Received: from sog-mx-1.v43.ch3.sourceforge.com ([172.29.43.191] helo=mx.sourceforge.net) by sfs-ml-3.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1YsGWR-0002QA-9k for bitcoin-development@lists.sourceforge.net; Tue, 12 May 2015 20:11:23 +0000 Received-SPF: pass (sog-mx-1.v43.ch3.sourceforge.com: domain of bitpay.com designates 209.85.218.44 as permitted sender) client-ip=209.85.218.44; envelope-from=jgarzik@bitpay.com; helo=mail-oi0-f44.google.com; Received: from mail-oi0-f44.google.com ([209.85.218.44]) by sog-mx-1.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1YsGWQ-0001eV-64 for bitcoin-development@lists.sourceforge.net; Tue, 12 May 2015 20:11:23 +0000 Received: by oign205 with SMTP id n205so15199050oig.2 for ; Tue, 12 May 2015 13:11:16 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=6rigav3kInpRoKNJPALSWr8VvYIvgGWoZvOWcdZ45Lg=; b=ZP71Nj0MpxOKU0S5ldIwTo4PAYiMtge2oKGC142Gi1sVacSu1CT4/aJWQahGDFrpND EMDi8F6jyVdmTtqJnu6U2dG4aBjA9tiurFofbkFr/udypRb+gzpB1wSP4K7usDwmX9Uy YD/u9QirS5OlYMXZIbERX/krr5ENJQnbqxDGD4xAHKdU4LCHeNQjo1Cjv2qfUFx/9w0f 0VIcuD4kyx66NgJnBs8YOLMph5gJwpWshelARvfrUvQ/uQZylpYC6mbKT2pu3/uJj0i7 n6/FUlXlc9HwdhiecPo3WEfPVgYSCvX5xWnzArmEuSKqDh5IcDCv/SJQLZho0x1MqwaO tWsQ== X-Gm-Message-State: ALoCoQlupvx4j0oNNl324J56jmUuhFwfUotnqtT8xzvai1r8ieRc1KF3jZcgwtNfrwhy5O3w3uR1 X-Received: by 10.182.86.9 with SMTP id l9mr4408179obz.61.1431461476536; Tue, 12 May 2015 13:11:16 -0700 (PDT) MIME-Version: 1.0 Received: by 10.202.108.149 with HTTP; Tue, 12 May 2015 13:10:56 -0700 (PDT) In-Reply-To: References: <20150512171640.GA32606@savin.petertodd.org> From: Jeff Garzik Date: Tue, 12 May 2015 13:10:56 -0700 Message-ID: To: Gregory Maxwell Content-Type: multipart/alternative; boundary=089e014954c8d1a48f0515e818f8 X-Spam-Score: -0.6 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain -0.0 SPF_PASS SPF: sender matches SPF record 1.0 HTML_MESSAGE BODY: HTML included in message -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature X-Headers-End: 1YsGWQ-0001eV-64 Cc: Bitcoin Dev Subject: Re: [Bitcoin-development] Proposed additional options for pruned nodes X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 May 2015 20:11:23 -0000 --089e014954c8d1a48f0515e818f8 Content-Type: text/plain; charset=UTF-8 True. Part of the issue rests on the block sync horizon/cliff. There is a value X which is the average number of blocks the 90th percentile of nodes need in order to sync. It is sufficient for the [semi-]pruned nodes to keep X blocks, after which nodes must fall back to archive nodes for older data. There is simply far, far more demand for recent blocks, and the demand for old blocks very rapidly falls off. There was even a more radical suggestion years ago - refuse to sync if too old (>2 weeks?), and force the user to download ancient data via torrent. On Tue, May 12, 2015 at 1:02 PM, Gregory Maxwell wrote: > On Tue, May 12, 2015 at 7:38 PM, Jeff Garzik wrote: > > One general problem is that security is weakened when an attacker can > DoS a > > small part of the chain by DoS'ing a small number of nodes - yet the > impact > > is a network-wide DoS because nobody can complete a sync. > > It might be more interesting to think of that attack as a bandwidth > exhaustion DOS attack on the archive nodes... if you can't get a copy > without them, thats where you'll go. > > So the question arises: does the option make some nodes that would > have been archive not be? Probably some-- but would it do so much that > it would offset the gain of additional copies of the data when those > attacks are not going no. I suspect not. > > It's also useful to give people incremental ways to participate even > when they can't swollow the whole pill; or choose to provide the > resource thats cheap for them to provide. In particular, if there is > only two kinds of full nodes-- archive and pruned; then the archive > nodes take both a huge disk and bandwidth cost; where as if there are > fractional then archives take low(er) bandwidth unless the fractionals > get DOS attacked. > -- Jeff Garzik Bitcoin core developer and open source evangelist BitPay, Inc. https://bitpay.com/ --089e014954c8d1a48f0515e818f8 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
True.=C2=A0 Part of the issue rests on the block sync hori= zon/cliff.=C2=A0 There is a value X which is the average number of blocks t= he 90th percentile of nodes need in order to sync.=C2=A0 It is sufficient f= or the [semi-]pruned nodes to keep X blocks, after which nodes must fall ba= ck to archive nodes for older data.

There is simply far,= far more demand for recent blocks, and the demand for old blocks very rapi= dly falls off.

There was even a more radical suggest= ion years ago - refuse to sync if too old (>2 weeks?), and force the use= r to download ancient data via torrent.


=

On Tu= e, May 12, 2015 at 1:02 PM, Gregory Maxwell <gmaxwell@gmail.com>= wrote:
On Tue, M= ay 12, 2015 at 7:38 PM, Jeff Garzik <jgarzik@bitpay.com> wrote:
> One general problem is that security is weakened when an attacker can = DoS a
> small part of the chain by DoS'ing a small number of nodes - yet t= he impact
> is a network-wide DoS because nobody can complete a sync.

It might be more interesting to think of that attack as a bandwidth<= br> exhaustion DOS attack on the archive nodes... if you can't get a copy without them, thats where you'll go.

So the question arises: does the option make some nodes that would
have been archive not be? Probably some-- but would it do so much that
it would offset the gain of additional copies of the data when those
attacks are not going no. I suspect not.

It's also useful to give people incremental ways to participate even when they can't swollow the whole pill; or choose to provide the
resource thats cheap for them to provide.=C2=A0 In particular, if there is<= br> only two kinds of full nodes-- archive and pruned; then the archive
nodes take both a huge disk and bandwidth cost; where as if there are
fractional then archives take low(er) bandwidth unless the fractionals
get DOS attacked.



--
Jeff Garzik
Bitcoin core developer and open source = evangelist
BitPay, Inc. =C2=A0 =C2=A0 =C2=A0https://bitpay.com/
--089e014954c8d1a48f0515e818f8--