<o​frnxmr:monero.social> And its not "my" space

<o​frnxmr:monero.social> This sentence is just a copy paste.

<o​frnxmr:monero.social> its the _monero_ space

<u​nkn8wn69:matrix.org> Oh I get it)

<u​nkn8wn69:matrix.org> Thank you

<p​lowsof:matrix.org> Community-supported film premiering at San Diego Film Festival this Saturday, Oct 21! (with another event in Cali, York(UK) and Cuba) reddit.com/r/Monero/comments/17ajnz…ported_film_premiering_at_san_diego - geonic

someone asked about Monero in the Q&A after the premiere today

one of u guys?

<c​trej:matrix.org> have you seen this classic?

<system> file Monero is the cash of crypto (XMR) ｜ GetMonero [sppcRLqkgbri].mp4 too big to download (3012654 > allowed size: 1000000)

<c​trej:matrix.org> Monero is the cash of crypto (XMR) ｜ GetMonero [sppcRLqkgbri].mp4

<r​ecanman:agoradesk.com> Very stimulating

<u​nkn8wn69:matrix.org> Wow ahhahahaha

<u​nkn8wn69:matrix.org> Cool video

<4​rkal:monero.social> Should we care about operating system diversity for monero nodes?(Like tor does)

<4​rkal:monero.social> Eg asking for more people to run on bsd etc

<s​iren:kernal.eu> Yes

<s​omeoneelse495495:matrix.org> why?

<s​iren:kernal.eu> In case of a 0day that targets a specific OS

<s​omeoneelse495495:matrix.org> oh you're right

<1​23bob123:matrix.org> Feature not a bug!

<4​rkal:monero.social> If we do care about it then why aren't people asked to run on more rare platforms like bsd?

<4​rkal:monero.social> Feel like most nodes are run on Linux or docker

<4​rkal:monero.social> Could be a potential problem

<4​rkal:monero.social> Would be pretty cool to have the os type in the /get_info

<s​omeoneelse495495:matrix.org> this way attackers could use monero API to filter which node to attack

<1​23bob123:matrix.org> Same with version

<s​omeoneelse495495:matrix.org> because bsd distros have a very small community... and its not as accessible as linux. Also I don't believe BSD is more secure than a correctly configured Linux distro but that's another topic

<s​omeoneelse495495:matrix.org> you're supposed to stay updated 😝

<1​23bob123:matrix.org> My wallet doesnt sync

<1​23bob123:matrix.org> What version

<1​23bob123:matrix.org> 1

<1​23bob123:matrix.org> Ok update

<4​rkal:monero.social> Pretty sure Linux ssh has a 0day a while back that was not present on some bsd platforms

<4​rkal:monero.social> Most*

<s​omeoneelse495495:matrix.org> since BSD and Linux use OpenSSH I suppose its more related to compiler flags used by the BSD team than the platform. And don't get me wrong Ubuntu and Fedora are shitty distro compared to OpenBSD security-wise

<4​rkal:monero.social> Might have been openssl lol don't remember

<1​23bob123:matrix.org> Yeah i think it was

<1​23bob123:matrix.org> With a later version

<o​ortcloud42> openssh is maintained by the openbsd team so bsd usually gets patched quicker

<4​rkal:monero.social> Should also probably discourage people from running windows nodes (at least public ones). If there was a windows 0day we would probably never find out/find out years later.

<1​23bob123:matrix.org> Botnets keep the m$ development going

repo.getmonero.org/monero-project/ccs-proposals/-/merge_requests/416 ofrnxmr

<s​omeoneelse495495:matrix.org> I disagree. Windows in its architecture and software solutions is **far more secure** than Linux and BSD. Your point isn't about security but transparency. "Open Source is more secure, than Proprietary" and "Microsoft could keep the 0day for themselves".

<s​omeoneelse495495:matrix.org> First , there are a LOT OF security vulnerabilities discovered on Linux that has been introduced months and years away (linuxkernelcves.com/cves). There is not a lot of Windows Kernel vulnerabilities that has been discovered. And the most used attack vector for complete access are third-party drivers (drivers, not kernel). Linux on the other hand find its attack vector<clipped mess

<s​omeoneelse495495:matrix.org> s in the software flow, as linux is basically an init running a hell tree of different programs glue together that call another hell dependency tree. Windows don't suffer that as libraries are standardized on their platform. Windows also have Windows Defender (that does some job, suprisingly) and HardwareVirtualizedControlIntegrity, PAtchGuard, exploit mitigations like ASLR 48 bit<clipped mess

<s​omeoneelse495495:matrix.org> etc... Security measures nowhere to be found yet on Linux and BSD or not enabled by default.

<s​omeoneelse495495:matrix.org> As for the second point, it is hard (at microsoft) to keep a vulnerability secret for the NSA (lets say), as multiple security teams are working and sharing their works. I don't say its impossible, but it is not common.

<s​omeoneelse495495:matrix.org> So I do think we shouldn't discourage people from running windows nodes. It would be for philosophical reason and monero organization have no benefits of doing so. Despite being in contradiction with the overall culture of the monero community (most monero users are power linux user)

<4​rkal:monero.social> Lost me at windows defender works...

<4​rkal:monero.social> Windows should never be used for a server or anything that requires high uptime and security. You have a lot less control over your system

<4​rkal:monero.social> Public nodes have no reason to run on windows

<4​rkal:monero.social> You can run a node on windows if you use it as your main os etc. But I see no point in running a public node on Windows

<4​rkal:monero.social> You can run a node on windows if you use it as your main os etc.

<4​rkal:monero.social> Might be biased against windows lol. Might be a good idea to diversify idk. It just feels like windows is a black box. If a vulnerability exists on Windows it will probs not Linux and vice versa

<p​lowsof:matrix.org> lets first get people running nodes powered by solar energy

<s​omeoneelse495495:matrix.org> STARS CAN MINE MONERO ?????

<p​lowsof:matrix.org> and then look into HAM radio for when the internet is turned off

<p​lowsof:matrix.org> is the threat model of a 0 day exploit being used to "turn the machine off" realistic? or would they just mine monero on it?

<s​iren:kernal.eu> You're not biased, that's reality. It's unsafe to run nodes on Windows gnu.org/proprietary/proprietary-back-doors.en.html#windows-update

<p​lowsof:matrix.org> but i read that windows is far more secure (it was written in bold)

<s​iren:kernal.eu> By using Windows you agree with Microsoft's EULA: you grant permission to have them access access to your files and device at any given time without notification.

I assume that many people run nodes on windows

<s​iren:kernal.eu> By using Windows you agree with Microsoft's EULA: you grant permission to have them access access your files and device at any given time without notification.

<o​ortcloud42> tbh if you think about it its unsafe to run anything on modern x86 cpus since they all have remote access built in

<p​lowsof:matrix.org> is this a "monero binary" issue or >society

<p​lowsof:matrix.org> RISC-V binaries have arrived if this helps matters

<s​iren:kernal.eu> Diversify but not with Windows, choose free software like BSD, Haiku OS and others.

<o​ortcloud42> even reactos is a viable option nowadays

<o​ortcloud42> if you want something that behaves like windows

<s​iren:kernal.eu> Yep it doesn't have to be an unix-like. microkernel.info

<s​omeoneelse495495:matrix.org> again, philosophical reason. You're like a lot of people, misunderstanding privacy and security. And for your cause you twist the privacy of windows as a security arguments. I've lost too many hours trying to explain to some gnu/fsf maximalists how their vision is irrationial. So i'll let you this link : madaidans-insecurities.github.io/linux.html. This article has been wr<clipped mess

<s​omeoneelse495495:matrix.org> itten by the lead dev of Kicksecure, the based distro on which Whonix run on.

<4​rkal:monero.social> Monero kernel confirmed?

<s​iren:kernal.eu> It's not philosophical, there are literal backdoors and an invasive EULA.

<4​rkal:monero.social> Also just because Linux has a public list of previous vulnerabilities doesn't mean it's less secure. Exactly the opposite it means that a lot more vulnerabilities have been found and OPENLY discussed

<s​iren:kernal.eu> I don't accept the EULA so I can't use it.

<s​iren:kernal.eu> Anyways, it would be cool to get Monero running on SculptOS

<s​omeoneelse495495:matrix.org> Update cycle is by definition an attack vector. It's called supply chain attack. And your argument for FOSS OS to be safer is based on "I trust more free devs that support free software than a company". Its philosophical

<s​omeoneelse495495:matrix.org> Update cycle is by definition an attack vector. It's called supply chain attack. And your argument for FOSS OS to be safer is based on "I trust more free devs that support free software than a company". It is philosophical

<s​omeoneelse495495:matrix.org> GLibc has way more CVEs than Musl, doesn't mean Musl is hidding something and GLibc is safer

<4​rkal:monero.social> By developing closed source software you are limited to the capabilities of your team. Open Source is not limited in any aspect skill wise.

<s​iren:kernal.eu> No it isn't. I simply don't agree with the fucked up EULA. The code, I can audit myself. Which is something I already get paid to do to a degree.

<s​omeoneelse495495:matrix.org> I'm not advocating 100% windows is better than linux. I'm speaking purely from a security perspective. Because everyone can configure linux like they want doesn't mean they're gonna make it more secure

<s​iren:kernal.eu> genode.org/download/sculpt already supports Rust and glibc I think. It's an interesting concept.

<4​rkal:monero.social> So a black box is more secure than a glass box?

<4​rkal:monero.social> You don't know shit about windows cause it's closed source

<o​ortcloud42> at least the open source community is learning from their past mistakes, and acknowledging that some of the software really is insecure - microsoft doesnt seem to learn at all

<s​omeoneelse495495:matrix.org> "I don't agree with the EULA, the code should be opened so i can audit it myself"

<s​omeoneelse495495:matrix.org> "No it is objective and not an opinion"

<s​iren:kernal.eu> Yes it is objective

<s​iren:kernal.eu> If you agree with it that's fine

<s​omeoneelse495495:matrix.org> Windows API is shared publicly by microsoft, Undocumented syscalls and Windows internals (liek the bones of the kernel) are explained by the devs themselves in updated books. You can even run the kernel and bootloader in debug mode with symbols too reverse-engineer it. Believe it or not, security researchers know a lot about windows

<s​omeoneelse495495:matrix.org> Windows API is shared publicly by microsoft, Undocumented syscalls and Windows internals (liek the bones of the kernel) are explained by the devs themselves in updated books. You can even run the kernel and bootloader in debug mode with symbols to reverse-engineer it. Believe it or not, security researchers know a lot about windows

<s​omeoneelse495495:matrix.org> Windows API is shared publicly by microsoft, Undocumented syscalls and Windows internals (liek the bones of the kernel) are explained by the devs themselves in updated books. You can even run the kernel and bootloader in debug mode with symbols to reverse-engineer it. Believe it or not, security researchers know a lot about windows. React OS have an open-source outdated source cod<clipped mess

<s​omeoneelse495495:matrix.org> e of the NT Kernel

<s​omeoneelse495495:matrix.org> Windows API is shared publicly by microsoft, Undocumented syscalls and Windows internals (liek the bones of the kernel) are explained by the devs themselves in updated books. You can even run the kernel and bootloader in debug mode with symbols to reverse-engineer it. Believe it or not, security researchers know a lot about windows. React OS even have an open-source outdated sourc<clipped mess

<s​omeoneelse495495:matrix.org> e code of the NT Kernel

<s​omeoneelse495495:matrix.org> Reasonable doesn't mean objective

<s​iren:kernal.eu> That's not true at all because NTAPI isn't publicly documented fully to this day.

<s​omeoneelse495495:matrix.org> yep, because these are syscalls. and are not meaned to be used by user-facing apps. But guess what people have already got them all on github

<s​omeoneelse495495:matrix.org> yep, because these are syscalls. and are not meaned to be used by user-facing apps. But guess what people have already got them all on github : github.com/hfiref0x/SyscallTables

<s​iren:kernal.eu> It's not shared publicly with microsoft

<s​iren:kernal.eu> It's not shared publicly by microsoft

<s​iren:kernal.eu> It's harder for you to know when they change things here and there

<s​omeoneelse495495:matrix.org> > **Undocumented syscalls** [...] are explained by the devs themselves in updated books

<s​omeoneelse495495:matrix.org> debug symbols exist that's why this github is up to date

<s​omeoneelse495495:matrix.org> they're not making a lot of effort to hide how windows work

<s​iren:kernal.eu> Who are these devs? Microsoft employees? What are updated books?

<s​omeoneelse495495:matrix.org> archive.org/details/windows-internals-part1-7th, 8th edition is coming next year

<s​omeoneelse495495:matrix.org> Microsoft emplyees yes

<s​omeoneelse495495:matrix.org> archive.org/details/windows-internals-part1-7th, 8th edition is coming next year

<s​iren:kernal.eu> Lmao

<s​iren:kernal.eu> You made it sound like these are announced in release notes by m$

<4​rkal:monero.social> Look there's a reason that all servers run Linux (not just because it's free). But because it's fast af and open. Don't need to reverse engineer it to understand how it works.

<s​omeoneelse495495:matrix.org> they're not, i can give you that

<s​iren:kernal.eu> Honestly sounds like you're coping in here

<s​iren:kernal.eu> Trust me bro, yeah no

<s​omeoneelse495495:matrix.org> yeah you're right. Just trying to prove how siren statement "windows is unsafe for monero nodes" is wrong

<s​omeoneelse495495:matrix.org> ?

<4​rkal:monero.social> If we start thinking like that we should prolly not use the internet since it is controlled by ISPs, not use Intel processors etc.

<s​omeoneelse495495:matrix.org> thx for unattended point. People like Siren despise Windows not because it is run by a company (ubuntu is run by canonnical)

<s​omeoneelse495495:matrix.org> thx for unattended point. People like Siren despise Windows not because it is run by a company (fedora is run by Red Hat)

<s​omeoneelse495495:matrix.org> but because they need this feeling of having their systems under their control and understanding to fully feel safe.

<s​omeoneelse495495:matrix.org> thx for unattended point. People like Siren despise Windows not because it is run by a company (fedora is run by Red Hat and is also subjet to patriot Act)

<s​omeoneelse495495:matrix.org> yep for sure. not even arm processors are safe you know. Intel have ME, AMD have PSP, ARM have Trustzone. So even a raspberry pi is unsafe

<s​omeoneelse495495:matrix.org> yep for sure. not even arm processors are safe you know. Intel have ME, AMD have PSP, ARM have Trustzone. So even a raspberry pi is unsafe. that is just being paranoïd

<s​iren:kernal.eu> For the third time, I'm not retarded enough to give outright permission for a third party to access my device like this.

<s​iren:kernal.eu> Exploiting these things remotely are way harder than software. And this is a poor excuse to subject yourself to more proprietary software.

<s​omeoneelse495495:matrix.org> yep and I agree with you. I too don't like that. But its about privacy, not security. So don't use a privacy argument to justify that monero nodes are insecure on windows

<s​iren:kernal.eu> Microsoft does get hacked. Them having a way to remotely access your compute can be exploited and used by attackers.

<s​iren:kernal.eu> Even if you don't care about security. On the privacy side you should be even more worried since glowies also get access.

<s​iren:kernal.eu> Microsoft does get hacked. Them having a way to remotely access your computer can be exploited and used by attackers.

<s​omeoneelse495495:matrix.org> I think I communicated my point. Our view is just incompatible based on our difference on the values of privacy and security and relations between the two. If you think nsa want to find you, feel free to think window is shit

<s​omeoneelse495495:matrix.org> I think I communicated my point. Our view is just incompatible based on our difference on the values of privacy and security and relations between the two. If you think nsa want to find you, feel free to think windows is shit

<s​iren:kernal.eu> Microsoft is a shit CNA that often downplays severity of reported vulnerabilities. I have experience working at corporate in security and I know how they react to internal teams discovering vulns.

<s​iren:kernal.eu> It's a nightmare compared to FOSS. Having this insight I cannot trust Microsoft to have good practices and act responsibly.

<s​iren:kernal.eu> what do you think will happen if they push some sort of a regulation or sanction in US that makes it illegal for you to operate a node?

<s​iren:kernal.eu> microsoft will delete the Monero organization on github since they own it. there is nothing stopping them from compiling a list of windows users that have monero software installed and providing it to the US government.

<s​iren:kernal.eu> just because something is allowed today doesn't mean it will be tomorrow

<4​rkal:monero.social> I do understand that there is a certain appeal to bring over protective. But we have to be realistic here. Saying that no one should run a node on windows is just stupid. We need people to run nodes. Also most probably the downsides of windows will probably take them to Linux if they care enough. I mean automatic updates, increased ram usage (2gb on idle is not normal) also almos<clipped message>

<4​rkal:monero.social> t everything that has to do with system administration is 10x harder on windows

<4​rkal:monero.social> Let the free market decide 😉

I run a node on Windows. And I run my home server on Windows. You just don't know how to cook Windows.

<4​rkal:monero.social> Just don't see a point in learning it.

<4​rkal:monero.social> I mean even setting path variables on windows is retarded

<s​iren:kernal.eu> Logically speaking no one should run a node on Windows. It makes no sense. It's harder to administer, more expensive to operate because it's resource hungry, less secure and private. You'll also have worse uptime.

<s​iren:kernal.eu> There are better candidates for diverisifying nodes

<r​4v3r23:monero.social> also winblows igay

<r​4v3r23:monero.social> also winblows is gay

<s​omeoneelse495495:matrix.org> yeah bro I'm sure monero nodes will run fine on Minix or seL4

<s​omeoneelse495495:matrix.org> yeah bro I'm sure monero nodes will run fine on Minix or seL4 atm

<s​omeoneelse495495:matrix.org> no wait i'm not sure if that was you that linked to microkernel

<s​omeoneelse495495:matrix.org> anyway best os is seL4 obviously

<4​rkal:monero.social> That's what I'm saying. If they are open enough to understand that I'm sure they will have no problem switching to linux. The problem is that most normies just use what they are comfortable with.

<4​rkal:monero.social> Not saying that running a node harms the network in any way, just doesn't make sense to me

<4​rkal:monero.social> On windows*

<s​iren:kernal.eu> They'll harm themselves and they're the minority so

<4​rkal:monero.social> But I do think we need the operating system diversity

<s​iren:kernal.eu> Quite funny that the people who use monero here think avoiding proprietary software is being over protective. Guess what is over protective then? Using Monero. Your bank will most likely never fuck with you if you're already allowed to have a bank account. Or you will not get financially surveilled if you use other cryptocurrency as long as you don't commit major crime. Go ahead a<clipped message>

<s​iren:kernal.eu> nd stop using Monero then.

<o​frnxmr:monero.social> Even architecture diversity. Amd64 aarch64 riscv

<s​omeoneelse495495:matrix.org> amd64 is x86_64

<s​omeoneelse495495:matrix.org> amd64 is x86\_64. that's literally same as intel

<s​omeoneelse495495:matrix.org> ~amd64 is x86\_64. that's literally same as intel~

amd literally introduced amd64 first

<s​omeoneelse495495:matrix.org> nvm i misread the sentence

then intel implemented it and called it x86-64

<s​omeoneelse495495:matrix.org> they have same base opcode map. just wanted to say amd64 asm runs on intel and x86_64 asm runs on amd, in practice its the same

Because it is the same. Intel and AMD have cross-license agreement on everything x86

<s​omeoneelse495495:matrix.org> nice god bless x86 patent as they say

<4​rkal:monero.social> monero-project/monero #9031

4rkal: is this for restricted rpc nodes?

we want to avoid node fingerprinting, so it's unlikely that this will be implemented

<p​lowsof:matrix.org> we dont even show the version of monerod

<o​frnxmr:monero.social> Yeah, i dont want anyone knowing im running ubuntu4n00bz on my onion

<o​frnxmr:monero.social> Or "ahahahaha its a pi"

and if this is only for unrestricted node. what's the point. you know what you run anyway.

<p​lowsof:matrix.org> i have a 0day exploit for ubuntu4n00bz, let me see who is running it

<o​frnxmr:monero.social> And attack all the ubuntu nodes 🔥

<g​orillaquest:matrix.org> can I buy gf with monero token

<4​rkal:monero.social> Why is node fingerprinting bad?

<p​lowsof:matrix.org> wownero DGAF (node version is displayed loud and proud)

<o​frnxmr:monero.social> Why do strangers need to know my free space? My hardware specs? My os? My # of connections?

fingerprinting is always bad for privacy

<o​frnxmr:monero.social> Sounds sus

<o​frnxmr:monero.social> Nobody aside from the person hosting the server needs to know any of that info

<g​orillaquest:matrix.org> The key to friendship is transparency

<4​rkal:monero.social> Why do you need privacy for a *public* monero node.

<4​rkal:monero.social> Knowing what operating system you are running is pretty important

<o​frnxmr:monero.social> Untrusted remote node = bad

<4​rkal:monero.social> In case of 0day

<p​lowsof:matrix.org> i dont know what operating system im running unless its in /get_info

<4​rkal:monero.social> Other users dont

<o​frnxmr:monero.social> I need to know what os plowsof is running, before i use his rpc

<o​frnxmr:monero.social> plowsof, are you on 20.04? Or or 22.04?

<g​orillaquest:matrix.org> how to buy monero from coinbase

<o​frnxmr:monero.social> if i dont trust plowsof, i should _not_ use his node

<4​rkal:monero.social> This isn't about trust. It is about a potential 0day

<o​frnxmr:monero.social> If i do trust plowsof, does that mean he trusts casual observers who can ddos him?

<p​lowsof:matrix.org> i dont even have a last will and testament

<p​lowsof:matrix.org> you're stressing me out 4rkal!

<o​frnxmr:monero.social> Or feds to be like "77% of monero is run in ubuntu"

<o​frnxmr:monero.social> More like "nunyadamnbizness"

<g​orillaquest:matrix.org> fortnite x monero collab when

<o​frnxmr:monero.social> If i say i run on android, its up to you to trust me

<o​frnxmr:monero.social> And what version of android im running, ia nunyabizness

<o​frnxmr:monero.social> Is*

<4​rkal:monero.social> This is to get some stats of what the general network is running. To be more covered in case of a 0day

<p​lowsof:matrix.org> this is more of an awareness campaign ... perhaps you could approach the animated vidya team with the idea?

<o​frnxmr:monero.social> Again sus

<o​frnxmr:monero.social> I want stats on how much is transacted per day

core team has download stats from the getmonero.org server

<o​frnxmr:monero.social> Lets add transparency there too

not ideal for knowing the exact OS version but still

<o​frnxmr:monero.social> Flatpak has stats too

<4​rkal:monero.social> metrics.torproject.org/platforms.html . Something like this is useful to have

<o​frnxmr:monero.social> at least, for how many current linux flatpak users

either way, part of the restricted-rpc setting is making every node look the same. this feature would be the opposite.

asking why public rpc nodes need privacy is a different discussion

<o​frnxmr:monero.social> And according to tor metrics, its like 0% windows.

unpossible

for example if I host a public rpc node and then later decide to put it behind Tor, I don't want people to be able to link them together just by my exotic OS setup / platform

also 0% mac

<4​rkal:monero.social> how exotic can it be?

<o​frnxmr:monero.social> Android? Pi? Rockpro? Mac? Moneronodo? Moneroos?

<4​rkal:monero.social> Could just have windows/linux/any bsd / other unix? idk

<4​rkal:monero.social> Doesn't have to giveaway too much info

<o​frnxmr:monero.social> > <s​elsta> either way, part of the restricted-rpc setting is making every node look the same. this feature would be the opposite.

<p​lowsof:matrix.org> but what if

<o​frnxmr:monero.social> Some nodes _are_ fingerprintable

<o​frnxmr:monero.social> Because they run funny implementation

<p​lowsof:matrix.org> or block mordinals 💢

<o​frnxmr:monero.social> Last thing i need is someone like "haha, ofrn uses windows @ his home ip. I know he disabled his antivirus"

<4​rkal:monero.social> Maybe just for public ones then?

<o​frnxmr:monero.social> --public-node?

<o​frnxmr:monero.social> meant to be used "behind the scened" by noobs or the impatient

<o​frnxmr:monero.social> Why would they be checking get_info

<o​frnxmr:monero.social> --public-node = bootstrap and simple mode advertised nodes that autoconnect

<g​orillaquest:matrix.org> what happens when nodes are behind security updates and they get targeted

<4​rkal:monero.social> The users won't be necessarily checking the get_info but a scraper will and in that way will gather statistics

<4​rkal:monero.social> To see what % of the network is running w*ndows or any other os

<o​frnxmr:monero.social> thats a good way to ensure public-nodes are all malicious

<p​lowsof:matrix.org> mining pool centralisation is more important

<g​orillaquest:matrix.org> I trust the banks to run monero nodes

<g​orillaquest:matrix.org> that way we ensure security

<o​frnxmr:monero.social> Because anyone configuring their node manually isnt going to purposely advertise more info than necessary.

<o​frnxmr:monero.social> aka --public-node isnt a defaulf flag. Adding info to is it further disincentivizes people from using the flag

<4​rkal:monero.social> It's better to get this info before the 0day.

<o​frnxmr:monero.social> No

<o​frnxmr:monero.social> its better to use trusted nodes, perios

<o​frnxmr:monero.social> Period*

<4​rkal:monero.social> So the steps are

<4​rkal:monero.social> 1. Wait for 0day

<4​rkal:monero.social> 2. Do something about it, while all nodes are being attacked

<o​frnxmr:monero.social> A 0 day + this info = attack target

<o​frnxmr:monero.social> A 0 day + no info = shooting in the dark

<4​rkal:monero.social> A 0day + no prep = network is fucked

<o​frnxmr:monero.social> And public-nodes are a tiny fraction of the network

4rkal: what exactly do you imagine would happen when there is a 0day and we have usage statistics?

<4​rkal:monero.social> more people have switched to other platforms. in that way making is better

<4​rkal:monero.social> By getting the stats we can try to get like 33% windows 33% linux 33% bsd or something

<p​lowsof:matrix.org> will they a) hack the vps and turn it off. or b) start mining monerno or c) other

<4​rkal:monero.social> Thats better that 99% linux

<g​orillaquest:matrix.org> we need more android

<g​orillaquest:matrix.org> more security = better

<4​rkal:monero.social> And the one madlad who is running bsd running the whole network

<o​frnxmr:monero.social> 33% windows lol

<4​rkal:monero.social> Just an example

<o​frnxmr:monero.social> Go start a course on convincing sysadmins to use windows

<o​frnxmr:monero.social> And telling linuxbusers to switch to bsd

<4​rkal:monero.social> Again an example

<o​frnxmr:monero.social> Or mac

<4​rkal:monero.social> Linux users are quite friendly towards bsd

if there is a OS zero day all we can tell people is to patch their OS anyway, doesn't matter if the usage statistic is 1% or 20%.

<g​orillaquest:matrix.org> ChromeOS is a goal

<p​lowsof:matrix.org> 0day exploit for Ubuntu. what happens -> vps's not running a monero node will be haxd and used to mine monero ? .. people tend to want to profit from 0day exploits

<o​frnxmr:monero.social> Should try to convince tor to do that

<o​frnxmr:monero.social> Get 33% windows users (ill wait)

<4​rkal:monero.social> .

we have rough usage statistics anyway by the getmonero.org download server

<o​frnxmr:monero.social> Yeah, but you bring problems, not solutions

<o​frnxmr:monero.social> Back 2 drawing board

<4​rkal:monero.social> of people who have downloaded. Doesn't mean anything tho.

<g​orillaquest:matrix.org> my dad used to tell me this

<o​frnxmr:monero.social> Son?

<4​rkal:monero.social> Downloads != active users

<o​frnxmr:monero.social> Correct.

<o​frnxmr:monero.social> And this is monero

a feature that increases node fingerprintability isn't going to get accepted

<4​rkal:monero.social> Maybe do it optional idk?

<o​frnxmr:monero.social> No

<4​rkal:monero.social> Just add --i-like-to-be-fingerprinted

<o​frnxmr:monero.social> Open source

<o​frnxmr:monero.social> Add it yourself to your own jode

<o​frnxmr:monero.social> Node

<g​orillaquest:matrix.org> we need secure elements for nodes

<4​rkal:monero.social> *We need secure nodes

<4​rkal:monero.social> At least a majority of non vulnerable

<g​orillaquest:matrix.org> then some dude running a node in an RV with the root password of "hello" shouldn't be used

<o​frnxmr:monero.social> Reminds me of this insanity

<o​frnxmr:monero.social> monero-project/monero #8343

<4​rkal:monero.social> Changing block reward...

<o​frnxmr:monero.social> monero-project/monero #8343#issuecomment-1132372264

<4​rkal:monero.social> Yeah not similar in any way

<g​orillaquest:matrix.org> using android is more robust and secure

<g​orillaquest:matrix.org> than desktop OS

<4​rkal:monero.social> Well then we have to get some stats to see how many are running android

<o​frnxmr:monero.social> Whatsbnext

<p​lowsof:matrix.org> miningpoolstats.stream/monero more concerning than worrying about an alien invasion

<o​frnxmr:monero.social> Punish people who are "too much" of yhe network?

<o​frnxmr:monero.social> Yes

<o​frnxmr:monero.social> Distribution is terrrible

<4​rkal:monero.social> Winter has come!

<o​frnxmr:monero.social> (miningrigrentals + p2pool. Lfg)

<4​rkal:monero.social> lol

<p​lowsof:matrix.org> all the stats you need^

<o​frnxmr:monero.social> Not enough

<4​rkal:monero.social> Well if we all decided to run android nodes. We might run too many and actually harm the network?

<g​orillaquest:matrix.org> when dp alt mode comes to pixel and stable, im probably leaving desktop

<o​frnxmr:monero.social> No

<o​frnxmr:monero.social> My android node is _much much_ faster than a lot of home pc

<g​orillaquest:matrix.org> the android has to not be rooted to be secure

<o​frnxmr:monero.social> Especially pc's using hdd

<4​rkal:monero.social> Monerod on hdd is borderline un ussable

<o​frnxmr:monero.social> as is rasp pi w/o aes

<o​frnxmr:monero.social> Android is fast, and better uptime if ram usage is stable

<o​frnxmr:monero.social> Better uptime bcuz it has a battery

<g​orillaquest:matrix.org> Android should be prioritized then?

<o​frnxmr:monero.social> android is suporrted

doesn't errybody have a real battery backup now?

<g​orillaquest:matrix.org> I feel like phones are going to replace desktop OS in the future

can also hook up solar to it

<o​frnxmr:monero.social> Riscv is what were looking at right now plowsof @plowsof:matrix.org: Monero PoW

<o​frnxmr:monero.social> we should sue bitmain

<o​frnxmr:monero.social> Shouldnt we?

<o​frnxmr:monero.social> For abusing gpl

<p​lowsof:matrix.org> what if they counter sue the Monerokon LLC

<4​rkal:monero.social> Doesn't eff or something do that?

<o​frnxmr:monero.social> Just bringing up suggestions right now.

<4​rkal:monero.social> opensource.stackexchange.com/questi…see-a-violation-to-gpl-restrictions

<o​frnxmr:monero.social> If eff does, maybe something we should look at

<o​frnxmr:monero.social> I saw a video on yt one time, about a lady that went TO china, to ask them for thebsource code

<4​rkal:monero.social> looks like it is fsf

<g​orillaquest:matrix.org> Is it just me or I feel like its insecure for someone to hold their own seed

<o​frnxmr:monero.social> I usually drop mine

<g​orillaquest:matrix.org> yea that's what I was worried about

<4​rkal:monero.social> Wait a minute

<4​rkal:monero.social> Doesn't free space appear in the get_info tab?

<o​frnxmr:monero.social> Only unrestricted

<4​rkal:monero.social> Pretty sure mine is running restricted

<4​rkal:monero.social> And it still shows up

yes it shows free space on unrestricted xD

restricted*

seems unique?

<o​frnxmr:monero.social> Restricted shows the same for everyone

<t​obtoht:monero.social> yes, it's std::numeric_limits<uint64_t>::max()

<t​obtoht:monero.social> = 18446744073709552000

<4​rkal:monero.social> So can't that be used for "fingerprinting" ?

<4​rkal:monero.social> So why is the os info suddenly bad?

<o​frnxmr:monero.social> one is fake?

<4​rkal:monero.social> Free space is really not useful to know

<o​frnxmr:monero.social> It is on unrestricted

<o​frnxmr:monero.social> Lmao

<4​rkal:monero.social> ?

<t​obtoht:monero.social> I think you misunderstood, free_space can't be used for fingerprinting. It's the same value for all restricted nodes.

<4​rkal:monero.social> Oh ok

<4​rkal:monero.social> Thnx

<o​frnxmr:monero.social> matrix.monero.social/_matrix/media/…ero.social/mMxaLRuwCrybFGDuzqXHMUFC

<o​frnxmr:monero.social> Unrestricted ^. Very useful

<o​frnxmr:monero.social> Ignore the 18.2.2. Ill update sooner or later 😅

<o​frnxmr:monero.social> lol my rpc just jumped to 8 😂

<g​orillaquest:matrix.org> termux hasnt been updated since last year and a half

<g​orillaquest:matrix.org> we need a modern termux alternative

<o​frnxmr:monero.social> The terminal hasnt, the packages have

<g​orillaquest:matrix.org> termux is on an outdated target sdk and cannot go above it

<o​frnxmr:monero.social> Shh

<o​frnxmr:monero.social> I dont want everyone knowing who runs android nodes

<o​frnxmr:monero.social> termux/termux-app #2155

<r​ecanman:agoradesk.com> Lol

<1​23bob123:matrix.org> How do you know who is esg compliant ? Measure carbon emissions from node…

<g​orillaquest:matrix.org> Was looking at this

<g​orillaquest:matrix.org> termux/termux-app #2155

<s​iren:kernal.eu> I scanned 142 public mainnet nodes from monero.fail with `nmap -O` and only one node has a possibility of being windows (`Microsoft Windows XP (86%), FreeBSD 6.X (85%)`)

<s​iren:kernal.eu> excluding tor and i2p nodes btw

<s​iren:kernal.eu> there are OpenBSD and FreeBSD nodes

<s​iren:kernal.eu> also Android

<1​23bob123:matrix.org> So monero not racist then

<u​nkn8wn69:matrix.org> Well monero is mined to a large percentage by active machines controlled by mining botnets. So I guess that's environmentally friendly compared to warehouses full of BTC Asics)

<1​23bob123:matrix.org> We accept all

<p​lowsof:matrix.org> objection, hearsay / speculation your honour

<s​iren:kernal.eu> scanning 13 more via ipv6, all Linux except:

<s​iren:kernal.eu> `cpe:/o:apple:mac_os_x:x.x.x cpe:/o:apple:mac_os_x:x.x cpe:/o:apple:ios:x.x.x`

<s​iren:kernal.eu> scanned 13 more via ipv6, all Linux except:

<s​iren:kernal.eu> `cpe:/o:apple:mac_os_x:x.x.x cpe:/o:apple:mac_os_x:x.x cpe:/o:apple:ios:x.x.x`

<1​23bob123:matrix.org> Haxxor

hello

can any1 help with crontab question please. I'd like to start XMRig, so I added this line in Crontab but I don't think it works:

<o​frnxmr:monero.social> Monero Support , Monero or Monero Offtopic

<o​frnxmr:monero.social> er

<o​frnxmr:monero.social> #monero-support #monero or #monero-offtopic