I mean something like en.wikipedia.org/wiki/Introduction_to_Algorithms

in a form of university course

and Knuth's TAOCP

xmrpow the wonderful thing about Java is it feels so good when you move on to a freer, less "choking tie, starch shirt and tight suit" language :)

for myself, I can't stand Java for actual development; its red tape slows down the thinking terribly

sech1: I dont know this specific book, but we talked about the efficiency of datastructures and things like standard sorting algos.

We used Pascal and later Assembler for as languages for learning. Pascal was nice learning language for its strict grammar and type checking, Assembler was good for learning low level

and data structures/algorithms to learn programming in general

good combo

so you studied computer science right?

yes, in university

hmmm something is wrong

sech1: When I started with computer science we had to learn haskell :-D

something is really wrong. starting monerod with 0.17.1.5 docker image 18081 is open to local, however when started with 0.17.1.7 image same config .. 18081 does not open ...

ocb: rpc?

look into --rpc-restricted-bind-ip

yep rpc

by default restricted rpc binds on 127.0.0.1 now

sech1: Could you recommend some other good computer science books, which are worth to read?

Start with en.wikipedia.org/wiki/Introduction_to_Algorithms

that one is a huge fat book

yep, rpc-bind-ip=172.x.x.x rpc-bind-port=18089 rpc-restricted-bind-port=18081 confirm-external-bind=1 restricted-rpc=1 .. with 0.17.1.5 i can see the 18081 is open, but with 0.17.1.7 same config 18081 is c losed

sech1: Ok thanks, I gonna give it a try. Im sure it is not that complicated like these german study books. Germans normally make things more complicate than they are in reality;)

ocb: yes, add --rpc-restricted-bind-ip 172.x.x.x

selsta: when was this introduced, between 0.17.1.5 and 0.17.1.7 ?

selsta: thank you. back on the road.

we did not intentionally break backwards compatibility

but new behavior makes more sense

now you can bind unrestricted to e.g. local and don't have to worry about firewall

selsta: it does, i wondered earlier why there isn't such an option and was confused with rpc-bind-restricted

i planned to make building auto, but now.. think i'll just leave it on manual or it will require manual checks.

thanks for the help!!

s/manual/multiple/

selsta: i wondered for a moment, could the same people be behind attacks on electrumx servers (mainly btc) and on monero. whoever it is, they keep hitting but in the case of electrumx they are using client vulnerability to scam coins

unlikely the same people

our attacker is monero focused and mostly cares about annoying users

i see you are probably right. i didn't even know until now about ongoing monero attacks. maybe my ip was low in their list :)

have a good day /away

What is the correct current block height?

Not sure if my node is under attack right now or not

2260297

2260297

w0w

u faster than a bot :)

lol

Ok thanks looks like im good

Is there a way to know that your block height is correct?

xmrchain.net

Wishing you guys the best in fighting against the attack. Happy holidays!

phew. finally updated monerod and applied banlist

Was reading the /r/monero and looked like my monerod got killed

bastards >:O

No remote node will get my view key until I set up node as trusted right?

node never gets your key

I was guessing about it, but then what is trusted daemon option?

the daemon will see transactions you create

what benefits then are?

on an untrusted node, the wallet will ask for blocks around the height it wants

to obscure which one is the block of interest

on trusted node, it will ask for exactly the block it wants

so trusted node will be more efficient

on a trusted node, the wallet can turn mining on and off. untrusted node can't.

various other stuff

ok thanks for explain :)

hello

I'm in the process of syncing pruned monero blockchain. The syncing was going pretty fast till 50% after which it has slowed down to a crawl.

Why is that?

the early blockchain was mostly empty blocks

huh?

not many transactions were happening early in monero's life

the latter half of the blockchain has a lot more activity, more volume

how long is it supossed to take to sync a pruned blockchain?

and also heavier crypto algorithms, so more CPU-intensive to verify

how can I increase the syncing speed?

hard to say. dunno what's bottlenecking for you - network, CPU, or disk

I have 20mbps, 2 cores and a rotating disk.

probably disk is too slow

but you should check a performance monitor to see what's busy

rotating disk is a biggest bottleneck

with SSD sync is finished something about 12h as I remember, with HDD it is something about couple days maybe week

cpu is at 60%, internet usage is not capping at all (at about 200KBps) I think it is the hardrive. ;(

how much RAM have you got? running windows or linux?

linux. I have 4GB

you can tweak the OS a little to use RAM more aggressively

in /proc/sys/vm

echo 90 > dirty_ratio

echo 60 > dirty_background_ratio

echo 60000 > dirty_expire_centisecs

then run monerod with --db-sync-mode fast:async

or fast:async:10000

oh, and also echo 0 > swappinessappiness

... echo 0 > /proc/sys/vm/swappiness

that will leave data cached in RAM for up to 10 minutes, default is only 30 seconds

greater caching will lighten load on the HDD

if you have a system crash, you may lose more data, so don't do this if you have unstable power or other shaky environment

hyc maybe do you know hot to read mdb files on linux?

I was try using mdb-tools

but with mdb-parsecsv there is core dumped :?

there's no csv data in the blockchain db

mdb-tools is for M$ Access db files. monero uses LMDB

uhh you are right I forgot about it

ok so even when it is lmdb how to open/read this on linux?

Is there a bug/attack on latest monerod? The service seems to be using excessive memory.

I see there is lmdb in linux apt but can not install it

I will only open/read lmdb database with python?

kloinka, yes

Thought so , thanks...I tried --limit-rate and --in-peers paramus but didnt help.

on reddit you have post with recipe how to prevent but it is hotfix

use --ban-list

I think there's still some problem. After doing all what you said. I still at 50% and it says estimated time to finish is 1 month!

a node with 64 GB ram crashed, but another one with 256 GB survived

does anyone know how many nodes were taken down?

(approx.)

by whom and when?

ref: topic

is this on v017 release or master only? monero-project/monero #7138

how to prepare transfer for submit by rpc wallet? there are methods transfer, submit_transfer, sign_transfer what is the flow? I would like to get preinformation before send tx like fee and so on

moneroist: see getmonero.org/resources/developer-guides/wallet-rpc.html#relay_tx

first you create it with 'do_not_relay' set to true, and store the hex result. You can then relay the hex transaction after doing your checks

@binaryF

binaryFate oohh I see it, thanks!

Thanks Mochi101, --ban- list worked a charm! 😁

Spoke too early...service fails after a short time.

I've had it up for over 24 hours with the new banlist but its using 17.7G of ram D:

23h cpu time too which seems a bit high

8G ram used after 3 hours on my node, tor ban list helps but not entirely

:P

selsta new candidates for the block list paste.debian.net/1178369

if anyone wants a script to see if node is synced

vekin, kloinka, have you tried gui.xmr.pm/files/block_tor_new.txt ?

not optimal but it works

that file should include some tor exit nodes that aren't in block_tor.txt

kloinka not sure if you caught my last message before disconnecting but have you tried this list? gui.xmr.pm/files/block_tor_new.txt

contains additional tor exit nodes, may help with the memory issues

LyzaL: yeah i've been using it and it lets me keep my node up longer but I'll have to wait for the real fix, I saw some patches on github but they aren't commited yet

guess I'm lucky so far

I have a little script that bans node displaying the +2 issue but I think the nodes causing oom crashes aren't doing the +2 thing

I have an increased number of allowed incomming connections and good bandwidth so the problem is probably made worse by that

i don't get the +2 issue any longer with the block list

cool, I wasn't either but I just found some that aren't on the list yet

i do get the synchronized ok messages extremely frequently though, probably around 1 per second

hello, @vekin unfortunately I have the +2 issue with ban list. It occured after few hours. OOM not showing on build from last night (so far). Has anyone tried PR with --enable-dns-blocklist feature?

i tried but seems to be only included in master ?

I don't think any of the oom/cpu/bad peer handling is merged yet, the last commit was 7 days ago

so it's placebo effect then

ye

lol

it hasn't been very long though they are moving really fast already

.git push

if one updates block.txt the node is using do the changes get picked up by it ?

i think you have to restart monerod and reload the blocklist

yeah that's what I thought thanks for confirming

kico I made a little script to update the ban list without restarting paste.debian.net/1178373

also here is one that does some rough detection of nodes causing the +2 issue paste.debian.net/1178372

naisu! thanks!

for the second one you'll have to change the monerod path if you use it

sure I can see /path/to/monerod

thanks! this helps :)

you bet

LyzaL: do you run my block list?

selsta I do

were some of those IPs already on it?

yes

hmmmm

159.65.173.58 is a new one

can you double check?

double check what, that I'm using the list?

14:10 <LyzaL> selsta new candidates for the block list paste.debian.net/1178369

159.65.173.58 is on block_tor.txt

yes I added it 1 sec ago :D

haha ok

I've been banning them manually, so Ig let me restart monerod and see what happens

my node died at least once in the night. i noticed that the ban list has been updated again with 6 new entries. I have applied the new ban list. I hope that helps

the problem is my list does not include tor relays with exit policy for 18080

gui.xmr.pm/files/block_tor_new.txt is a more complete list but might also contain false positives

ok i'll keep it in mind

i don't know anything about the release schedule, so forgive this question. Does anyone have any kind of back of the envelope estimate of when fixes might arrive in a production release?

everything is on Github now github.com/monero-project/monero/pulls

would it be worth it for me to compile from git?

as someone who's willing to do it but it goes outside my comfort zone a bit

we hopefully have a release out in 24-48h

Can we just hve one banlist, no there are 3?

now

just keep banning them manually

list will be old after few hours

Damn, are we banning tor nodes now

only exit nodes, and also only temporary

you can still use monero with tor using --tx-proxy

.onions should not be affected by the ban list?

yep

makes sense

What stops the sender from spending the receivers output. I don't see a signature on the transaction. Only one is the RingCT signatures.

I've just read a reddit post on r/monero asking to start a public node.. while I really agree on supporting monero, I think that some kind of disclaimer from a security perspectvice should be needed (most of the comments I read are from guys trying to use their home pc)

mfoolb: we have this here github.com/monero-project/monero#socket-based

When do I prove ownership of an output I own? Would this happen in the ring signature?

selsta: I was referring specifically to the reddit post.. considering the levels of the comment I highly doubt that they are all aware of the security concern.. I thought that some of the moderator could add something about it.. even this link you gave (maybe with the 'this is a must' in bold too)

sugaring you can spend an output only if you have a private spend key for this output, it's not related to ring signatures

Whoever has the address’s key owns the output. But what stops the sender from referencing my output as the one to be spent. Where does the ownership happen?

The sender does not know the output's secret key. It needs the receiver's secret spend key to derive.

But the sender can reference that output in another tx, 10/11 are outputs not necessarily owned by the sender,

I understand that part. The sender knows the value and the blind to the Pedersen commitment. Can't he just rebuild it his side and spend the output?

how does more public nodes strengthen the network. fluffypony said to just run a node open for p2p (which I'm doing)

this is about the r/monero thread asking for more public nodes

mfoolb: I suppose I can write a comment and sticky it

What do you expect to be there?

dEBRUYNE: Well, first of all thanks. I thought it could be useful to explain that it is better to use a dedicated machine and one you surely don't use to browse the web, send e-mail, daily routine..

moneromooo: What stops this from happening?

ofc if I'm not the only one seeing this as a potential problem for supporting users

Especially for an RPC node, yes

can a mod on reddit just remove that post and replace it with a better one? It should say more p2p-facing nodes

open to p2p traffic (i don't know what the best terminology is)

both are useful for the network

asking people to run public nodes right now will just cause mass confusion

selsta why are the rpc-facing nodes beneficial to the network?

because the reality is that not everyone runs their own node, even if in an ideal world this would be the case

but yes p2p nodes help way more than public rpc nodes, but every rpc node is also a p2p node

i add what fluffypony said to me (he said to just run an rpc-facing node) to the comments will people get angry?

<sech1 "sugaring you can spend an output"> Does that mean I need to sign the transaction?

would other like it if i ran another node from my same IP address?

or is there a way that i can make my existing node do more than it's doing?

weird my monerod was "Unable to send transaction(s), no available connections" and i needed to kill -9 to reboot cause no command worked really weird

Frenn_: Are you running with the --ban-list flag?

dEBRUYNE: yes

what do you mean with no command worked?

if I increase the number of outgoing connections (say from 12 to 24) will that help the network?

Frenn_: let’s see if it happens again

having more outgoing increases your connectedness to the network so you get blocks faster, but allowing more incoming connections is the bigger thing. I think incoming is unlimited by default though

yes o

i;ve got unlimmited incoming, so i think i'm helping the network as much as i can (without running a fully public node)

i actually don't want to run a public node ever. i think it disincentivises people to run their own nodes

keeping the node updated helps the network

my nodes on 24/7 now. it's always updated

Frenn_: i had the same message starting monerod with ban list

but monerod works normal for me

yea the message can happen on startup

p0nziph0ne: my node was stuck :(

selsta: what is the cause for this message?

I can imagine that it is a check running too early

no available connections is probably correct directly on startup

it just should not print yet

afaik this happens since monero-project/monero #7021

but unable to send transaction sounds not very confident

when this is not an error in regard to the network attack, thats good

p0nziph0ne: yea it is not related to the attack and should get fixed

thanks

I'm confused and need some help. When Bob spends his output. At what point does he prove ownership?

Does Bob use the private key/ public key generated from the one-time address to sign the ring signature?

Does the ring signature's public key relate to the outPk (output public key)?

What stops Alice from using Bob's commitment when she know the value and the blind?

The key image

the key image is kind of like a one-way fingerprint of the true spend of the ring

cant fake it

needmoney90: I'm reading zero to Monero second addition and there they explain it as follows.

* To spend his ‘0’ amount output [sic] in a new transaction, all Bob needs to do is prove ownership

by signing a message with the one-time key K . The private key kB is the ‘spend key’ since it

is required for proving output ownership, while kBv is the ‘view key’ since it can be used to find outputs spendable by Bob

But I don't see any signatures in the transaction structure. Only one is the MLSAG.

So at what point does the above happen? That's confusing me.

monerod doesn't like the format of my mining receive address

mining to subaddresses is not supported

oh ok

thanks selsta, now working, and compliments to the devs for the configuration options; nice to have mining stealing only non-essential CPU cycles

what's the general drill for raising pull requests for contributed code?

aum: can you rephrase?

selsta if I want to add code, eg API verbs for showing node mining stats, then what is the procedure for submitting code for inspection, with a view to possible acceptance into the core codebase?

just submit a pull request

no special procedure