There is no way to do a DoS attack on Amethyst.
Discussion
You mean on #Nostr?
No, on the app itself. There are no online servers like the others do.
So, what would a hacker have to do to shut it down?
They can't. If you have the app on your phone, there is no way to block it from operating.
Not even if I compromise all of your accounts and delete all the githubs and pull the app from the appstore?
That's probably the only way.
I still have the app installed...
Whover has the app will continue to use it :) You can also take it from any of our current 140 forks.
There are no accounts to compromise at Amethyst. They will have to hit each individual phone, steal the private key, and delete everything from each user.
.... nice. :)
That feels like it'd be too much effort for most people.... unless you can find a shortcut to stealing all the keys... where/how are they stored?
They are stored in the encrypted sandbox of each phone. Not even other apps can access it.
That's good... But even if someone stole the keys, it's not like they can gain any information that they couldn't already. The only use would be to post as someone else.
The only thing I can think that would be possible and worth someone's time would be to change the code and make it malicious.
I love #amethyst but this is fakenews. There is an amethyst server: counter.amethyst.social and it's used to gather a per note view count:
With enough effort, it can definitely be DDOSed 😝
Yeah relays are the attack surface. Does the app do much without relays?
#AttackRelays
Perhaps this can be a good stress-test event =3