GrapheneOS on Nostr: Both the official documentation for netfilter (iptables/nftables) on connection ...
Both the official documentation for netfilter (iptables/nftables) on connection limits and every guide we've found are vulnerable to all 3 of the attacks described above. There's info on using synproxy, but not combining it with connection limits or rate limiting it kicking in.
Published at
2024-04-16 15:03:19Event JSON
{
"id": "8fe4f314d4c9f1fd349c522ef3652de02425c7d5393e52f2ea4fcd4e5e5dec68",
"pubkey": "5468bceeb74ce35cb4173dcc9974bddac9e894a74bf3d44f9ca8b7554605c9ed",
"created_at": 1713279799,
"kind": 1,
"tags": [
[
"e",
"96487e0bccd3284bf6e82a9efceb16c649e3b00ad5f92150e7638a217a024494",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://grapheneos.social/users/GrapheneOS/statuses/112281504925744502",
"activitypub"
]
],
"content": "Both the official documentation for netfilter (iptables/nftables) on connection limits and every guide we've found are vulnerable to all 3 of the attacks described above. There's info on using synproxy, but not combining it with connection limits or rate limiting it kicking in.",
"sig": "da26b32b6ed91facf3e7875a7ff116b70e231be0d4127e53b1b9ce6e273a9e20893624fdd4d508f9e6062a0809e86fe9b3f0420a3a66c0ed1a2390224f92b0cc"
}
