00:00:22 <3​21bob321:monero.social> Or plowsof can do exective order ? 00:09:11 Meta says April 12 00:09:57 Last meeting was last Saturday 00:20:13 thanks nioc, speaking of, BTCpayserver plugin proposal has a new comment https://repo.getmonero.org/monero-project/ccs-proposals/-/merge_requests/538#note_29400 00:28:22 I posted in their room 00:29:20 #btcpay-monero:matrix.org (hopefully history is viewable) 00:29:53 ``` 00:29:54 i have np with lws support, but if the ccs dropped lws stuff, imo its essentially limited to my proposed m1 (below). Whether that is a good or bad thing, is uo for debate 00:29:56 - M1: Finish GUI for remote node configuration [started here](https://github.com/btcpayserver/btcpayserver/pull/6239).. making sure to address [this comment](https://github.com/btcpayserver/btcpayserver/pull/6239#issuecomment-2481847461) 00:29:58 - M2: multi-wallet support via LWS and/or wallet-rpc + adapt M1 and M2 for lws (probably 70% of the ccs). + "wallet setup interface (create*, import, export*, update*)" for lws 00:30:00 - M3: setup (new users) and migration (existing users) documentation 00:30:02 re m2. Might be a bad idea for spend keys to touch the server, so might should Not create wallets(rpc), and be import(view wallet) only. 00:30:04 i don't know where export-wallet would make sense? Or what update-wallet means(change wallet?)? 00:30:06 anyway, sounds like duplicate of "Onboarding redesign to support both wallet-rpc and lws" 00:30:08 ``` 00:30:26 Basically, w/o lws, after clearing up their duplicated milestones, its essentially just "finish the pr that was opened a long time ago" 00:32:55 the milestones somewhat conflict with one another as well, since "simplify by allowing remote nodes" isnt exactly inline with running an lws server 00:35:32 "adding remote node support" isnt real, as it already exists 00:37:40 "create a repo org" .. is like saying "click 3 buttons" 07:36:02 Reddit will have whole ass subreddits with tens of thousands of people about it but when someone posts on r/monero about taking XMR for their weed, REMOVED BY REDDIT 07:40:00 The same site that will permanently shadow ban you for using Tor once 07:40:12 We have to find a better medium 08:54:05 shame that power tripping Lemmy Adkins block so much that federation is essentially worthless 09:38:05 it would be best if only the identity was federated and not the content. 14:22:06 https://x.com/mainnet_pat/status/1907800302071296186 14:22:13 Big thanks to monero communty being supportive towards my work <3 14:33:18 r4v3r23 ANONERO Ms2 payout expedited and completed 15:16:01 That looks great 15:19:52 surprised there's no announcment on https://old.reddit.com/r/btc/, maybe someone could post 15:22:46 I am out of reddit as it does not recognize me as a human anymore 15:24:25 Same 15:24:48 There's like a 10% chance on any given day that Reddit works for me 15:26:55 poor SethForPrivacy node 15:27:02 literally all the apps are using it by default 15:27:35 yeh. I am really sorry. But I have reduced the list I got from monero.fail by alot. 15:27:55 many do not respond or do not like some cors 15:28:17 I hope Seth likes me for blessing him 15:28:45 monero-ts does indeed do some strain on remote rpc 15:30:01 hopefully not adding more than using the core software directly would 15:32:15 anyway pat love the UI, very simplistic and styling is 🤌 15:39:24 Should really host your own 15:40:07 I gave xmrbazaar shit about this too. Using random nodes from monero.fail, or abusing seth's, is a sure way to run into issues that you cannot troubleshoot 15:40:54 When dealing with users funds, you should not be relying on a public node to be accessible 15:41:40 And should not be relying on it to serve non-junk data 15:41:57 Either a) run a node specificially for the service or b) have users enter their own specified nodes. But dont c) use seth's 15:42:46 When multisig would fail on xmrbazaar, it was always because seths node was being ddosed. 15:45:25 I'm not sure about _today_, but a couple weeks ago only 3 (or maybe 15) nodes were accessible in feather. Public nodes are often ddosed, and random nodes from monero.fail cannot be trusted. In any event, service providers (xmrbazaar, axeswap) should run their own nodes. For both security and usability 15:45:26 Only 3 (out of* maybe 15) ** 15:46:32 setting custom nodes, even not in a list of suggestions is suppoerted though! 15:46:51 especially this. Community nodes are provided by community members as a courtesy for users, not to be abused by service providers. 15:47:41 I get you. But this would raise a user suspicion of service centralization 15:48:10 like the app is by pat, the node is by pat, and the p2p relay is by pat - rigged scam no trust 15:48:24 I still stand by what i said 15:48:34 Should run your own node and don't offer seths to the slaughter. Seth's node is not reliable _because so many people do what you did_ 15:48:40 not denying the validity of your point 15:50:28 well, imo, you have 2 choices: 1. offer your own (pats) node w/ option to use custom 2. Dont offer any node by default 15:51:57 Seths node was one of the 12 that was offline due to heavy ddos 15:51:59 He (and plowsof) are running a special configs to stomach the ddos 15:52:13 under default settings, their nodes arent reachable 15:54:05 the nodes require, CORS settings to be web accessible correct? so the pool of available nodes is further reduced 15:54:38 I see, your issue is that I have chosen Seth's node and I get your concern. In fact I have chosen it without any knowledge of ddos issues or else. I found it to be most reliable when testing on mainnet. I can simply put another one to be the default one or to be on top of the list to be chosen 15:55:27 just a reminder that it is possible (it is even the only way) to put an http/CORS reverse proxy that link to non-CORS nodes 15:57:43 "Seths" node is indeed one of my issues - everyone abuses it. Its default inbitcart, was being used for xmrbazaar behind the scenes, many people in basicswap come for help and theyre always using seths node 15:57:44 Its overused. 15:57:46 but my _main_ issue is that remote nodes cannot be trusted unless you trust the op. 15:58:19 i hear spirobels browser wallet could connect to any node. that MITM proxy sounds both convenient and scary 15:58:30 so, swapping for a node that is not trusted, is worse than abusing seths 15:59:05 Example: chainalysis runs nodes/proxies to spy on users 15:59:36 In my app, both parties can choose different monero rpc nodes, they do not need to trust the node the other party would want to enforce to use them 15:59:54 may not be added, but in theory Cuprate could add CORS support very easily 16:00:49 the only way you (as provider of the service) know that a node is not malicious, is to run the node yourself. 16:01:08 LIAR 16:01:18 SETH FOR PRIVACY WILL DIE FOR MY PICONEROS 16:01:29 I'm talking about you, pat, trusting the node you set as default 16:02:26 or you mean, me as the dev of the app suggest users the users the node which is on top of the suggestion list? 16:02:33 The users can use whatever they feel like. You, pat, should not be defaulting to anything that you yourself cant verify 16:02:34 Seths node is unreliable 16:03:46 wyrc skids would like to have a word with you 16:06:39 I will lower the ranking of the seth's node in the list 16:14:42 pat: Wonderful news! Thanks. 16:14:44 Consider changing the Monero "testnet" to "stagenet". Testnet will likely hard fork to FCMP before stagenet. Probably, the choice of testnet/stagenet depends on whether you plan to write code for FCMP-compatible swaps sooner or later. 16:14:46 And there is a typo: both fields say "Default Monero RPC Endpoint", but the bottom one is for BCH. 16:16:29 in which dialog do you see both fields say the same? 16:17:28 pat: In settings 16:17:55 Mainnet, Testnet, and Regtest 16:18:09 See it thanks 16:23:49 Fixed 16:27:16 "so, swapping for a node that is not trusted, is worse than abusing seths" 16:28:26 I am, and the app is not opinionated about the node to be connected to. I merely present the user the possible choices. It was by chance that seth's was on top. 16:34:26 i dont think youre hearing me 16:34:46 You cant just lead your users to the slaughter. You should npt even suggest any nodes that you cant personally vouch for 16:36:13 tldr: seths is likely the only node in your list that _can_ trust. 16:36:33 seth for privacy cannot be trusted 16:36:39 No one can 16:36:47 it's muh cyPhErPuNk IdeOloGy 16:36:57 naw gimme my reddit karma im big brain 16:37:24 MoNeRo is the freeDoM!!!!!! 16:37:46 Note the italics 16:38:28 You could have claimed that moneroworld was trusted until we saw it being used on chainalysis videos 16:39:46 seth's node is better than some random one off of monero.fail, but youre still telling yourself that seth isnt and wont ever go rogue 16:40:30 There are at least 10 nodes on monero.fail that all have the same underlying node 16:50:15 Negativo 21:17:17 I noticed when I opened Brave browser today that Zcash was being promoted, that Brave now supports them in their web wallet. Made a post on X about that, got some interest. Brave is open source. Thoughts spirobel: ? Maybe Brave supporting Monero in their wallet is a use case more would be interested in? 21:18:28 <3​21bob321:monero.social> They have their own token too 21:18:39 <3​21bob321:monero.social> Is it BAT ? 21:18:47 yes 21:19:05 <3​21bob321:monero.social> Not CAT 21:19:07 <3​21bob321:monero.social> :( 21:45:44 yeah right...