Ethereum is under attack again.
Following denial of service attacks on the ethereum network last year, which were stopped with a pair of forks in which all miners upgraded to a network with new rules, an attacker has picked an easier target to spam: Ropsten, the ethereum testing network.
Similar to the main network, save a few details, the testnet is a network where developers can test their decentralized apps, or âdapps,â to simulate what would happen on the main network and determine if their dapps are working properly.
Since January, an anonymous miner has been clogging the network with spam to such a degree that itâs hard for developers to send transactions and smart contracts on the main testing arena.
If they try, it often takes much longer than normal.
The address of the attacker is the same as the one associated with an earlier fork of the test network, according to software developer Ricardo Guilherme Schmidt, whoâs been following actions associated with the address.
At least a few developers and executives at the Enterprise Ethereum Alliance launch event in Brooklyn argued that one reason they chose to work with ethereum was because itâs a more heavily tested platform. Ironically, one of ethereumâs key testing tools has been effectively out of service for more than a month.
As the minerâs identity is unknown, users have merely speculated as to why he or she (or they) are clogging the network with spam. They may be trying to prove a security-related point or may be simply trolling.
Many ethereum apps are only available for use on the testnet right now. As a result, developers behind apps like uPort and Status have mentioned testing app delays. Etheroll temporarily closed down the testnet option.
Gnosis CTO Stefan George told CoinDesk:
âFor us developers this is a big issue, as integrations between different dapps can only easily be tested in a shared test network. We are currently building a Twitterbot for Gnosis using uPort, but cannot test it properly because of this attack.â
George added that this means that developers are restricted to local testnets or the test-rpc client to test applications. With these limited testing environments, itâs harder to test how dapps interact with each other. For that, developers need a global test network, like Ropsten.
However, George argues that there is an easy solution to this: whitelisting which miners can participate on the test network.
There would be no disadvantages to this approach, according to George. The whitelisted mining group could be composed of big ethereum organizations, say, Ethereum Foundation and ConsenSys, maintaining the network.
So, what is the attacker doing, exactly?
Like the main network, the ethereum test network is maintained by miners. The difference is that, the miners maintaining it donât have an incentive to use more powerful hardware, because the tokens are worthless â theyâre just used for testing transactions.
This particular miner is using a GPUÂ (a computing processor that is much more powerful than those used by other miners on the network) to mine, which is odd, because the miner doesnât have an incentive to do so.
âThere was hardly anyone mining on Ropsten, as it is just for testing. The attacker could easily get the mining majority,â George said.
On the testnet, itâs easy to either mine the tokens yourself, using the Ethereum Wallet, for example. Or, testers can obtain free tokens from so-called âfaucetsâ.
The attacker is doing several things: on the one hand, theyâre mining most of the blocks and obtaining the rewards, so other miners canât, and they have used one or more contracts to drain at least one faucet of its free ether. Therefore, itâs making it more difficult for app developers to obtain test ether with which they can conduct test transactions.
Secondly, because itâs mining with relatively high computing power, the miner has been able to raise the maximum amount of computational processing power allowed in each block (the âgas limitâ) to 2GB, and is filling them with spammy transactions.
âHe also deployed a contract [like] block.gaslimit or msg.gas to loop a spam in the network with max gas possible,â Schmidt said.
Put another way, the miner is hogging the transaction bandwidth so that other users struggle to use it.
The ongoing spamming is reminiscent of last yearâs attacks, which slowed down transactions and smart contracts on the ethereum network for months.
The difference, of course, is this attack doesnât affect the main ethereum network.
Decentralized applications deployed on the main network are working fine. Ethlance director of operations Joseph Urgo noted that his platform is unaffected by the attack, for example.
If the attacker were to carry out the same attack on the main network, he or she wouldnât have much success.
The attacker spent an estimated $120 to spam the network up until last Sunday. Based on rough calculations by ethereum inventor Vitalik Buterin, it would take $4.5m to have the same effect on the main network.
Buterin concluded:
âSo all in all, not much cheaper than a 51% attack.â
Helicopter image via Shutterstock
