|c0rw|away is now known as c0rw1n
|Greed` is now known as Greed
|fanquake has left #bitcoin-wizards
|"If every transaction includes an nLockTime that's the current/next block, its fees can't be claimed without fully catching up to the blockchain. This means that rewinding 10 blocks in order to get all their fees requires re-mining all 10 blocks."
|I don't see how that's any different from the current situation. You can't include tx already in a block anyways.
|topic is: This channel is not about short-term Bitcoin development | http://bitcoin.ninja/ | This channel is logged. | For logs and more information, visit http://bitcoin.ninja
|Users on #bitcoin-wizards: andy-logbot irclouis justanotheruser AaronvanW NewLiberty todaystomorrow Guyver2 jaekwon Meeh hastagg_ eristisk MoALTz  koshii dgenr8 copumpkin heath gnusha kanzure fenn LarsLarsen Aquent ebfull Logicwax jaromil weex helo fluffypony Alanius Greed roconnor DougieBot5000 c0rw1n_ Dr-G moa samson_ kefkius tdlfbx Guest86169 mkarrer_ tromp_ Keefe K1773R Iriez shesek Eliel jrayhawk crescendo mortale waxwing Baz___ PRab lnovy tacotime epscy
|Users on #bitcoin-wizards: Starduster Adlai prepost Luke-Jr coutts Fistful_of_Coins BananaLotus CodeShark DoctorBTC HaltingState maaku Grishnakh iddo null_radix Emcy PaulCapestany Cory eric hollandais warptangent altoz gmaxwell comboy Flyer33 [\\\] nuke1989 bobke_ sneak napedia huseby GnarSith stonecoldpat Anduck johndoe01_ phedny iambernie MRL-Relay berndj phantomcircuit spinza kyletorpey zenojis mmozeiko pi07r btcdrak midnightmagic sl01 nsh wizkid057 Muis Guest1930
|Users on #bitcoin-wizards: arowser go1111111 sipa poggy NikolaiToryzin cfields coryfields Sangheili mappum jbenet kjj21__000 Taek EasyAt Hunger- optimator_ kumavis andytoshi BrainOverfl0w fds4345 gazab bbrittain BigBitz Apocalyptic emsid Starsoccer throughnothing warren gavinandresen dansmith_btc Nightwolf AdrianG mr_burdell zibbo_ tromp SomeoneWeird kgk firepacket Dyaheon myeagleflies wumpus pigeons nanotube asoltys gribble Krellan kinlo a5m0 superobserver artifexd
|Users on #bitcoin-wizards: [d__d] LaptopZZ HM_ espes__ CryptOprah Graet livegnik _2539 hguux petertodd smooth BlueMatt @gwillen michagogo yoleaux amiller btc_ danneu catcow TD-Linux [Tristan] ryan-c roasbeef pajarillo Gnosis ahmed_ so @ChanServ lechuga_ abc56889 harrow
|If anyone else is at IETF this wek and wants to get togeather please feel free to ping.
|K1773R_ is now known as K1773R
|justanotheruser: yeah it doesn't stop the attacker from simply cloning the last 10 blocks, taking all fees. The proposal appears to be a variant of "pay txn fees forward" with some smoothing to discourage sniping.
|stopping rewinding could be done by txns including a hash of the most recently seen block, committing it to that branch. Downside seems to be a re-org means all transactions after the re-org get "orphaned"
|I kind of like that latter solution, as assuming dark hashpower is quite liquid, you'd at least only let that dark hashing power double spend their inputs instead of fee sniping
|* nsh wonders if instgibbs has used another nickname
|kefkius_ is now known as kefkius
|rdponticelli has left #bitcoin-wizards
|instagibbs: "dark hash power" seems like a rather ill defined concept. the way I’ve seen it described is that people have huge farms of obsolete equipment who don’t mine anymore due to it not being profitable, and can suddenly spin it up to attack when there’s an opportunity.
|I take issue with that being particularly probable as it’s normally described. imagine I have my 1% farm sitting around, I see a block that’s got a high fee, I’ve now got to fire up 30 megawatt of hardware and cooling, which is just impossible on a short timeframe.
|what seems more likely is that a large farm alters their behaviour from the network norm to being rational but immoral. i.e., they have no problem aggressively trying to double spend fees, ditching all free transactions and do little tricks like trying to orphan blocks that orphan theirs (I’m surprised big pools don’t do this now, actually, they should be).
|kanzure: somebody should tell the author that BIP32 exists, and that they don't need a RNG on the android device at all past the initial setup.
|OP_NULL: a lot of miner hardware is also such that you can improve efficiency by lowering your hashrate. In such a case I'd expect it to be much smaller of a task to switch the farm to full blast with lower efficiency.
|kanzure: that system is quite cute, but it has different properties than P2SH multisig. I'm not sure people care enough about transaction size to end up using it, most wallets haven't got around to using compressed keys and they've existed for 3 years.
|huh, "First of all, it would be visible on the blockchain that multiple signatures were used"
|for some reason that did not occur to include in my threat models
|seems reasonable enough: it's totally irrelevant if everyone else knows whether or not multiple signatures have to be used to sign, so it's best not to offer that information voluntarily by default
|what effect does exposing that actually have though?
|at the moment there are less multisig p2sh transactions than other types, so at the very least correlation
|nsh: long-time lurker; I post infrequently.
|* nsh nods
|OP_NULL: I think of dark hashing power as any machine which isn't being used actively. Presumably these days it means it's inefficient compared to alternatives, but not necessarily that way in the future
|assuming we approach some $/hash hardware that anyone can get at any amount(100% liquid I suppose), that doesn't mean everyone is going to turn it on at same time
|as long as we put everybody on the same electrical grid, we can inherit some pretty cool security properties about maximum hash power delta
|instagibbs: if I am a "dark" miner who sees a chance of profit, I'm going to want to be getting mining as quickly as possible. your window is going to be quite small.
|OP_NULL: I'm assuming 100% liquidity of miner power, like magic. Clearly not even close to true today
|but let's say we get down to some reasonably small fabrication size
|it'll be a very different story
|this is more long-term though, not relevant today
|commodity mining hardware is fairly scary as a thing, actually. if a lot of people have almost no stake in the network they are mining on, there's a very real chance they'll just sell their hashpower to whoever the highest bidder is.
|im not sure what that does to consensus; people could fire up ASICs, rewrite some history, get fees/whatever. In the presence of interested mining pools, I guess the mining pool would blacklist such a fork
|seems like a MAD situation
|either people don't do it, or consensus will break for a while
|kanzure: good point. 1.5% of all BTC are in P2SH, a lot more than I expected.
|it's interesting that you can see weekends in that graphic.
|last point on long-term mining(been thinking about his for a while): The only slam-dunk scenario where dark hashing isn't too dangerous is people mining at a loss as a given. Mining as -EV game.
|kanzure: it would be nice if they labeled their colors
|c0rw1n_ is now known as c0rw1n