07bbe7d340
Currently, the satellite tracks connectivity information about all nodes that have contacted it, even if we have never successfully contacted the node back. This behavior was leveraged during a security audit to create hundreds of thousands of "junk nodes" in the nodes table on one satellite, which affected performance of queries such as node selection. With this change, we should no longer track information about nodes that have never been successfully contacted. Note that it will still be possible to cause the creation of "junk node" entries in the db; the attacker just has to set up individual publicly-routable IP+port pairs for each node as it is created, so it can respond to a PingBack. Change-Id: Ibb6da6cc908fd4fc85aae1ba00313ba2738409ab |
||
|---|---|---|
| .. | ||
| straynodes | ||
| benchmark_test.go | ||
| checkin_test.go | ||
| config.go | ||
| db_test.go | ||
| downloadselection_test.go | ||
| downloadselection.go | ||
| peeridentities_test.go | ||
| peeridentities.go | ||
| piececount_test.go | ||
| selection_test.go | ||
| service_test.go | ||
| service.go | ||
| statdb_test.go | ||
| uploadselection_test.go | ||
| uploadselection.go | ||