* [Bitcoin-development] Alert System
@ 2011-09-08 14:42 David Perry
2011-09-08 15:04 ` Steve
` (2 more replies)
0 siblings, 3 replies; 18+ messages in thread
From: David Perry @ 2011-09-08 14:42 UTC (permalink / raw)
To: bitcoin-development
[-- Attachment #1: Type: text/plain, Size: 1178 bytes --]
There has been some discussion on the new Bitcoin
StackExchange<http://bitcoin.stackexchange.com>site lately about the
alert protocol. A few have suggested that it might
carry the potential for abuse (spam/DoS) and others have argued that it's
merely deprecated. In any case, enough have voiced concerns that I've forked
bitcoin/bitcoin, removed the snippet of code from main.cpp that makes the
questionable call and submitted a pull
request<https://github.com/bitcoin/bitcoin/pull/506>.
On that pull request it was noted by Gavin Andresen that it merited
discussion here and some kind of consensus should be reached before acting
on that pull request. It was also mentioned that he thought the feature was
still more useful than dangerous and that he would argue against.
So I pose the question to you fine fellows: Is the alert system valuable, an
unnecessary risk or merely a snippet of deprecated code? Should it be
removed?
Sources:
http://bitcoin.stackexchange.com/questions/583/what-is-the-alert-system-in-the-bitcoin-protocol-how-does-it-work/590
http://bitcoin.stackexchange.com/questions/636/is-the-alert-system-still-in-the-main-clients-code-will-it-be-removed/711
[-- Attachment #2: Type: text/html, Size: 1558 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 14:42 [Bitcoin-development] Alert System David Perry
@ 2011-09-08 15:04 ` Steve
2011-09-08 16:09 ` David Perry
2011-09-08 15:20 ` Matt Corallo
2011-09-08 19:43 ` theymos
2 siblings, 1 reply; 18+ messages in thread
From: Steve @ 2011-09-08 15:04 UTC (permalink / raw)
To: David Perry; +Cc: bitcoin-development
[-- Attachment #1: Type: text/plain, Size: 2739 bytes --]
I think there's a significant risk to not having it at this stage.
There's many reasons why an urgent update may been to rapidly propagated
in this stage of the network's lifecycle. Perhaps if there's a
perceived threat of abuse the protocol could be altered slightly so it
can't carry content. Only a notification of the fact that there is an
alert. Then it would be up to individual clients whether they react to
it or not. The main clients would probably check a central trusted
server for actual alert content. This would give a lot more flexibility
in how to deal with the alert. Alert content servers could for example
implement a json api to provide alert content with meta data like target
client version, priority etc.
I think it should be removed in the future but not for a good while yet.
On 09/09/11 00:42, David Perry wrote:
> There has been some discussion on the new Bitcoin StackExchange
> <http://bitcoin.stackexchange.com> site lately about the alert
> protocol. A few have suggested that it might carry the potential for
> abuse (spam/DoS) and others have argued that it's merely deprecated.
> In any case, enough have voiced concerns that I've forked
> bitcoin/bitcoin, removed the snippet of code from main.cpp that makes
> the questionable call and submitted a pull request
> <https://github.com/bitcoin/bitcoin/pull/506>. On that pull request it
> was noted by Gavin Andresen that it merited discussion here and some
> kind of consensus should be reached before acting on that pull
> request. It was also mentioned that he thought the feature was still
> more useful than dangerous and that he would argue against.
>
> So I pose the question to you fine fellows: Is the alert system
> valuable, an unnecessary risk or merely a snippet of deprecated code?
> Should it be removed?
>
> Sources:
> http://bitcoin.stackexchange.com/questions/583/what-is-the-alert-system-in-the-bitcoin-protocol-how-does-it-work/590
> http://bitcoin.stackexchange.com/questions/636/is-the-alert-system-still-in-the-main-clients-code-will-it-be-removed/711
>
>
> ------------------------------------------------------------------------------
> Doing More with Less: The Next Generation Virtual Desktop
> What are the key obstacles that have prevented many mid-market businesses
> from deploying virtual desktops? How do next-generation virtual desktops
> provide companies an easier-to-deploy, easier-to-manage and more affordable
> virtual desktop model.http://www.accelacomm.com/jaw/sfnl/114/51426474/
>
>
> _______________________________________________
> Bitcoin-development mailing list
> Bitcoin-development@lists•sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
[-- Attachment #2: Type: text/html, Size: 4144 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 14:42 [Bitcoin-development] Alert System David Perry
2011-09-08 15:04 ` Steve
@ 2011-09-08 15:20 ` Matt Corallo
2011-09-08 15:25 ` Steve Coughlan
2011-09-08 19:43 ` theymos
2 siblings, 1 reply; 18+ messages in thread
From: Matt Corallo @ 2011-09-08 15:20 UTC (permalink / raw)
To: bitcoin-development
On Thu, 2011-09-08 at 07:42 -0700, David Perry wrote:
> There has been some discussion on the new Bitcoin StackExchange site
> lately about the alert protocol. A few have suggested that it might
> carry the potential for abuse (spam/DoS) and others have argued that
> it's merely deprecated. In any case, enough have voiced concerns that
> I've forked bitcoin/bitcoin, removed the snippet of code from main.cpp
> that makes the questionable call and submitted a pull request. On that
> pull request it was noted by Gavin Andresen that it merited discussion
> here and some kind of consensus should be reached before acting on
> that pull request. It was also mentioned that he thought the feature
> was still more useful than dangerous and that he would argue against.
>
>
> So I pose the question to you fine fellows: Is the alert system
> valuable, an unnecessary risk or merely a snippet of deprecated code?
> Should it be removed?
The alert system requires a signature verification when it receives an
alert, but so do blocks and transactions so it really isn't a DoS target
(remember that the alert system requires alerts to be signed by a key
that only gavin and satoshi have).
The alert system could prove very, very valuable. In much software it
carries the risk for abuse or simply seems wrong that the developers can
send a message to everyone's computer to notify them of something, but
keep in mind that Bitcoin is financial software. If there is an urgent
problem (like the overflow bug) there must be a way to notify people to
upgrade immediately, which is exactly what alerts provide. Since alerts
no longer carry the ability to put Bitcoin into RPC safe-mode, they are
literally just a message and I see no reason why they should be removed.
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 15:20 ` Matt Corallo
@ 2011-09-08 15:25 ` Steve Coughlan
0 siblings, 0 replies; 18+ messages in thread
From: Steve Coughlan @ 2011-09-08 15:25 UTC (permalink / raw)
To: Matt Corallo; +Cc: bitcoin-development
[-- Attachment #1: Type: text/plain, Size: 2591 bytes --]
Who knows, it might be the only way we'll ever hear from Satoshi again.
On Sep 9, 2011 1:21 AM, "Matt Corallo" <bitcoin-list@bluematt•me> wrote:
> On Thu, 2011-09-08 at 07:42 -0700, David Perry wrote:
>> There has been some discussion on the new Bitcoin StackExchange site
>> lately about the alert protocol. A few have suggested that it might
>> carry the potential for abuse (spam/DoS) and others have argued that
>> it's merely deprecated. In any case, enough have voiced concerns that
>> I've forked bitcoin/bitcoin, removed the snippet of code from main.cpp
>> that makes the questionable call and submitted a pull request. On that
>> pull request it was noted by Gavin Andresen that it merited discussion
>> here and some kind of consensus should be reached before acting on
>> that pull request. It was also mentioned that he thought the feature
>> was still more useful than dangerous and that he would argue against.
>>
>>
>> So I pose the question to you fine fellows: Is the alert system
>> valuable, an unnecessary risk or merely a snippet of deprecated code?
>> Should it be removed?
>
> The alert system requires a signature verification when it receives an
> alert, but so do blocks and transactions so it really isn't a DoS target
> (remember that the alert system requires alerts to be signed by a key
> that only gavin and satoshi have).
>
> The alert system could prove very, very valuable. In much software it
> carries the risk for abuse or simply seems wrong that the developers can
> send a message to everyone's computer to notify them of something, but
> keep in mind that Bitcoin is financial software. If there is an urgent
> problem (like the overflow bug) there must be a way to notify people to
> upgrade immediately, which is exactly what alerts provide. Since alerts
> no longer carry the ability to put Bitcoin into RPC safe-mode, they are
> literally just a message and I see no reason why they should be removed.
>
>
>
------------------------------------------------------------------------------
> Doing More with Less: The Next Generation Virtual Desktop
> What are the key obstacles that have prevented many mid-market businesses
> from deploying virtual desktops? How do next-generation virtual desktops
> provide companies an easier-to-deploy, easier-to-manage and more
affordable
> virtual desktop model.http://www.accelacomm.com/jaw/sfnl/114/51426474/
> _______________________________________________
> Bitcoin-development mailing list
> Bitcoin-development@lists•sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
[-- Attachment #2: Type: text/html, Size: 3274 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 15:04 ` Steve
@ 2011-09-08 16:09 ` David Perry
2011-09-08 16:16 ` Matt Corallo
2011-09-08 16:20 ` Pieter Wuille
0 siblings, 2 replies; 18+ messages in thread
From: David Perry @ 2011-09-08 16:09 UTC (permalink / raw)
To: bitcoin-development
[-- Attachment #1: Type: text/plain, Size: 441 bytes --]
@Steve re "Who knows, it might be the only way we'll ever hear from Satoshi
again."
That brings up a good point... Does anyone aside from Satoshi actually have
the ability to send such an alert? Should we at the very least change the
alert system to give such privileges to current devs and ensure that that if
the missing Mr. Satoshi has had his key compromised we don't see an
authoritative-looking alert come up from a malicious source?
[-- Attachment #2: Type: text/html, Size: 673 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 16:09 ` David Perry
@ 2011-09-08 16:16 ` Matt Corallo
2011-09-08 16:20 ` Pieter Wuille
1 sibling, 0 replies; 18+ messages in thread
From: Matt Corallo @ 2011-09-08 16:16 UTC (permalink / raw)
To: bitcoin-development
On Thu, 2011-09-08 at 09:09 -0700, David Perry wrote:
> @Steve re "Who knows, it might be the only way we'll ever hear from
> Satoshi again."
>
>
> That brings up a good point... Does anyone aside from Satoshi actually
> have the ability to send such an alert?
Gavin does
> Should we at the very least change the alert system to give such
> privileges to current devs and ensure that that if the missing Mr.
> Satoshi has had his key compromised we don't see an
> authoritative-looking alert come up from a malicious source?
Meh, why make the key-holder send out two alerts for old clients and new
clients. I also highly doubt satoshi would let his key get compromised.
That said, keep in mind they are literally just messages, they make no
functional difference.
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 16:09 ` David Perry
2011-09-08 16:16 ` Matt Corallo
@ 2011-09-08 16:20 ` Pieter Wuille
2011-09-08 16:37 ` John Smith
1 sibling, 1 reply; 18+ messages in thread
From: Pieter Wuille @ 2011-09-08 16:20 UTC (permalink / raw)
To: David Perry; +Cc: bitcoin-development
On Thu, Sep 08, 2011 at 09:09:12AM -0700, David Perry wrote:
> @Steve re "Who knows, it might be the only way we'll ever hear from Satoshi
> again."
>
> That brings up a good point... Does anyone aside from Satoshi actually have
> the ability to send such an alert? Should we at the very least change the
> alert system to give such privileges to current devs and ensure that that if
> the missing Mr. Satoshi has had his key compromised we don't see an
> authoritative-looking alert come up from a malicious source?
Yes, Satoshi transferred the key to Gavin when he "left". I agree we should
keep it, btw. There have been suggestions before on this list to use the
alert system to ask people to upgrade to recent versions of the client (eg.
the disconnect issue 0.3.20-0.3.23 had). I feel there may come a moment when
we really need to use it for that purpose.
--
Pieter
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 16:20 ` Pieter Wuille
@ 2011-09-08 16:37 ` John Smith
2011-09-08 16:51 ` Mike Hearn
0 siblings, 1 reply; 18+ messages in thread
From: John Smith @ 2011-09-08 16:37 UTC (permalink / raw)
To: Pieter Wuille; +Cc: bitcoin-development, David Perry
[-- Attachment #1: Type: text/plain, Size: 2065 bytes --]
There is a lot of complaining about this alert system, but I really don't
see the problem.
As others have already said, it's just a message. Even if someone managed to
compromise the private key, the most they could do is spam graffiti messages
or try phishing. There are much worse things that could happen to the
network (in which case an alert system could come in very handy). It's just
not worth worrying about.
JS
On Thu, Sep 8, 2011 at 4:20 PM, Pieter Wuille <pieter.wuille@gmail•com>wrote:
> On Thu, Sep 08, 2011 at 09:09:12AM -0700, David Perry wrote:
> > @Steve re "Who knows, it might be the only way we'll ever hear from
> Satoshi
> > again."
> >
> > That brings up a good point... Does anyone aside from Satoshi actually
> have
> > the ability to send such an alert? Should we at the very least change the
> > alert system to give such privileges to current devs and ensure that that
> if
> > the missing Mr. Satoshi has had his key compromised we don't see an
> > authoritative-looking alert come up from a malicious source?
>
> Yes, Satoshi transferred the key to Gavin when he "left". I agree we should
> keep it, btw. There have been suggestions before on this list to use the
> alert system to ask people to upgrade to recent versions of the client (eg.
> the disconnect issue 0.3.20-0.3.23 had). I feel there may come a moment
> when
> we really need to use it for that purpose.
>
> --
> Pieter
>
>
> ------------------------------------------------------------------------------
> Doing More with Less: The Next Generation Virtual Desktop
> What are the key obstacles that have prevented many mid-market businesses
> from deploying virtual desktops? How do next-generation virtual desktops
> provide companies an easier-to-deploy, easier-to-manage and more affordable
> virtual desktop model.http://www.accelacomm.com/jaw/sfnl/114/51426474/
> _______________________________________________
> Bitcoin-development mailing list
> Bitcoin-development@lists•sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>
[-- Attachment #2: Type: text/html, Size: 2814 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 16:37 ` John Smith
@ 2011-09-08 16:51 ` Mike Hearn
2011-09-08 16:56 ` Alex Waters
2011-09-08 17:15 ` Luke-Jr
0 siblings, 2 replies; 18+ messages in thread
From: Mike Hearn @ 2011-09-08 16:51 UTC (permalink / raw)
To: John Smith; +Cc: bitcoin-development, David Perry
[-- Attachment #1: Type: text/plain, Size: 592 bytes --]
Alert system should be upgraded to pop up a dialog box every 30 minutes
whilst you're using the software.
Bitcoin is one of the few pieces of software I use that has no concept of
automatic updates or even notifications at all. Yet the network badly relies
on people upgrading for stability, scalability and to enable new features.
If the alert system goes away, it'd just end up being replaced by polling
something over HTTP, which is less decentralized than before. Having zero
way to communicate upgrades to end-users is a non-starter for anything
serious about mass market penetration.
[-- Attachment #2: Type: text/html, Size: 655 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 16:51 ` Mike Hearn
@ 2011-09-08 16:56 ` Alex Waters
2011-09-08 17:15 ` Luke-Jr
1 sibling, 0 replies; 18+ messages in thread
From: Alex Waters @ 2011-09-08 16:56 UTC (permalink / raw)
To: Mike Hearn; +Cc: bitcoin-development, David Perry
[-- Attachment #1: Type: text/plain, Size: 113 bytes --]
https://github.com/bitcoin/bitcoin/pull/506 has been closed pending
additional commits or a change in consensus.
[-- Attachment #2: Type: text/html, Size: 172 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 16:51 ` Mike Hearn
2011-09-08 16:56 ` Alex Waters
@ 2011-09-08 17:15 ` Luke-Jr
2011-09-08 17:33 ` John Smith
2011-09-08 19:25 ` Will
1 sibling, 2 replies; 18+ messages in thread
From: Luke-Jr @ 2011-09-08 17:15 UTC (permalink / raw)
To: bitcoin-development; +Cc: David Perry
On Thursday, September 08, 2011 12:51:02 PM Mike Hearn wrote:
> Bitcoin is one of the few pieces of software I use that has no concept of
> automatic updates or even notifications at all. Yet the network badly
> relies on people upgrading for stability, scalability and to enable new
> features.
>
> If the alert system goes away, it'd just end up being replaced by polling
> something over HTTP, which is less decentralized than before. Having zero
> way to communicate upgrades to end-users is a non-starter for anything
> serious about mass market penetration.
In fact, I think the alert system should relay (note, NOT display) messages
*regardless of the key used*, so it isn't yet another "our client gets special
status" thing, and can be used for other clients as well.
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 17:15 ` Luke-Jr
@ 2011-09-08 17:33 ` John Smith
2011-09-08 17:59 ` Luke-Jr
2011-09-08 19:25 ` Will
1 sibling, 1 reply; 18+ messages in thread
From: John Smith @ 2011-09-08 17:33 UTC (permalink / raw)
To: Luke-Jr; +Cc: bitcoin-development, David Perry
[-- Attachment #1: Type: text/plain, Size: 967 bytes --]
Be careful though, if you relay everything, it suddenly *does* have DDoS
potential...
JS
On Thu, Sep 8, 2011 at 5:15 PM, Luke-Jr <luke@dashjr•org> wrote:
> On Thursday, September 08, 2011 12:51:02 PM Mike Hearn wrote:
> > Bitcoin is one of the few pieces of software I use that has no concept of
> > automatic updates or even notifications at all. Yet the network badly
> > relies on people upgrading for stability, scalability and to enable new
> > features.
> >
> > If the alert system goes away, it'd just end up being replaced by polling
> > something over HTTP, which is less decentralized than before. Having zero
> > way to communicate upgrades to end-users is a non-starter for anything
> > serious about mass market penetration.
>
> In fact, I think the alert system should relay (note, NOT display) messages
> *regardless of the key used*, so it isn't yet another "our client gets
> special
> status" thing, and can be used for other clients as well.
>
[-- Attachment #2: Type: text/html, Size: 1315 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 17:33 ` John Smith
@ 2011-09-08 17:59 ` Luke-Jr
0 siblings, 0 replies; 18+ messages in thread
From: Luke-Jr @ 2011-09-08 17:59 UTC (permalink / raw)
To: John Smith; +Cc: bitcoin-development, David Perry
On Thursday, September 08, 2011 1:33:15 PM John Smith wrote:
> Be careful though, if you relay everything, it suddenly *does* have DDoS
> potential...
Maybe require a proof-of-work then?
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 17:15 ` Luke-Jr
2011-09-08 17:33 ` John Smith
@ 2011-09-08 19:25 ` Will
[not found] ` <3658b238-b1bf-4fde-8880-d50c3eaa8ed9@email.android.com>
1 sibling, 1 reply; 18+ messages in thread
From: Will @ 2011-09-08 19:25 UTC (permalink / raw)
To: Luke-Jr; +Cc: bitcoin-development, David Perry
[-- Attachment #1: Type: text/plain, Size: 712 bytes --]
> In fact, I think the alert system should relay (note, NOT display) messages
> *regardless of the key used*, so it isn't yet another "our client gets
> special
> status" thing, and can be used for other clients as well.
>
>
> Be careful though, if you relay everything, it suddenly *does* have DDoS
potential...
no more than other messages such as transactions.
>Maybe require a proof-of-work then?
kind of defeats the purpose of the alert if it takes a long time to issue
one.
I think leave the alert in, but relay alert messages even if they don't use
the correct key. This means that if we later decide to add new keys to the
alert root trust then older clients will still relay these.
my .02btc
Will
[-- Attachment #2: Type: text/html, Size: 1005 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 14:42 [Bitcoin-development] Alert System David Perry
2011-09-08 15:04 ` Steve
2011-09-08 15:20 ` Matt Corallo
@ 2011-09-08 19:43 ` theymos
2011-09-08 19:45 ` Luke-Jr
2 siblings, 1 reply; 18+ messages in thread
From: theymos @ 2011-09-08 19:43 UTC (permalink / raw)
To: bitcoin-development
The alert system will be very important if there are ever any critical
problems in the network. For example, it is currently Bitcoin's only
defense against an attacker with >50% of the computational power, where
alerts would be used to tell people to stop accepting transactions.
Displaying a message is pretty harmless. In fact, I don't think the
message is prominent enough. The GUI client should not allow people to
see received transactions or send new transactions while an alert is in
effect (with an opt-out), and there should be an opt-in feature that
puts RPC into safe mode in response to an alert.
Alerts are no worse than transactions as a DoS attack vector. They're
much safer than typical HTTPS because there are no CAs that can break
its security.
(FYI: I also have a copy of the alert key.)
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 19:43 ` theymos
@ 2011-09-08 19:45 ` Luke-Jr
2011-09-08 20:17 ` theymos
0 siblings, 1 reply; 18+ messages in thread
From: Luke-Jr @ 2011-09-08 19:45 UTC (permalink / raw)
To: bitcoin-development
On Thursday, September 08, 2011 3:43:12 PM theymos wrote:
> The alert system will be very important if there are ever any critical
> problems in the network. For example, it is currently Bitcoin's only
> defense against an attacker with >50% of the computational power, where
> alerts would be used to tell people to stop accepting transactions.
I don't seem to recall this ever happening, despite Deepbit having over 50%
multiple times now.
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
2011-09-08 19:45 ` Luke-Jr
@ 2011-09-08 20:17 ` theymos
0 siblings, 0 replies; 18+ messages in thread
From: theymos @ 2011-09-08 20:17 UTC (permalink / raw)
To: bitcoin-development
On Thursday, September 08, 2011 3:45 PM, "Luke-Jr" <luke@dashjr•org> wrote:
> I don't seem to recall this ever happening, despite Deepbit having over 50%
> multiple times now.
An alert would have been issued if they had abused that position.
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: [Bitcoin-development] Alert System
[not found] ` <3658b238-b1bf-4fde-8880-d50c3eaa8ed9@email.android.com>
@ 2011-09-09 9:15 ` Christian Decker
0 siblings, 0 replies; 18+ messages in thread
From: Christian Decker @ 2011-09-09 9:15 UTC (permalink / raw)
To: Bitcoin Development
[-- Attachment #1: Type: text/plain, Size: 2107 bytes --]
Resending to mailing list as I replied directly...
On Thu, Sep 8, 2011 at 11:03 PM, Christian Decker <
decker.christian@gmail•com> wrote:
>
>
> Will <will@phase•net> wrote:
>
> >> In fact, I think the alert system should relay (note, NOT display)
> >messages
> >> *regardless of the key used*, so it isn't yet another "our client
> >gets
> >> special
> >> status" thing, and can be used for other clients as well.
> >>
> >>
> >> Be careful though, if you relay everything, it suddenly *does* have
> >DDoS
> >potential...
> >
> >no more than other messages such as transactions.
> Only verified and valid trandactions are forwarded which is desired as it
> costs the sender a fee if he attempts to spam, messages have no such
> penalty.
> >
> >>Maybe require a proof-of-work then?
> >
> >kind of defeats the purpose of the alert if it takes a long time to
> >issue
> >one.
> >
> >I think leave the alert in, but relay alert messages even if they don't
> >use
> >the correct key. This means that if we later decide to add new keys to
> >the
> >alert root trust then older clients will still relay these.
> >
> >my .02btc
> >
> >Will
> I'm for keeping it in there as well, maybe even extend it with a mechanism
> to sign other certificates giving alternative client developers the ability
> to issue their own alerts. Think ssl certificates...
>
> Regards,
> Chris
>
> >------------------------------------------------------------------------------
> >Doing More with Less: The Next Generation Virtual Desktop
> >What are the key obstacles that have prevented many mid-market
> >businesses
> >from deploying virtual desktops? How do next-generation virtual
> >desktops
> >provide companies an easier-to-deploy, easier-to-manage and more
> >affordable
> >virtual desktop
> >model.
> http://www.accelacomm.com/jaw/sfnl/114/51426474/_______________________________________________
> >Bitcoin-development mailing list
> >Bitcoin-development@lists•sourceforge.net
> >https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>
> --
> Sent from my Android phone with K-9 Mail. Please excuse my brevity.
>
[-- Attachment #2: Type: text/html, Size: 3116 bytes --]
^ permalink raw reply [flat|nested] 18+ messages in thread
end of thread, other threads:[~2011-09-09 9:16 UTC | newest]
Thread overview: 18+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-09-08 14:42 [Bitcoin-development] Alert System David Perry
2011-09-08 15:04 ` Steve
2011-09-08 16:09 ` David Perry
2011-09-08 16:16 ` Matt Corallo
2011-09-08 16:20 ` Pieter Wuille
2011-09-08 16:37 ` John Smith
2011-09-08 16:51 ` Mike Hearn
2011-09-08 16:56 ` Alex Waters
2011-09-08 17:15 ` Luke-Jr
2011-09-08 17:33 ` John Smith
2011-09-08 17:59 ` Luke-Jr
2011-09-08 19:25 ` Will
[not found] ` <3658b238-b1bf-4fde-8880-d50c3eaa8ed9@email.android.com>
2011-09-09 9:15 ` Christian Decker
2011-09-08 15:20 ` Matt Corallo
2011-09-08 15:25 ` Steve Coughlan
2011-09-08 19:43 ` theymos
2011-09-08 19:45 ` Luke-Jr
2011-09-08 20:17 ` theymos
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox