willscott
commented
8 years ago We can do an initial sanity check when using a domain-fronted collector to make sure reports are being submitted from the general location where they claim to be made.
Beyond that, i think we need to initially save stuff and look for unexplained spikes in activity after the fact to identify malicious reports (similar to how tor watches for bad relays coming on line)
anadahz
We should find a way to protect from intentionally or unintentionally malicious report submission that could saturate ooni-backend resources and end-up unable to process new reports requests.
87 could possibly help to counteract this problem and the current issue could help to solve https://github.com/TheTorProject/ooni-pipeline/issues/27 .