antidote

joined 1 year ago
[–] [email protected] 3 points 4 days ago (1 children)

Yo wtf? You do realize that when you go live someone will send drugs through your service?
At that point the alphabet boys will jump on you as their next favorite low-hanging fruit?
I hope you know how be and stay anonymous...

[–] [email protected] 1 points 1 month ago

I just found something, the issue only appears when I am logged in, on both web and apps. The issue is not present when I am not logged in.

[–] [email protected] 1 points 1 month ago

VPN, mullvad. I am always on the VPN on web too (where there is no issue)

 

I am more and more (and almost always now) only receiving 1 year old posts in my Lemmy feed for this instance on mobile, even with the "New" filter.

The issue is independent of the exact mobile app used as I have it with Jerboa and Thunder. The monero.town website is working fine though.

Anyone else got this?

[–] [email protected] 2 points 2 months ago

Your suggestion to have separate wallets for inbound, and outbound doxxed transactions is actually very good

[–] [email protected] 3 points 2 months ago

Thanks Nyx!

It seems the recommendations are:

  • use a trusted VPN
  • use a trusted remote node (like your own remote node)
  • in general, be careful which exchanges you use
[–] [email protected] 2 points 2 months ago

Good points, I also think that they have easier fish to fry right now but that time will come, and the project needs to be ready for that. And when we start worrying is not a good time to start thinking about what to do.

I am a bit uncomfortable about the lack of shared knowledge about what are the attack vectors, when should we start to worrying about this or that, etc.

[–] [email protected] 3 points 2 months ago (1 children)

I don't know exactly right now what the plan should look like. We could ask the general fund to have someone at least look at it and give recommendations. Someone in opsec, systems design or the likes would do.

The way I see it, a good way to neutralize monero is to first identity as many important participants as possible and then take the opportunity of the next 'crisis' to bash them very hard and associate them with the worst possible terrorists in the public opinion.

By important participants I don't mean just the core devs. I am talking about people like rbrunner, Justin, Rucknium, etc. All those that are the 5% making the 95% of impact in the ecosystem (compared to us consumers of their marvelous work). They currently don't think their threat level is very high, they should not have to hide anyway. But the issue is that when they will find monero keys for whatever CP ring they can seize that opportunity to frame all our ecosystem as supporters of CP and terrorism. Remember, it doesn't need to be true, just to be repeated again and again to the masses. After that you can just jail a few core devs, a few Dex operators and some event organizers to scare the little bunch back to their caves.

BTW the point is not to find a countermeasure yet but to put ourselves in the shoes of the adversaries and consider their options. The plan will itself come up after considering these points.

Tldr: let's ask the general fund to review our strategic opsec as a project.

[–] [email protected] 3 points 2 months ago (5 children)

Governance

What's the plan when the assault against the monero devs is launched?

The timeline is moving, the arrestation of Durov is a good marker of that.

Some devs are anonymous but that's not a plan, just countermeasures.

The fact that I am asking is a sign that the community does not know how it it will deal with the governance attacks coming up.

Remember, they got BTC via its governance.

[–] [email protected] 2 points 3 months ago

Do you sometimes use monero as money?

[–] [email protected] 3 points 3 months ago* (last edited 3 months ago) (5 children)

On the Internet, .cc is the country code top-level domain (ccTLD) for the Cocos (Keeling) Islands, an Australian territory. It is administered by a United States company, VeriSign

https://en.m.wikipedia.org/wiki/.cc

Removing that clearnet domain does not seem impressive or disruptive at all...

Please feel free to post here, you're a valuable member of the community, as is anyone of us. Side question, do you sometimes use monero as money?

[–] [email protected] 3 points 3 months ago

Good points. Especially since most people won't:

  • use tor to access it
  • or use the mullvad browser with a VPN
  • or just run it in local
  • or think about what information they are leaking there with their home IP address and browser fingerprint

The project is interesting nevertheless.

[–] [email protected] 2 points 3 months ago (2 children)

On twitter they basically said anything other than btc is a shitcoin.

 

I was coming here less and less often since the DDOS because Jerboa wasn't working anymore to show posts from here.

It seems to be working now. Is the ddos over and the annoying cloudflare captcha (this is the ddos protection that was causing issues with the mobile apps) gone?

Otherwise I was going to suggest a kuno so that the admins can implement something better.

view more: next ›