Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ability to add trackers manually should be restricted to multi-sig admin group #1248

Closed
Tracked by #1035
CharlieMc0 opened this issue Oct 6, 2023 · 1 comment
Closed
Tracked by #1035

Ability to add trackers manually should be restricted to multi-sig admin group #1248

CharlieMc0 opened this issue Oct 6, 2023 · 1 comment
Labels
m:observer security Security Issues / Concern zetaclient Issues related to ZetaClient

Comments

@CharlieMc0
Copy link
Member

Currently, trackers can be manually added by O/S operators and the admin group. This should be restricted to the admin group only because an attacker must compromise multiple signers to submit a false tracker. Under the current model a single operator being compromised could result in submission of false or malicious trackers.

zetacored tx crosschain add-to-out-tx-tracker
@CharlieMc0 CharlieMc0 added zetaclient Issues related to ZetaClient security Security Issues / Concern labels Oct 6, 2023
@lumtis lumtis mentioned this issue Oct 16, 2023
Closed
@kingpinXD
Copy link
Contributor

Closing this in Favor of
#1318

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
m:observer security Security Issues / Concern zetaclient Issues related to ZetaClient
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lumtis @kingpinXD @CharlieMc0