-
Notifications
You must be signed in to change notification settings - Fork 373
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Anti-squatting System for gno.land namespaces #2727
Comments
Hi, I'm not sure i got all the points but here's what i propose : EDIT : I think i totally missunderstood the subject. Can you please detail what kind of behavior you would like to avoid ? Goals :
Almost simplified Plan :
--- As a user, I want to watch an auction -> I need to sign to get an AuthToken My AuthToken could be like "Credits" -> 1 credit = X time of watching the product Concept : The concept of this is to implement two things :
Generic part :
To go further more
|
Thanks for your proposal. I think there's a bit of a misunderstanding about the scope of the anti-squatting system we're aiming for. The goal is to keep a potential permissionless system (like an auction system or similar) free from squatting. This involves:
The solution will likely involve designing processes and having moderation DAOs (#3020). While advanced patterns like signing noop messages aren't necessary, a broader approach could include some proof of humanity mechanisms. However, the issue is open to any proposals. I'm more interested in reviewing various ideas than limiting the spectrum of possibilities. Looking forward to more suggestions! |
anti-squatting system idea - specsIn this proposal, I am thinking about things that possible with our chain, some ideas are inspired by other chains. Value Attribute:A good namespace (ns) should have itself value, at least with individual user. Then every namespaces should come with a Auction format:I prefer the
More anti-squatting:
data-source about sensitive namespaces (DAO + realm):
trademarks and conflictions (DAO + realm):
In the early stage, I think we can try to implement the auction for sealed bidding idea, which required auction package, and service / dapp to interact with bidding session. Maybe there are something I miss-understood, and I am looking forward to hearing from you, about anything from this proposal. |
The anti-squatting system should be implemented at the same time or before the auction system, not after. If a robust anti-squatting system is not in place, we should use an invite-only system instead of an auction. The anti-squatting system, once developed, can open the door to the next need: an auction system or a similar permissionless system. |
Hello, My attention have been caught by this sentence :
In that situation, maybe we could link the NS registration with the public DNS registrar that will act like a source of truth. This might come with limitation (or solution ?) because the NS will be "famousbrand.com, famousbrand.net...." instead of just "Famousbrand". This way you can't avoid scam domains like "gno.xyz, gno.net..." but at least you can certify that you are "gno.land".
Resolved by the way above. If your reserved domain haven't been claimed then its remain open to claim.
First you'll have a full name "gno.land" then you might reserve and attribute "shorter name" by proof-of-humanity system, moderation DAO etc... Exemple : If i certified Famousbrand.com and i'm the actual owner i can ask a "shorter name" to get second check verification and get my final name "Famousbrand". So the process could be :
Thanks for reading |
I like the idea of having a longer name easily, and then a shorter one (+ alias?) after more verification. When working on this PR, I had this idea in mind: #2486 |
I think we can mix the following ideas:
This namespace must follow the format: -.gno. This ensures that any user can register their own namespace, and anyone looking at it can recognize it as unverified due to the RandomString at the end.
After users register the first type mentioned above, if they have good activities, a strong community, regular users, and can complete KYC (Know Your Customer) or KYB (Know Your Business) processes, the core team will provide an alias short namespace by removing the RandomString for the registered and qualified namespace of the first type. |
After reading your comments, I am now thinking about the idea that we have a
Users can start develope their contracts in In this way, we can help people know which namespace is trusted (type 2), and which namespace is in |
If you go on the domain verification solution, some questions will remain : What happen when you loose your domain name ? When you make a TXT verification, you want to check (every 24h for example) if the record is still alive, than delete the "certify/validation" if record is not here. Possible solution :
Regarding Alias, maybe you could link users wallets to a main wallet , when it comes to the the link process, you ask for your Alias ("Moul") to be linked : gno.land/{p,r}/gno.land/moul Process for antisquatting : Situation : Permisionless Process :
--
Proof-of-humanity Process :
Warning with this solution : the gas used could be important if nobody has NS # gno.land/{p,r}/g1xxxx/g1mmm (longer path) |
I opened an issue on r/sys/users (#2827) to focus the discussion exclusively on an anti-squatting system. Ideally, this system should be pluggable as a The anti-squatting system should (probably) not rely on DNS verification. |
@moul I set an XXL bounty on this one; if you think it's insufficient, we can bump it to the next level. |
This is a must-have for r/sys/users/v2, after the launch, but not for the first launch. In the meantime, we can postpone it. Must have issue: #2827 |
Linked with #3020 |
We need a generic anti-squatting system for
r/sys/users
to set up an automatic auction system. This will prevent squatting and ensure fair access. Initially,r/sys/users
will remain invite-only.How to Contribute: Submit a plan in plain English or pseudo code outlining the design of the anti-squatting system. Focus on creating a generic, importable library or realm. We will review the design before moving to full implementation.
Related: #2189 #2827
Bounty Size: XXL; expected maximum reward: $16,000.
Find out more on the bounty program. If you participate with intention of receiving the bounty, you must agree to the Bounty Terms and Conditions.
More bounties | Contributing guidelines
The text was updated successfully, but these errors were encountered: