Hacker News new | ask | show | jobs
by j1elo 1837 days ago
Maybe it is possible to detect the kind of activity or identify processes that are written to mine crypto? Then abort those ones.

I'm thinking of behavior analysis, such as the one some network firewalls do... not sure if that's even feasible at the process level, though.
2 comments
nrmitchi 1837 days ago
My understanding is that it's totally feasible, but ends up being a game of cat-and-mouse (just like most security projects).

The question is whether or not it's worth the effort (for Dockerhub). If they were leading in their space, and had a successful business, then maybe, but in the current situation it would be a large investment in providing something for free.

Remember that this change only applies to the free plans, not to anyone paying.

link
barkingcat 1837 days ago
Most likely not worth it. The product that is being impacted is free to begin with, so the more a company invests into it to building custom filters, the more net negative they are spending, and they are not helping customers (free or paying) either. (ie the cryptocurrency miners will never become paying customer, because they are exploiting the platform specifically because it's free, so building filters means spending money to filter out people who will never be customers anyway.)

I'd rather docker spend engineering time on improving their paid service to legitimate customers.

link