Vulnerable Settings for DoS Attack
CharesFang opened this issue · comments
This issue backports for Bitcoin PR#16152. There is an inappropriate setting that was founded recently in path src/validation.h
.
According to the original PR#16152 of Bitcoin shown below, the NODE_BLOOM
service flag is added as default and it should be disabled for security considerations.
BIP 37 bloom filters have been well-known to be a significant Do target for some time. However, in order to provide continuity for SPV clients relying on it, the NODE_BLOOM service flag was added, and left as a default, to ensure sufficient nodes exist with such a flag.
For more details, please refer to the Bitcoin original commit 5efcb772.
Reported by de957ad9679f28a38f02f00cc7928bce8fb424882ff060a3c09c32895b1474cc
.