Alex on Nostr: If Outbox implementations open connections to random relays automatically, attackers ...
If Outbox implementations open connections to random relays automatically, attackers can plant relay hints to malicious or dysfunctional relays.
The outbox implementation has to track metrics about each relay and disconnect automatically. This is the trade-off. If it's smart enough to connect automatically, it has to be smart enough to disconnect automatically. Otherwise the implementation is just vulnerable.
Hardly anyone talks about this. But I am having trouble getting performance under control as it is. So why would I implement outbox unless it's locked down.
The outbox implementation has to track metrics about each relay and disconnect automatically. This is the trade-off. If it's smart enough to connect automatically, it has to be smart enough to disconnect automatically. Otherwise the implementation is just vulnerable.
Hardly anyone talks about this. But I am having trouble getting performance under control as it is. So why would I implement outbox unless it's locked down.