Avatar rate limiting #1524
Comments
|
I think it might be simpler to just opt out of receiving avatar data entirely, which a mobile user may not really want or care about in the first place. |
|
Well, avatar should be - at most - 64kB (I think). Unless someone is literally switching avatars every second, maliciously, there should be no problem receiving 64kB from your contacts. Even if you had 50 contacts, you'd still only use ~3MB in total on avatar data, which I think is negligible. Avatars are important for some people; if a toggle should exist, it should be a per-user toggle, just so you can block that one jerk that keeps changing his avatar to spam you with avatar data - but you just don't want to remove him from your contact list. |
@Zer0-One don't clients already have the ability to rate limit the receiving of avatar data? I thought toxcore provided a way for clients to say "no, I don't want to receive you avatar image (perhaps because I already have it cached or I rate limit avatars)". |
|
@Zer0-One no, this is a client issue. avatars are just file data to toxcore. The client must explicitly send, and accept avatars. If your client wants to save data on avatars, you should either leave the data pending until you actually need it. Or just cancel the first avatar request when I client connects. Or per @LittleVulpix's suggestion, identify buggy clients and ignore avatars from them. If I've missed something let me know and I'll reopen this. Otherwise, closed client issue. |
|
If you care about traffic usage and want something fixed in toxcore rather than in a client, I'd bring up the following issue instead of avatars:
|
|
Maybe that's just a very subjective view, but I say: if your friends do that to you, then get better friends. |
|
@LuccoJ you're not wrong, but if toxcore provides an API for abuse, is should also try to limit its damage just a little. |
|
I guess it's pretty much true about any packets, the custom friend packets are not that special. Name, status message, text, etc. There is nothing you can do to stop people from spamming any of those except removing them from the friend list. The issue is that you might not know which friend generates all that spam. Your client might not provide visual feedback for the custom friend packets, or a friend might be constantly changing the name to the exactly same one, so unless your client shows "X is now known as Y" every time a name is changed -- you won't even notice this. These are just a few of examples when you might not know who of your friends generates all that spam traffic. |
|
Then the client should show some indication. Information should never be dropped without asking first. |
Clients should have the ability to rate limit the receiving of avatar data. Mobile data users are susceptible to having their bandwidth usage maxed out due to spammed avatar changes.
The text was updated successfully, but these errors were encountered: