maybe is this the 2check " last_block_v1" on cryptonote_protocol_handler.inl

Come on... printf. std::cout. MGINFO. Any of those.

on !m_hardfork->check(bl)

I just realised my public key is different to my um, wallet address?

Your address is (mostly) your public keys, encoded as base58.

There's a prefix (magic byte), and a checksum to top it off.

gingeropolous: how did you solve the thing where people were sending you large files?

i didn't

well, i decided to host an ftp server

and then quickly discovered that i didn't know how to secure an ftp server

one of these nights i'll google my way through it

ya i need my buddy to send me a large file and going through the browser sucks ass and im not sure i want to setup an FTP server. not really sure what the options are.

is it all over linux etc?

you could create a user account and then he could scp it

nah hes on windows

im on nix

oh the internet. still can't send big files

what happened gingeropolous ?

with what?

your un-safu ftp server

oh nothin. aymptotically was able to log in and snoop around where he wernt sposed ta

haha

dont give him rights for sub dirs:D

did he see your hentai xxx collection?

maybe

F

Jason_, that's quite an eastern ISP, b'y!

:)

To send big files to numpties I usually upload to a google drive then email them a link, how big is big?

gingeropolous: To host ftp, check out /etc/ssh/sshd_config, chroot and sftp-server

are connections between nodes encrypted? E.g. can your ISP see the data being communicated between nodes?

No, yes.

okay, that's what I understood. Is there any private way then to broadcast a transaction? e.g. how can you get a transaction out without being seen as a node that actually is holding funds?

Host your node on a tor exit node, or with i2p.

Barf.

Host your node on a tor hidden service, or with i2p.

it would seem that being the first node to broadcast a transaction would leak you as a holder of value.

There are instructions in ANONYMITY_NETWORKS.md.

moneromooo: thx. then you need to have an ISP that doesn't about I2P or Tor

you can hide your tor usage with things like obfsproxy

it's so sad that the internet wasn't built with anonymity at the base later

*layer

Your ISP doens't see any amounts fwiw. It just sees a new tx.

moneromooo: yes, understood.

moneromooo: it should be possible to encrypt gossip between nodes, no? I mean just publish a public key on first connect? then subsequent communications back could be encrypted for you?

maybe would slow the network too much?

Yes, yes, yes, not sure.

My first SSL patch actually did this.

(opportunistic SSL between nodes)

Since you're connecting to random nodes though, it only protects against passive adversaries. MITM is undetected (unless you store known keys for daemons, but when they restart they change node id so...)

moneromooo: agreed. however, the passive adversary protection would be great, since a lot of parties likely 'just don't want to know about it', but you are right it does suffer from a big drawback.

better than nothing

In an advanced scheme, you could do something like this: store the keys. When starting up, check how many have changed their keys. Ask those who haven't what they think their keys are. If they differ, then someone is lying.

not sure where you'd go from there though. It seems like a can of worms.

Interesting idea, though a straightforward impl seems open to DoS.

yeah it's everything but simple

80-20 principle

you get 80% of the results by eager encryption

maybe eke out an additional 10% by connecting through a Tor exit node, and outsourcing the dirty work of checking for MITM to the Tor project?

is there a doc or github issue i should look at in regards to the latest on Tor vs I2P in monero in general? current state of affairs and where we are headed, etc.

ANONYMITY_NETWORKS.md

an idea for making surrounding node attack sybils more difficult

set a latency threshold for say 10% of nodes

for example, 3ms

now the attacker has to set up shop in the city as you

one question about the ring signature. what is the block_no of the sender ?

on blockchair.com for instance when I search a transaction hash I see several sender public keys and 2 recipient stealth keys i guess

and every senders public key has a block_no ?

It's probably "which block was this output created from".

ie, when the tx creating it got mined.

so its the block number from which the output is creating from, no matters how many times the monero were sent back and forth ?

Monero is not really sent back and forth. A transaction marks some key images as spent, and creates new outputs.

moneromooo: thanks for the doc, what the best way to get a starting anonymity node to start, is there a community maintained list somewhere atm?

How come it doesn't use Tor by default?

A simple approach for Tor is to just don't do any syncing. Claim the time is 1970-01-01, send your txn, and close the connection. If you don't see it within N seconds, try again

(bonus points: sometimes connect to random nodes over Tor and send garbage)

you could try telling your daemon to not publish the transaction, and then publish it manually to a public node using tor

well that's what I want, but not manual

It's great to be a coder. You want some piece of software to do something, you just do it.

OK, I wouldn't do that on FF or GCC, mind.

Actually, I did hack on FF a bit. But not GCC IIRC.

So. You want more tor use, grab your editor :)

I already have read and seen some information about the weakness of monero, beside the IP leaking is there any other possibility to leak someones sender address to the recipient address ? for instance if I buy monero on exchange and send 111 monero to a stealth address, the exchange just knows my stealth address and there is nowhere stored that an address on monero received just 111 monero, right ?

Wat

What do you call stealth address ?

Oh, do you mean subaddress maybe ?

normal monero receiving address ?

Well, if you give Alice your address, obviously Alice knows your address. She can't find it on the chain though.

She knows the tx she sent you, she can find it on the chain.

but alice just knows a 1 time address she can use to send me the monero ?

If you use a subaddress, yes.

!torrent

nonie: magnet:?xt=urn:btih:df21bf0cefcd09c4a9f2b37e9515dc9c00be14fc&dn=monero-all-v0.15.0.5&tr=http0x0p+00.0000000.000000tracker.opentrackr.org0x0p+013370.000000announce

!verify

the subaddress feature is the create new address function in monero gui right ?

nonie: gpg --verify hashes.txt && sha256sum -c hashes.txt

Very likely.

i am asking because in monero gui, there is also a create new account function

but i think thats something else

Lookup the difference on monero.stackexchnage.com.

So if I receive various inputs to the same monero account, and then i make an output, then in the blockchain you will see the last block-number from which I got input into this account will be seen ?

so ie. alice send me 3 transactions, block number 100,1000 and 10000. then i make a transaction to bob, the last block-number shown from me is 10000 ?

If getmonero.org is down you can download the binaries via torrent here. 1GB of data.

No. Well, you *might*, but it's unlikely.

why not?

nonie, what do you mean by "1GB of data"

The torrent contains binaries for all OS/platform. So it piles up. monero-all-v.15.0.5

^- @ gingeropolous

oh sheisse

XD

well, i hope yah keep it up to date :)

I try. - I'm a bit lasy from time to time.

nobody here willing to sell some monero in exchange for bitcoins ?

are they clean? :P

I'm curious how come there are no miners who operate "laundry services"

for bitcorn?

@gingeropolous yes

yes

yeah just giving you virgin coins

yeah, i dunno.

those events should be detectable on the blockchain

what do you mean with detectable ?

blocks mined with a massive blockreward, transactions with massive fees

The mining pools could operate as laundry service. The miners get paied with tainted Bitcoin and the mining pool sells the freshly minted Bitcoin to coinmarketcap with a royalty.

on the bitcoin blockchain. you have dirty corn, you make a tx with a massive fee, pool mines the tx, then sends that fee back to you

If you make a tx, you (usually) use 11 outputs per ring. N rings per tx (N usually is 2, but can be 1 to many). If you pick the last output you received, it'll be one of the ones referenced by that tx. So 1/22, typically. If you pick anohter one, the last output will be referenced with a very small probability (if it's picked as a fake out).

oh or that, nonie. that'd work too

gingeropolous: Yeah but they don't know how many

Is there a torrent for a mostly-full chain too ?

@gingeropolous sounds genious

If you include 10% of tainted txns then that just kills chainalysis completely

i doubt miners wanna get paid in tainted coins though

moneromooo, i know there used to be in the past, seeded by a random effort of people

but yes, some chainanalyses slaves will proably check it and then miners will be investigated

moneromooo: No. Sorry. I would love to but i don't have the hdd's.

If you'd get a good chunk of the miners to go along with it, it would entirely kill chainalysis' business model.

On that note, I wonder how come nobody – I am not suggesting anything be done – has considered a Jim Bell-style system for such. They're hated and have caused people with money countless woes.

miners following this business model might land into same shitlist

Lots of shady miners out there. And you can just rent hashing power.

e.g. on NiceHash. When they see the price going up, some of the pools will switch.