Apparently Bitrefill were hacked in a pretty sophisticated way. Honestly it's kind of an advertisement for them, paradoxically: they're one of the few long running sellers of goods and services for bitcoin that at least offer the right model: you pay a lightning invoice, anonymously, you get the thing. you might need an email or something, but that's OK. absolutely minimized risk of funds theft along the way (only exposed *very* briefly), absolutely minimized risk of leak of personal info to hackers (since you give them so little; almost nothing in fact; notice in particular that LN does a very good job of hiding the sender's origin from the receiver; not 100% perfect but exceptionally good with non custodial wallets, heck even custodial, perhaps, depending on details, though I absolutely do not recommend custodial LN, for different reasons).

an interesting point about this: there's a reason bitcoin devs tried quite strenuously, and eventually succeeded several years ago, in removing all openssl dependency from the bitcoin project. it's the nature of some of the truly awful protocols (ASN1 , X509 and etc etc) that openssl had to, or chose to support. so yes a very natural and correct reaction is "holy shit what happens when people find similar bugs in the consensus layer of bitcoin" but it's also true that it's a very controlled and very stress-tested surface area that removed stuff that was problematic. It's also true that even 1 small bug could be catastrophic. I guess we'll see!

Yeah sorry not going to work for a while

Yes it needs a soft fork. The important thing is there's a solid theoretical basis for actually doung CISA. Experience with MuSig taught us you have to be super careful building these algos ... the power that Schnorr's linearity gives you is a double edged sword.

Interesting read. It doesn't sound easy to do this across a country... but maybe I'm wrong.

Interesting. If we think of LN, we have that: not only ability to withdraw, but also ability to maintain currently held funds, passively, can be violated even without 51% attack but merely through censorship by miners, or even pure unavailability or pricing out through fees > available balance. Hence someone put it in some pithy statement that I can't remember along the lines of "in Lightning censorship resistance is a security requirement" (meh I can't remember exactly but you get it). But then is that overlapping with a 51% attack, or not? I always thought of the latter as specifically referring to attempts to "undo" payments, so changing inclusion and/or ordering of txs. I think I'm trying to say that, with this definition, even LN doesn't count as an L2, does it?

Yeah I'm only doubting in the technical domain. Something like claude doesn't in any sense brown nose when it comes to some technical idea or description; if I'm directly wrong, it'll say so. It's a more subtle but strong tendency to end up at the conclusion that I tangentially implied, but actually I don't know if it's true. That kind of thing.

Good luck with that :)

Is it better than claude, chatgpt, kimi for this kind of thing? I'm talking about cryptography, let's say.

Taproot is not quantum resistant.

Yeah maybe. Hope they didn't lose too much money.

This must be a reference to a movie I haven't seen 😄 Really like the actor though, he was great in Sicario.

If the NSA figured out how to poison LLM responses to this type of query so as to create backdoors, that would be truly impressive.

I prefer 'ethical' to moral. Slightly different connotation.

Well, maybe. I guess I am only talking about a cognitive error of ordinary non powerful people, who are indeed trying to be moral or ethical.

Jesus, really!? Are any of them very consequential?

Not sure about this analogy because in the game Yhorm is a complete joke 😄

At least it's honest. 90% of content is generated like this, but without telling you.