-
h2017
my node is not staying up
-
wfaressuissia[m]
h2017, details ?
-
h2017
8G on the box
-
h2017
monero is the only thing i'm running on it
-
h2017
monerod
-
wfaressuissia[m]
define "not staying up"
-
h2017
it appears to completely die without any log messages
-
h2017
it gets restarted
-
h2017
it's only lasting for 10 minutes at a time
-
h2017
Height: 2259551/2259551 (100.0%) on mainnet, not mining, net hash 1.71 GH/s, v14, 11(out)+16(in) connections, uptime 0d 0h 2m 22s
-
wfaressuissia[m]
which ports are opened ?
-
h2017
says it's only been up for 2 minutes 22 second
-
h2017
just the p2p port
-
selsta
we are looking into it, please keep restarting for now
-
wfaressuissia[m]
10 minutes period is quite short, can you restart with "--log-level 4" and share logs after unexpected restart ?
-
h2017
sure
-
h2017
hold on i'm going to make an adjustment to make this easier for me
-
h2017
wfaressuissia[m], no logs for now. it looks like others are looking into this.
-
wfaressuissia[m]
good luck with debugging then selsta and others
-
camalonso
my node is behaving REALLY bad, it runs few minutes and then starts grinding and consuming all memory. Eventually it either crashes or i'll force it to restart. Nothing special in logs. How to debug this?
-
selsta
camalonso: be patient please, we are looking into it
-
agentpatience
all nodes will be going down.
-
selsta
agentpatience: it will be fine
-
wfaressuissia[m]
minexmr/support has closed incoming connections from Tor, nice workaround
-
wfaressuissia[m]
soon Tor will be blacklisted by everywhere
-
wfaressuissia[m]
* soon Tor will be blacklisted everywhere
-
hyc
this is just a temporary measure until a good patch can be written and teste
-
hyc
d
-
h2017
this is rather more serious attack then the previous ones since killing nodes is a serious thing
-
h2017
sorry i suppose we shouldn't be discussing it
-
h2017
my bad
-
selsta
it is okay now
-
h2017
anyway it's a growing pain on the way to the moon
-
selsta
we have what we want
-
h2017
it's only getting attacked because it's a high value target
-
h2017
sorry i thought was on #monero-markets too
-
wfaressuissia[m]
Tor nodes are cheap but easy to ban so this attack wasn't very serious
-
wfaressuissia[m]
h2017: to be serious you need to kill at least all nodes belonging to mining pools
-
wfaressuissia[m]
after that all nodes with opened p2p port
-
wfaressuissia[m]
that's about 50 nodes for pools (known to me) and 1200 general purpose nodes belonging to some stanges
-
camalonso
attack vector is rather serious though
-
wfaressuissia[m]
serious enough to gather money through CCS for proper fix ?
-
wfaressuissia[m]
or so-so
-
wfaressuissia[m]
What are the limitations of this OOM killer ? Does it kill only cheap nodes ?
-
wfaressuissia[m]
only minexmr nodes have been killed ?
-
dgoddard
no any monerod that gets the wrong peer goes down
-
dgoddard
just apply selsta's new ban list and you're fine for now
gui.xmr.pm/files/block_tor.txt
-
selsta
the tor exit node list is not complete, so it might still crash
-
selsta
will update the list with a more complete list
-
selsta
hmm wait
-
ackroydai
MoneroOcean has been acting strangely this last week while mining
-
wfaressuissia[m]
MoneroOceas using the most cheapest virtual machines
-
wfaressuissia[m]
pruned db, slow hdd / cheap ssd, 2-4 GiB of RAM
-
ackroydai
Thats's an interesting point...
-
wfaressuissia[m]
All low end mining pools must keep p2p port closed by default
-
wfaressuissia[m]
and high end pools instead of blacklisting Tor should spend part of their resources on better infrastructure and CCS donations in order improve codebase
-
wfaressuissia[m]
but in reality: big pools blockhole Tor and smalls stay with opened p2p port for everyone :D
-
selsta
blacklisting Tor is only a workaround until we have a patch
-
ackroydai
Agreed blacklisting might be a type of whack-a-mole
-
wfaressuissia[m]
* but in reality: big pools blacklist Tor, small pools are trying to stay with opened p2p port for everyone :D
-
wfaressuissia[m]
good that there are only 2 major pools not 30, easier to cooperate and act synchronously
-
wfaressuissia[m]
selsta, Can you publish an example of artificially crafted p2p packet ?
-
h2017
wfaressuissia[m], it doesn't matter. we understand the nature of the attack. it's no different from allowing an arbitrarily large input and someone taking advantage of that
-
h2017
programmers often don't notice when they leave that kind of attack available
-
wfaressuissia[m]
h2017: there are limits in software of packet that can be consumed, processed and freed at once in order switch to the next
-
wfaressuissia[m]
100MiB for network packet, 100 recursion limit
-
h2017
yes
-
wfaressuissia[m]
only number of incoming connections is unlimited
-
wfaressuissia[m]
I've been waiting for this malicious peer with opened p2p port
-
wfaressuissia[m]
49 out/ 12 in, nothing interesting 600MiB of RAM
-
wfaressuissia[m]
only regular "Failed to handle NOTIFY_REQUEST_CHAIN", but these are unrelated
-
nioc
Default out is 12, do you mean 12 out and 49 in?
-
wfaressuissia[m]
I have out 2048
-
nioc
Ok
-
wfaressuissia[m]
in order to speed up the process
-
wfaressuissia[m]
"blacklisting Tor is only a workaround until we have a patch", 100% probability that these IPs will stay there forever since Tor is a free way to get 1000 uniq ips for an experiment
-
wfaressuissia[m]
718M, 63 out / 18 in
-
h2017
i've applied the new blacklist
-
wfaressuissia[m]
centralization is coming
-
h2017
soon there will be a whitelist with one central node
-
h2017
the masternode
-
h2017
man that., so non-woke. i managed to say blacklist, whitelist and a word with "master" in it in the space of three posts
-
wfaressuissia[m]
whitelist with central nodes, good output keys an so on
-
wfaressuissia[m]
assuming that bitcoin is for rich people that don't care about privacy (since it isn't possible to hide billions of dollars)
-
wfaressuissia[m]
then monero is for poor people
-
wfaressuissia[m]
it should be one of the main priorities to optimize monerod so that you can use the cheapest VM without any problems
-
wfaressuissia[m]
and any special knowledge
-
h2017
not necessarily but isn't someone already offering a cheapish dedicated appliance?
-
h2017
that's the way to go
-
h2017
just plug and play
-
wfaressuissia[m]
OOM kill, ban list, puned db, any other form of DoS, +2 block, ...
-
wfaressuissia[m]
^ these are signs that software is in ready for poor people
-
wfaressuissia[m]
* pruned db in order to fit into small SSD
-
wfaressuissia[m]
* not ready
-
h2017
wfaressuissia[m], people have a hate-on for monero. other coins don't have dedicated attackers
-
wfaressuissia[m]
something strange is happening, rpc 18081 port isn't usable anymore and al incoming peers have gone
-
wfaressuissia[m]
false positive, 127.0.0.1 has been banned due to p2p behind NAT
-
h2017
my own node is running smoothly
-
wfaressuissia[m]
I'm not using any preventive mechanisms
-
h2017
you want to see the attack for yourself?
-
wfaressuissia[m]
yes, i need that packet
-
h2017
the guy behind the attacks (if it is the same guy who has been doing other stuff) is a major ZEC supporter
-
h2017
the backstory is unknown to me
-
selsta
wfaressuissia[m]: max packet size in monero is 100MB?
-
wfaressuissia[m]
yes
-
wfaressuissia[m]
git grep -ie 'levin.*packet'
-
wfaressuissia[m]
contrib/epee/include/net/levin_base.h:#define LEVIN_DEFAULT_MAX_PACKET_SIZE 100000000 //100MB by default
-
wfaressuissia[m]
But output packet is at most 32MiB
-
wfaressuissia[m]
so you could easily reduce INPUT to the same at least
-
wfaressuissia[m]
But shit * 0.99 ~= shit
-
wfaressuissia[m]
one parseable packet can be compased from few 32MiB but in reality at most 1 32MiB paket can be sent
-
wfaressuissia[m]
nothing is using framentation of p2p messages now
-
moneroist
Hi, I would like to create wallet by rpc call, but don't know how to run monero-wallet-rpc with idle mode, what are minimal command arguments for run monero-wallet-rpc without opening particular wallet
-
wfaressuissia[m]
`monero-wallet-rpc --wallet-file test_wallet --daemon-host 127.0.0.1 --rpc-bind-ip=127.0.0.1 --rpc-bind-port=18084 --prompt-for-password --disable-rpc-login --log-level 1`
-
moneroist
ok so I need to pass some wallet file right?
-
moneroist
I asking about it because there is rpc method open_wallet
-
moneroist
so I thought that there is possible to run idle monoer-wallet-rpc without particular wallet and then call this method
-
wfaressuissia[m]
`monero-wallet-rpc --wallet-dir /tmp --rpc-bind-port 18084 --disable-rpc-login`, with specified --walled-dir you're free to start without wallets
-
moneroist
Ok I can do it, just need to use --wallet-dir
-
moneroist
exactly
-
moneroist
thanks!
-
VashTheStampede
.bal
-
moneroist17
wfaressuissia[m] maybe you know there is possible to reveal seeds words by rpc call? because I can not find this in docs
-
moneroist17
wfaressuissia[m]
-
moneroist17
Ok I found it :)
-
rbrunner
Where? Did not find it directly in the .h file ...
-
rbrunner
Not even a way to query secret keys
-
moneroist17
there is method query_key
-
moneroist17
in wallet rpc docs
-
moneroist17
I have checked this out and this works
-
rbrunner
Ah, yes, see it now. Quite some way still until you have a seed from that, right?
-
moneroist17
right :)
-
rbrunner
No pain, no gain
-
Mochi101
curl
127.0.0.1:18082/json_rpc -d '{"jsonrpc":"2.0","id":"0","method":"query_key","params":{"key_type":"mnemonic"}}' -H 'Content-Type: application/json'
-
rbrunner
Clever, so it's one of the key types :)
-
vekin
hello, thought i would idle in here after my monerod started getting OOM
-
dEBRUYNE
-
vekin
thanks, i've loaded the new block_tor.txt
-
vekin
kind of freaked out thinking someone had a remote exploit for monerod
-
aum
I've restarted monerod, even rebooted the node's container, but every time, monerod on startup shows on 'top' as having 100+GB of virtual memory
-
aum
I have added the block_tor.txt file
-
vekin
the block_tor.txt worked for me, ./monerod --ban-list block_tor.txt
-
vekin
oh virtual ram, it isn't actually using that much ram
-
xnbya
it maps the entire blockchain into virtual mem, you can ignore it
-
aum
vekin, xnbya thanks -- so none of that memory-map of the blockchain is eating physical unless/until it needs to?
-
vekin
yeah in htop you want to look at RES column to see actual memory usage
-
aum
so what kind of hostile traffic was the attacker hiding behind the tor exits? DDoS, or something more menacing?
-
vekin
I'm hoping it was just DoS too
-
aum
I really gotta dive into the codebase. I'm guessing a big chunk of ongoing effort goes into defending against toxic nodes (similar to Freenet and I2P when I was working on those projects)
-
Jaska_
Hmm.. monerod on my windows desktop pc makes my pc go *HURGH!* and stalls
-
vekin
-
aum
vekin, should that be added to this chan topic?
-
anchor[m]
>makes my pc go *HURGH!* and stalls
-
anchor[m]
lol
-
» aum starts working on a systemd unit for '*HURGH! out of memory*' monitoring
-
vekin
you can use "MemoryMax=10000M" or something similar to have systemd auto kill it past a certain point
-
aum
good idea
-
camalonso
In some (rare) cases the attack may come via Tor node not listed in "official" exit node list. I've compiled a list of exit nodes that doesn't have "Exit flag" but do have exit policy accepting *:18080
-
camalonso
-
camalonso
just in case someone is having issues even with all the block lists applied
-
aum
according to coingecko this doesn't seem to have hit XMR/USD
-
camalonso
correction: they might have exit flag, but some of the don't..
-
aum
camalonso, does that supplement, or override, the earlier block_tor.txt ?
-
aum
s/override/supersede/
-
Lyza
block_tor.txt is the normal block list + blocks tor exit nodes
-
Lyza
sorry you were asking about camals list
-
aum
i've already got block_tor.txt in place
-
camalonso
it's supplement to all other block lists, in case your node still gets rekt
-
aum
ok
-
aum
I'm noticing CLI args and jsonrpc verbs for start/stop/configure mining, but no info on how to review mining status, or allocate mining rewards to a wallet's address - am I missing something?
-
Jaska_
another quick question, I SYNCHRONIZED OK. This is related to the attack but why it's spamming it when there is no even new blocks being announced.
-
selsta
Jaska_: SYNCHRONIZED OK should show up less often in the next release
-
selsta
ok wait, could be that the attacker is spamming it now
-
Jaska_
2 syncs every 10 seconds
-
rbrunner
I wonder how long it takes until all those sync shenigans completely break the ETA / sync time display I programmed in the daemon :)
-
Lyza
-
selsta
you can ignore it for now
-
selsta
does not seem harmful apart from being verbose
-
dEBRUYNE
selsta: PM btw
-
Idancelikethis
talking about my wife? verbose and not SEEM harmful
-
vekin
LOL
-
rbrunner
Yeah, I also have "SYNCHRONIZED OK" messages that multiply like rabbits. As long as the daemon stays up :)
-
vekin
its probably because you are sending out tons of blocks on account of a lot of nodes going down
-
vekin
but idk how the protocol works so that may be wrong
-
vekin
mine is sending at 1-3MB/s and I haven't seen it use that much previously
-
p3rL
merry xmas fluffypony
-
teddit[m]
same here, lots of SYNCHRONIZED OK messages
-
p3rL
how long we need to wait for free xmr giveaway
-
marmulak
how many xmr do you get?
-
p3rL
waiting for fluffy's giveaway
-
selsta
the SYNCHRONIZED OK is something we have fixed on Github, we will include it in the next release
-
selsta
you can ignore it
-
selsta
-
Mochi101
Are we getting a new point release for Christmas?
-
kico
selsta, is this due to dem nasty nodes?
-
selsta
yes
-
kico
ic makes sense
-
kico
in a twisted way iGuess
-
kico
thanks
-
kico
I see some txs getting stuck in the nodes at times also
-
kico
relay_tx doesn't seem to do the trick
-
kico
mebbe block.txt needs an update
-
kico
:P
-
selsta
updated the block list with new IPs
-
selsta
which should make the synchronized spam stop
-
kico
thx
-
kico
can I has the link pls?
-
selsta
-
selsta
this one for the current attack, afterwards please use
gui.xmr.pm/files/block.txt again
-
kico
merry thanks :)
-
spedex
The "Synchronized ok" started to happen again with the new block list.....10 secs apart.
-
vekin
10s? mine are often 1s apart
-
selsta
spedex: likely he spun up new IPs
-
selsta
you can add 95.216.217.238
-
spedex
OK will do
-
spedex
Annoying fellow that whoever is doing this
-
spedex
Maybe another one: 95.216.173.96?
-
spedex
If that is correct then I figured out how I can look for them myself and add to my blocklist
-
selsta
set_log 1
-
selsta
and then look for the IP before the synchronized message
-
spedex
yeah that is what I did
-
selsta
yep he is adding hetzner IPs now
-
selsta
updated my block list
-
monerouser1144
Came here to check about the malicious IPs, here is my info
paste.debian.net/1178294
-
monerouser1144
Btw I was wondering, do such attacks happen on the other cryptocurrency networks, or is Monero getting a "special treatment" ? ;-) TIA.
-
Mochi101
monerouser1144, some coins even get 51% attacks
-
monerouser1144
Please remind me, if a peer node that is still reporting being at block #1 after e.g. 30min, is it an indication of suspicious/malicious activity or maybe it is unable to sync due to e.g. using outdated software? Should I block them (I have 3 out of my 10 peers at block #1)?
-
selsta
no need to ban them
-
selsta
they are honest about their block height by claiming to be on 1
-
monerouser1144
selsta thx, I remember you gave me the same answer a couple of months ago. Please check the paste I sent earlier, because I don't see 159.89.95.30 in your block.txt
-
Mochi101
seems bad nodes are using random ports
-
selsta
monerouser1144: thanks, added it
-
monerouser1144
Perhaps a DNS-based solution can be created for querying the ban-list, similar to the various DNSBL used for mail servers.
-
selsta
we have a DNS based ban list for the next release
-
selsta
opt in
-
omega
hello. i'm running latest linux release and my daemon keeps coming up "Killed" what is killing it? I set log level to 0 1 2 and I don't see anything in the terminal killing the process?
-
selsta
omega: please apply the following ban list:
gui.xmr.pm/files/block_tor.txt
-
selsta
some network attack
-
omega
yes. i am using the start up flag -ban-list with block.txt - are others reporting the same issue?
-
selsta
this is a new version of block txt
-
selsta
it includes tor exit nodes which are used for this attack currently
-
omega
okok.. i try. thanks
-
selsta
yes, other have this too
-
omega
TO ALL AGENTS ON CHANNEL: Your time is up. The New World Order Firewall WILL NOT be successful. BEING FREE IS MY BIRTHRIGHT. Millions of people are waking up.
-
Mochi101
Mmmkay
-
Jaska_
I feel like banning the whole ovh network D:
-
Mochi101
That's one way to be sure you're not connecting to any bad actors Jaska_
-
selsta
Jaska_: ban OVH, Hetzner and DigitalOcean :D
-
selsta
and all Tor exit nodes
-
Jaska_
yeah
-
Jaska_
manually banning one ovh ip, another pops up :P
-
monerouser1144
I use iptables+ipset to block many IP ranges. But I am not sure if banning the low-cost VPS providers (OVH, DO, Hetzner etc) is a good idea.
-
selsta
my nodes have been quite quiet with latest version of
gui.xmr.pm/files/block_tor.txt
-
M5M400
my nodes are mostly hetzner and ovh :(
-
M5M400
don't ban me
-
selsta
does anyone know if the SYNCHRONIZED OK attack is still ongoing?
-
ragn4
2020-12-25 18:46:54.430 I SYNCHRONIZED OK
-
ragn4
let's see
-
hyc
yes
-
hyc
I'm still getting a ton of those
-
Mochi101
selsta, sometimes yes and sometimes no
-
Mochi101
after banning some nodes it goes away... but I have some obviously bad nodes connected for awhile with no resulting syncronized ok message
-
ragn4
2020-12-25 18:50:47.242 I SYNCHRONIZED OK
-
ragn4
2020-12-25 18:50:57.750 I SYNCHRONIZED OK
-
ragn4
2020-12-25 18:51:08.259 I SYNCHRONIZED OK
-
selsta
ok thanks
-
aum
if a node is configured to do mining, how does it receive the benefit?
-
rbrunner
For mining you have to give a wallet address. If your daemon finds a block, the transaction with that block reward goes to that address.
-
miziel
and the block just needs to get confirmed by the network and taaadaaa! ez money :D
-
mechanic41turk[m
<miziel "and the block just needs to get "> literally creating money out of thin air !!!
-
sethsimmons
hyc any idea which of these would be most interesting to keep track of for monitoring monerod memory usage?
-
-
sethsimmons
Monitoring percent real, resident set size, and virtual size right now.
-
moneromooo
RSS is important. That's what will be pretty much unswappable.
-
sethsimmons
Perfect — was just monitoring total which included virtual before, which wasn’t all that meaningful and didn’t help catching OOM attacks/events.
-
moneromooo
Virtual is address space, it'll include all the mmap'd stuff. No idea what real is.
-
sethsimmons
Percent real is just RSS/total mem
-
hyc
I'd watch RSS and swap
-
hyc
if swap starts growing fast you're in trouble
-
sethsimmons
Yeah thats how I would have caught the issue very early if I hadn’t been AFK for the holidays, swap kept filling and pinging me because of it
-
hyc
and RSS alone doesn't mean much. it's ok for RSS to grow if it's all shared memory
-
xmrpow
Does anyone know how I could get rid of this p2p attack? My node is always crashing within 30min. Is there sth else than using selstas latest ban list and using 17.1.7?
-
Lyza
This one is coming from tor exit nodes, so you can use
gui.xmr.pm/files/block_tor.txt which is the original list + tor exit nodes
-
xmrpow
Im already using the list which is blocking tor exits
-
xmrpow
But it does still not work.
-
Lyza
ah well it's possible it may be missing some
-
selsta
there is also
gui.xmr.pm/files/block_tor_new.txt which also blocks tor relays with 18080 exit policy
-
selsta
this one should be more complete
-
xmrpow
Thanks selsta going to try the new one
-
selsta
mine running
gui.xmr.pm/files/block_tor.txt did not crash in 12+ hours
-
shabash
what's the latest and greatest blocklist to use?
-
selsta
-
selsta
-
h2017
xmrpow they updated it though. make sure you have the latest update
-
shabash
so
gui.xmr.pm/files/block_tor.txt is the address to remember?
-
h2017
my node's been up for amost 7 hrs with no issues but only using the latest block list
-
xmrpow
h2017: ok. trying the new one.
-
xrv0
hey, quick question regarding coin supply again. Doesn't the total emission look less like this
i.stack.imgur.com/Dms1D.png and more like this
prnt.sc/w9zsyg because of the block time change in 2016?
-
xrv0
or was the block reward doubled after the update?
-
xmrpow
How long do you think will it take to get rid off these attacks? Is there any sign of a solution on the closer horizon or do you think this back and forth with blacklists is going to continue for few weeks?
-
nioc
block reward was double when the block time doubled
-
moneromooo
It'll continue until the jerk doing this stops trying. Until then, we'll just fix whatever he tries to break.
-
ragn4
rm ./total.txt ./block_tor.txt ./block.txt;wget
gui.xmr.pm/files/block_tor.txt;wget gui.xmr.pm/files/block.txt;sort -u block_tor.txt block.txt > total.txt;wc -l total.txt;./monerod ... --ban-list total.txt
-
moneromooo
It seems likely they've spent the last year or whatever poring over the code, so they might have a few of those.
-
Lyza
<ragn4> block_tor.txt should already contain block.txt
-
ragn4
ok thanks
-
xmrpow
moneromoo: I rly dont like the way how this guy is dealing the issues, but what kind of worries me that nobody thought about the issues before within the community... Hasnt this been an issue in btc p2p network before?
-
moneromooo
monero you mean ? We have issues in p2p before I think, yes.
-
selsta
fwiw even Bitcoin wiki claims that they are vulnerable to P2P DoS
en.bitcoin.it/wiki/Weaknesses#Denial_of_Service_.28DoS.29_attacks
-
moneromooo
Couldn't point to one in particular, but see git log if you want to search.
-
xmrpow
So btc p2p is obviously safe, otherwise they would be under constant attack.
-
moneromooo
Anyway, I've got patches for these things, so I'll PR them.
-
Lyza
there's just not that many people doing actual development work and, no offense intended, I don't think any of them are particularly well verses in networking stuff
-
selsta
just because they don’t get attacked does not mean they are safe, else they would not claim to be vulnerable themselves
-
selsta
but Monero is obviously less mature than bitcoin and has more p2p dos vectors
-
Lyza
I guess the assumption is that the incentive to attack btc is higher than to attack monero, but I'm not sure about that
-
selsta
what is the incentive to DoS the network?
-
ragn4
ddos over nodes now?
-
xmrpow
moneromooo: Yes, I meant monero. Didnt know about it.
-
moneromooo
Assuming it's the same person, it's someone who tried to work with us a few times, but pretty every time became abusive. In the end we just tried to have nothing to do with him. So I guess it's taking rejection badly. Maybe three's something else I don't know about though.
-
moneromooo
So I guess the incentive is... not being able to have their way, then trying to piss on it in spite ? I dunno. Looks like it to me.
-
selsta
-
selsta
some of them quite recent
-
ragn4
Connection timed out
-
selsta
it only takes one skilled malicious dev to abuse this
-
moneromooo
Assuming it's the same person doing it all. Which seems likelt, but not certain.
-
aum
does anyone have any data of mining machine kWh per XMR, for the various pools?
-
aum
i need to calculate the break-even time for a mining rig based on hardware cost, setup time, local electricity costs, average returns per megahash...
-
aum
I guess the node mining feature can't be set up to use a pool
-
moneromooo
You need special software. Of which there are a handful.
-
xmrpow
selsta: "what is the incentive to DoS the network?" Pool nodes would be attractive
-
dEBRUYNE
xmrpow: Always easy to say in hindsight. In practice, it is difficult to harden a network against a large variety of attacks a priori
-
moneromooo
Basically, to distribute jobs and keep track of who you distribute to, and account for who to pay when a block is found. And all the fancy stuff to go around.
-
aum
I'd rather grab off-the-shelf Ubuntu-compatible s/w, cos I want to start my coding effort on building python asyncio-based RPC clients/integrations
-
Mochi101
To be fair moneromooo, we don't really know who it is. We only assume.
-
Mochi101
I'm glad you worded it that way.
-
xmrpow
debruyne: True. I dont want blame devs, but I kind of feel uncomfortable about the fact that one guy can do that much damage.
-
xmrpow
Mochi101: Do you know how M5 is protecting his nodes ?
-
moneromooo
It's made of software, you know.
-
Mochi101
xmrpow, come on... is that even a question?
-
dEBRUYNE
xmrpow: If they have competence and resources, I don't see why not
-
Mochi101
xmrpow, most pool ops are very dedicated.
-
xmrpow
Mochi101: Yes it is.
-
xmrpow
Mochi101: So he is basically baning the hell out of it?
-
ocb
hello. been running full xmr node at full 1gbps speed over a year now. in the past 72 hours monero started using extensive amount of memory, at the moment 500mb but in no time it jumps to 12gb which is the hard limit of a docker container. until now, had no problems. v0.17.1.5
-
Mochi101
xmrpow, I don't know how he's addressing it or even if he has problems anymore.
-
ocb
is anyone having similar issues? ^ some kind of attack ongoing maybe? i just noticed .. about to start debugging.
-
Mochi101
ocb, it's an attack
-
Mochi101
use the latest version with the ban list
-
ocb
thank you. all this is becoming very sad, receiving lots of L7 attacks on electrum servers too.. now this. there are some haters around. thanks for the info, i'll update right away. mind giving some additional info if you have it near?
-
selsta
-
xmrpow
ocb:https://sethsimmons.me/posts/moneros-ongoing-network-attack/
-
selsta
apply this text file using --ban-list and look out for a new release soon
-
ocb
thank you guys!
-
Mochi101
selsta, you want the ip addresses that I've manually banned?
-
selsta
what kind of IP addresses are these?
-
xmrpow
moneromoo: Arent you the only one who is permanently working on the code base or is there sb else who is funded by ccs?
-
selsta
vtnerd and xiphon are also CCS funded
-
Mochi101
I'm not sure what you mean selsta. They all seemed to be using strange ports and were always "syncing"
-
sech1
-
selsta
Mochi101: incoming peers use random ports
-
selsta
afaik my list is quite complete, but you can send me "sync_info" output and I can take a look
-
ocb
at the moment i'm blocking electrum ddos by limiting concurrent connections to 9, if one goes over that - that ip is added to blacklist with ipset that is called fromiptables
-
ocb
here's a quicky if needed, could possible be changed to work with monero with some more verbose logging -
termbin.com/c4q6 will look into it now. thanks for the info, going to update.
-
xmrpow
sech1, I know about all the volunteer contributors, but I dont think they are not all constantly contributing like for instance moneromooo
-
xmrpow
sech1, * but I think
-
xmrpow
Are there any other devs who would be willing to work as paid devs, but cant be paid because of lacking donations etc. ?
-
selsta
lack of donations have not been a problem
-
xmrpow
selsta: What s the problem then? Not enough skilled devs?
-
xmrpow
moneromoo: How long do you think it would take for sb who can code python and java to get into c++ in order to work with the monero code base?
-
sech1
xmrpow 5 years
-
Mochi101
:D
-
sech1
not kidding
-
sech1
and that assuming that somebody has talent already
-
sech1
c++ is just a different beast
-
moneromooo
Depends what you want to do really. And it depends a *lot* on the person. Some people ask me the same questions over and over again in PM, you'd cry.
-
moneromooo
For someone who knows Java well and can learn, < 5 years easily.
-
sech1
c++ is easy to learn in 1 year or so, but to be able to write good quality code in a large codebase... it takes time
-
xmrpow
moneromoo: Sry I hope you didnt have to cry now ;)
-
xmrpow
Are you both in touch with c++ in you day time job?
-
sech1
For the last 15 years, yes
-
xmrpow
Hm, I rly hate the decision that they are teaching java at my university....
-
Mochi101
But 3 Billion Devices Run Java
-
selsta
Doubt the language matters at University
-
xmrpow
Mochi101: I feel the bitterness there ;)
-
selsta
If you get the general concepts you can learn C++ yourself
-
xrv0
java atleast gives you a solid understanding of oop programming. Once you understand the principles you can adapt to new languages pretty easily
-
sech1
They should teach you programming
-
sech1
Instead they teach you java
-
xmrpow
sech1: You mean java is to specific?
-
xmrpow
*too
-
sech1
I mean java is a programming language
-
sech1
They teach you words, but not how to make sentences
-
sech1
figurally speaking
-
moneromooo
Sufficient.
-
sech1
do you have basic algorithms and data structures course there?
-
moneromooo
Enough.
-
moneromooo
(trying to see how you can have a conversation with single words)
-
sech1
Specific programming language is secondary. Once you know fundamental stuff, programming language is just a tool
-
xmrpow
I started with computer science but ended up in information systems. When I studied computer sciences we had such courses there, but it was basically always proofing mathematical stuff.
-
xmrpow
It was very theoretical.
-
xmrpow
But I understand what you mean...
