Ticket #136 (new defect)

Opened 3 years ago

Last modified 2 years ago

Protocol needs host authentication mechanism

Reported by: KevinLai Owned by: KevinLai
Priority: normal Milestone: 1.0.0 Unscheduled
Component: Auctioneer Version:
Severity: normal Keywords:
Cc:

Description

The current host create_account operation can be replayed to another host owned by the same user. We were previously disambiguating hosts by using the destination IP address of the create_account operation. However, this fails when the host is NAT-ed because it thinks that the destination IP address that the client is using is not its address.

Change History

Changed 2 years ago by KevinLai

  • milestone changed from 1.0.0 to 0.4.7 Revise Tycoon Protocol

Changed 2 years ago by KevinLai

  • milestone changed from 0.5.0 Revise Tycoon Protocol to 0.4.4 SLS Enhancements

Changed 2 years ago by KevinLai

  • milestone changed from 0.4.4 SLS Enhancements to 0.4.2 Usability and Reliability

Milestone 0.4.4 SLS Enhancements deleted

Changed 2 years ago by KevinLai

  • milestone changed from 0.5.0 Usability and Reliability to 1.0.0 Unscheduled
Note: See TracTickets for help on using tickets.