How do I send and receive Bitcoin? Get Started Bitcoin.com

The official BitBandit.eu subreddit!

Hey! You can be playing with real money and winning 10 seconds after you read this. Just send any amount to the bitcoin address above, take a deep breath and you are good to play. You don't have to register. It's necessary only if you want to leave money loaded and play from different devices (yes we support tablets and phones), if you want to have your winnings withdrawn to a custom address or if you want to make money with our affiliate program. It's fast, fun and easy! :-)
[link]

An Open Standard To Problem Solving

silene is a community for posting interesting solutions to problems by outlining the solutions themselves and their applications to other problems in a simple, concise manner.
[link]

Bought bitcoin ask me for the address i want it sent to how do i get my address

Using a iphone
submitted by highonpreworkout to BitcoinBeginners [link] [comments]

I sent my bitcoin to a wrong address how do i get my bitcoin back?

31yf9feeGYjCyVutJTojvfRk589DkRny2K here is the address someone help me please i beg!!
submitted by Mdumino to localbitcoins [link] [comments]

localbitcoin have reset my wallet address and someone has sent bitcoin to old one how do i get my funds back?

localbitcoin have reset my wallet address and someone has sent bitcoin to old one how do i get my funds back?
submitted by dwe405 to localbitcoins [link] [comments]

How do I get my browser to detect a bitcoin address on the page and open a bitcoin app when it's clicked?

Example:
submitted by phloating_man to Bitcoin [link] [comments]

Bread wallet changed my address. How do I get it back? /r/Bitcoin

Bread wallet changed my address. How do I get it back? /Bitcoin submitted by BitcoinAllBot to BitcoinAll [link] [comments]

Why Amaury's stunt is clever, why it's a potentially recurring problem, and what can be done about it

TLDR: this isn't an Amaury problem, it's an incentive problem. If BCH splits and the ABC token retains even some residual value, then we're likely to see future "IFP splits" in other tokens and possibly BCH again.
Here's my take on The Amaury Situation.
I think he wants to get out of dealing with BCH and leading the ABC team. I think he's over it. I think he wants to go do something different.
He could quit and walk away. But why do that, when he could create a perpetual income stream for himself as well?
"Dead" coins hold value
A lot of people here seem to think the ABC split will be worthless. I disagree. It will have significant value:
Let's assume ABC is only worth $20. Even under this assumption, Amaury stands to get $10 every ten minutes in perpetuity - for doing absolutely nothing. That's $60/hr. (x 24 hours, or $1440/day) in mail money. That's a decent wage - a perpetual income stream (annuity) - with literally no work required.
But I think $20 is super low. Tokens strangely hold value long after the token appears dead. For example LTC is still worth about $50 - and that's AFTER it's champion announced it was a dead project and all the devs left (and LTC is much less scarce than BCH). FFS even BSV is worth $150 and the entire cryptosphere agrees its a scamtoken run by a con artist.
If LTC and BSV can do it, so can ABC. I predict ABC token will hold significant value.
If the ABC token can hold $50/coin, then Amaury looks to collect $150/hr. (x24 hrs - $3600/day). If it can hold $100/coin, then Amaury gets $300/hr (x24 hrs - ie $7200/day).
But even if it drops to $10/token, he still gets $720 every day.
For doing nothing.
Why is this a problem
This is a serious problem with our incentives. If he succeeds, Amaury will have piloted a repeatable exit-scam recipe for any reference implementation.
"Tired of supporting your halfass token and ragtag devs? Here's an easy escape hatch! Just create a version that pays you a nice annuity, let the token split, and retire with your annuity."
That's the problem. Amaury doesn't have to keep the ticker. He just has to successfully split the token into two tradeable tokens, and he wins his annuity.
What can be done
I'm not sure. I want Amaury to lose here. I want him to get zero annuity. I want to send a clear signal to the next Amaury that splitting the token in order to collect your annuity is a losing strategy.
But I can't see how to accomplish this.
One way would be to attack his chain through reorgs. But there is no direct incentive for miners to do this. And I don't support the notion that "bitcoin works because miners attack chains they don't support."
Another would be to try to drive the value of his token to zero. But that's basically impossible. I think it will be very hard to drive the value of his token even to $20. And at even $20 he gets a nice little annuity. Not a get rich quick scheme by any stretch, but still, it'll pay for a nice mortgage. I know I wouldn't turn down the chance to get an extra grand per day of mail money. So even at $20/token, Amaury will have demonstrated that his easy retirement plan will work. We need $2/token if we want to declare his strategy an unqualified failure. We can't.
And the problem here is that if/when BCHN (or anyone else) becomes the reference client, then its leaders will have the exact same incentive to cause a split when they're tired of managing the project and want out.
Conclusion
Amaury has surfaced a possible gaping vulnerability in the incentive system which creates a perverse incentive to continually create "IFP" type splits. This vulnerability exists in all bitcoin-like tokens. Unless we can find a way to completely block Amaury from his expected revenue stream, he will be setting a precedence that we can expect to see repeated on other tokens and possibly even on BCH again one day.
Edit: I wanted to point out that dskloet has reminded us there is a third option, and that is that instead of allowing Amaury to split the coin, we can soft-fork ABC in such a way that ABC considers the blocks to be valid, but the IFP funds are unusable. The obvious way to do this (as dskloet pointed out) is to blacklist the IFP address. But blacklisting has its own consequences. Another way to do this might be to do something like make the coins sent to that address "unmovable" so that ABC clients will see the blocks paying to IFP and therefore valid, but he can't spend the money.
Edit: to clarify
What's the difference between blacklisting and making the coins unmovable? Isn't that exactly what blacklisting is?
Blacklisting means not accepting transactions from address X.
I propose instead sending "fake coins" to address X. Like putting slugs into a coin-op machine. The machine owner can still try to spend the slugs, but nobody will take them. But the machine owner can still spend any valid tokens spent in the machine.
submitted by jessquit to btc [link] [comments]

Bitcoin Farming, Basic Arithmetic, and you

I have written this guide to dispel a common misconception I hear from this community - that putting more than one Graphics Card in your Bitcoin Farm is a great idea.
TLDR: The FIRST graphics card you put in your bitcoin farm generates a bitcoin every 20 hours. Every additional graphics card you put in your bitcoin farm generates a bitcoin every 333.33 hours. This information is misstated on the wiki and in many videos I've seen.
More Complicated Maths TLDR from u/Mekhazzio :
TLDR: The bitcoin farm has a base production rate that's much higher than the rate added by each additional graphics cards. So when investing, you shouldn't be looking at how fast the whole farm pays itself off, but how much time it takes your N>1 graphics cards to each pay for themselves, because otherwise you could have just been pocketing the pure profit from the base production rate the whole time.
At current therapist/flea-FiR values:
That is to say, adding a GPU to an already-running farm takes three weeks before you've stopped losing money on that GPU.

A pretty simple formula is utilized to determine Bitcoin Farming output. The payback period for your first graphics card is around 3 days. For each additional graphics card that you put in the payback period is over 20 days. The reason that this has confused so many people is that they credit the production from Graphics Card 1 to the payback period for the rest of the Graphics Cards.
Caveat 1: Escape from Tarkov is a video game and, at least for us players, not a business. Many video game players are completionists, and I will not begrudge anyone who wants to max out every single part of their hideout because it will feel like an achievement. This guide discusses the impact of bitcoin farming on your PMC's wallet. If you find utility in maxing out the bitcoin farm for the feeling of completion then you should do it and probably just close this guide and not worry about it.
Caveat 2: This guide will not address people who hatchet run or pistol run to put graphics cards in their secure container that will usually end up being non-FIR. There are too many variables (spawn rate, survival rate, replacement value of just doing normal Tarkov raids instead of hatchet runs) to do a decent analysis. If you end up with non-FIR graphics cards you should put them in your Bitcoin Farm.
Analysis:
The formula for bitcoin generation is as follows:
Let's simplify some unnecessary constants and make this look more like a normal mathematical function. All we have to do is multiply (1/49) * (0.15) to get this, which is equivalent and much easier to understand:
Now, let's get some ground rules for investment:
Caveat 3: Prices may change, blah blah blah, unless the IRL bitcoin market crashes the conclusions from this guide will still be accurate for the most part.
I will also note that I'm not going to include the cost for fuel needed for production. Because you can craft expeditionary fuel into mag boxes, as well as do other crafts on your workbench and med station while you have the power on, this cost is negligible. Furthermore, since my thesis is that putting more graphics cards in is not worth it, the fact is that I can prove this mathematically without even accounting for the entire cost category of fuel only strengthens my argument.
Using these assumed prices, let's take a look at some different cases.
Case 1:
Building a Bitcoin Generator and putting a single graphics card in.
To calculate cost, we add the cost of building the empty generator (300k) to the single graphics card (250k) to get 550k rouble investment.
Lets calculate revenue using our formula before:BTC Generated per Hour = 0.05 + 0.003 * (Graphics Cards - 1)BTC Generated per Hour = 0.05 + 0.003 * (1 Graphics Cards - 1)BTC Generated per Hour = 0.05 + 0.003 * (0)BTC Generated per Hour = 0.05
So we're generating 5% of a bitcoin every hour which means we'll get a bitcoin from our farm every 20 hours.
So, every 20 hours we are generating a product worth ~150k. Since we invested ~550k we need to sell:
550k investment / 150k roubles per bitcoin = 3.66 physical bitcoins in order to recoup our investment
Since we can't harvest bitcoins until they are full, we actually need to wait until we get 4 bitcoins at which point we'll be making a slight profit. Generating 4 bitcoins will take 4 bitcoins * 20 hours per bitcoin = 80 hours or a little more than 3 days.
Case 2:
Adding a second graphics card to our bitcoin farm.
Now, as discussed above I'm not worried about non-FIR graphics cards that you hatchet ran to find. If you have an FIR graphics card then you can sell it on the flea market for the 250k price that I'm using as an assumption above.
This concept is called opportunity cost and if you don't understand it I will troll you in the comments: Putting an FIR graphics card into your bitcoin farm is the same as purchasing one off of the flea market and putting it in your bitcoin farm because you had the opportunity to just sell your FIR graphics card for the same price that you can buy it.
With that out of the way, let's do some math on our 2 graphics card bitcoin farm:
BTC Generated per Hour = 0.05 + 0.003 * (Graphics Cards - 1)BTC Generated per Hour = 0.05 + 0.003 * (2 Graphics Cards - 1)BTC Generated per Hour = 0.05 + 0.003 * 1BTC Generated per Hour = 0.053
So, for the cost of 250k roubles we have increased our bitcoin per hour generation by 0.003.
The first graphics card that we added to our bitcoin farm generates us one bitcoin every 20 hours, as discussed above.
The second graphics card that we added to our bitcoin farm generates 0.003 bitcoins per hour. To calculate how many hours this takes to get 1 bitcoin we do the math of 1 / 0.003 = 333.33 hours. 333.33 hours / 24 hours per day is 13.88 or roughly 14 days.
In order to recoup our investment from the 250k roubles we used to get our second graphics card we divide 250k roubles invested by 150k roubles per bitcoin = 1.66 bitcoins. We generate one bitcoin every 14 days, so we can multiply 14 days * 1.66 bitcoins = 23 days.
This math will hold true for every additional graphics card because the function is linear.
Thus, the payback period for your 250k investment in adding a graphics card past the first one to your bitcoin farm is 23 days.
To reiterate: The FIRST graphics card you put in your bitcoin farm generates a bitcoin every 20 hours. Every additional graphics card you put in your bitcoin farm generates a bitcoin every 333.33 hours.
submitted by Death4Chairman20x70 to EscapefromTarkov [link] [comments]

/r/Monero Weekly Discussion – October 03, 2020 - Use this thread for general chatter, basic questions, and if you're new to Monero

Index

  1. General questions
  2. Wallet: CLI & GUI
  3. Wallet: Ledger
  4. Nodes

1. General questions

Where can I download the Monero wallet?

There are multiple Monero wallets for a wide range of devices at your disposal. Check the table below for details and download links. Attention: for extra security make sure to calculate and compare the checksum of your downloaded files when possible.
Please note the following usage of the labels:
⚠️ - Relatively new and/or beta. Use wallet with caution.
☢️ - Closed source.

Desktop wallets

Wallet Device Description Download link
"Official" GUI / CLI Windows, macOS, Linux Default implementation maintained by the core team. Use this wallet to run a full node and obtain maximum privacy. Integrates with hardware wallets. Current version: 0.16.0.3 / 0.16.0.3. GetMonero.org
MyMonero Windows, macOS, Linux Lightweight wallet -- you don't need to download the blockchain and run a node. MyMonero was developed with the assistance of the core team. It also has web-based and iOS versions. MyMonero.com
Exodus Windows, macOS, Linux ⚠️ / Multi-asset wallet. Exodus.io
ZelCore Windows, macOS, Linux ⚠️ / Multi-asset wallet. It also has Android and iOS versions. Zeltrez.io
Guarda Windows, macOS, Linux ⚠️ ☢️ / Multi-asset wallet. Guarda.co

Mobile wallets

Wallet Device Description Download link
Monerujo Android Integrates with Ledger (hardware wallet). Website: https://www.monerujo.io/. Google Play / F-Droid / GitHub
MyMonero iOS Website: https://mymonero.com/ App Store
Cake Wallet iOS Website: https://cakewallet.io/ App Store
X Wallet iOS Website: https://xwallet.tech/ App Store
Edge Wallet Android / iOS Multi-asset wallet. Website: https://edge.app/ Google Play / App Store
ZelCore Android / iOS ⚠️ / Multi-asset wallet. Website: https://zelcore.io/ Google Play / App Store
Coinomi Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://www.coinomi.com/ Google Play / App Store
Moxi / Guarda Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://guarda.co/ Google Play / App Store
Exa Wallet Android / iOS ⚠️ Website: https://exan.tech/ Google Play / App Store
Wookey Wallet Android / iOS ⚠️ Website: https://wallet.wookey.io/ Google Play / F-Droid / App Store
Exodus Android / iOS ⚠️ / Multi-asset wallet. Website: https://www.exodus.io/monero/) Google Play / [App Store](https://apps.apple.com/app/exodus-crypto-wallet/id1414384820

Web-based wallets

Wallet Description Link
MyMonero Web version of the MyMonero wallet. Web
Guarda Multi-asset wallet. Web

How long does it take for my balance to unlock?

Your balance is unlocked after 10 confirmations (which means 10 mined blocks). A block is mined approximately every two minutes on the Monero network, so that would be around 20 minutes.

How can I prove that I sent a payment?

The fastest and most direct way is by using the ExploreMonero blockchain explorer. You will need to recover the transaction key from your wallet (complete guide for GUI / CLI).

How do I buy Monero (XMR) with Bitcoin (BTC)?

There are dozens of exchanges that trade Monero against Bitcoin and other cryptocurrencies. Check out the list on CoinMarketCap and choose the option that suits you best.

How do I buy Monero (XMR) with fiat?

How can I quickly exchange my Monero (XMR) for Bitcoin (BTC)?

There are multiple ways to exchange your Monero for Bitcoin, but first of all, I'd like to remind you that if you really want to do your part for Monero, one of the simplest ways is to get in touch with your merchant/service provider and request for it to accept Monero directly as payment. Ask the service provider to visit the official website and our communication channels if he or she needs help with system integration.
That being said, the community has been recommending two services in particular, XMR.TO and MorphToken. These services are only recommendations and are operated by entities outside the control of the Monero Project. Be diligent.

How do I mine Monero? And other mining questions.

The correct place to ask questions and discuss the Monero mining scene is in the dedicated subreddit MoneroMining. That being said, you can find a list of pools and available mining software in the GetMonero.org website.

2. Wallet: CLI & GUI

Why I can't see my balance? Where is my XMR?

Before any action there are two things to check:
  1. Are you using the latest available version of the wallet? A new version is released roughly every 6 months, so make sure you're using the current release (compare the release on GetMonero.org with your wallet's version on Settings, under Debug info).
  2. Is your wallet fully synchronized? If it isn't, wait the sync to complete.
Because Monero is different from Bitcoin, wallet synchronization is not instant. The software needs to synchronize the blockchain and use your private keys to identify your transactions. Check in the lower left corner (GUI) if the wallet is synchronized.
You can't send transactions and your balance might be wrong or unavailable if the wallet is not synced with the network. So please wait.
If this is not a sufficient answer for your case and you're looking for more information, please see this answer on StackExchange.

How do I upgrade my wallet to the newest version?

This question is beautifully answered on StackExchange.

Why does it take so long to sync the wallet [for the first time]?

You have decided to use Monero's wallet and run a local node. Congratulations! You have chosen the safest and most secure option for your privacy, but unfortunately this has an initial cost. The first reason for the slowness is that you will need to download the entire blockchain, which is considerably heavy (+70 GB) and constantly growing. There are technologies being implemented in Monero to slow this growth, however it is inevitable to make this initial download to run a full node. Consider syncing to a device that has an SSD instead of an HDD, as this greatly impacts the speed of synchronization.
Now that the blockchain is on your computer, the next time you run the wallet you only need to download new blocks, which should take seconds or minutes (depending on how often you use the wallet).

I don't want to download the blockchain, how can I skip that?

The way to skip downloading the blockchain is connecting your wallet to a public remote node. You can follow this guide on how to set it up. You can find a list of public remote nodes on MoneroWorld.
Be advised that when using a public remote node you lose some of your privacy. A public remote node is able to identify your IP and opens up a range for certain attacks that further diminish your privacy. A remote node can't see your balance and it can't spend your XMR.

How do I restore my wallet from the mnemonic seed or from the keys?

To restore your wallet with the 25 word mnemonic seed, please see this guide.
To restore your wallet with your keys, please see this guide.

3. Wallet: Ledger

How do I generate a Ledger Monero Wallet with the GUI or CLI?

This question is beautifully answered on StackExchange. Check this page for the GUI instructions, and this page for the CLI instructions.

4. Nodes

How can my local node become a public remote node?

If you want to support other Monero users by making your node public, you can follow the instructions on MoneroWorld, under the section "How To Include Your Node On Moneroworld".

How can I connect my node via Tor?

This question is beautifully answered on StackExchange.
submitted by AutoModerator to Monero [link] [comments]

/r/Monero Weekly Discussion – September 19, 2020 - Use this thread for general chatter, basic questions, and if you're new to Monero

Index

  1. General questions
  2. Wallet: CLI & GUI
  3. Wallet: Ledger
  4. Nodes

1. General questions

Where can I download the Monero wallet?

There are multiple Monero wallets for a wide range of devices at your disposal. Check the table below for details and download links. Attention: for extra security make sure to calculate and compare the checksum of your downloaded files when possible.
Please note the following usage of the labels:
⚠️ - Relatively new and/or beta. Use wallet with caution.
☢️ - Closed source.

Desktop wallets

Wallet Device Description Download link
"Official" GUI / CLI Windows, macOS, Linux Default implementation maintained by the core team. Use this wallet to run a full node and obtain maximum privacy. Integrates with hardware wallets. Current version: 0.16.0.3 / 0.16.0.3. GetMonero.org
MyMonero Windows, macOS, Linux Lightweight wallet -- you don't need to download the blockchain and run a node. MyMonero was developed with the assistance of the core team. It also has web-based and iOS versions. MyMonero.com
Exodus Windows, macOS, Linux ⚠️ / Multi-asset wallet. Exodus.io
ZelCore Windows, macOS, Linux ⚠️ / Multi-asset wallet. It also has Android and iOS versions. Zeltrez.io
Guarda Windows, macOS, Linux ⚠️ ☢️ / Multi-asset wallet. Guarda.co

Mobile wallets

Wallet Device Description Download link
Monerujo Android Integrates with Ledger (hardware wallet). Website: https://www.monerujo.io/. Google Play / F-Droid / GitHub
MyMonero iOS Website: https://mymonero.com/ App Store
Cake Wallet iOS Website: https://cakewallet.io/ App Store
X Wallet iOS Website: https://xwallet.tech/ App Store
Edge Wallet Android / iOS Multi-asset wallet. Website: https://edge.app/ Google Play / App Store
ZelCore Android / iOS ⚠️ / Multi-asset wallet. Website: https://zelcore.io/ Google Play / App Store
Coinomi Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://www.coinomi.com/ Google Play / App Store
Moxi / Guarda Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://guarda.co/ Google Play / App Store
Exa Wallet Android / iOS ⚠️ Website: https://exan.tech/ Google Play / App Store
Wookey Wallet Android / iOS ⚠️ Website: https://wallet.wookey.io/ Google Play / F-Droid / App Store
Exodus Android / iOS ⚠️ / Multi-asset wallet. Website: https://www.exodus.io/monero/) Google Play / [App Store](https://apps.apple.com/app/exodus-crypto-wallet/id1414384820

Web-based wallets

Wallet Description Link
MyMonero Web version of the MyMonero wallet. Web
Guarda Multi-asset wallet. Web

How long does it take for my balance to unlock?

Your balance is unlocked after 10 confirmations (which means 10 mined blocks). A block is mined approximately every two minutes on the Monero network, so that would be around 20 minutes.

How can I prove that I sent a payment?

The fastest and most direct way is by using the ExploreMonero blockchain explorer. You will need to recover the transaction key from your wallet (complete guide for GUI / CLI).

How do I buy Monero (XMR) with Bitcoin (BTC)?

There are dozens of exchanges that trade Monero against Bitcoin and other cryptocurrencies. Check out the list on CoinMarketCap and choose the option that suits you best.

How do I buy Monero (XMR) with fiat?

How can I quickly exchange my Monero (XMR) for Bitcoin (BTC)?

There are multiple ways to exchange your Monero for Bitcoin, but first of all, I'd like to remind you that if you really want to do your part for Monero, one of the simplest ways is to get in touch with your merchant/service provider and request for it to accept Monero directly as payment. Ask the service provider to visit the official website and our communication channels if he or she needs help with system integration.
That being said, the community has been recommending two services in particular, XMR.TO and MorphToken. These services are only recommendations and are operated by entities outside the control of the Monero Project. Be diligent.

How do I mine Monero? And other mining questions.

The correct place to ask questions and discuss the Monero mining scene is in the dedicated subreddit MoneroMining. That being said, you can find a list of pools and available mining software in the GetMonero.org website.

2. Wallet: CLI & GUI

Why I can't see my balance? Where is my XMR?

Before any action there are two things to check:
  1. Are you using the latest available version of the wallet? A new version is released roughly every 6 months, so make sure you're using the current release (compare the release on GetMonero.org with your wallet's version on Settings, under Debug info).
  2. Is your wallet fully synchronized? If it isn't, wait the sync to complete.
Because Monero is different from Bitcoin, wallet synchronization is not instant. The software needs to synchronize the blockchain and use your private keys to identify your transactions. Check in the lower left corner (GUI) if the wallet is synchronized.
You can't send transactions and your balance might be wrong or unavailable if the wallet is not synced with the network. So please wait.
If this is not a sufficient answer for your case and you're looking for more information, please see this answer on StackExchange.

How do I upgrade my wallet to the newest version?

This question is beautifully answered on StackExchange.

Why does it take so long to sync the wallet [for the first time]?

You have decided to use Monero's wallet and run a local node. Congratulations! You have chosen the safest and most secure option for your privacy, but unfortunately this has an initial cost. The first reason for the slowness is that you will need to download the entire blockchain, which is considerably heavy (+70 GB) and constantly growing. There are technologies being implemented in Monero to slow this growth, however it is inevitable to make this initial download to run a full node. Consider syncing to a device that has an SSD instead of an HDD, as this greatly impacts the speed of synchronization.
Now that the blockchain is on your computer, the next time you run the wallet you only need to download new blocks, which should take seconds or minutes (depending on how often you use the wallet).

I don't want to download the blockchain, how can I skip that?

The way to skip downloading the blockchain is connecting your wallet to a public remote node. You can follow this guide on how to set it up. You can find a list of public remote nodes on MoneroWorld.
Be advised that when using a public remote node you lose some of your privacy. A public remote node is able to identify your IP and opens up a range for certain attacks that further diminish your privacy. A remote node can't see your balance and it can't spend your XMR.

How do I restore my wallet from the mnemonic seed or from the keys?

To restore your wallet with the 25 word mnemonic seed, please see this guide.
To restore your wallet with your keys, please see this guide.

3. Wallet: Ledger

How do I generate a Ledger Monero Wallet with the GUI or CLI?

This question is beautifully answered on StackExchange. Check this page for the GUI instructions, and this page for the CLI instructions.

4. Nodes

How can my local node become a public remote node?

If you want to support other Monero users by making your node public, you can follow the instructions on MoneroWorld, under the section "How To Include Your Node On Moneroworld".

How can I connect my node via Tor?

This question is beautifully answered on StackExchange.
submitted by AutoModerator to Monero [link] [comments]

Everyday info sec, hardcore info sec, and DNMs

Edit: Since first post I have updated a few sections with additional information.
I recommend reading it all even if it is very long, I might have placed some relevant info in different sections while thinking about what else needed to be added, plenty of steps remains mostly the same except when I comment directly on it. It is not necessary to do 100% security all the time, unless you absolutely need it, combining some high and some lower security ideas for a balance of security and convenience is useful.
I will base this mostly on Windows, Linux users probably know this, and I have no idea how apple machines work (tho many things in here are still relevant for other operating systems, as they are just general tips)
Disclaimer: There are certainly other steps that can make you more anonymous or safer, however I think for most people this will surfice. Any software I recommend should be independently verified for security, and examples of software are not to be taken as endorsements. I simply use examples and give recommendations when I believe it necessary, or helpful.
I will not really differentiate between anonymity and security, they are often the same thing. As such the word security can mean either more anonymous, less vulnerable, or both.
--------
Everyday Simple Info Sec:
-There could be a hidden administrator user on your PC, make sure to change its password
(Snapchat msgs, reddit dms, discord msgs, are just a few examples of msgs that are never encrypted)
-Any info even send in encrypted msgs (and obviously non encrypted) should still be kept with possible deniability, don't say "I'm gonna do MDMA", say "I'm going out with molly."
-DO NOT STORE ANY PASSWORDS ON GOOGLE, IF GOOGLE LOGIN IS AUTHENTICATED IT WILL AUTFILL ALL PASSWORDS IT HAS SAVED (same with other similar services) (This means if you are logged in to chrome and someone has access to your machine, they can auto fill passwords without entering a single password)
-use a rememberable passphrase, especially for your master key ring aka password manager A long sentence that is memorable makes an okay password (decent example,: "I met my wife at Little Ceasers for the first time on 07/09/20" better even if it's just something you know, if its impersonal, and if you can add special characters or numbers that you won't forget) (A better example for a passphrase is: "There is 0nly 0ne letter that d0esn’t appear in any U.S. state nameQ")
-Purge your internet activity frequently, there's a reason why I only have one post, and a few comments appearing in my account, but thousands of kama. Exposing information needlessly is not good.
-Never post private information publicly, and if you do, do it vaguely as possible. (Example: Not "I'm 15", say "I'm a teenager") Do not post any vital information ever, no birthdays, mother's maiden name, age, or anything you have ever seen in a security question. Never post your current activities while they are ongoing. You going on a vacation? Don't announce it to the world, taking picture there? Post them when you are home.
-Rethink how you do security questions. Many answers to security questions can be found in your internet history. One could use the first word of the security question as an answer, or a different sceme that will mean you always remember it. (Security question need to go, the amount of personal info an average person puts on the internet makes it easy to attack anything using security question)
-------_
High level crimimal information security:
The motto here is, "All the Security, All the Time" As one fuck up can end with you leaving a lick of traceability, and you could be fucked.
Pre Note: All of your software should always be up to date. Also even perfect info sec does not guarantee you are completely safe, a new zero day (exploit) can still fuck you, but good info security makes you significantly safer, by eliminating as many attacks as possible.
-Get a new device (or make a already owned device seem like you never owned it, do this only if you know how to, there's a lot of stuff that goes into that, like changing your mac adress etc) buy with cash, and your face covered, preferably far away from where you live. (Do I need to specify to not bring your phone or anything else that tracks your location to anywhere you want to go anonymously?) (Be aware that even hardware can have vulnerabilities, many cpus have known vulnerabilities, I can't list them all, do some research before buying)
-If you know how to use Tails (A linux distro designed for Info sec) use that, preferably on a USB. (Or learn how to use tails, its better, but complicated) Otherwise a clean copy of windows (make sure its not in any way associated with you) can do the job too, tho not as well. (Using a VM might give extra security, since VMs usually erase all data and RAM they were using on shutdown)
-Get a non tracking VPN, Enable the kill switch (a setting that disables all traffic that doesn't go through the VPN) (change your firewall settings to only allow the traffic from the VPN, windows guide (Change settings so only traffic from the tor application is send) Edit: (Due to complaints: do not use vpn over tor, use tor over vpn. tor over vpn has no notable downside, if the VPN logs it makes no difference, your ISP will always log anyways, and vpns remove other attack vectors and also provide backup security should tor fail. Again even if the VPN tracks you only change the people doing the tracking, but now you are further removed making it more anonymous and also with less vulnerabilities)
-rember privacy settings, cookie cleaner, and antivirus, password (There could be a hidden administrator user on your PC, make sure to change its password)
-Always use the device on a non admin account
-Ideally use this device only on networks that are not connected with you. Such as public networks (try to never use the same public networks twice, move around) (a home network should be fine now, as it should never be exposed, but more security is always better) (Its just a conveniences vs security trade)
-Never use accounts that have been exposed to lower security on higher security machines
-your browser is now TOR (or your preferred security focused browser, if you dont plan on using onion ) Make sure you get the standalone version of tor not the addon build (the standalone is safer, because there are less settings and options to tweak)
-Change your tor settings, to safest mode, enable a bridge (to my knowledge there's no difference in security between the build in bridges in tor), enable automatic updates, set duckduckgo onion as your primary browser. Set dark.fail onion page as your home page. (Or your preferred privacy search engine and onion directory)
-------_
How to use dark net markets (DNMs)
If you finished your High Security setup, we can dive right in. Otherwise go do that. This is where all that is essential.
Quick info on Tor, and onion sites. There is no search engine. It's all based of directories and addresses you are given by others. Tor will likely not be very quick, it has to pass through multiple networks to get to the destination. DNMs sometimes exit scam, an exit scam is when a market shuts down completely and takes all the money, this is a risk when using DNMs, it's not too common but happens maybe 0-4 times a year. The admins of thoese servers need to get out at some point, before they get jailed, so they exit the game, and scam everyone out of their money.
-A very useful onion directory is dark.fail it has a lot of links, for all kinds of stuff. News, email, DNMs, Psychonautwiki (harm reduction website), forums etc. (Other directories also exist)
-Pick a market, preferably one that handles secure connection server side instead of requiring you to establish the secure connection. Then create an account. Your account once created should include an entry box in your profile for a pgp key, post your PUBLIC key in there. (Verify the link is not a scam, most markets should provide a pgp signature)
-Next is currency setup. All major cryptocurrency exchangers can be used, I can recommend coin base but there could be better ones out there. Unless you find a small non U.S., exchange, they will always ask for your identity. So unless you can find a trustworthy exchange that doesn't ID, you will need to give it to them. (Side note, all major crypto exchangers report to the IRS, if the IRS asks you if you bought cryptocurrency and you bought while having IDed yourself SAY YES, DO NOT COMMIT TAX FRAUD WHEN THEY KNOW YOU DID)
-Transfer (monero you can send directly, btc you should scramble) to your wallet. There are two options a cold wallet (physical) or a software wallet. Software wallets usually dont cost anything so I recommend them, even if often less safe. Electrum is easy to use, and pretty safe. You can also do your own research and find a wallet that fits your needs.
-now you are ready to buy, only buy using escrow (it means the money is held by the market as a middle man until the product is delivered, they will also handle any issues like wrong quantity, cuts, etc), judge the reviews for a product, and if available look at the history of the vendor, until you find a product from a vendor you trust. (I recommend to buy within your country as much as possible, so it doesn't go through customs, it's very rare that something is found, but it can happen)
-now you get to buy, depending on market, you either have cryptocurrency stored in their wallets (not recommend, you will lose it in an exit scam) or you can send it every order. When you send your delivery adress (or the one you want it to go to) encrypt the adress using the sellers public key. Make sure the adress is correct.
-wait for the product, make sure to extend the escrow until the product arrives, if you can't extend it anymore dispute the order, and a moderator will step in
-test the product, use it, and leave a review. PLEASE LEAVE A REVIEW, DNMs only work because of reviews.
Edit: Didn't imagine I would write over 15000 words. Oh well, it was fun. Hope it helps, if you have any questions feel free to ask.
No idea how long this will stay up, I might purge it in 7 days, or never.
submitted by seven_N_A7 to u/seven_N_A7 [link] [comments]

/r/Monero Weekly Discussion – September 26, 2020 - Use this thread for general chatter, basic questions, and if you're new to Monero

Index

  1. General questions
  2. Wallet: CLI & GUI
  3. Wallet: Ledger
  4. Nodes

1. General questions

Where can I download the Monero wallet?

There are multiple Monero wallets for a wide range of devices at your disposal. Check the table below for details and download links. Attention: for extra security make sure to calculate and compare the checksum of your downloaded files when possible.
Please note the following usage of the labels:
⚠️ - Relatively new and/or beta. Use wallet with caution.
☢️ - Closed source.

Desktop wallets

Wallet Device Description Download link
"Official" GUI / CLI Windows, macOS, Linux Default implementation maintained by the core team. Use this wallet to run a full node and obtain maximum privacy. Integrates with hardware wallets. Current version: 0.16.0.3 / 0.16.0.3. GetMonero.org
MyMonero Windows, macOS, Linux Lightweight wallet -- you don't need to download the blockchain and run a node. MyMonero was developed with the assistance of the core team. It also has web-based and iOS versions. MyMonero.com
Exodus Windows, macOS, Linux ⚠️ / Multi-asset wallet. Exodus.io
ZelCore Windows, macOS, Linux ⚠️ / Multi-asset wallet. It also has Android and iOS versions. Zeltrez.io
Guarda Windows, macOS, Linux ⚠️ ☢️ / Multi-asset wallet. Guarda.co

Mobile wallets

Wallet Device Description Download link
Monerujo Android Integrates with Ledger (hardware wallet). Website: https://www.monerujo.io/. Google Play / F-Droid / GitHub
MyMonero iOS Website: https://mymonero.com/ App Store
Cake Wallet iOS Website: https://cakewallet.io/ App Store
X Wallet iOS Website: https://xwallet.tech/ App Store
Edge Wallet Android / iOS Multi-asset wallet. Website: https://edge.app/ Google Play / App Store
ZelCore Android / iOS ⚠️ / Multi-asset wallet. Website: https://zelcore.io/ Google Play / App Store
Coinomi Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://www.coinomi.com/ Google Play / App Store
Moxi / Guarda Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://guarda.co/ Google Play / App Store
Exa Wallet Android / iOS ⚠️ Website: https://exan.tech/ Google Play / App Store
Wookey Wallet Android / iOS ⚠️ Website: https://wallet.wookey.io/ Google Play / F-Droid / App Store
Exodus Android / iOS ⚠️ / Multi-asset wallet. Website: https://www.exodus.io/monero/) Google Play / [App Store](https://apps.apple.com/app/exodus-crypto-wallet/id1414384820

Web-based wallets

Wallet Description Link
MyMonero Web version of the MyMonero wallet. Web
Guarda Multi-asset wallet. Web

How long does it take for my balance to unlock?

Your balance is unlocked after 10 confirmations (which means 10 mined blocks). A block is mined approximately every two minutes on the Monero network, so that would be around 20 minutes.

How can I prove that I sent a payment?

The fastest and most direct way is by using the ExploreMonero blockchain explorer. You will need to recover the transaction key from your wallet (complete guide for GUI / CLI).

How do I buy Monero (XMR) with Bitcoin (BTC)?

There are dozens of exchanges that trade Monero against Bitcoin and other cryptocurrencies. Check out the list on CoinMarketCap and choose the option that suits you best.

How do I buy Monero (XMR) with fiat?

How can I quickly exchange my Monero (XMR) for Bitcoin (BTC)?

There are multiple ways to exchange your Monero for Bitcoin, but first of all, I'd like to remind you that if you really want to do your part for Monero, one of the simplest ways is to get in touch with your merchant/service provider and request for it to accept Monero directly as payment. Ask the service provider to visit the official website and our communication channels if he or she needs help with system integration.
That being said, the community has been recommending two services in particular, XMR.TO and MorphToken. These services are only recommendations and are operated by entities outside the control of the Monero Project. Be diligent.

How do I mine Monero? And other mining questions.

The correct place to ask questions and discuss the Monero mining scene is in the dedicated subreddit MoneroMining. That being said, you can find a list of pools and available mining software in the GetMonero.org website.

2. Wallet: CLI & GUI

Why I can't see my balance? Where is my XMR?

Before any action there are two things to check:
  1. Are you using the latest available version of the wallet? A new version is released roughly every 6 months, so make sure you're using the current release (compare the release on GetMonero.org with your wallet's version on Settings, under Debug info).
  2. Is your wallet fully synchronized? If it isn't, wait the sync to complete.
Because Monero is different from Bitcoin, wallet synchronization is not instant. The software needs to synchronize the blockchain and use your private keys to identify your transactions. Check in the lower left corner (GUI) if the wallet is synchronized.
You can't send transactions and your balance might be wrong or unavailable if the wallet is not synced with the network. So please wait.
If this is not a sufficient answer for your case and you're looking for more information, please see this answer on StackExchange.

How do I upgrade my wallet to the newest version?

This question is beautifully answered on StackExchange.

Why does it take so long to sync the wallet [for the first time]?

You have decided to use Monero's wallet and run a local node. Congratulations! You have chosen the safest and most secure option for your privacy, but unfortunately this has an initial cost. The first reason for the slowness is that you will need to download the entire blockchain, which is considerably heavy (+70 GB) and constantly growing. There are technologies being implemented in Monero to slow this growth, however it is inevitable to make this initial download to run a full node. Consider syncing to a device that has an SSD instead of an HDD, as this greatly impacts the speed of synchronization.
Now that the blockchain is on your computer, the next time you run the wallet you only need to download new blocks, which should take seconds or minutes (depending on how often you use the wallet).

I don't want to download the blockchain, how can I skip that?

The way to skip downloading the blockchain is connecting your wallet to a public remote node. You can follow this guide on how to set it up. You can find a list of public remote nodes on MoneroWorld.
Be advised that when using a public remote node you lose some of your privacy. A public remote node is able to identify your IP and opens up a range for certain attacks that further diminish your privacy. A remote node can't see your balance and it can't spend your XMR.

How do I restore my wallet from the mnemonic seed or from the keys?

To restore your wallet with the 25 word mnemonic seed, please see this guide.
To restore your wallet with your keys, please see this guide.

3. Wallet: Ledger

How do I generate a Ledger Monero Wallet with the GUI or CLI?

This question is beautifully answered on StackExchange. Check this page for the GUI instructions, and this page for the CLI instructions.

4. Nodes

How can my local node become a public remote node?

If you want to support other Monero users by making your node public, you can follow the instructions on MoneroWorld, under the section "How To Include Your Node On Moneroworld".

How can I connect my node via Tor?

This question is beautifully answered on StackExchange.
submitted by AutoModerator to Monero [link] [comments]

Power of the Command Line (bitcoin-cli, hwi, electrum, trezorctl)

I think some of the console tools available with HW wallets today are greatly under utilized. Here's a quick write-up on how to create and sign a TXN very similar to 43d27...1fc06 found on the SLIP-14 wallet. I'll be using TrezorCTL, Electrum, and HWI for the signing. I won't go much into the setup or install, but feel free to ask if you have questions about it. Note, you don't have to use all three of these. Any one will produce a valid signed TXN for broadcast. I just showed how to do it three ways. Whats more some of the Electrum and HWI steps are interchangeable.
ColdCard also has a utility called ckcc that will do the sign operation instead of HWI, but in many ways they are interchangeable. KeepKey and Ledger both have libraries for scripted signing but no one-shot, one-line console apps that I know of. But HWI and Electrum of course work on all four.

TrezorCTL

This is the what most would think of to use to craft and sign TXNs, and is definitely very simple. The signing uses a script called build_tx.py to create a JSON file that is then used by the btc sign-tx command. The whole process is basically:
  1. tools/build_tx.py | trezorctl btc sign-tx -
This just means, take the output of build_tx and sign it. To copy 43d27...1fc06, I wrote a small script to feed build_tx, so my process looks like:
  1. ~/input.sh | tools/build_tx.py | trezorctl btc sign-tx -
But it's all very simple. Note... I used TrezorCTL v0.12.2 but build_tx.py version 0.13.0 1.

input.sh

```

!/bin/bash

secho() { sleep 1; echo $*}
secho "Testnet" # coin name secho "tbtc1.trezor.io" # blockbook server and outpoint (below) secho "e294c4c172c3d87991b0369e45d6af8584be92914d01e3060fad1ed31d12ff00:0" secho "m/84'/1'/0'/0/0" # prev_out derivation to signing key secho "4294967293" # Sequence for RBF; hex(-3) secho "segwit" # Signature type on prev_out to use secho "" # NACK to progress to outs secho "2MsiAgG5LVDmnmJUPnYaCeQnARWGbGSVnr3" # out[0].addr secho "10000000" # out[1].amt secho "tb1q9l0rk0gkgn73d0gc57qn3t3cwvucaj3h8wtrlu" # out[1].addr secho "20000000" # out[1].amt secho "tb1qejqxwzfld7zr6mf7ygqy5s5se5xq7vmt96jk9x" # out[2].addr secho "99999694" # out[2].amt secho "" # NACK to progress to change secho "" # NACK to skip change secho "2" # txn.version secho "0" # txn.locktime ```

Electrum

Electrum is one of the better GUI wallets available, but it also has a pretty good console interface. Like before you need your Trezor with the SLIP-14 wallet loaded and paired to Electrum. I'll assume Electrum is up and running with the Trezor wallet loaded to make things simple.
Like with TrezorCTL, Electrum feeds on a JSON file, but unlike TrezorCTL it needs that JSON squished into the command line. This is a simple sed command, but I won't bore you with the details, but just assume that's done. So the process in Electrum (v4.0.3) looks like:
  1. electrum serialize (create psbt to sign)
  2. electrum --wallet signtransaction (sign said psbt)
Still pretty simple right! Below is the JSON I smushed for #1

txn.json

{ "inputs": [{ "prevout_hash":"e294c4c172c3d87991b0369e45d6af8584be92914d01e3060fad1ed31d12ff00", "prevout_n": 0, "value_sats": 129999867 }], "outputs": [{ "address": "2MsiAgG5LVDmnmJUPnYaCeQnARWGbGSVnr3", "value_sats": 10000000 },{ "address": "tb1q9l0rk0gkgn73d0gc57qn3t3cwvucaj3h8wtrlu", "value_sats": 20000000 },{ "address": "tb1qejqxwzfld7zr6mf7ygqy5s5se5xq7vmt96jk9x", "value_sats": 99999694 }]}

HWI

HWI is an unsung hero in my book. It's a very small clean and simple interface between HW wallets and Bitcoin Core. It currently supports a good range of HW wallets. It keeps itself narrowly focused on TXN signing and offloads most everything else to Bitcoin Core. Again, I'll assume you've imported your Trezor keypool into Core and done the requisite IBD and rescan. And if you don't have the RPC enabled, you can always clone these commands into the QT-console.
To sign our TXN in HWI (v1.1.2), we will first need to craft (and finalize) it in Bitcoin Core (0.21.1). Like in Electrum, we will have to use simple sed to smush some JSON into command arguments, but I'll assume you have that covered. It will take an inputs.json and an outputs.json named separately.
  1. bitcoin-cli createpsbt (create psbt)
  2. bitcoin-cli -rpcwallet= walletprocesspsbt (process psbt)
  3. hwi -f signtx (sign psbt)
  4. bitcoin-cli -rpcwallet= finalizepsbt (get a signed TXN from psbt)
A little more involved, but still nothing too bad. Plus this gives you the full power of Bitcoin Core including integrations with LND (lightning).

inputs.json

[{ "txid": "e294c4c172c3d87991b0369e45d6af8584be92914d01e3060fad1ed31d12ff00", "vout": 0 }]

outputs.json

[{ "2MsiAgG5LVDmnmJUPnYaCeQnARWGbGSVnr3": 0.10000000 },{ "tb1q9l0rk0gkgn73d0gc57qn3t3cwvucaj3h8wtrlu": 0.20000000 },{ "tb1qejqxwzfld7zr6mf7ygqy5s5se5xq7vmt96jk9x": 0.99999694 }]

Conclusion

This may all seem like very low level coding, but is surprisingly simple once you get a knack for it. Whats more, all these platforms support testnet which allows you to practice with valueless coins until you get the hang of it. And, like many things in bitcoin, this is all (mostly) python, which is one of the easier languages to learn.
Enjoy
Footnotes
1 - https://github.com/trezotrezor-firmware/issues/1296
submitted by brianddk to Bitcoin [link] [comments]

I got SCAMMED

I know I’m gonna get all the hate for this like I for sure chose to ignore the signs. But I just wanted to post this bc when I looked up “scam” on this sub I didn’t see anything similar. So I made an original post asking if someone had a dealer in SWLA. Bad idea to begin with. I get two messages from two different redditors telling me I should take the post down for my own safety and they BOTH referred me to two different people on the “Telegram” app. Never heard over telegram before tbh I don’t need anything more than texting to talk with people. So I was like ok...and messaged both the guys on that app. Right off the bat thought it was weird that under their usernames in the chat it had said “hasn’t been seen in a long time”. The other option is “has been seen recently”. So. They both respond to me and say “$50/5g”. One responded sooner than the other so I just went with that guy. Told him I wanted 5g blue 5g northern lights and he said ok the total will be $100. I was like yup. How do I pay you. How do I get it? He said you pay through bitcoin and you get it to your mailbox. I was like...my mailbox is at a post office y’all ship through USPS? He told me don’t worry bout it....
So I go through like a freaking hour of figuring out how to send him bitcoin...finally did. I didn’t know the exchange rate for bitcoin was so HORRENDOUS. like mind you idk shit about bitcoin. Literal shit. So I loaded my bitcoin or wtf ever with $150 but by the time the transaction fee was added I could only send like 99.50. I told him that and he was like “that’s not my min” I was like ok well I thought 150 would be enough for 100. And he said “me too”...like if you do this all the time you’d know roughly the exchange rate. I was like ok well now what. And he said just send it it’s not a problem. So. I did. Then he sends me a list of his prices for other drugs. Meth, heroin, MDMA, shrooms, LSD, coke, oxy. I was like I don’t need any of that but thanks. So he sends me some other persons username and some “code” to send that guy so he’ll “know” or something idk.
So I message that guy and he asks for my location. I gave him my PO Box bc I was told that’s how it was being delivered. He asked for my add so I gave him some random address bout 20 miles from my actual house bc at this point I was getting sketched. (Took long enough) he says “checking location” so I wait.
Then he messaged me back saying “Dude right now I can't deliver 100$ now due to the current situation the minimum package I can take the risk and get to your location is 500$ package. Return to him and top up your package”
I was like uhhh. Can we meet up somewhere? Said he worked anonymously so I was like word I get that. Then he says “Go meet him now. I don’t have much time here”.
Much time here.....dude....what???
So the original guy messages me like as soon as the “delivery guy” tells me I gotta spend 400 more dollars lol
He said “we got a little problem now” and I was like yea I see that. He says “he has been running this for me bro” and I said wym he says “Or what we can do now meet up his requirements. His sure and fast.” Lmao. I just didn’t message back. So he says “He said what he can deliver to your location is 500 worth deal because his colleagues are taking order above 1k and I hqve to talk him down because it’s your first time” I said “well I can’t go up anymore I bought what I bought so idk wtf you wana do” And he just said “let me know whenever you’re ready”
Bro. Like I just got scammed out of $150. And it’s all my fault for being gullible as FUCK.
I’m scared to even post this bc there’s obviously a bunch of little minions on here.
Ight. Cue the hate. I just hope if someone else in the future searches “scam” or “telegram” they’ll see this and consider.
Peace ✌🏼
submitted by Snowflake0804 to trees [link] [comments]

WTF Happened in 1971?

In a recent spillover of internet-based long-form intellectual new media into the mainstream, Eric Weinstein appeared as a guest on Ted Cruz's podcast. Eric was well prepared. Cruz played the role of a charitable and engaged critic while avoiding direct confrontation.
The conservation laid bare the intersection of the anti-corporate socialist left and anti-government libertarian right and the potential of these forces as a combined political interest. There was a strong sense of shared acknowledgement of the current crisis and they touched on all the culture war aspects. But I'm more interested in what Eric has pointed to now several times as the root cause of the systemic decline, and what seems to be the original trigger for the slow decay and building of tension that has ultimately led to the rise of darker elements on both the left and right that we see today: a Great Decoupling of productivity (GDP) and wage growth in the early 1970's. The significance of this time period has also been highlighted by Eric's boss, Peter Thiel.
We are referred to https://wtfhappenedin1971.com/, where a collection of charts give the impression that a profound change in the foundations of the economy took place, effectively causing a divergence of all kinds of metrics related to equality, wealth creation, the complexity of regulation, and implicitly downstream effects like political polarization, incarceration rates, and age of marriage.
The simple, seemingly persuasive answer is that the effective cancellation of the gold standard set us on a path towards borrowing ever larger sums to avert financial crises as they arise, and the return to a currency backed by something provably scarce, i.e. bitcoin, is a solution.
I can't say I'm convinced it's that simple. And Eric doesn't mention currency specifically as the problem.
So what I want to know is, was 1971 a real inflection point, the real root of inequality and dysfunction we see today? Was the removal of limits on the Fed's ability to print money a mistake? Or was there some other government action or change at that time that was the real cause? Do we need to let stock market crashes happen from time to time?
A year ago, u/gwern posted a 1986 Atlantic article that described a lot of the problems in black America that are still around 4 decades later and offered more in the way of nuance and insight than most of the discourse we see today. What struck me on revisiting it was how the timing of the decline of Chicago aligns with the early 1970's trigger hypothesis:
In 1970 thirty-seven percent of the population of the area was below the poverty line; in 1980 the figure was 51 percent. In 1970 the unemployment rate was 9.5 percent; in 1980 it was 24.2 percent. In 1970 forty percent of the residents of the neighborhood lived in families with a female head; in 1980 the number had grown to 72 percent. In 1980 of the 54,000 residents 33,000 were on welfare. Experts agree that all of the numbers are even worse today.
My mental model for social issues is that they are mostly rooted in economics. If you have a society that generates wealth, you can pay teachers, doctors, and police well enough to attract competent candidates and the competition necessary to create real expertise. You can afford to build and maintain good infrastructure and spend time on figuring out how to best help the disadvantaged. You have the resources to advance technology and support the arts. You get all the positive feedback loops that come with this.
When wealth generation becomes concentrated and restricted, public institutions start to struggle, people feel they have less opportunity, and social issues start to bubble up like the formation of outgroups of all kinds. A massive oversimplifation, I know, but a useful general framework to approaching issues that avoids (mis)placing blame on cultural degeneracy, "evil" corporations, or other common scapegoats that are largely symptoms of greater problems.
Today, this mindset seems to align with the conservative right, but in the 1986 article it's the "liberal answer" to the problem of ghettos that I identify with:
In Chicago the harbinger of the change was the closing in the late fifties of the stockyards, which for half a century were the sine qua non of lower-class grunt work and a heavy employer of blacks. Chicago lost 200,000 jobs in the seventies; small shut-down redbrick factories that used to make products like boxes and ball bearings dot the city, especially the West Side. The lack of jobs, the argument continues, caused young men in the ghetto to adopt a drifting, inconstant life; to turn to crime; to engage in exaggeratedly macho behavior -- acting tough, not studying, bullying women for money -- as a way to get the sense of male strength that their fathers had derived from working and supporting families. As Murray believes that one simple step, ending all welfare programs, would heal the ghettos, the unemployment school believes that another simple step, jobs, would heal them. "When there's a demand for the participation of the black underclass in the labor force, most of the so-called problems people talk about will evaporate in a generation," says John McKnight. an urban-research professor at Northwestern University.
Indeed, Mr. McKnight. And up until this spring, it looked like the Trump presidency's aggressively pro-jobs and pro-American workers policy was showing promise of vindicating this view - the presence of BLM and racial tensions leading up to 2016 had all but subsided by 2018-2019. I wonder just how little backlash the George Floyd incident would have caused if the pandemic hadn't undone the economic progress of the past 3 years.
Mind you, that "progress" was but a tiny step in the right direction in terms of improving wages and opportunities for the lowest earners. And for all the times the "audit the fed" meme hit the top of the_donald, it now seems impossible that the current administration has any capability or willingness to take the drastic steps needed to address the real root cause that apparently started 50 years ago. To do that, we may need an actual revolution.
submitted by curious-b to TheMotte [link] [comments]

Do you have a will? What happens to money scattered across all my accounts if I get hit by a proverbial bus?

I'm poor, with an income below £15k, still studying later than most, but have my full LISA allowances for the past four years, across more than one provider. I also have premium bonds (yes, yes, I know. But it's my emergency fund and super easy access), bitcoin, etc. And own property.
I don't have a family and I don't have a will. If I die early, nobody would even know about the LISAs and bitcoin. How do I approach communicating the account info to someone after my death? Does it all go in a will? And how do people know where my will is?
To further complicate things, I'd like my small savings to go to an overseas charity. How do I appoint an executer to oversea this, and compensate them for the hassle without letting a solicitor do it and inevitably having no money left to go to the charity afterwards?
What arrangements do you all have for an unpredicted early death?
EDIT: Thanks you UK FIRE homies. There are some fantastic well-informed replies on this thread, and you've really given me a lot of direction in how to address this. I hope others can also read this and get some benefit.
submitted by badgerhoneyy to FIREUK [link] [comments]

/r/Monero Weekly Discussion – September 05, 2020 - Use this thread for general chatter, basic questions, and if you're new to Monero

Index

  1. General questions
  2. Wallet: CLI & GUI
  3. Wallet: Ledger
  4. Nodes

1. General questions

Where can I download the Monero wallet?

There are multiple Monero wallets for a wide range of devices at your disposal. Check the table below for details and download links. Attention: for extra security make sure to calculate and compare the checksum of your downloaded files when possible.
Please note the following usage of the labels:
⚠️ - Relatively new and/or beta. Use wallet with caution.
☢️ - Closed source.

Desktop wallets

Wallet Device Description Download link
"Official" GUI / CLI Windows, macOS, Linux Default implementation maintained by the core team. Use this wallet to run a full node and obtain maximum privacy. Integrates with hardware wallets. Current version: 0.15.0.1 / 0.15.0.4. GetMonero.org
MyMonero Windows, macOS, Linux Lightweight wallet -- you don't need to download the blockchain and run a node. MyMonero was developed with the assistance of the core team. It also has web-based and iOS versions. MyMonero.com
Exodus Windows, macOS, Linux ⚠️ / Multi-asset wallet. Exodus.io
ZelCore Windows, macOS, Linux ⚠️ / Multi-asset wallet. It also has Android and iOS versions. Zeltrez.io
Guarda Windows, macOS, Linux ⚠️ ☢️ / Multi-asset wallet. Guarda.co

Mobile wallets

Wallet Device Description Download link
Monerujo Android Integrates with Ledger (hardware wallet). Website: https://www.monerujo.io/. Google Play / F-Droid / GitHub
MyMonero iOS Website: https://mymonero.com/ App Store
Cake Wallet iOS Website: https://cakewallet.io/ App Store
X Wallet iOS Website: https://xwallet.tech/ App Store
Edge Wallet Android / iOS Multi-asset wallet. Website: https://edge.app/ Google Play / App Store
ZelCore Android / iOS ⚠️ / Multi-asset wallet. Website: https://zelcore.io/ Google Play / App Store
Coinomi Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://www.coinomi.com/ Google Play / App Store
Moxi / Guarda Android / iOS ⚠️ ☢️ / Multi-asset wallet. Website: https://guarda.co/ Google Play / App Store
Exa Wallet Android / iOS ⚠️ Website: https://exan.tech/ Google Play / App Store
Wookey Wallet Android / iOS ⚠️ Website: https://wallet.wookey.io/ Google Play / F-Droid / App Store
Exodus Android / iOS ⚠️ / Multi-asset wallet. Website: https://www.exodus.io/monero/) Google Play / [App Store](https://apps.apple.com/app/exodus-crypto-wallet/id1414384820

Web-based wallets

Wallet Description Link
MyMonero Web version of the MyMonero wallet. Web
XMRWallet Web wallet with TOR support. Web / Onion URL
Guarda Multi-asset wallet. Web

How long does it take for my balance to unlock?

Your balance is unlocked after 10 confirmations (which means 10 mined blocks). A block is mined approximately every two minutes on the Monero network, so that would be around 20 minutes.

How can I prove that I sent a payment?

The fastest and most direct way is by using the ExploreMonero blockchain explorer. You will need to recover the transaction key from your wallet (complete guide for GUI / CLI).

How do I buy Monero (XMR) with Bitcoin (BTC)?

There are dozens of exchanges that trade Monero against Bitcoin and other cryptocurrencies. Check out the list on CoinMarketCap and choose the option that suits you best.

How do I buy Monero (XMR) with fiat?

How can I quickly exchange my Monero (XMR) for Bitcoin (BTC)?

There are multiple ways to exchange your Monero for Bitcoin, but first of all, I'd like to remind you that if you really want to do your part for Monero, one of the simplest ways is to get in touch with your merchant/service provider and request for it to accept Monero directly as payment. Ask the service provider to visit the official website and our communication channels if he or she needs help with system integration.
That being said, the community has been recommending two services in particular, XMR.TO and MorphToken. These services are only recommendations and are operated by entities outside the control of the Monero Project. Be diligent.

How do I mine Monero? And other mining questions.

The correct place to ask questions and discuss the Monero mining scene is in the dedicated subreddit MoneroMining. That being said, you can find a list of pools and available mining software in the GetMonero.org website.

2. Wallet: CLI & GUI

Why I can't see my balance? Where is my XMR?

Before any action there are two things to check:
  1. Are you using the latest available version of the wallet? A new version is released roughly every 6 months, so make sure you're using the current release (compare the release on GetMonero.org with your wallet's version on Settings, under Debug info).
  2. Is your wallet fully synchronized? If it isn't, wait the sync to complete.
Because Monero is different from Bitcoin, wallet synchronization is not instant. The software needs to synchronize the blockchain and use your private keys to identify your transactions. Check in the lower left corner (GUI) if the wallet is synchronized.
You can't send transactions and your balance might be wrong or unavailable if the wallet is not synced with the network. So please wait.
If this is not a sufficient answer for your case and you're looking for more information, please see this answer on StackExchange.

How do I upgrade my wallet to the newest version?

This question is beautifully answered on StackExchange.

Why does it take so long to sync the wallet [for the first time]?

You have decided to use Monero's wallet and run a local node. Congratulations! You have chosen the safest and most secure option for your privacy, but unfortunately this has an initial cost. The first reason for the slowness is that you will need to download the entire blockchain, which is considerably heavy (+70 GB) and constantly growing. There are technologies being implemented in Monero to slow this growth, however it is inevitable to make this initial download to run a full node. Consider syncing to a device that has an SSD instead of an HDD, as this greatly impacts the speed of synchronization.
Now that the blockchain is on your computer, the next time you run the wallet you only need to download new blocks, which should take seconds or minutes (depending on how often you use the wallet).

I don't want to download the blockchain, how can I skip that?

The way to skip downloading the blockchain is connecting your wallet to a public remote node. You can follow this guide on how to set it up. You can find a list of public remote nodes on MoneroWorld.
Be advised that when using a public remote node you lose some of your privacy. A public remote node is able to identify your IP and opens up a range for certain attacks that further diminish your privacy. A remote node can't see your balance and it can't spend your XMR.

How do I restore my wallet from the mnemonic seed or from the keys?

To restore your wallet with the 25 word mnemonic seed, please see this guide.
To restore your wallet with your keys, please see this guide.

3. Wallet: Ledger

How do I generate a Ledger Monero Wallet with the GUI or CLI?

This question is beautifully answered on StackExchange. Check this page for the GUI instructions, and this page for the CLI instructions.

4. Nodes

How can my local node become a public remote node?

If you want to support other Monero users by making your node public, you can follow the instructions on MoneroWorld, under the section "How To Include Your Node On Moneroworld".

How can I connect my node via Tor?

This question is beautifully answered on StackExchange.
submitted by AutoModerator to Monero [link] [comments]

Technical: Confidential Transactions and Their Implementation Tradeoffs

As requested by estradata here: https://old.reddit.com/Bitcoin/comments/iylou9/what_are_some_of_the_latest_innovations_in_the/g6heez1/
It is a general issue that crops up at the extremes of cryptography, with quantum breaks being just one of the extremes of (classical) cryptography.

Computational vs Information-Theoretic

The dichotomy is between computationally infeasible vs informationally-theoretic infeasible. Basically:
Quantum breaks represent a possible reduction in computational infeasibility of certain things, but not information-theoretic infeasibility.
For example, suppose you want to know what 256-bit preimages map to 256-bit hashes. In theory, you just need to build a table with 2256 entries and start from 0x0000000000000000000000000000000000000000000000000000000000000000 and so on. This is computationally infeasible, but not information-theoretic infeasible.
However, suppose you want to know what preimages, of any size, map to 256-bit hashes. Since the preimages can be of any size, after finishing with 256-bit preimages, you have to proceed to 257-bit preimages. And so on. And there is no size limit, so you will literally never finish. Even if you lived forever, you would not complete it. This is information-theoretic infeasible.

Commitments

How does this relate to confidential transactions? Basically, every confidential transaction simply hides the value behind a homomorphic commitment. What is a homomorphic commitment? Okay, let's start with commitments. A commitment is something which lets you hide something, and later reveal what you hid. Until you reveal it, even if somebody has access to the commitment, they cannot reverse it to find out what you hid. This is called the "hiding property" of commitments. However, when you do reveal it (or "open the commitment"), then you cannot replace what you hid with some other thing. This is called the "binding property" of commitments.
For example, a hash of a preimage is a commitment. Suppose I want to commit to something. For example, I want to show that I can predict the future using the energy of a spare galaxy I have in my pocket. I can hide that something by hashing a description of the future. Then I can give the hash to you. You still cannot learn the future, because it's just a hash, and you can't reverse the hash ("hiding"). But suppose the future event occurs. I can reveal that I did, in fact, know the future. So I give you the description, and you hash it and compare it to the hash I gave earlier. Because of preimage resistance, I cannot retroactively change what I hid in the hash, so what I gave must have been known to me at the time that I gave you the commitment i..e. hash ("binding").

Homomorphic Commitments

A homomorphic commitment simply means that if I can do certain operations on preimages of the commitment scheme, there are certain operations on the commitments that would create similar ("homo") changes ("morphic") to the commitments. For example, suppose I have a magical function h() which is a homomorphic commitment scheme. It can hide very large (near 256-bit) numbers. Then if h() is homomorphic, there may be certain operations on numbers behind the h() that have homomorphisms after the h(). For example, I might have an operation <+> that is homomorphic in h() on +, or in other words, if I have two large numbers a and b, then h(a + b) = h(a) <+> h(b). + and <+> are different operations, but they are homomorphic to each other.
For example, elliptic curve scalars and points have homomorphic operations. Scalars (private keys) are "just" very large near-256-bit numbers, while points are a scalar times a standard generator point G. Elliptic curve operations exist where there is a <+> between points that is homomorphic on standard + on scalars, and a <*> between a scalar and a point that is homomorphic on standard * multiplication on scalars.
For example, suppose I have two large scalars a and b. I can use elliptic curve points as a commitment scheme: I can take a <*> G to generate a point A. It is hiding since nobody can learn what a is unless I reveal it (a and A can be used in standard ECDSA private-public key cryptography, with the scalar a as the private key and the point A as the public key, and the a cannot be derived even if somebody else knows A). Thus, it is hiding. At the same time, for a particular point A and standard generator point G, there is only one possible scalar a which when "multiplied" with G yields A. So scalars and elliptic curve points are a commitment scheme, with both hiding and binding properties.
Now, as mentioned there is a <+> operation on points that is homomorphic to the + operation on corresponding scalars. For example, suppose there are two scalars a and b. I can compute (a + b) <*> G to generate a particular point. But even if I don't know scalars a and b, but I do know points A = a <*> G and B = b <*> G, then I can use A <+> B to derive (a + b) <*> G (or equivalently, (a <*> G) <+> (b <*> G) == (a + b) <*> G). This makes points a homomorphic commitment scheme on scalars.

Confidential Transactions: A Sketch

This is useful since we can easily use the near-256-bit scalars in SECP256K1 elliptic curves to easily represent values in a monetary system, and hide those values by using a homomorphic commitment scheme. We can use the hiding property to prevent people from learning the values of the money we are sending and receiving.
Now, in a proper cryptocurrency, a normal, non-coinbase transaction does not create or destroy coins: the values of the input coins are equal to the value of the output coins. We can use a homomorphic commitment scheme. Suppose I have a transaction that consumes an input value a and creates two output values b and c. That is, a = b + c, i.e. the sum of all inputs a equals the sum of all outputs b and c. But remember, with a homomorphic commitment scheme like elliptic curve points, there exists a <+> operation on points that is homomorphic to the ordinary school-arithmetic + addition on large numbers. So, confidential transactions can use points a <*> G as input, and points b <*> G and c <*> G as output, and we can easily prove that a <*> G = (b <*> G) <+> (c <*> G) if a = b + c, without revealing a, b, or c to anyone.

Pedersen Commitments

Actually, we cannot just use a <*> G as a commitment scheme in practice. Remember, Bitcoin has a cap on the number of satoshis ever to be created, and it's less than 253 satoshis, which is fairly trivial. I can easily compute all values of a <*> G for all values of a from 0 to 253 and know which a <*> G corresponds to which actual amount a. So in confidential transactions, we cannot naively use a <*> G commitments, we need Pedersen commitments.
If you know what a "salt" is, then Pedersen commitments are fairly obvious. A "salt" is something you add to e.g. a password so that the hash of the password is much harder to attack. Humans are idiots and when asked to generate passwords, will output a password that takes less than 230 possibilities, which is fairly easy to grind. So what you do is that you "salt" a password by prepending a random string to it. You then hash the random string + password, and store the random string --- the salt --- together with the hash in your database. Then when somebody logs in, you take the password, prepend the salt, hash, and check if the hash matches with the in-database hash, and you let them log in. Now, with a hash, even if somebody copies your password database, the can't get the password. They're hashed. But with a salt, even techniques like rainbow tables make a hacker's life even harder. They can't hash a possible password and check every hash in your db for something that matches. Instead, if they get a possible password, they have to prepend each salt, hash, then compare. That greatly increases the computational needs of a hacker, which is why salts are good.
What a Pedersen commitment is, is a point a <*> H, where a is the actual value you commit to, plus <+> another point r <*> G. H here is a second standard generator point, different from G. The r is the salt in the Pedersen commitment. It makes it so that even if you show (a <*> H) <+> (r <*> G) to somebody, they can't grind all possible values of a and try to match it with your point --- they also have to grind r (just as with the password-salt example above). And r is much larger, it can be a true near-256-bit number that is the range of scalars in SECP256K1, whereas a is constrained to "reasonable" numbers of satoshi, which cannot exceed 21 million Bitcoins.
Now, in order to validate a transaction with input a and outputs b and c, you only have to prove a = b + c. Suppose we are hiding those amounts using Pedersen commitments. You have an input of amount a, and you know a and r. The blockchain has an amount (a <*> H) <+> (r <*> G). In order to create the two outputs b and c, you just have to create two new r scalars such that r = r[0] + r[1]. This is trivial, you just select a new random r[0] and then compute r[1] = r - r[0], it's just basic algebra.
Then you create a transaction consuming the input (a <*> H) <+> (r <*> G) and outputs (b <*> H) <+> (r[0] <*> G) and (c <*> H) <+> (r[1] <*> G). You know that a = b + c, and r = r[0] + r[1], while fullnodes around the world, who don't know any of the amounts or scalars involved, can just take the points (a <*> H) <+> (r <*> G) and see if it equals (b <*> H) <+> (r[0] <*> G) <+> (c <*> H) <+> (r[1] <*> G). That is all that fullnodes have to validate, they just need to perform <+> operations on points and comparison on points, and from there they validate transactions, all without knowing the actual values involved.

Computational Binding, Information-Theoretic Hiding

Like all commitments, Pedersen Commitments are binding and hiding.
However, there are really two kinds of commitments:
What does this mean? It's just a measure of how "impossible" binding vs hiding is. Pedersen commitments are computationally binding, meaning that in theory, a user of this commitment with arbitrary time and space and energy can, in theory, replace the amount with something else. However, it is information-theoretic hiding, meaning an attacker with arbitrary time and space and energy cannot figure out exactly what got hidden behind the commitment.
But why?
Now, we have been using a and a <*> G as private keys and public keys in ECDSA and Schnorr. There is an operation <*> on a scalar and a point that generates another point, but we cannot "revrese" this operation. For example, even if I know A, and know that A = a <*> G, but do not know a, I cannot derive a --- there is no operation between A G that lets me know a.
Actually there is: I "just" need to have so much time, space, and energy that I just start counting a from 0 to 2256 and find which a results in A = a <*> G. This is a computational limit: I don't have a spare universe in my back pocket I can use to do all those computations.
Now, replace a with h and A with H. Remember that Pedersen commitments use a "second" standard generator point. The generator points G and H are "not really special" --- they are just random points on the curve that we selected and standardized. There is no operation H G such that I can learn h where H = h <*> G, though if I happen to have a spare universe in my back pocket I can "just" brute force it.
Suppose I do have a spare universe in my back pocket, and learn h = H G such that H = h <*> G. What can I do in Pedersen commitments?
Well, I have an amount a that is committed to by (a <*> H) <+> (r <*> G). But I happen to know h! Suppose I want to double my money a without involving Elon Musk. Then:
That is what we mean by computationally binding: if I can compute h such that H = h <*> G, then I can find another number which opens the same commitment. And of course I'd make sure that number is much larger than what I originally had in that address!
Now, the reason why it is "only" computationally binding is that it is information-theoretically hiding. Suppose somebody knows h, but has no money in the cryptocurrency. All they see are points. They can try to find what the original amounts are, but because any amount can be mapped to "the same" point with knowledge of h (e.g. in the above, a and 2 * a got mapped to the same point by "just" replacing the salt r with r - a * h; this can be done for 3 * a, 4 * a etc.), they cannot learn historical amounts --- the a in historical amounts could be anything.
The drawback, though, is that --- as seen above --- arbitrary inflation is now introduced once somebody knows h. They can multiply their money by any arbitrary factor with knowledge of h.
It is impossible to have both perfect hiding (i.e. historical amounts remain hidden even after a computational break) and perfect binding (i.e. you can't later open the commitment to a different, much larger, amount).
Pedersen commitments just happen to have perfect hiding, but only computationally-infeasible binding. This means they allow hiding historical values, but in case of anything that allows better computational power --- including but not limited to quantum breaks --- they allow arbitrary inflation.

Changing The Tradeoffs with ElGamal Commitments

An ElGamal commitment is just a Pedersen commitment, but with the point r <*> G also stored in a separate section of the transaction.
This commits the r, and fixes it to a specific value. This prevents me from opening my (a <*> H) <+> (r <*> G) as ((2 * a) <*> H) <+> ((r - a * h) <*> G), because the (r - a * h) would not match the r <*> G sitting in a separate section of the transaction. This forces me to be bound to that specific value, and no amount of computation power will let me escape --- it is information-theoretically binding i.e. perfectly binding.
But that is now computationally hiding. An evil surveillor with arbitrary time and space can focus on the r <*> G sitting in a separate section of the transaction, and grind r from 0 to 2256 to determine what r matches that point. Then from there, they can negate r to get (-r) <*> G and add it to the (a <*> H) <+> (r <*> G) to get a <*> H, and then grind that to determine the value a. With massive increases in computational ability --- including but not limited to quantum breaks --- an evil surveillor can see all the historical amounts of confidential transactions.

Conclusion

This is the source of the tradeoff: either you design confidential transactions so in case of a quantum break, historical transactions continue to hide their amounts, but inflation of the money is now unavoidable, OR you make the money supply sacrosanct, but you potentially sacrifice amount hiding in case of some break, including but not limited to quantum breaks.
submitted by almkglor to Bitcoin [link] [comments]

Reçu une tentative de chantage avec mon email/vieux mdp

Je voulais juste partager vite fait une histoire de cybersécurité qui m'a bien fait stresser pendant 5 minutes...
J'ai reçu ceci pendant la nuit:
sujet: vieux mot de passe [ça fait flipper quand même au départ]
I know ( Password)is one of your password on day of hack..
Lets get directly to the point.
Not one person has paid me to check about you.
You do not know me and you're probably thinking why you are getting this email?
in fact, i actually placed a malware on the adult vids (adult porn) website and you know what, you visited this site to experience fun (you know what i mean).
When you were viewing videos, your browser started out operating as a RDP having a key logger which provided me with accessibility to your display and web cam.
immediately after that, my malware obtained every one of your contacts from your Messenger, FB, as well as email account.
after that i created a double-screen video. 1st part shows the video you were viewing (you have a nice taste omg), and 2nd part displays the recording of your cam, and its you.
Best solution would be to pay me $1xxx.
We are going to refer to it as a donation. in this situation, i most certainly will without delay remove your video.
My -BTC -address: xxxxx
[case SeNSiTiVe, copy & paste it]
You could go on your life like this never happened and you will not ever hear back again from me.
You'll make the payment via Bitcoin (if you do not know this, search 'how to buy bitcoin' in Google).
if you are planning on going to the law, surely, this e-mail can not be traced back to me, because it's hacked too.
I have taken care of my actions. i am not looking to ask you for a lot, i simply want to be paid.
if i do not receive the bitcoin;, i definitely will send out your video recording to all of your contacts including friends and family, co-workers, and so on.
Nevertheless, if i do get paid, i will destroy the recording immediately.
If you need proof, reply with Yeah then i will send out your video recording to your 8 friends.
it's a nonnegotiable offer and thus please don't waste mine time & yours by replying to this message.
Le temps de ressortir un PC non vérolé et de googler "malware blackmail threat", le premier résultat google est:
https://www.consumer.ftc.gov/blog/2020/04/scam-emails-demand-bitcoin-threaten-blackmail
C'est donc une tentative très commune, et pas personnalisée. Ouf !
Ceci étant:
1/ A qui envoyer une copie du message pour signalement ? 2/ Je vais en profiter pour dé-véroler mes machines (windows 10). Quel meilleur site/app pour ce faire ?
3/ on ne le rappellera jamais assez les gens: mdp aléatoire unique pour chaque site important + machin truc SMS de signalement de nouvelle connexion systématique (je sais plus le nom)
submitted by RedditTipiak to france [link] [comments]

Regret falling for scam

Late last year I fell for a romance scam. I was on a dating app and I was chatting with a woman (sure I got catfished). We were chatting (not talking but texting) for a month and she said that she needed help getting home because she was robbed and not in the states at the time. We texted eachother throughout this situation and she sent a check to me. I deposited the check to my acct and sent the money to her through bitcoin (check was found fraudulent a few days after I sent the money). I was hoping to meet this woman but It was an epic fail and I let myself down because I didn't follow my gut feeling (I ignored so many red flags and bought into the story, yes I know I'm a huge idiot). I even did my research prior to this and my dumbass still went on with it smh. My bank acct was closed because of it and I filed a police report, thankfully I didn't get in trouble. This lesson was learned the hard way and I will never make the same mistake again, but I do have regrets because I ignored my intuition and allowed this to happen to me. The check was $2,500 smh and no I didn't have to pay anything back. I have opened up a new bank acct after this issue and blocked the scammer etc. I'm bothered by the fact that this scammer had my # and address. A strange # text me in March, I ignored and haven't been contacted since. How can I stop thinking about my bad decision every day and move on from it ? (I still feel stupid about it).
submitted by Puzzleheaded-World-2 to Scams [link] [comments]

You have been hacked

I know 2Q7GD9jA5buDhBKT is one of your password on day of hack..
Lets get directly to the point.
Not one person has paid me to check about you. You do not know me and you're probably thinking why you are getting this?
in fact, i actually placed a malware on the adult vids (adult porn) website and you know what, you visited this site to experience fun (you know what i mean). When you were viewing videos, your browser started out operating as a RDP having a key logger which provided me with accessibility to your display and web cam.
immediately after that, my malware obtained every one of your contacts from your Messenger, FB, as well as email account. after that i created a double-screen video. 1st part shows the video you were viewing (you have a nice taste omg), and 2nd part displays the recording of your cam, and its you.
Best solution would be to pay me $1064. We are going to refer to it as a donation. in this situation, i most certainly will without delay remove your video.
My -BTC -address: 12LkbXa7ScHGipQtxY98s7WqsabtLzLrkF [case SeNSiTiVe, copy & paste it]
You could go on your life like this never happened and you will not ever hear back again from me. You'll make the payment via Bitcoin (if you do not know this, search 'how to buy bitcoin' in Google).
if you are planning on going to the law, surely, this can not be traced back to me, because it's hacked too. I have taken care of my actions. i am not looking to ask you for a lot, i simply want to be paid.
if i do not receive the bitcoin;, i definitely will send out your video recording to all of your contacts including friends and family, co-workers, and so on.
Nevertheless, if i do get paid, i will destroy the recording immediately.
If you need proof, reply with Yeah then i will send out your video recording to your 8 friends.
it's a nonnegotiable offer and thus please don't waste mine time & yours by replying to this message.
submitted by ihavealotofgum to copypasta [link] [comments]

Technical: Taproot: Why Activate?

This is a follow-up on https://old.reddit.com/Bitcoin/comments/hqzp14/technical_the_path_to_taproot_activation/
Taproot! Everybody wants it!! But... you might ask yourself: sure, everybody else wants it, but why would I, sovereign Bitcoin HODLer, want it? Surely I can be better than everybody else because I swapped XXX fiat for Bitcoin unlike all those nocoiners?
And it is important for you to know the reasons why you, o sovereign Bitcoiner, would want Taproot activated. After all, your nodes (or the nodes your wallets use, which if you are SPV, you hopefully can pester to your wallet vendoimplementor about) need to be upgraded in order for Taproot activation to actually succeed instead of becoming a hot sticky mess.
First, let's consider some principles of Bitcoin.
I'm sure most of us here would agree that the above are very important principles of Bitcoin and that these are principles we would not be willing to remove. If anything, we would want those principles strengthened (especially the last one, financial privacy, which current Bitcoin is only sporadically strong with: you can get privacy, it just requires effort to do so).
So, how does Taproot affect those principles?

Taproot and Your /Coins

Most HODLers probably HODL their coins in singlesig addresses. Sadly, switching to Taproot would do very little for you (it gives a mild discount at spend time, at the cost of a mild increase in fee at receive time (paid by whoever sends to you, so if it's a self-send from a P2PKH or bech32 address, you pay for this); mostly a wash).
(technical details: a Taproot output is 1 version byte + 32 byte public key, while a P2WPKH (bech32 singlesig) output is 1 version byte + 20 byte public key hash, so the Taproot output spends 12 bytes more; spending from a P2WPKH requires revealing a 32-byte public key later, which is not needed with Taproot, and Taproot signatures are about 9 bytes smaller than P2WPKH signatures, but the 32 bytes plus 9 bytes is divided by 4 because of the witness discount, so it saves about 11 bytes; mostly a wash, it increases blockweight by about 1 virtual byte, 4 weight for each Taproot-output-input, compared to P2WPKH-output-input).
However, as your HODLings grow in value, you might start wondering if multisignature k-of-n setups might be better for the security of your savings. And it is in multisignature that Taproot starts to give benefits!
Taproot switches to using Schnorr signing scheme. Schnorr makes key aggregation -- constructing a single public key from multiple public keys -- almost as trivial as adding numbers together. "Almost" because it involves some fairly advanced math instead of simple boring number adding, but hey when was the last time you added up your grocery list prices by hand huh?
With current P2SH and P2WSH multisignature schemes, if you have a 2-of-3 setup, then to spend, you need to provide two different signatures from two different public keys. With Taproot, you can create, using special moon math, a single public key that represents your 2-of-3 setup. Then you just put two of your devices together, have them communicate to each other (this can be done airgapped, in theory, by sending QR codes: the software to do this is not even being built yet, but that's because Taproot hasn't activated yet!), and they will make a single signature to authorize any spend from your 2-of-3 address. That's 73 witness bytes -- 18.25 virtual bytes -- of signatures you save!
And if you decide that your current setup with 1-of-1 P2PKH / P2WPKH addresses is just fine as-is: well, that's the whole point of a softfork: backwards-compatibility; you can receive from Taproot users just fine, and once your wallet is updated for Taproot-sending support, you can send to Taproot users just fine as well!
(P2WPKH and P2WSH -- SegWit v0 -- addresses start with bc1q; Taproot -- SegWit v1 --- addresses start with bc1p, in case you wanted to know the difference; in bech32 q is 0, p is 1)
Now how about HODLers who keep all, or some, of their coins on custodial services? Well, any custodial service worth its salt would be doing at least 2-of-3, or probably something even bigger, like 11-of-15. So your custodial service, if it switched to using Taproot internally, could save a lot more (imagine an 11-of-15 getting reduced from 11 signatures to just 1!), which --- we can only hope! --- should translate to lower fees and better customer service from your custodial service!
So I think we can say, very accurately, that the Bitcoin principle --- that YOU are in control of your money --- can only be helped by Taproot (if you are doing multisignature), and, because P2PKH and P2WPKH remain validly-usable addresses in a Taproot future, will not be harmed by Taproot. Its benefit to this principle might be small (it mostly only benefits multisignature users) but since it has no drawbacks with this (i.e. singlesig users can continue to use P2WPKH and P2PKH still) this is still a nice, tidy win!
(even singlesig users get a minor benefit, in that multisig users will now reduce their blockchain space footprint, so that fees can be kept low for everybody; so for example even if you have your single set of private keys engraved on titanium plates sealed in an airtight box stored in a safe buried in a desert protected by angry nomads riding giant sandworms because you're the frickin' Kwisatz Haderach, you still gain some benefit from Taproot)
And here's the important part: if P2PKH/P2WPKH is working perfectly fine with you and you decide to never use Taproot yourself, Taproot will not affect you detrimentally. First do no harm!

Taproot and Your Contracts

No one is an island, no one lives alone. Give and you shall receive. You know: by trading with other people, you can gain expertise in some obscure little necessity of the world (and greatly increase your productivity in that little field), and then trade the products of your expertise for necessities other people have created, all of you thereby gaining gains from trade.
So, contracts, which are basically enforceable agreements that facilitate trading with people who you do not personally know and therefore might not trust.
Let's start with a simple example. You want to buy some gewgaws from somebody. But you don't know them personally. The seller wants the money, you want their gewgaws, but because of the lack of trust (you don't know them!! what if they're scammers??) neither of you can benefit from gains from trade.
However, suppose both of you know of some entity that both of you trust. That entity can act as a trusted escrow. The entity provides you security: this enables the trade, allowing both of you to get gains from trade.
In Bitcoin-land, this can be implemented as a 2-of-3 multisignature. The three signatories in the multisgnature would be you, the gewgaw seller, and the escrow. You put the payment for the gewgaws into this 2-of-3 multisignature address.
Now, suppose it turns out neither of you are scammers (whaaaat!). You receive the gewgaws just fine and you're willing to pay up for them. Then you and the gewgaw seller just sign a transaction --- you and the gewgaw seller are 2, sufficient to trigger the 2-of-3 --- that spends from the 2-of-3 address to a singlesig the gewgaw seller wants (or whatever address the gewgaw seller wants).
But suppose some problem arises. The seller gave you gawgews instead of gewgaws. Or you decided to keep the gewgaws but not sign the transaction to release the funds to the seller. In either case, the escrow is notified, and if it can sign with you to refund the funds back to you (if the seller was a scammer) or it can sign with the seller to forward the funds to the seller (if you were a scammer).
Taproot helps with this: like mentioned above, it allows multisignature setups to produce only one signature, reducing blockchain space usage, and thus making contracts --- which require multiple people, by definition, you don't make contracts with yourself --- is made cheaper (which we hope enables more of these setups to happen for more gains from trade for everyone, also, moon and lambos).
(technology-wise, it's easier to make an n-of-n than a k-of-n, making a k-of-n would require a complex setup involving a long ritual with many communication rounds between the n participants, but an n-of-n can be done trivially with some moon math. You can, however, make what is effectively a 2-of-3 by using a three-branch SCRIPT: either 2-of-2 of you and seller, OR 2-of-2 of you and escrow, OR 2-of-2 of escrow and seller. Fortunately, Taproot adds a facility to embed a SCRIPT inside a public key, so you can have a 2-of-2 Taprooted address (between you and seller) with a SCRIPT branch that can instead be spent with 2-of-2 (you + escrow) OR 2-of-2 (seller + escrow), which implements the three-branched SCRIPT above. If neither of you are scammers (hopefully the common case) then you both sign using your keys and never have to contact the escrow, since you are just using the escrow public key without coordinating with them (because n-of-n is trivial but k-of-n requires setup with communication rounds), so in the "best case" where both of you are honest traders, you also get a privacy boost, in that the escrow never learns you have been trading on gewgaws, I mean ewww, gawgews are much better than gewgaws and therefore I now judge you for being a gewgaw enthusiast, you filthy gewgawer).

Taproot and Your Contracts, Part 2: Cryptographic Boogaloo

Now suppose you want to buy some data instead of things. For example, maybe you have some closed-source software in trial mode installed, and want to pay the developer for the full version. You want to pay for an activation code.
This can be done, today, by using an HTLC. The developer tells you the hash of the activation code. You pay to an HTLC, paying out to the developer if it reveals the preimage (the activation code), or refunding the money back to you after a pre-agreed timeout. If the developer claims the funds, it has to reveal the preimage, which is the activation code, and you can now activate your software. If the developer does not claim the funds by the timeout, you get refunded.
And you can do that, with HTLCs, today.
Of course, HTLCs do have problems:
Fortunately, with Schnorr (which is enabled by Taproot), we can now use the Scriptless Script constuction by Andrew Poelstra. This Scriptless Script allows a new construction, the PTLC or Pointlocked Timelocked Contract. Instead of hashes and preimages, just replace "hash" with "point" and "preimage" with "scalar".
Or as you might know them: "point" is really "public key" and "scalar" is really a "private key". What a PTLC does is that, given a particular public key, the pointlocked branch can be spent only if the spender reveals the private key of the given public key to you.
Another nice thing with PTLCs is that they are deniable. What appears onchain is just a single 2-of-2 signature between you and the developemanufacturer. It's like a magic trick. This signature has no special watermarks, it's a perfectly normal signature (the pledge). However, from this signature, plus some datta given to you by the developemanufacturer (known as the adaptor signature) you can derive the private key of a particular public key you both agree on (the turn). Anyone scraping the blockchain will just see signatures that look just like every other signature, and as long as nobody manages to hack you and get a copy of the adaptor signature or the private key, they cannot get the private key behind the public key (point) that the pointlocked branch needs (the prestige).
(Just to be clear, the public key you are getting the private key from, is distinct from the public key that the developemanufacturer will use for its funds. The activation key is different from the developer's onchain Bitcoin key, and it is the activation key whose private key you will be learning, not the developer's/manufacturer's onchain Bitcoin key).
So:
Taproot lets PTLCs exist onchain because they enable Schnorr, which is a requirement of PTLCs / Scriptless Script.
(technology-wise, take note that Scriptless Script works only for the "pointlocked" branch of the contract; you need normal Script, or a pre-signed nLockTimed transaction, for the "timelocked" branch. Since Taproot can embed a script, you can have the Taproot pubkey be a 2-of-2 to implement the Scriptless Script "pointlocked" branch, then have a hidden script that lets you recover the funds with an OP_CHECKLOCKTIMEVERIFY after the timeout if the seller does not claim the funds.)

Quantum Quibbles!

Now if you were really paying attention, you might have noticed this parenthetical:
(technical details: a Taproot output is 1 version byte + 32 byte public key, while a P2WPKH (bech32 singlesig) output is 1 version byte + 20 byte public key hash...)
So wait, Taproot uses raw 32-byte public keys, and not public key hashes? Isn't that more quantum-vulnerable??
Well, in theory yes. In practice, they probably are not.
It's not that hashes can be broken by quantum computes --- they're still not. Instead, you have to look at how you spend from a P2WPKH/P2PKH pay-to-public-key-hash.
When you spend from a P2PKH / P2WPKH, you have to reveal the public key. Then Bitcoin hashes it and checks if this matches with the public-key-hash, and only then actually validates the signature for that public key.
So an unconfirmed transaction, floating in the mempools of nodes globally, will show, in plain sight for everyone to see, your public key.
(public keys should be public, that's why they're called public keys, LOL)
And if quantum computers are fast enough to be of concern, then they are probably fast enough that, in the several minutes to several hours from broadcast to confirmation, they have already cracked the public key that is openly broadcast with your transaction. The owner of the quantum computer can now replace your unconfirmed transaction with one that pays the funds to itself. Even if you did not opt-in RBF, miners are still incentivized to support RBF on RBF-disabled transactions.
So the extra hash is not as significant a protection against quantum computers as you might think. Instead, the extra hash-and-compare needed is just extra validation effort.
Further, if you have ever, in the past, spent from the address, then there exists already a transaction indelibly stored on the blockchain, openly displaying the public key from which quantum computers can derive the private key. So those are still vulnerable to quantum computers.
For the most part, the cryptographers behind Taproot (and Bitcoin Core) are of the opinion that quantum computers capable of cracking Bitcoin pubkeys are unlikely to appear within a decade or two.
So:
For now, the homomorphic and linear properties of elliptic curve cryptography provide a lot of benefits --- particularly the linearity property is what enables Scriptless Script and simple multisignature (i.e. multisignatures that are just 1 signature onchain). So it might be a good idea to take advantage of them now while we are still fairly safe against quantum computers. It seems likely that quantum-safe signature schemes are nonlinear (thus losing these advantages).

Summary

I Wanna Be The Taprooter!

So, do you want to help activate Taproot? Here's what you, mister sovereign Bitcoin HODLer, can do!

But I Hate Taproot!!

That's fine!

Discussions About Taproot Activation

submitted by almkglor to Bitcoin [link] [comments]

Actual email I received

I know 12345678 is one of your password on day of hack.. Lets get directly to the point.
Not one person has paid me to check about you. You do not know me and you're probably thinking why you are getting this email? in fact, i actually placed a malware on the adult vids (adult porn) website and you know what, you visited this site to experience fun (you know what i mean). When you were viewing videos, your browser started out operating as a RDP having a key logger which provided me with accessibility to your display and web cam. immediately after that, my malware obtained every one of your contacts from your Messenger, FB, as well as email account. after that i created a double-screen video. 1st part shows the video you were viewing (you have a nice taste omg), and 2nd part displays the recording of your cam, and its you.
Best solution would be to pay me $1070. We are going to refer to it as a donation. in this situation, i most certainly will without delay remove your video.
My -BTC -address: 1Cq2p3KoK9zNdYigC5R521ooacuc7zkXE2 [case SeNSiTiVe, copy & paste it]
You could go on your life like this never happened and you will not ever hear back again from me. You'll make the payment via Bitcoin (if you do not know this, search 'how to buy bitcoin' in Google). if you are planning on going to the law, surely, this e-mail can not be traced back to me, because it's hacked too. I have taken care of my actions. i am not looking to ask you for a lot, i simply want to be paid.
if i do not receive the bitcoin;, i definitely will send out your video recording to all of your contacts including friends and family, co-workers, and so on. Nevertheless, if i do get paid, i will destroy the recording immediately.
If you need proof, reply with Yeah then i will send out your video recording to your 8 friends. it's a nonnegotiable offer and thus please don't waste mine time & yours by replying to this message.
submitted by aregak2005 to copypasta [link] [comments]

How to find your Bitcoin wallet address on AltCoinTrader ... How to get a Bitcoin Wallet Address - FREE & in under a ... Wallet Address in Luno Coinbase – How to find your Bitcoin Wallet address 2020 ... How to Locate your BlockChain Wallet Address - YouTube

What is my BTC address? Your BTC address is a string of 26-35 letters and numbers that identify your Bitcoin wallet. BTC addresses begin with either a 1 or a 3 and are case-sensitive.. When you want to receive funds, this is the information that you provide to the person paying you. Where can I find my bitcoin address? You can find your Bitcoin Cash (BCH) or Bitcoin Core (BTC) address for receiving payments into your Bitcoin.com wallet by tapping "Receive" on the bottom tool bar of your wallet.Your address will be the long string of numbers and letters directly below the QR code for that address. If somebody wishes to send your Bitcoin, they can scan the code using their Bitcoin wallet and send Bitcoin to your wallet:get your wallet here. When you sign up with Luno you’ll be assigned your own unique Bitcoin wallet address. Any Bitcoin sent to this address will be added to your Luno account. Next, add a label for the address (optional) and select an existing sub-wallet to transfer the funds to, or leave this blank if you want the funds to remain in Imported Addresses. Click Import to complete the process. To import a bitcoin cash address, you must import its corresponding bitcoin address first. A valid Bitcoin address is necessary because if you get this wrong, your bitcoins will be lost. If you send bitcoins to an invalid address, the bitcoins will be lost in cyberspace or will remain with the sender.

[index] [3669] [25614] [13983] [2831] [21612] [23644] [31636] [32011] [19532] [26948]

How to find your Bitcoin wallet address on AltCoinTrader ...

Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube. Log in. Go to accounts or choose Bitcoin. On the app on the top left corner is your Bitcoin address and scan address. On the website go to Portfolio click Bitcoin and then click receive. You can ... How To Generate Your Bitcoin Wallet Address Using Luno, How To Find Your Bitcoin Wallet Address in L - Duration: 10:26. Chukwuemeka Emmanuel 2,937 views. 10:26. If you want to someone to send you money to your Bitcoin account, Give them this address. you may donate to our network via Bitcoin as well :) Bitcoin addres... Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

#