Author: Peter Todd 2013-08-16 14:06:35
Published on: 2013-08-16T14:06:35+00:00
Warren Togami Jr. suggested a method to mitigate DoS attacks on Bitcoin nodes by limiting the number of TCP connections from a single IP address or subnet using an iptables firewall-based example. Although this method has almost no drawbacks, it is too complicated for most people to deploy and may block legitimate connections. Configurable limits with sane defaults enforced by bitcoind itself would be a significant improvement over the current situation where one host address can consume limited resources of many target nodes. Peter Todd replied, suggesting the application of IP diversity tests for outgoing connections to incoming connections as the code is already available.
Updated on: 2023-06-07T15:59:49.818948+00:00