Yes the channels are bi-directional but when you open a channel its filled up from your side at first.
Easy solution: don't open a channel using the max amount.
|
|
|
Tying in with the badges that are suppose to be coming out soon we could encourage users to register their PGP signature by rewarding a aesthetically pleasing badge. Right. If there was a "verified" badge for users, and a "confirmed authentic" badge per message, that might be a good enough incentive to drive adoption.
|
|
|
You are completely right. You have to urge somebody to open a channel to you in order to receive funds in the first place.
Completely wrong, actually. Bi-directional channels. That means you can open a channel with 1 node, and receive payments with anyone else that's indirectly connected to that node. Thank you for your response. I thought if 1ML doesn't fund the channel in the first place, the channel would stay a one-way one.
The Lightning Network consists only of bi-directional payment channels. The problem with receiving payments is that you can't receive if there is not enough space in your channel. Also, currently, only one party can fund a channel. Dual-funded channels are not available, yet. Ok, so there is indeed a problem for receiving a payment for now, but it will be resolved with the use of dual-funded channels ? No, you misunderstood. The only issue is that some nodes (probably most of them still) have a max channel size (0.16777 BTC). But there's an option to ignore that limit too, as long as both nodes agree as a part of opening the channel to begin with. Dual funding just allows a channel to be more balanced when it opens, nothing at all to do with receiving payments.
|
|
|
If and only if B has funded a channel with me
Nope. You need a channel. Just one. That node needs to have at least 2 channels (1 with you, 1 more with someone else). That node needs to have at least 2 channels.... etc. Repeat until you have a complete route to who you're actually paying. It's a network.
|
|
|
let's say, withdraw some funds from a website (a big, famous one) : this website has to fund a channel with you, which it won't do The clue is in the name (i.e. "network") The website does not need to open a channel to send funds to it's users. All that's needed is a series of channels that are linked through more than one lightning node. Website -> A -> B -> ... -> darosior As long as A, B and all other nodes in between have enough money to fund the payment, then the payment route is viable and you receive your withdrawal.
|
|
|
For the 2FA part, theymos adressed it multiple times.
Including this in SMF is a too big challenge. It is included in the new version of the forum however (Epochtalk).
That's interesting. So now I'm pretty enthusiastic about the Epochtalk migration.
|
|
|
I don't see need to make PGP keys mandatory for high ranked members. Even staked Bitcoin addresses with signed message isn't mandatory. It's optional thing for users who want to secure their accounts and recover it in case if it will be hacked. Same thing with PGP keys. For other reasons, I just don't see how it would be beneficial for every high ranked member to have PGP key. If you want - let's do it, but we don't need to force everyone to have PGP key.
Any account would be more secure if it had a 2nd factor to authenticate it. Why not make it mandatory to be eligible for the higher ranks? Why not promote using cryptography standards that have other benefits too? If we design a system to make it secure by default, then the value will increase. Right now, I have email alerts turned off, because they get sent to me unencrypted.
|
|
|
No
Saying that sort of thing with no hope of proving it is just going to make the arguments worse, Jet Cash. You wouldn't want to inflame the arguments about Venezuela further, would you?
|
|
|
Meanwhile, all PGP clients can already do the job in a standard way, all that's needed is to avoid relying on fingerprints (which is not so hard).
You are repeating yourself. So can all legacy bitcoin clients with any legacy addy. I'm gonna repeat myself again then: there's no reason why Bitcoin addresses can't be used to recover accounts, PGP is just useful for different reasons as well as that
|
|
|
This is a bitcoin forum, so it is guaranteed that (at least) every legendary member has a bitcoin wallet and is capable of signing a message with his private key. Security of that digital signature (ECDSA) is no less than security of PGP signatures (RSA or DSA). But the problem is most members don't have any use for PGP so you would be forcing them to use something they don't need. Sure, but email clients don't have plugins to decrypt messages encrypted using Bitcoin keys. And the software to sign and decrypt messages in a browser via PGP keys exists, and is mature. No such thing exists for Bitcoin, namely because Bitcoin keys aren't intended for the that purpose. There's no good reason to be sending unencrypted email in 1999, let alone 2019. Especially a forum concerning leading cryptography tools. P.S. BIP322 exists for signing standard.
Ok, but it's not yet accepted. We at least need to wait for that, then we have to wait for the majority of Bitcoin wallets to roll that standard out. Meanwhile, all PGP clients can already do the job in a standard way, all that's needed is to avoid relying on fingerprints (which is not so hard). And PGP has interfaces with alot of other types of software.
|
|
|
PGP is better for those config/standardisation reasons, but Bitcoin's cryptography is arguably more secure. Awkward situation.
I'm sorry I still don't see how keeping your PGP over the years is easier/more convenient than storing a legacy btc addy for that purpose. It's neither, but both aren't easy for different reasons While your proposal would be a nice to have I don't see any point or reason in forcing people into it.
So the solution is already here. If you are more confident in keeping your PGP, you are already welcome to stake it. If you like BTC legacy more, stick with that.
My thinking is that high rank accounts are actually becoming a little more valuable now that it's more difficult to rank up. You need to put in some real work to do it, people would happily hack an account to cut that out. Imagine if a great poster had their Hero account's password hacked, and they couldn't recover their account because admin wasn't convinced their email wasn't hacked too? Maybe a better idea is only to make keys part of high rank requirements, not to lock existing high rankers out of their accounts or something like that. To rank up, you need to register a key (PGP or Bitcoin), and you drop ranks until you do for existing high ranks.
|
|
|
Using Bitcoin keys is more difficult, you need to get people to use legacy addresses, as there's no message signing standard using segwit addresses. Awkward situation.
And what's the trouble keeping a legacy address? Also it IS possible to sign a message with a segwit address. Difficult, not impossible 1. There's no standard to sign messages using segwit. Bitcointalk software would need to implement different ways of verifying messages for different wallet software 2. People would have to figure out how to switch their wallet to generate legacy addresses, which is different in different wallet software PGP is better for those config/standardisation reasons, but Bitcoin's cryptography is arguably more secure. Awkward situation.
|
|
|
Using Bitcoin keys is more difficult, you need to get people to use legacy addresses, as there's no message signing standard using segwit addresses. Awkward situation.
|
|
|
Re: SHA-1 fingerprints
does this matter for the current PGP use-case on Bitcointalk? The fingerprint need not (and AFAIU is not) be used for account recovery.
|
|
|
this was already suggested by OgNasty to theymos, and theymos thinks PGP keys are insecure and it needs a revision. I’ve long thought there should be a spot for PGP fingerprint.
PGP fingerprints are SHA-1, which is insecure. The OpenPGP standard really needs a complete new revision... hmmm, that means spoofing fingerprints is fairly trivial. Awkward.
|
|
|
Maybe start out saying Legendaries must register PGP keys within a timeout that starts after their most recent login? Then move that requirement down the ranks slowly. It seems like PGP usage is sort of encouraged, but then again there is also a field in Profile Settings for MSN and Skype handles If PGP is needed to recover accounts, why not actually make it a part of the forum? Given that Bitcoin is really a part of a wider push towards personal cryptography as a whole, I'm slightly surprised we're still at the "post your public key in this thread" stage
|
|
|
He doesn't like gold either for that same reason, so it's not that he's specifically anti Bitcoin. What gets him triggered are all the fools here thinking that because of their investment during a bull market they are an expert or pro now.
On the other hand, one could say that if you don't like something, then just ignore it and don't waste time speaking out about it, because it will make you look like an idiot during the next bull run....
I too have heard someone saying that Buffet gets extremely annoyed by Bitcoin investors, maybe he is salty that he missed an opportunity to get giant returns himself, or he just angry that retail investors achieve huge performance without knowing all the secrets of his trade? Either way, I expected more cool from a legend investor like him. No, I think it's more that he understands that fiat disproportionately benefits big market market players like himself. Companies he has stakes in received bailout money in the wake of the 2008 financial crisis, and I expect those same companies as well as his own hedge fund had access to the vast amounts of almost-zero-percent lending that the US central bank has been handing out ever since. If you were the beneficiary of a bank that prints vast amounts of money, then lends it exclusively to big companies while everyone else carries on using the currency those loans are made out in, you'd naturally be against a competitor currency like bitcoin. Big companies spending zero-interest dollar loans on asset booms takes away purchasing power from everyone else. Bitcoin gives everyone that type of opportunity, and undermines the credibility of the central bank currencies that create the asset booms in the first place.
|
|
|
They seem to be counting a coin movement as the same as someone paying or being paid for something with Paypal. Coins move all the time with no intention of paying for anything or having been bought or sold. You don't move your dollars from Paypal account to Paypal account.
I wish they'd give up on these pointless and empty comparisons.
Exactly. The fact that change addresses are so commonly used in bitcoin should be an indicator of how much "duplicate" transaction volume is being accounted for here. But if there's change, then that means it's not someone shuffling money around from one pocket to another, that proves they're paying someone, right? Well, no. It's a well known fact that people try to simulate real commerce by "splitting": sending 1 or more outputs to 2 addresses they control, in order to appear as though someone spent some money and received some change, and so now 2 people own the money that was used as the input to that transaction. There are techniques to analyse this kind of behaviour, but it's all probabilistic stuff. And there are various way to defeat that kind of analysis anyway. So second guessing how the money is being used carries no certainty, as people are already camouflaging 1 form of behaviour as another on the blockchain. Here's a certainty; whatever the reason for the movement, this article claims 1.3 trillion was moved in 2018. And everyone who moved that BTC wanted to pay the fees to move it.
|
|
|
He's...not wrong. Rapid fluctuations are a pain. It's often said that volatility must be addressed for Bitcoin to mature. Some might deny this, but if they're the same people who don't want to spend coins because they're waiting for the price to go up, then they probably have to take a good look at themselves lol.
Bitcoin is in some ways unsuitable as a currency now, but I believe it won't be long until these competitors start shaking in their boots. They can talk trash in the meantime.
But there's an inescapable counter-balance to price volatility; it attracts traders. Which consequently increases market liquidity. Which attracts investors... which causes price volatility. So as you said, Bitcoin is more attractive as an investment asset than a medium of exchange for the majority of users, but only until the market matures. But that's not stopping trade using Bitcoin; there's no reason not to sell as much of your regular fiat income as you can for BTC, then buy as much of your regular purchases using bitcoin. That supports the bitcoin economy, supports market liquidity, and proves these kind of claims from bitcoin's competitors wrong.
|
|
|
For lightning, you use your own keys, on your own wallet, on your own node. You can't get more decentralised than that
It is not truly decentralized when there are so limitations! all cryptocurrencies need keys, wallets and nodes. It's inaccurate to call those "limitations", more like "requirements"
|
|
|
|