Cconvert2G36
Sr. Member
****
Offline Offline

Activity: 392
Merit: 250


View Profile Personal Message (Offline)

Ignore
February 16, 2016, 08:03:51 AM

We aren't talking about malicious mining nodes (much more dangerous, even all by themselves, somewhat safe tho because incentives), we are talking about malicious NMN. The careful reader will see you have, as yet, not presented the relevant security hole.

I was giving a list of problems malicious NMN can have with regards to attack vectors. If a NMN has a valid blockchain boostrapped they will reject a malicious mining node block. Thus a NMN matters specifically because this attack can occur in a coordinated fashion. They are dependent upon each other.

So nodes receiving their first block ever, right at the moment this dastardly attack occurs... might be vulnerable to downloading a fake ledger, with replicated signatures and pow? And... a malicious miner is mining blocks valid to that chain? Kinda off into the weeds, no?

0 conf is already understood to be insecure, and is about to be officially and fully deprecated.

Yet most tx's are 0 conf... Until people start using payment channels this will continue to be a problem. This is wht segwit needs to be deployed ASAP, to fix most of the problems with malleability so payment channels can mature.

Yes, I know you want payment channels to be accepted into the market, I do too actually (once that whole routing issue is solved). Not against a form of segwit going forward either. We disagree on the part where Core devs should become central planners setting tx prices for miners, to pseudo-economically favor second layer solutions that compete with miners for fees.

 
You do understand that a full node verifies signatures? It will not accept false blocks, even from all 8 connected peers. So the worst case scenario is that it has to drop/ban several malicious peers before it finds a good one.

If the full node is bootstrapped from a pool of malicious nodes it can verify a false block. There is a good reason outbound is restricted to one IP address per /16 .

See above, care to hazard a guess on the number of brand new nodes receiving their first block today?