[Standards] Proposed XMPP Extension: Best Practices to Discourage Denial of Service Attacks Against XMPP Servers

Daniel Noll daniel at noll.id.au
Tue Jan 23 21:08:16 UTC 2007


On Wednesday 24 January 2007 06:50, Nicholas Parker wrote:
> I'm not terribly clear on what is meant by Karma in the XEP, the following
> assumes that it goes by the common definition of 'ratings applied to users
> on a network': Karma is also prone to DOS, in the form of coordinated
> attacks against individuals by having multiple people 'de-Karma' a given
> target.

Could one organise a system where responses to someone else's query aren't 
counted towards the responder's score?  As it isn't actually their fault for 
the data, it seems unreasonable to even count it towards their limit.

Daniel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mail.jabber.org/pipermail/standards/attachments/20070124/8b5bef7f/attachment.sig>


More information about the Standards mailing list