30 Jul
2016
30 Jul
'16
5 p.m.
whoops, didn't reply-all. On Sat, Jul 30, 2016 at 1:00 PM, Nick Mathewson <nickm@alum.mit.edu> wrote:
On Sat, Jul 30, 2016 at 9:32 AM, George Kadianakis <desnacked@riseup.net> wrote: [...]
Please let me know in what way this scheme is completely broken!
I think it has the same problem as the last one: there does not appear to be a way to keep an attacker from putting their own record in place using your query_key, and thereby performing a DoS on your hidden service.
-- Nick