<m​oney011011:matrix.org> chainalysis is so lame, 40 mins of over technicalities, just to say they used someones info that got leaked by unknowingly connecting to their node, outlier, its clever tho, they make it seem like its reproductible

<m​oney011011:matrix.org> we need some software for service providers to randomize IP addresses of their own so it cripples them, because they are tracking IP of fixedfloat etc

<m​oney011011:matrix.org> Seems changenow and fixedfloat are governement honeypots, they are either owned or controlled by them

<m​oney011011:matrix.org> matrix.monero.social/_matrix/media/…matrix.org/TpHWyQRyUkShKiIdgFUmVBOb

<m​oney011011:matrix.org> FBI appears as reference for IP addresses

<m​oney011011:matrix.org> Its no wonder they are still standing, despite sideshift, coinswitch and cexs leaving..i think mexc to xmr is probably better, they werent on the list and plus i doubt theyd cooperate with fbi

<r​brunner7:monero.social> You are aware that this video and the cases they show have their age, it does not necessarily represent where exactly they stand now? I don't think it means much if MEXC does not appear in this very video. Or maybe I totally misunderstand, and your post is an add for them :)

<r​brunner7:monero.social> > chainalysis is so lame

<r​brunner7:monero.social> What did you expect? No need to be brilliant if you can make your money by just being so-so.

<r​brunner7:monero.social> And well, you could argue that the Monero dev community should build such tools itself, to conduct white-hat attacks on Monero and demonstrate where there is a clear need for improvement. In the spirit of the "Breaking Monero" series of videos, in a way.

Such tools rely heavily on information from potential hundreds of malicious nnodes

And direct data from CEXes

So while we technically write such tools, the infrastructure for them will be too expensive for the community

*can write

and there is no way the community can get access to CEX wallet to eliminate decoys

<r​brunner7:monero.social> All true. Can you please stop to disrupt my brainstorming :)

<r​brunner7:monero.social> With a well concerted effort, we maybe could play "malicious nodes and CEXs" with lots of volunteers on testnet, or a separate network like testnet.

<r​brunner7:monero.social> *stressnet

<m​onerobull:matrix.org> but why

<m​onerobull:matrix.org> FCMPs arrive soon

<r​brunner7:monero.social> True as well of course. Maybe soon that video will nicely document "The dangerous old times, before we had FCMPs, when bad people broke through our decoys", and that's it :)

they already talk about "good old times" (from their perspective) before D++ :)

<r​brunner7:monero.social> Funny, just now jeffro256 posted some interesting thoughts and arguments over in the "No Wallet Left Behind" room that if we are not careful how we implement wallets with FCMPs we may run into similar possible attack angles like now with decoys ...

<m​oney011011:matrix.org> When are fcmps slated for?

<s​yntheticbird:monero.social> 2025

<m​oney011011:matrix.org> How does fcmps stop chainalysis ip tracking? does it extend beyond decoys?

<s​yntheticbird:monero.social> FCMP do not protect against IP tracking. IP is already protected with dandelion++ which is live right now. Chainanalysis was able to track IP of transactions because these transactions were broadcasted to their malicious nodes. It is impossible to protect from this. You must always use a node you trust

<s​yntheticbird:monero.social> also that isn't the appropriate channel for asking these questions. Consider #monero:monero.social or #monero-community:monero.social

<k​ayabanerve:matrix.org> With FCMPs, and wallet trees, the most a node you publish to learns about you is how many inputs you have to spend and which TXs you make. They don't learn which outputs you received (yet rings are small enough they can do analysis there) and can't perform multi-input EAE attacks.

<k​ayabanerve:matrix.org> It isn't a solution to malicious nodes, it just prevents contagion effects where they trace which coins you're spending and whoever you send to.