On Feb 8, 2008, at 8:15 AM, Michael Rogers wrote: > On Feb 8 2008, Matthew Toseland wrote: >>> I realise the data wouldn't travel across every link because of the >>> offer/accept mechanism, but it would still visit every node once, >>> which >>> is a decent multiplier for a DoS attack. >> >> Only if he can get requests through every node. As he can by for >> example >> flooding a Frost KSK queue right now. > > I'm probably misunderstanding how it works, but wouldn't a single > success > be forwarded to every node in the web, as each node offers the data > to the > peers it's tried as well as the peers from which it's received > requests? > > Cheers, > Michael
Even then; it looks like FNPOffers are queued for later retrieval, and the FNPGetOffered is properly rejectable... what's the problem? The key only travels backwards towards nodes which requested it. As presented in the case of frost KSK they *were* requested, and the data (even if spam) is promptly and efficiently delivered, no? -- Robert Hailey
