in overload conditions. Google actually sends a redirect telling you
why you got blocked.
Mike Hearn [ARCHIVE] /
npub17t…4qgyd
2023-06-07 02:26:55
in reply to nevent1q…fze7
Author Public Key
npub17ty4mumkv43w8wtt0xsz2jypck0gvw0j8xrcg6tpea25z2nh7meqf4qgydPublished at
2023-06-07 02:26:55Event JSON
{
"id": "6a123e8af4e2e1f46bafcf1fc801b3c91a8df3b910b4a1d26c6c056f989b6ee9",
"pubkey": "f2c95df3766562e3b96b79a0254881c59e8639f23987846961cf55412a77f6f2",
"created_at": 1686104815,
"kind": 1,
"tags": [
[
"e",
"e29ff4d93432370a19179a042d2501986d93a8b4cdbf351edfd1916f772bb3bb",
"",
"root"
],
[
"e",
"32f42283de2d9fcfbf3627005fe74500332e5ff3030ff50302b137553146f6ef",
"",
"reply"
],
[
"p",
"4aa6cf9aa5c8e98f401dac603c6a10207509b6a07317676e9d6615f3d7103d73"
]
],
"content": "📅 Original date posted:2011-09-15\n🗒️ Summary of this message: The debate is whether response messages should be given to potential attackers, as it may provide another attack vector, or to the sender for better debugging.\n📝 Original message:\u003e If I think you're trying to DoS me, why would I be nice to you?\n\nThe issue is, what if I'm not trying to DoS you, but something went wrong?\n\n\u003e think response messages would just give an attacker another potential\n\u003e attack vector, and it is clear from the debug.log what triggers a ban.\n\nOnly clear to the node owner. Not the sender, who may in a better\nposition to debug.\n\nIt's pretty common for protocols to return useful errors even in DoS\nconditions. Eg, http servers will often return 503 Service Unavailable\nin overload conditions. Google actually sends a redirect telling you\nwhy you got blocked.",
"sig": "3ae6715789d13618fc2ef1afa65fa93fe4024616dbb0e9fde3fbc568255e71f904912651784b505eaf832842b892af54c987f884b29d868dccfdee7f8b666b23"
}