Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
SECURITY - Fixes need to identity exchange #133
We need to re-home it on TLS - This will mean getting rid of wrongPeer errors all together and just using TLS to validate identity.
Request Delay - In order to slow down attacks we need to make sure the smallHashStateMachine will only make cb and rnmine requests at the rate of 1 per second.
Response Delay - In order to slow down certain attacks the largeHashStateMachine needs to only accept cb and rnmine requests at the rate of 1 per second. Also note that the current request handling code is purely synchronous so we don't have to worry about handling multiple requests simultaneously, the delay feature will change that. So be aware.