Almost certainly the best mathematics education vlogger on the remarkable proof that an arbitrary closed curve always contains 4 points of a single rectangle, using extremely intuitive visual reasoning (and surprisingly easy to understand topology!)

youtube.com/watch?v=AmgkSdhK4K

Joinmarket 0.6.1 bugfix release out

(bug was basically deposits not showing, without a rescan, if there are a lot of them because of a failure of the address import mechanism)

github.com/JoinMarket-Org/join

Scammers are ever inventive; get you to login and claim your mined bitcoins, only you have to top up to meet withdrawal minimum 😂 :

reddit.com/r/Bitcoin/comments/

Joinmarket showerthought:

long term yield generator can now (as of 0.6.0) deposit to yg and have those coins joined without restart - but what about getting money out? How about they start up with say 30 destination addresses and 1 of 10 joins goes to a destination (could be in your "other", spending wallet). It's actually good for joinmarket's privacy model, too.

This way you could have it running for months on an isolated machine and still move your money through it.

waxwing boosted

This week we talked to @waxwing about Bitcoin privacy and SNICKER, a non-interactive two-party variant of coinjoin. We also discussed:

- Joinmarket
- Payjoin / p2ep
- Wasabi & Samourai Wallet
- Confidential Transactions
- Zcash & Monero

Be sure to check it out!

unhashedpodcast.com/episodes/a

Comes out of taproot review but this summary of how difficult it is to get threshold multisig working (by Poelstra) just makes me think we're going to have to stick with the combinatorial n of n musigs (in taproot branches) approach, at least until someone figures this all out!

github.com/apoelstra/secp256k1

Oh; Jonas' write up on multi hop locks has moved on quite a bit, looks like a very useful resource now:

github.com/ElementsProject/scr

(wish we had TeX in github markdown btw, although i think there are some half-assed workarounds)

waxwing boosted

Malicious Python libraries stealing OpenPGP and SSH keys:

zdnet.com/article/two-maliciou

– Look for python3-dateutil, and jeIlyfish.
– Both modules try to exfiltrate SSH/OpenPGP keys and send them to an IP address.
– This is the third time the PyPI team intervenes to remove typo-squatted malicious Python libraries from the official repository.

#python #malware #pypi #infosec #security #cybersecurity

Whilst I really do appreciate the effort, this is a little bit buzzword bingo 😂 ... a lot of things are kind of mixed up and not correctly placed (not that it would be easy to do it right!).

miro.medium.com/max/12360/1*iA

waxwing boosted
waxwing boosted

RT @LDNBitcoinDevs@twitter.com

The transcript is up from @tomatodread@twitter.com recent @LDNBitcoinDevs@twitter.com presentation on Erlay and current state of P2P research in Bitcoin. Video can also be viewed here: youtube.com/watch?v=ZUWs00Anpa twitter.com/kanzure/status/120

A direct quote from Yi Gang, central bank head for the CCP:

"We should not let the money held by the Chinese people become worthless .."

(this is in reference to limiting stimulus measures)

He's been known to talk pretty straight in the past, but it's rare to hear a central bank governor talk like that!

(Quoted translation is from Bill Bishop's Sinocism newsletter)

waxwing boosted

huh, interesting little blog post about .gitignore:

julien.danjou.info/properly-ma

What's in your global gitignore?

waxwing boosted

Archivists are trying to make sure a ‘Pirate Bay of Science’ never goes down. A new project aims to make LibGen, which hosts 33 terabytes of scientific papers and books, much more stable.

vice.com/en_us/article/pa7jxb/

A good example of where it doesn't really work was mentioned by Bonneau in the podcast: timestamping; no good saying "this VDF proves I came up with this document 1 year ago" if there's a +/- of like 1 month.

In contrast with PoW used for mining, the latter doesn't attempt quite as much, since it's just going for a statistical truth globally, i.e. that the whole world can't compute target values faster than X in aggregate (and then adjust per two weeks or whatever).

VDFs are more ambitious.

Joseph Bonneau on Verifiable Delay Functions; pretty interesting episode imo!

zeroknowledge.fm/103

While I'm more interested in the concept after having this quality explanation, I'm still a bit unconvinced about the general idea because it's a sort of "linear" usage of a difficulty - 'we expect N iterations to take 10 minutes, give or take' rather than 'we expect this to take a billion years so no one can do it'.
I'm sure there are applications where it can be workable, though.

waxwing boosted

Started working on a general-purpose crate for the p2p protocol just using mio. It's interesting work, I never payed a lot attention to the p2p protocol before.

github.com/stevenroose/rust-bi

Show more
unidentified instance

(instance image by мøтħer ¢røω)