aMule Forum

Please login or register.

Login with username, password and session length
Advanced search  

News:

We're back! (IN POG FORM)

Author Topic: KAD network attack  (Read 3809 times)

lorey

  • Approved Newbie
  • *
  • Karma: 0
  • Offline Offline
  • Posts: 13
KAD network attack
« on: April 22, 2009, 02:16:57 PM »

Note for developers:

This person has found a way to attack the entire KAD network using only a limited amount of bandwidth.

Maybe, developers might read the case study and  find a way to prevent this?

http://www-users.cs.umn.edu/~kyd/node/150
Logged

GonoszTopi

  • The current man in charge of most things.
  • Administrator
  • Hero Member
  • *****
  • Karma: 166
  • Offline Offline
  • Posts: 2683
Re: KAD network attack
« Reply #1 on: April 22, 2009, 03:13:31 PM »

Logged
concordia cum veritate

lfroen

  • Guest
Re: KAD network attack
« Reply #2 on: April 22, 2009, 06:34:57 PM »

Logged

Festor

  • Hero Member
  • *****
  • Karma: 79
  • Offline Offline
  • Posts: 940
  • Offline -> Studying...
Re: KAD network attack
« Reply #3 on: April 22, 2009, 07:01:44 PM »

wuischke

  • Developer
  • Hero Member
  • *****
  • Karma: 183
  • Offline Offline
  • Posts: 4319
Re: KAD network attack
« Reply #4 on: April 22, 2009, 07:24:21 PM »

"The fucking article", it's slashdot jargon.

Anyway, both eMule and aMule developers already reacted on the paper's findings with updates to the Kademlia code.
Logged

Kry

  • Ex-developer
  • Retired admin
  • Hero Member
  • *****
  • Karma: -665
  • Offline Offline
  • Posts: 5822
Re: KAD network attack
« Reply #5 on: April 22, 2009, 07:25:58 PM »

You're jumping to conclusions.
Did you actually read TFA?

Did you actually notice the date of the article and our changelog entries? No? I didn't think so.
Logged

lfroen

  • Guest
Re: KAD network attack
« Reply #6 on: April 22, 2009, 09:05:06 PM »

Article is from 07-2008 which is about 9 months ago. Pretty recent, I say. Since I don't know what to look in changelog, dates on entries are not really helpful.
I you wanted to say "issue is know and been/being addressed" - why don't just say so?
Logged

Kry

  • Ex-developer
  • Retired admin
  • Hero Member
  • *****
  • Karma: -665
  • Offline Offline
  • Posts: 5822
Re: KAD network attack
« Reply #7 on: April 22, 2009, 09:14:29 PM »

Because you didn't know why Gonosz was saying what he was saying. If you wanted to say "Actually the article mentions several attack vectors to the Kad network, are those fixed or being addressed?" - why didn't just say so?

Because we're all pricks, lfroen. We're aaaall pricks.
Logged

GonoszTopi

  • The current man in charge of most things.
  • Administrator
  • Hero Member
  • *****
  • Karma: 166
  • Offline Offline
  • Posts: 2683
Re: KAD network attack
« Reply #8 on: April 23, 2009, 10:21:05 AM »

Article is from 07-2008 which is about 9 months ago. Pretty recent, I say. Since I don't know what to look in changelog, dates on entries are not really helpful.

Issue had been addressed in eMule0.49b/aMule 2.2.2.

Quote from: Changelog
Several changes were made to Kad in order to defy routing attacks researched by University of Minnesota guys [Peng Wang, James Tyra, Eric Chan-Tin, Tyson Malchow, Denis Foo Kune, Nicholas Hopper, Yongdae Kim]
Logged
concordia cum veritate

lorey

  • Approved Newbie
  • *
  • Karma: 0
  • Offline Offline
  • Posts: 13
Re: KAD network attack
« Reply #9 on: April 23, 2009, 11:20:46 AM »

You're jumping to conclusions.
Did you actually read TFA?

Did you actually notice the date of the article and our changelog entries? No? I didn't think so.

Well, yes I do actually. But this is the first line in the 2.2.4 changelog:
Plugged various memory leaks.

How can I know if this entry can refer to the article I mentioned? I don't know C++ either to check. In any case, I mentioned the article just in case you guys didn't know about it, which just by looking at some of your posts, some of you didn't.

Thanks for addressing the issues in the article promptly in aMule 2.2.2 :)
Logged

Kry

  • Ex-developer
  • Retired admin
  • Hero Member
  • *****
  • Karma: -665
  • Offline Offline
  • Posts: 5822
Re: KAD network attack
« Reply #10 on: April 23, 2009, 03:25:07 PM »

You know, I wasn't even talking to you in that post.
Logged