Conversation
Notices
-
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 05:02:01 JST Alex Gleason Requiring proof-of-work to register an account. -
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 05:05:35 JST Alex Gleason POW will obliterate spam. The key is to make all requests require it just a little bit, not just signup. Combined with IP rate limiting it will be impenetrable. -
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 05:08:22 JST Alex Gleason https://gitlab.com/soapbox-pub/ditto/-/merge_requests/39 -
Embed this notice
lamp (lamp@kitty.haus)'s status on Monday, 11-Sep-2023 05:16:46 JST lamp @alex requiring 20 prisoner of war to register an account Alex Gleason likes this. -
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 05:16:51 JST Alex Gleason @lamp Now we're talking. -
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 06:53:37 JST Alex Gleason @Bytecode All endpoints need POW for it to be effective. They can get through the door but they can't do anything. -
Embed this notice
Blob Jim (bytecode@blob.cat)'s status on Monday, 11-Sep-2023 06:53:38 JST Blob Jim @alex it seems like if it’s too easy, determined spammers will just do it, and if it’s too difficult legitimate users will avoid nosting -
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 07:00:38 JST Alex Gleason @Hoss @Bytecode The method used here is almost exactly like BasedFlare: https://gitgud.io/fatchan/haproxy-protection/ which is used by Kiwi Farms.
You basically arrange the fields in the event (or Request) in a deterministic order, add a random number to the end, hash the whole thing, and repeat until the hash has X "0" bits when converted into binary. It's based on probability. -
Embed this notice
Hoss Delgado (hoss@shitpost.cloud)'s status on Monday, 11-Sep-2023 07:00:39 JST Hoss Delgado I think Kiwi Farms was also able to mitigate some of the higher-level methods of DDOS with PoW. In conversation permalink -
Embed this notice
Hoss Delgado (hoss@shitpost.cloud)'s status on Monday, 11-Sep-2023 07:03:53 JST Hoss Delgado It's kinda weird that nobody invented the PoW scheme for these kinds of use cases before Satoshi did. In conversation permalink Alex Gleason likes this. -
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 07:05:19 JST Alex Gleason @Hoss @Bytecode The truth would surprise you then. Satoshi based Bitcoin off an anti-spam algorithm called Hashcash: https://en.wikipedia.org/wiki/Hashcash
So it's the other way around. Somebody figured out how to fight spam with it first, then it turned into magical internet money.In conversation permalink Attachments
-
Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Monday, 11-Sep-2023 07:21:10 JST Alex Gleason The entire stack for Nostr POW is 52 lines of code: https://github.com/nbd-wtf/nostr-tools/blob/master/nip13.ts In conversation permalink Attachments
-
Embed this notice