-
m-relay
<digoutpr:matrix.org> Get in touch with this platform for greatness you’ll definitely thank me later
-
m-relay
<digoutpr:matrix.org> ℹ️❤️. 👇👇
-
m-relay
<digoutpr:matrix.org>
-
m-relay
<digoutpr:matrix.org>
t.me/+js75vxeR0MxiODQx
-
m-relay
<digoutpr:matrix.org> Get in touch with this platform for greatness you’ll definitely thank me later
-
m-relay
<digoutpr:matrix.org> ℹ️❤️. 👇👇
-
m-relay
<digoutpr:matrix.org>
-
m-relay
<digoutpr:matrix.org>
t.me/+js75vxeR0MxiODQx
-
m-relay
<syntheticbird:monero.social> monerobull plowsof
-
m-relay
<sgp_:monero.social> I've begun looking for potential auditors of the helioselene library
-
m-relay
<sgp_:monero.social> The main review tasks as I understand them are:
-
m-relay
<sgp_:monero.social> 1. Address the code question on divisors that kayaba mentioned in the meeting
-
m-relay
<sgp_:monero.social> 2. Helioselene library review (formal verification?)
-
m-relay
<sgp_:monero.social> 3. Formalization + proving for multisig protocol
-
m-relay
<sgp_:monero.social> 4. Regular + multisig GSP implementation review
-
m-relay
<sgp_:monero.social> 5. Optional: divisors library review (a bug is much less damaging in practice)
-
m-relay
<sgp_:monero.social> 6. Optional: Additional divisors cryptography and implementation review
-
m-relay
<ravfx:xmr.mx> LIONLINK (from the MRL banlist) also operate a crapton of **i2p** spynodes.
-
m-relay
<ravfx:xmr.mx> If you guys have monero nodes with i2p support, I think the MRL banlist should be applied with iptables
-
m-relay
<ravfx:xmr.mx> ```
-
m-relay
<ravfx:xmr.mx> ipset create MRL_Ban_list_net hash:net
-
m-relay
<ravfx:xmr.mx> ipset create MRL_Ban_list_ip hash:ip
-
m-relay
<ravfx:xmr.mx> Split the banlist into two file (one with the subnets and one with the ips)
-
m-relay
<ravfx:xmr.mx> while IFS= read -r line; do
-
m-relay
<ravfx:xmr.mx> if [[ $line ]]; then # Skip empty lines
-
m-relay
<ravfx:xmr.mx> ipset add MRL_Ban_list_net "$line"
-
m-relay
<ravfx:xmr.mx> fi
-
m-relay
<ravfx:xmr.mx> done < /etc/fuckoffnet.txt
-
m-relay
<syntheticbird:monero.social> cc boog900
-
m-relay
<ravfx:xmr.mx> Then a few minutes later one can run iptables -L -n -v | grep MRL_Ban_list_net
-
m-relay
<ravfx:xmr.mx> Should look like that if it work. First digits is the amount of blocked packets, second one is the amount of blocked bytes
-
m-relay
-
m-relay
<rucknium:monero.social> According to
linkinglion.net , you should report that to network_abuse⊙ln .
-
m-relay
<rucknium:monero.social> (This is a joke).
-
m-relay
<rucknium:monero.social> RavFX: Thank you for investigating this. Very interesting 👀
-
m-relay
<ravfx:xmr.mx> I totally found that unexpected
-
m-relay
<ravfx:xmr.mx> Was playing with portmaster 😂
-
m-relay
<rucknium:monero.social> ^ AFAIK, that is a real press release from LionLink
-
m-relay
<ravfx:xmr.mx> Ended up blocking there ASN too
-
m-relay
-
m-relay
<boog900:monero.social> Some of the names are interesting
-
m-relay
<ravfx:xmr.mx> Sus,
-
m-relay
<ravfx:xmr.mx> I just added 23.92.
-
m-relay
<ravfx:xmr.mx> 23.92.34.0/24 to my list
-
m-relay
<ravfx:xmr.mx> Also add theses for the output chain
-
m-relay
<ravfx:xmr.mx> ```
-
m-relay
<ravfx:xmr.mx> iptables -A OUTPUT -m set --match-set MRL_Ban_list_net dst -j DROP
-
m-relay
<ravfx:xmr.mx> iptables -A OUTPUT -m set --match-set MRL_Ban_list_ip dst -j DROP
-
m-relay
<ravfx:xmr.mx> ```
-
m-relay
<ravfx:xmr.mx> so it's properly blocked both way (will edit me previous paste with that)
-
m-relay
<ravfx:xmr.mx> LIONLINK (from the MRL banlist) also operate a crapton of **i2p** spynodes.
-
m-relay
<ravfx:xmr.mx> If you guys have monero nodes with i2p support, I think the MRL banlist should be applied with iptables
-
m-relay
<ravfx:xmr.mx> ```
-
m-relay
<ravfx:xmr.mx> ipset create MRL_Ban_list_net hash:net
-
m-relay
<ravfx:xmr.mx> ipset create MRL_Ban_list_ip hash:ip
-
m-relay
<ravfx:xmr.mx> Split the banlist into two file (one with the subnets and one with the ips)
-
m-relay
<ravfx:xmr.mx> while IFS= read -r line; do
-
m-relay
<ravfx:xmr.mx> if [[ $line ]]; then # Skip empty lines
-
m-relay
<ravfx:xmr.mx> ipset add MRL_Ban_list_net "$line"
-
m-relay
<ravfx:xmr.mx> fi
-
m-relay
<ravfx:xmr.mx> done < /etc/fuckoffnet.txt
-
m-relay
<rucknium:monero.social> Must be the most suspicious ASN in the world right now. Spying on Monero, BTC, Tor, and I2P.
-
m-relay
<gingeropolous:monero.social> what does an i2p spynode do
-
m-relay
<vtnerd:monero.social> Worse case they catch two txes over the same circuit, which basically links the txes. Otherwise, spying would likely have to be done at the isp level to correlate all traffic or something
-
m-relay
<vtnerd:monero.social> *links the txes to the same sender. But even then it doesn't leak ip without additional info
-
m-relay
<vtnerd:monero.social> Or there's a data leak over the p2p protocol we need fixing, maybe they know something we dont yet
-
m-relay
<ravfx:xmr.mx> What if they modified there nodes
-
m-relay
<ravfx:xmr.mx> Can all there i2p connect together to form circuit?
-
m-relay
<ravfx:xmr.mx> In a way that would allow them to get the "in" and "out" of a circuit (if you enter by one of there spynode)?
-
m-relay
<ravfx:xmr.mx> Bonus point if you connect to one of there spy monero or bitcoin node
-
m-relay
<ravfx:xmr.mx> Each of there i2p spy IP seam to have 10 nodes