Compromising all validators of the Solana network

[c29r3]

Problem

Solana-gossip standard tools allow you to compromise validators and carry out DDoS \ DoS attacks by spoofing the source IP. Multiple solana-gossip instances running with different validator-keys for 1 ip will cause a huge traffic flow. The owner of the IP will receive a lot of UDP traffic, which can be regarded as a DDoS attack. The victim can send abuse to the attackers (validators) IP, as a result of which the hosting provider will block the rented servers.
Impact to TdS and MB

solana-gossip spy --gossip-host {victim_ip} --entrypoint testnet.solana.com:8001 -i random-validator-key.json -E 999

also using this you can overload any of Solana's validators
Found in TdS Stage #10

Proposed Solution

Source ip pre-check by establishing TCP connection

[aeyakovenko]

Seems like a dup of #12794

[leoluk]

Related: #8334, #9491, #9492, #12410, #12409

#12794 definitely solves this particular attack.