Does cabal have any sort of flooding resistance? #97
Description
from bashrc in the public cabal:
I was wondering if this is vulnerable to the same failure modes as irc. In irc without any logins to a central server the adversary can create a million accounts and have them all pump out garbage as a denial of service. Some of that was documented in the Snowden leaks.
i answered:
not really, flooding is hard to disambiguate for p2p distributed systems
what's the diff between someone flooding and someone coming online after a lengthy (but message-producing) internet absence
the resistance would be moderation actions as applied to flooders
other approaches could also temporarily restrict connections to only known ids (to prevent e.g. raids)