I've just launched a decentralized IRC chat written my Amir Taaki. It is supercool.

<c​rimsonleaf363:matrix.org> Is there an app for this?

<o​frnxmr:xmr.mx> Yes

<o​frnxmr:monero.social> github.com/darkrenaissance/darkfi/releases/tag/0.1-alpha

<f​ede:xmr.mx> ofrnxmr shilling darkfi?

<f​ede:xmr.mx> :o

<o​frnxmr:xmr.mx> No

<o​frnxmr:xmr.mx> Answering a question :D

<o​frnxmr:xmr.mx> I only shill wow, bro i swear

whois spit

<m​ark:chat.nicecrew.digital> I don't get Darkfi. What is it that they do exactly?

<n​eromonero1024:monero.social> from what I understand, darkfi = zano but better

<n​eromonero1024:monero.social> dapps, smart contracts platform that aims to provide monero-like privacy

"DarkFi uses Halo 2 for its proving system, which requires no trusted setup"

darkfi uses... a game... for its proving system?

<n​eromonero1024:monero.social> mining on darkfi: whoever in halo 2 has most kills gets the block reward

<a​tori_0xbdc3ab4e:matrix.org> Can somebody confirm txs are only broadcast using dandelion++ if your node accepts incoming connections?

<o​frnxmr:xmr.mx> yes

<o​frnxmr:xmr.mx> more accurately, nodes will only stem to outgoing connections

<o​frnxmr:xmr.mx> So if you dont have incoming connections, you will only stem tx that originate on your node

<o​frnxmr:xmr.mx> Basically, if you dont have incoming connections, you should use --tx-proxy to gain relay privacy

<o​frnxmr:xmr.mx> If you do have inc connections, then its plausible that the tx being sent from your node in stem phase might not be your own tx

<m​onero.arbo:matrix.org> assuming no ISP level surveillance, I believe, given that p2p connections are unencrypted

<a​tori_0xbdc3ab4e:matrix.org> So it does broadcast using dandelion++ but an observer knows it has to come from my node since I don't accept incoming, or it doesn't even bother broadcasting through dandelion

<m​onero.arbo:matrix.org> the former I believe

<a​tori_0xbdc3ab4e:matrix.org> ok thanks

<a​tori_0xbdc3ab4e:matrix.org> Are rpc connections encrypted by default?

<o​frnxmr:xmr.mx> It uses dandelion, but the only "stem" phase tx coming ftom your node will be your own

<o​frnxmr:xmr.mx> Using self-signed certs. Easily MITM'd

<o​frnxmr:xmr.mx> And "by default" = autodetect. If you use http:// then no. If you use https:// then yes

<a​tori_0xbdc3ab4e:matrix.org> What is the benefit of the encryption if self-signed certs can be easily MITM'ed?

<o​frnxmr:xmr.mx> cli allows cert pinning

<o​frnxmr:xmr.mx> other wallets dont

<o​frnxmr:xmr.mx> If you want securely encrypted rpc, you have to generate static ssl certs for the node (default will generate a fresh cery at every startup). Specify this cert in your flags or config, then also use wallet-cli with the pinned cert

<o​frnxmr:xmr.mx> Using random generated certs and/or a wallet that doesnt support cert pinning = the traffic isnt in plain text, but the traffic van be intercepted and have the ssl cert replaced with a third parties

<o​frnxmr:xmr.mx> Without the self signed cert, its plain text

you need some sort of way to verify the cert

<o​frnxmr:xmr.mx> You'd have to be targetted for someone to strip the ssl from your connection

(like how tor does it, by embedding the public key int he tor domain)

<o​frnxmr:xmr.mx> Cindy, only cli has cert pinning (verifying the cert)

but tbh, just use tor at that point

<o​frnxmr:xmr.mx> Even gui and feather dont

no i mean, cert pinining without CAs

<a​tori_0xbdc3ab4e:matrix.org> Ah so still better to use a node on your computer if you can.

<o​frnxmr:xmr.mx> not if you dont have inc connectiobs :P

<o​frnxmr:xmr.mx> Setup your node to use tx-proxy for i2p and tor, and also to access rpc over onion/i2p

<o​frnxmr:xmr.mx> And sleep easy

yes

just access RPC over onion or I2P

tor does encryption better tbh

<o​frnxmr:xmr.mx> +1

<o​frnxmr:xmr.mx> Sync your wallet however you want, but send the tx over an onion/i2p if you want privacy for your tx

<o​frnxmr:xmr.mx> And if using your own node, either ensure you have inc connections or enable --tx-proxy, or both

honestly, tor/i2p is the best way regardless of MITM or not

because the remote node could be a spy node

i'd like to see monero embed tor in their wallet lol

<m​onero.arbo:matrix.org> stack wallet does!

<o​frnxmr:xmr.mx> Not gr8 tho

<o​frnxmr:xmr.mx> How do i use i2p w/o disabling tor for the external stuff

<o​frnxmr:xmr.mx> I dun like it

<o​frnxmr:xmr.mx> i prefer external tor - which doesnt work anymore(!)

<o​frnxmr:xmr.mx> Cant connect to an onion unless you use their tor

<o​frnxmr:xmr.mx> If you "vpn" stack over tor, you end up doind tor-over-tor if you need to connect to an onion

<a​tori_0xbdc3ab4e:matrix.org> I have --tx-proxy via tor on laptop/desktop, but to connect to remote vps node via .onion rpc is a pain. The monero.com wallet isn't set up for that. Will hope I'm not being MITM and also have VPN on the phone always.

<m​onero.arbo:matrix.org> try Stack wallet tbh /shill

<m​onero.arbo:matrix.org> if you are using monero.com on mobile at least

<s​yntheticbird:monero.social> Stack Wallet number 1 wallet

can an outside observer know that you don't have incoming connections?

<m​onero.arbo:matrix.org> I mean.... they can try to connect to you lol

<s​yntheticbird:monero.social> nioc Yes because by default you have to advertize yourself as being able to receive incoming connections

but who am I?

please have patience :)

ask stupid questions and you get real answers, who knew :D

<r​ucknium:monero.social> Hypothetically, Clover would fix this issue with Dandelion++ because it can stem-phase to both inbound and outbound peers, but we don't know yet if Clover is safe enough. Like I said in the last MRL meeting, I asked the lead author of the D++ paper to look at the Clover paper. She said she will take a look and get back to me.

<r​ucknium:monero.social> That's just the next step in evaluating Clover. MRL would want to do a deeper analysis of Clover before recommending it.

<s​yntheticbird:monero.social> Is that why you mentioned using Shadow on the MRL CC for simulating Clover behavior ?

<s​yntheticbird:monero.social> Is that why you mentioned using Shadow on the MRL meeting? For using the cluster computer for simulating Clover behavior ?

<r​ucknium:monero.social> It could be used for that. It could be used for lots of things. It would take time to set up. Someone set up one for Ethereum, called Ethshadow.