Closed krhubert closed 5 years ago
Suppose there is a service with ID = a
and someone created another service with ALIAS = a
. Then as long as service with ID = a
exists it will receive the traffic, but when it will be shut down then ALIAS = a
will receive all traffic, which probably wasn't intentional.
By forbidding len(alias) == len(id) we avoid this security leak and probably many others that might cause trouble due to having id same as alias.
Also, 63 char is the maximum length of "labels"; see https://tools.ietf.org/html/rfc1035#section-2.3.4.
@krhubert This is done by https://github.com/mesg-foundation/core/pull/583, right?
Yes
@krhubert can you provide more details and explanation please