Defending against DDoS attacks that involve announcing fake torrents #1033
josecelano
started this conversation in
Feature requests
Replies: 1 comment
-
Proposal 1: Use a client to check that the peer has the torrentThis can consume even more resources because you need a BitTorrent client integrated with the tracker and at least try to download a piece from the peer. However, it would also be easy for the attacker to seed the torrent. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Relates to: torrust/torrust-demo#12
We have discussed this before in meetings, but it's not documented in GitHub.
Attackers can announce any random infohash using a single IP. There are no limits.
That can increase memory consumption and database records if persistence is enabled for torrents stats.
I will add the proposal I remember.
cc @da2ce7
Beta Was this translation helpful? Give feedback.
All reactions