DHKold wrote:May I ask why you don't simply read the official bittorrent protocol? It's not very complicated
Free labor.
Moderator: NBJeff
paktsardines wrote:As Chris' post suggests, knowledge != experience.
Plus, I'm pretty sure Chris has better things to worry about.
Harmonica wrote:Bear in mind that a lot of ISPs if not all now throttle down torrent type connections as a matter of course, because they are run or subsidised by people who fear that kind of technology.
Many games have used p2p connections and they all suffer the effects of this, most notably Blizzard earlier this year with Diablo 3 which was rendered unusable for a period in the UK because of the protocols it used, which were being throttled down.
Matters more for online only games, obviously, but still if your userbase is primarily updating via torrents they will be affected by these practices.
ronanc wrote:lukegb wrote:It's a very simple protocol, but it can have horrific consequences if implemented incorrectly.
Horrific how? Sounds interesting...
lukegb wrote:ronanc wrote:lukegb wrote:It's a very simple protocol, but it can have horrific consequences if implemented incorrectly.
Horrific how? Sounds interesting...
You can influence the BitTorrent swarm to DDoS random addresses of your choice, by inserting peers into the swarm if Peer EXchange is enabled. Peer Exchange is a way for torrents (usually trackerless ones) to spread themselves about by allowing the peers to tell each other where the other peers for that torrent are. If you implement PEX yourself or use a library that implements it, you need to make sure that they don't inadvertently allow you to do that, usually by blocking access to ports < 1024 - which is more of a workaround than a fix.
Of course, that's less of an issue with smaller swarms, but if you can get many big swarms to all do this...
See "Lying to the Neighbours" presented at the 27th CCC.
Basically, it's never a good idea to implement BitTorrent yourself - you should always use an established library to do it, like libtorrent, because there are loads of small niggles and things which can easily be got wrong, and can either lead to "proper" torrent clients causing data corruption (which is a non-issue, because the hashes won't match, but it will cause lots of additional data to be sent to make up for the corrupted data, depending on your piece size), or issues like allowing evil peers to cause the swarm to DDoS somewhere.
Users browsing this forum: No registered users and 21 guests