00:06:07 86G sounds like cellular phone service in the year 2156. 00:07:04 I think the blockchain.raw file is outdated... it should be removed at this point 00:59:12 <321bob321:monero.social> Didnt plowsof do a pr for it? 01:15:53 Hey guys whats up 01:17:03 I am a cyber security enthusiast and tech scam hunter 01:17:16 If there is anything I can do for monero please lmk 01:17:28 Im a bit out of daye 01:17:32 pacman -Syu 01:18:02 Im a bit out of date 01:42:47 you could donate to the project! :] 02:31:48 Hi, 02:31:49 I'm trying to get myself registered on https://repo.getmonero.org so that I can submit a proposal for the CCS, but have a problem I explained to Gitlab support: 02:31:51 I'm trying to register for https://repo.getmonero.org/monero-project which requires an Enterprise Edition signup. 02:31:53 I've input the details and my current, valid, working email address: 02:31:55 02:31:57 and completed the captcha. 02:31:59 I'm taken to: 02:32:01 https://repo.getmonero.org/users/almost_there 02:32:03 and do not receive an email. Emails from other entities are being delivered to the same address (there is nothing wrong with the email, network etc.) 02:32:05 I retried twice with 'request new confirmation email. ', and tried in latest Firefox and Edge browsers, but it made no difference 02:32:07 How can I register for an enterprise edition account and access and make contributions in repo.getmonero.org? 04:58:28 Haveno is alive and working so jump on https://github.com/retoaccess1/haveno-reto/actions/runs/9104271256 04:59:10 Guide: 04:59:11 https://blog.nihilism.network/servers/haveno-client-f2f/index.html 05:04:54 Are there any attempts of building trust into all of this? Making sure it will be hard to offer doctored Haveno variants with backdoors for download? 05:05:20 Are there checksums published for those ZIP files? Any signatures available? 05:07:25 Hello everyone! I just wrote this paper, looking for feedback on it: "Ticket-based multi-strand method for increased efficiency in proof-of-work based blockchains": https://arxiv.org/abs/2405.09531 -- what do you think? 05:07:34 Of course I see the current need for people to be anon, and stay anon, but you could at least show convincingly that the same anon that published this announcement also published that binary, right? 05:17:58 Alright, I saw that all the "reto" haveno commits are signed / verified, and the download is directly from a GitHub build run, so that looks like it's reasonably save 05:18:14 rbrunner: "Making sure it will be hard to offer doctored Haveno variants with backdoors for download?" I don't think that's going to be possible. Can only be prevented if the libraries are all home-made, source code is minimal (or at least small enough to remain auditable), and not accept any outside contributions to the code whatsoever, on which Haveno fails on all 3 of these points. 05:19:08 Perhaps the only acception to "home-made libraries" would be libc, unless you're willing to make your own. 05:19:56 That's the 100% percent fallacy, or how you want to call that. I don't talk about 100% making sure. I talk that so far I saw exactly *ZERO* hints to be careful and attentive what you download and run. 05:20:38 People just wildly publish things, and other people just wildly download and run. Don't you see possible problems with that wild-west situation? 05:21:42 I know. The people downloading and running part can be put under "individual responsibility", but developers publishing vulnerable code is a whole different story. 05:22:27 Such simple things as protecting against people putting up "GitHab" pages with doctored downloads, by providing checksums. 05:22:38 Like, I might be evil if I were to develop a ransomware, but it's ultimately the people just downloading and running being stupid enough to do so. 05:23:10 I know, I know, most people won't check the checksums, but you could at least show responsible behaviour as the publisher$ 05:23:29 What if my ransomware had the correct checksums? 05:23:52 Serious question? How do you fake checksums? You don't because you can.t 05:24:31 True, you can't fake checksums, but you can still trick people into believing it's all safe. 05:24:46 Just look at what happened to xz recently. 05:24:55 Correct checksums, but still contained a backdoor. 05:25:17 I am rambling here because in that Haveno story so far I never saw even a single "Please be careful" statement. 05:25:20 The intentions of the owner of the project wasn't malicious though. 05:26:14 We solidly talk past each other. You talk about special cases and sofisticated bad actors. I talk about the most primitive things of starting to rise awareness. 05:26:25 I never add such statement in any of my programs either, unless I make something for a "wider audience", because the "wider audience" tends to be retarded. 05:27:08 But niche audiences tend to be naturally a lot more careful. 05:35:43 elias: you should also post in here: Monero Research Lounge 06:12:34 had same issue, plowsof cleared it up 06:14:50 @rando, thanks 06:14:51 @plowsof:matrix.org 06:14:53 please let me know how you cleared this up for @rando ... thanks ... 06:19:03 Aren't they built with GH actions? possible attack vectors https://github.com/step-security/github-actions-goat/tree/main/docs/Vulnerabilities 06:21:24 also submitting maclious PRs that trigger CI builds https://nathandavison.com/blog/github-actions-and-the-threat-of-malicious-pull-requests 07:20:36 ceetee🇧🇪 thanks, now I posted it in monero-research-lounge also 07:26:12 that's a different thing 07:26:26 backdoor is supposed to be stealthy into the code 07:26:47 me and SyntheticBird doubted it 07:27:26 never said it is, but everyone should take a precaution 07:52:38 You know, putting in a "backdoor" into something like Haveno is a few lines of code: Every tenth payment goes to me, not the true receiver. People will put it on Haveno not yet properly working now for quite a long time. 08:00:02 Are we talking about https://en.wikipedia.org/wiki/Underhanded_C_Contest ? 08:00:14 because it's the same for Java 08:00:42 I've downloaded it because I checked all the reto commits prior to the build 08:01:19 But in the near future it'll weird for reto to change anything except their keys 08:02:57 https://arstechnica.com/tech-policy/2024/05/sophisticated-25m-ethereum-heist-took-about-12-seconds-doj-says/ 10:46:03 Original story? https://www.web3isgoinggreat.com/?id=over-25-million-taken-from-an-mev-bot-by-malicious-validator 10:46:05 I don't know an anying about MEV's, but their bugs seem to be a source of income for many since PoS-ETH? 11:05:37 So this whole Web3 scam/buzzword is still not dead yet? 11:06:58 Also, today I learned that Arizona depends on Cloudflare, so if you want to overthrow a government along with a huge chunk of the internet, you know who to target. 11:44:59 plowsof: Are all three sn plowsof..onions currently mentioned at https://monero.fail/?chain=monero&network=stagenet&onion=on provided by you? 12:51:42 f should i seek legal representation before answering that question? 13:06:00 Hehe I don't know. I added them to my code for node selection. 13:26:27 Dotnetspec what is the username under? 13:31:20 RussianEscorts or EthereumMixer? 13:45:51 Hi fellow XMR users, here is my (simple) contribution to the community: http://timappziaaomrpyiivzijuat4obusumxoipcrw5rinugcfq4bffuenad.onion 13:45:53 It is still beta version, do not hesitate to test, find bugs and errors, and report them to me 13:45:55 Cheers! 13:45:57 zia 13:45:59 http://timappziaaomrpyiivzijuat4obusumxoipcrw5rinugcfq4bffuenad.onion?canary 13:49:44 A random link with no idea what it contains. Oh yayyy 13:52:24 It is an alternative to LocalMonero I try to build 13:54:28 I can confirm he is a rando. guy on the internet, why not trust his random onion link? 13:54:50 > <@aremor:matrix.org> A random link with no idea what it contains. Oh yayyy 13:54:51 I can confirm he is a random guy on the internet, why not trust his random onion link? 13:56:38 Do not trust, just test 13:57:41 I'm just busting you chops buddy 😂 14:50:04 zia_tim: Only an AI could solve your captcha there, mere mortals have no chance. Seriously. At least over a button to get a new one. 14:50:55 Oh, f*ck, they are on Matrix.org ... 14:51:09 lol 14:51:25 imagine centralizing a federated protocol btw 14:53:14 If federation would still work properly after all those firewalls and filters are put in place, that would be a thing 15:10:51 https://infosec.exchange/@WPalant/112449766672367105 15:17:32 Tim - Trade In Monero. Seems to be a .onion-only LocalMonero alternative. 15:19:10 zia (tim): PM. 15:20:44 Trading or buying you mean_ 15:21:44 You mean trading or buying/selling? For trading in an onion site I've worked with majestic bank, they have tradeogre style trading . 15:22:19 Where can i get onion store? 15:22:20 It is what the acronym stands for as per their own website. TIM - Trade In Monero. 15:22:48 gotcha 15:22:57 very interesting read nioCat. thx for sharing 15:23:23 ? 15:23:31 credit to dam bob 15:23:39 whoops 15:23:46 dan bob 15:24:42 what do you mean onion store? 15:25:03 You can get onions at a grocery store, but I doubt that's what you mean 15:25:54 Lol amazon 15:26:02 But with lights closed 15:29:05 monezon is what you're lookin for mate 15:30:00 Monzone ? 15:30:22 LinkM 15:30:26 ? 15:30:35 they're listed in monerica, let me check the link for you, one sec. 15:31:08 Thankss 15:31:55 monezon.com 15:34:26 Dark web store bro 15:34:37 Not literally amazon 🤣 16:20:57 https://matrix.monero.social/_matrix/media/v1/download/monero.social/kfKNXiWMcyemKnbhoqtwlwmE 16:21:05 Matrix in a nutshell 16:33:28 never had that issue 🤔 16:49:08 IRC FTW 16:50:10 does anyone know email hosts that you can pay with xmr? 17:18:10 Mullvad I think 17:20:19 Mullvad is a VPN, not an email host... 17:47:13 https://digitalgoods.proxysto.re/en 18:30:58 r/Monero is so dead, its annoying 18:31:37 NOOOO 18:31:38 is it really? 18:31:43 oh reddit - ok 18:31:45 We should push nostr anyway. 18:31:47 Isn't nostr invaded by bitcoinist? 18:31:49 or is it just Primal? 18:31:50 Is monero actully dead? 18:31:51 first result of "Nostr" is a forbes article talkinb about Jack Dorsey lmao 18:31:53 Monero is strong on nostr. 18:31:54 actually* 18:31:55 Do you have account to share? 18:31:57 sure 18:31:59 nostr is pretty much mostly bitcoin but there are lots of monero people as well and several monero paid nostr relays 18:32:01 npub14a6q6xvt4wuv0wpdpfr336e4fweldtu6np3ehpw55h83xuw2h2zsgyz6rn 18:32:03 This guy is pretty based 18:32:05 Saberhagen The Nameless 18:32:07 here's how to setup a nerostr (monero) nostr relay and links to existing instances: 18:32:09 i'll need to setup a nostr instance too 18:32:13 its so good 18:32:15 no 18:32:17 its alive 18:32:19 and kicking 18:32:43 Also check out Li₿ΞʁLiøη 🏴a³ npub1wpzpvzfkn4m754fasp0wnt6ck20ycww4kz9nj4n5rquu9ul7a0xq4hzs7p 18:32:55 Not always 100% Monero content 18:38:36 Is FluffyPony on Nostr? 19:05:02 syntheticbird you can ignore anything that forbes publishes 19:05:17 and by anything I mean everything 19:29:38 I get this is a bad news site but it shows that fiatjaf is synonymous with nostr 19:33:23 and I don't see myself pushing monero as having a future on an hostile platform 19:45:06 <321bob321:monero.social> Free pentesting 21:09:41 lol nice new quote 21:16:26 https://dl.acm.org/doi/10.1145/3589335.3651487 21:16:31 >Deanonymizing Transactions Originating from Monero Tor Hidden Service Nodes 21:19:05 direct pdf link: https://dl.acm.org/doi/pdf/10.1145/3589335.3651487 21:32:50 interesting. is --pad-transactions somewhat helping here? 21:40:10 https://matrix.monero.social/_matrix/media/v1/download/matrix.org/grfAMUxOnWcvyHLuFtBOYjxj 21:48:17 https://yewtu.be/watch?v=LrOxBCpeCgU has been almost a month 21:50:08

hey yall 21:50:12

i love monero 21:50:29

am mining some right noe 21:50:34

am mining some right now 22:00:40 hey, are you on kitsune.club official matrix instance ? 22:00:49 didn't know they had one 22:13:00 Anyone want to donate xmr to help fund the battle against scammers. I am the owner of https://scammer.info we hunt scammers every day 22:15:20 <5m5z3q888q5prxkg:chat.lightnovel-dungeon.de> how much H/s and profit 22:19:28

663.33 H/s and uhhhh profitability idk 22:19:53

yeah they do 22:20:21

yeah they have a matrix instance too 22:20:46 <5m5z3q888q5prxkg:chat.lightnovel-dungeon.de> likely none, thanks for doing that for monero-chan <3 22:22:16

> literally none 22:22:17

well actually you're not correct this is my current situation 22:22:25

https://matrix.monero.social/_matrix/media/v1/download/kitsunes.club/VJNRTPazutGqtxXrqfHhkbDC 22:22:51

i still have a long way to go to my pool's minimum payout of 0.07 XMR 22:22:56 <5m5z3q888q5prxkg:chat.lightnovel-dungeon.de> electrical and hardware costs 22:23:08

no idea 22:23:21

probably not that much 22:23:41

the laptop i use to mine on consumes 45W 22:23:50

the laptop i use to mine consumes 45W 22:24:09 I'm curious as well 22:24:47

https://matrix.to/#/!eBgZCVRnRRkKchiYzS:monero.social/$YlHembQo6HUTzeaiqHmDvs67yefYSQbhIngll3PXXMw?via=kitsunes.club&via=matrix.org&via=monero.social 22:28:06 <5m5z3q888q5prxkg:chat.lightnovel-dungeon.de> 0.2847 per KWh is the average cost of electricity in the EU based on https://ec.europa.eu/eurostat/statistics-explained/index.php?title=Electricity_price_statistics 22:28:07 <5m5z3q888q5prxkg:chat.lightnovel-dungeon.de> 0.2847/10 = 0.02847 EUR per Watt 22:28:09 <5m5z3q888q5prxkg:chat.lightnovel-dungeon.de> 45W costs 1.28115 EUR per unit time 23:30:46 Nice!