Cooeee testing testing for bots
Discussion
for testing Cooeee bots testing
Proof of work destroys you, but you know this already, right?
So are these the new reply guys?
Seems like it
It's a little hard to believe they were able to make something even stupider, but they have.
The new bots seem perhaps more difficult to block / find workarounds for..?
They don't have a nip05 in common, nor a phrase to block.
I wonder if it's another dev teaching is another leason
I think so…
Yeah. Its seems to even be getting around my timing filter somehow.
Didn't know there was a timing filter. Sounds like a good idea
Its part of freelays spam filter.
Most bots reply in under a second, so I think I have it set Where if an npub replies to a post within a second or two, it's probably not an actual human, so it drops the post.
you'll need to make that based on the time between receiving rather than the timestamps or the bots will send them in a second with 5 seconds later on the timestamp and same problem again
Oooohh That's probably it.
self declared timestamps are always lies, and so many algorithms tolerate quite wide variance, you need a time skew detection to really get that right which is a several seconds long process of sending timestamps back and forward until you get a stable average
the verge cryptocurrency ran into a huge problem that enabled the first real world timewarp attack due to a network time consensus
i'm pretty sure satoshi said something about how timestamps can't be trusted but you also have to draw a line somewhere, i think bitcoin block timestamps are allowed to be as much as an hour out of order, but legit timestamps should really never vary more than about 12 seconds
Its the best part of nostr tbh. The creative spam. You just can't get this anywhere else.
Reply gal broke my heart 🥺
They will eventually go away if no one gives them sats
They might be here to cause annoyance and not get sats tho(?)
That's the thing though, there's no proof of work required to post on the nostr. That's probably the answer, ultimately, as if we require a certain amount of proof of work, because then you can't post indiscriminately. Are you willing to let your cell phone battery get hit by some computation to post your note? Probably. But if you want to post multiple times a second so that you can spam people, it's different.
I’ve only seen them on Damus and primal relay so far. Maybe a paid relay lesson? 🤷🏾♂️
I do think your theory of this being a gray hat attack is actually somewhat valid.
It's fairly benign, but at the same time it's exposing an obvious vulnerability. So maybe someone who realized nostr needs to understand "this", implemented "this". But in the most obvious way, which makes me think, you may really be on to something. Someone's probably doing this big favor.
Web Of Trust reporting still works against them