| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | p2p/discover: implement node bonding | Felix Lange | 2015-04-01 | 1 | -147/+275 |
| | | | | | | | | | | | | | | | | | This a fix for an attack vector where the discovery protocol could be used to amplify traffic in a DDOS attack. A malicious actor would send a findnode request with the IP address and UDP port of the target as the source address. The recipient of the findnode packet would then send a neighbors packet (which is 16x the size of findnode) to the victim. Our solution is to require a 'bond' with the sender of findnode. If no bond exists, the findnode packet is not processed. A bond between nodes α and β is created when α replies to a ping from β. This (initial) version of the bonding implementation might still be vulnerable against replay attacks during the expiration time window. We will add stricter source address validation later. | ||||
| * | p2p/discover: map listening port using configured mechanism | Felix Lange | 2015-02-13 | 1 | -7/+7 |
| | | |||||
| * | p2p/discover: deflake UDP tests | Felix Lange | 2015-02-09 | 1 | -55/+107 |
| | | |||||
| * | p2p/discover: add node URL functions, distinguish TCP/UDP ports | Felix Lange | 2015-02-07 | 1 | -5/+8 |
| | | | | | | The discovery RPC protocol does not yet distinguish TCP and UDP ports. But it can't hurt to do so in our internal model. | ||||
| * | p2p/discover: add some helper functions | Felix Lange | 2015-02-06 | 1 | -7/+7 |
| | | |||||
| * | p2p/discover: new package implementing the Node Discovery Protocol | Felix Lange | 2015-02-06 | 1 | -0/+156 |
 |
index : go-tangerine | |
| Tangerine full node (https://github.com/tangerine-network/go-tangerine) |
| aboutsummaryrefslogtreecommitdiffstats |