01:07:40 <321bob321:monero.social> it was a dark day in our monero history 07:11:04 backup available on monerica2.com / monerica.net 09:40:00 DDoS is really hurting these days 09:40:27 * m-relay fire up its botnet 09:43:40 is it though 09:44:21 monero.town has had 780 million requests this month 09:44:44 and most of the downtime was solely because i initially wanted to sit out the ddos 09:46:14 what sitting out the ddos mean ? 09:46:49 Shutting down the box and letting it pass. 09:47:01 thx rotten 09:47:16 As in, letting the attacker give up on his own, considering he has nothing to hit if box is down. 09:48:14 i guess that is a reasonable strategy. I know kyun.host was down for 2 weeks bc of it, iirc the guy was sending non-stop and had a lot of credits towards some ddoser so he could go on 09:49:02 I prefer the metasploit founder strategy. Locate C2C server, set DNS on that ip, wait for the ddoser to get ddos 💯 09:49:55 we arent getting the control servers via tor 09:50:31 then ddos tor 09:50:35 this will probably go on till europol gets them 09:50:36 easy 09:50:47 yes probably 09:50:50 ah yes, ddos all exit nodes 09:52:53 <321bob321:monero.social> Imagine getting paid $1 per request 09:54:24 <321bob321:monero.social> Entry nodes* 09:55:02 can i make money off of the ddos somehow 09:55:19 uh i have an idea 09:55:25 i can re-sell the ddos 09:55:42 all i have to do is change the DNS entry to a different domain lmao 09:55:43 <321bob321:monero.social> Yest forward requests 09:56:40 [H] 25 Million requests per day ddos [W] XMR 10:00:43 <321bob321:monero.social> At monero.town we are environmentally friendly and recycle ddos 10:02:03 who is the command and control now bitch 10:02:14 lol 10:03:21 i could just point it back at the tor exit points but i dont want to attack tor 10:04:38 The Tor network is valuable, these developers are so toxic and arrogant tho 10:29:27 <321bob321:monero.social> Free pentest for torguards 10:32:59 <321bob321:monero.social> Funfact tor has rooms on the matrix 10:47:08 Instead of tor low, wen randomx moneropow 10:47:17 Make ddoser send hashes 10:48:03 10000 difficulty as a captcha 10:48:25 Quantum computer detector 5000 10:49:07 s/tor low/tor pow 10:55:32 <321bob321:monero.social> Tor artix is alpha or beta? 10:56:13 alpha 10:56:15 afaik 11:17:50 Seriously though. Someone needs to create a randomx gate for websites. Cloudflare captcha / i am a human nonsense takes like 10+ seconds to load and complete 11:20:34 It should take less time for almost any modern phone or computer to find a 10k share. 100m requests should find a cpl blocks 11:28:06 Sort of like "pay for rpc" but instead "send hashes to access website" 11:48:53 where do these hashes go to? 11:49:34 <321bob321:monero.social> Up in smoke 11:49:51 not to Dan? sad 11:57:50 If this existed I would gladly implement it into any website I ran 11:58:31 I’d say the PoW thingy that Tor has would be the best way to do it 11:59:00 (Ie you can still access the domain without doing the work, but you will be at the back of the line) 11:59:58 Lol imagine if someone made a XMR sidechain for that (Ddos-Nero) 12:19:08 You can implement it already. Just set up a pool, and ask each new IP to mine a share to your stratum port. But then it can be ddosed too. 12:22:55 oh cool idea 12:23:02 https://matrix.monero.social/_matrix/media/v1/download/matrix.org/srGWGulIEBSdoXbRHpcHbMde 12:23:04 whoops 12:25:31 "I prefer the metasploit founder strategy. Locate C2C server, set DNS on that ip, wait for the ddoser to get ddos " 8) 12:25:57 "then ddos torthen ddos tor" <= wtf 12:26:57 Pointing to xmrig-proxy would allow to handle more traffic right ? 12:30:13 RandomX WebAssembly when? 12:42:46 Lol 12:44:29 It would have to work one of two ways: 12:44:30 Either 1. The randomx is somehow ran serverside 12:44:32 (Ok no that won’t work ignore that; there’s only one way to do it without throwing the “stop cryptomining me” warning”) 12:44:34 1.* make the randomx a part of the browser itself. 12:45:47 preland: Time to put your money where your mouth is: https://monero.stackexchange.com/questions/11752/what-is-primo-private-monero-payments 13:01:39 Pay for service = pay for rpc? https://github.com/monero-project/monero/pull/8724 🙈 13:03:50 https://github.com/monero-project/monero/issues/8722 < more detailed 13:04:39 https://github.com/monero-project/monero/issues/8722#issuecomment-1409050838 13:04:40 mooo even mentioned Primo 13:07:12 I never really saw a market for this in wallets, but it does make sense for stuff like Primo imho. 13:07:14 https://libera.monerologs.net/monero-dev/20230129#c197585 13:07:16 i also agree with this statement. Tldr: remove from wallet, not from node 13:19:26 Hmmmmmm 13:20:03 So long as it doesn’t indiscriminately mine on people’s computers I don’t have an issue with that 13:20:08 Although I’m pretty sure that is somewhat unrelated to what I was talking abt 13:20:11 taking into account the pr i liked above, it looks like primo was killed 13:20:16 Though ig you could repurpose it…. 13:20:32 Oh, well that’s sad 13:20:53 It's an extension, you can't repurpose it in that kind of way 13:21:25 s/liked/linked 13:23:45 Although….. 13:23:51 Hmm 13:24:14 Was it actually reliant on that rpc feature? 13:24:39 From reading it looks like it was just for paying for access to Monero nodes 13:27:15 yes 13:41:25 Enjoying the chat? To continue reading please mine 500 credits to this address 13:41:58 10000 difficulty* 13:42:07 Tor using EquiX as an anti ddos is a great use case 13:42:28 Yeah, but its free and cant be enforced 13:42:51 And even if enforced, it adds cost to the visitor, but doesn't reward the host 13:44:13 moneropow would also be superior bcuz it doesn't rely on onions. Would work for clearnet too 15:00:55 Very stupid question that I just thought of in the context of all this 15:01:25 How do pools ensure that miners don’t just keep valid “hashes” to themselves 15:07:08 you mean. Keeping valid pow for next blocks ? 15:07:49 Each block template on which they build the pow proof depends on the current block. So any pow done at an earlier state is wasted. Unless pool is able see the future, tell me whenever you find one 15:08:01 Can an individual miner recognize that they have mined a valid hash before sending it to the pool? 15:08:06 Hmm 15:08:13 oh 15:08:23 Yes, yes they can 15:08:57 but nothing guarantee they'll be the one having the reward tho 15:08:59 The real world analog would be sending miners into a diamond mine, and the miners just filling their pockets with anything they find and leaving for the day “”empty-handed”” 15:09:18 Hmm 15:09:43 that would be very similar to solo mining so there isn't any particular advantage at mining in a pool and keeping your valid calculation for yourself 15:09:57 your playing solo over a pool node 15:10:20 Hmm 15:11:06 And the reason you can’t mine the block solo instead of sending it to the pool is that you wouldn’t have the right block template info locally? 15:11:15 I don't remember what is the conditions for a valid PoW to be accepted by the network. I think its first to find it win but im not sure 15:11:30 Yeah that’s my concern 15:11:45 I guess there’s a very easy way to answer my question 15:11:51 I thik its that 15:11:56 What would stop a miner from mining for two pools at once? 15:12:00 PPLNS solves this, miners have an incentive to submit the block or risk their old shares falling out of the window before someone else finds a block 15:12:10 The answer to that would be the answer to it all 15:12:31 Hmm 15:12:41 strawberry is right. I think you dont mine a complete PoW over mining stratum, just some parts of it or something like that 15:12:50 The whole block header is hashed, which includes the coinbase tx which includes the pool's address 15:13:17 Ok that would do it then 15:13:22 You can't "keep good hashes for yourself" and use them to mine your own block, they're worthless if not tied to that address 15:13:35 oh make perfect sense 15:13:39 and the pool will refuse to pay you for shares if you mine for your own address 15:14:20 (And the reason that this ties into the “MoneroPoW” internet thing is that if it didn’t work like that, a person could premine hashes/reuse hashes to ddos a website, ruining the whole point) 15:14:52 ? 15:15:45 The whole block header is hashed, which includes the coinbase tx which includes the pool's address (actually, pedantic correction, I believe block headers don't include merkle roots in monero, instead they go along with the header into a separate structure called the block hashing blob which is what gets repeatedly hashed) 15:46:18 Ie if it was implemented incorrectly, an adversary running a botnet could initiate a PoW request for one of them and then give the “answer” to each botnet 15:46:41 But if you ensure that each one gets a completely unique request then the issue isn’t an issue 15:54:07 The pool software would check that the pow is duplicate shares are detected and rejected afaik 15:54:28 That the pow is valid*. Duplicate .. 16:43:31 What’s a good FOSS alternative to Twitter? I don’t like the Nostr protocol… 16:53:05 aremor why don't you like Nostr? Just curious. 16:56:32 I use it even though its full of btc maxis 16:56:48 I just talk about monero 16:59:57 binarybaron has updated their ccs proposal adding a Maker GUI / ASB deeply extensible, configurable and automatable https://repo.getmonero.org/monero-project/ccs-proposals/-/merge_requests/477#note_25561 , hours per week have been increased from 25 / week per dev to 35 / week per dev 17:01:17 Be the change you want to see in the world. :-D 17:07:05 aremor Mastodon is a good FOSS alternative to Twitter 17:14:53 Ahh, the good ole days of quitter on the Fediverse. People were quite active on those years ago. 17:15:17 Just full of dorky FOSS weeaboos and neckbearded tinkerers. 17:18:53 Yeah you sense the fediverse community is kinda slightly stereotyped 17:20:41 All communities pretty much are. I find it stupid to write nostr off just because it is currently taken by the loud mouth maxis. 17:21:28 It's a sound solution. You do not own your social graph on any SaaS. A corporation, a rogue report from a hater, a government can take your profile and your entire data, past history to the crapper. Nostr is unbannable. 18:24:19 Assuming that each member is given a generic (ie not per-person unique) “gib share” request, that could work, but it would be incredibly unscalable. 18:24:20 To check that the shares are duplicated, it would need a full record of all previous shares. It would also likely need a full record of previous shares from all other services (otherwise users could store their found shares from something they use often and “spend” them at other services they use less often). Congrats, you just discovered the blockchain. 18:24:22 …only difference is that you now have to store data on the entire blockchain with every single web request, forever. 18:34:52 Each person would be sent a block template to mine on 18:35:34 It would be like having xmrig-proxy sending jobs to different miners 18:39:20 They arent sent different block templates, and shares that dont find blocks are useless. Xmrig-proxy doesnt even have to tell the miner what the real difficulty is, it checks the difficulty against the real job after receiving it 18:40:26 Hey there! I wanted to let you know that I have a Telegram channel where I share some amazing Verified sauce and soft cashout methods. I also provide a Full WalkThrough to make things easier for you. 18:40:26 Here are some of the things you can find on my channel: 18:40:28 ✅Cloned Card ✅Cashapp ✅Apple Pay ✅ ✅PayPal ✅Venmo ✅Test run ✅Cpn’s guide ✅Linkable ✅CC’s drop ✅Dave method ✅Coinbase loading ✅Airb&b ✅Verizon ✅IRS TASK REFUND ✅iPhone 15 method ✅Apple product method 18:40:30 ✅Cloned Card ✅Cashapp ✅Apple Pay ✅ ✅PayPal ✅Venmo ✅Test run ✅Cpn’s guide ✅Linkable ✅CC’s drop ✅Dave method ✅Coinbase loading ✅Airb&b ✅Verizon ✅IRS TASK REFUND ✅iPhone 15 method ✅App 18:40:32 I promise you that all the methods are real and legit. No scams here! And please don't worry about how much money you have. Just be honest and I'll try my best to help you out. 18:40:34 So, if you're interested, please join my channel through the link below. See you there! 18:40:36 👇👇👇👇👇👇👇👇👇 18:40:38 https://t.me/+j0hUMyjWHAI1MGM0 18:40:49 bro, go spam somewhre else 18:41:04 monerobull @monerobull:monero.social: 18:41:20 Diego Salazar: 18:41:20 mod race 18:41:39 Hey there! I wanted to let you know that I have a Telegram channel where I share some amazing Verified sauce and soft cashout methods. I also provide a Full WalkThrough to make things easier for you. 18:41:40 Here are some of the things you can find on my channel: 18:41:42 ✅Cloned Card ✅Cashapp ✅Apple Pay ✅ ✅PayPal ✅Venmo ✅Test run ✅Cpn’s guide ✅Linkable ✅CC’s drop ✅Dave method ✅Coinbase loading ✅Airb&b ✅Verizon ✅IRS TASK REFUND ✅iPhone 15 method ✅Apple product method ✅Cloned Card ✅Cashapp ✅Apple Pay ✅ ✅PayPal ✅Venmo ✅Test run ✅Cpn’s guide ✅Linkable ✅CC’s drop ✅Dave method ✅Coinbase 18:41:44 loading ✅Airb&b ✅Verizon ✅IRS TASK REFUND ✅iPhone 15 method ✅App 18:41:46 I promise you that all the methods are real and legit. No scams here! And please don't worry about how much money you have. Just be honest and I'll try my best to help you out. 18:41:48 So, if you're interested, please join my channel through the link below. See you there! 👇👇👇👇👇👇👇👇👇 18:41:50 https://t.me/+j0hUMyjWHAI1MGM0 18:42:03 Glowie alert 19:11:58 The design allows for relays to start applying pressure to users. 19:13:44 I guess I’ll revisit it 19:14:09 Elaborate. 19:15:27 Yea, in another room tho 🙃 19:17:53 What room? 19:19:25 #monero or #monero-offtopic 19:31:08 The relays do not p2p gossip. And to follow a user you have to follow their relay…. Tying that user to the relay 19:31:34 They claim that you can easily jump from relay to relay but if people don’t know your new relay, they’ll lose track of you 19:31:52 Nostr has not met the potential that it has 19:32:24 All of that could have been solved with p2p gossiping but IMO the architects are idiots 19:33:05 Do you know there's an actual relay implementation called gossip, right? 19:33:25 I said all this early on in its development. Now just like 4 months ago, They did a podcast recently on like Citadel Dispatch where the lead guy is finally acknowledging the problems 19:34:39 19:34:50 Ah, no. Gossip is the client, chorus is the node implementation. https://github.com/mikedilger/chorus 19:35:33 First time I hear of such a thing. I've never been forced to first add a relay to be able to follow someone. 19:36:35 Yeah you have to tack it on now but the same problem exists, followers have to subscribe to a relay that you push to. That’s lock-in. 19:37:23 Because most users are pushing to the same 5 relays. But that shouldn’t be a dependency. 19:37:53 It’s possible to run your own relay. But if you do, and push to only it, and tell no one, no one will ever see your posts. It’s broken. 19:38:20 Anyways, unbannable, immutable. 19:38:44 Those are nice. Could have been better. 19:38:47 Losing battle to talk to XMR people about nostr. 🤷‍♂️ 19:39:17 When monerostr by aremor? 19:39:32 I was super pro-Nostr when it first started because I was believing the hype. Then I had to learn myself that it doesn’t gossip. 19:39:53 Bitcoin gossips. Monero gossips. smh they had so much potential 19:40:43 If I don’t find a FOSS alternative that I like, then it can be explored. 19:49:05 https://www.scuttlebutt.nz/ 20:25:17 What does any of this have to do with monero 20:29:42 and more specifically, what does it have to do with things done in the monero ecosystem, or done in/by a monero workgroup. Past, present or future. 20:29:42 #monero-offtopic:monero.social 21:15:28 Hey guys and Gals! 21:15:30 I have a question regarding a feature I think would be very important for the UX of monero namely Peer2Peer instant payment. 21:15:32 just like Visa or Mastercard do it to let you pay in physical stores but instead of the Bank giving out a verification to let you make a purchase... 21:15:34 You perform a range proof to demonstrate you have monero i.a liquidity plus a [cryptographic handle] so the receiver is able to claim the monero on his own without you waiting in the store for the blockchain to update and verify the transaction as legit. 21:15:36 Imagine it being as easy as showing a QR in the Store and walking out. 21:15:38 Is something like that possible? 21:16:39 This sounds similar to an idea that I have for an instant in-person system 21:19:01 My idea was basically that you’d have a “cold wallet” that would receive transaction data from a node (ie the cash register) via a memory-safe NFC protocol. It would get user confirmation of the transaction, would then generate the transaction, and send it to the node, and then the node would ofc place the transaction into mem_pool so it would get put on a block 21:19:31 The only issue is the cold wallet….I want it to be as cheap but also as compact as a typical credit/debit card 21:19:51 It would also need power, which is another issue ig 21:20:39 I believe the reverse of the QR code idea is possible (store has QR code, you scan it, pay, happy etc.) 21:20:55 Arn't there "card" cold wallets? 21:21:22 The wallet would have to generate the transaction on-wallet 21:21:35 That’s where the issue begins (and ends lol) 21:22:13