ek/all \ stacker news

Yeah I probably will but maybe the mention regexp on the server didn't register the mention because of the ~ in front and deleted the reminder, let's see lol

0 sats \ 1 reply \ @ek OP 4h \ parent \ on: Can you spot the XSS vulnerability? security

I don't know if you looked up the solution, but you were the first one who posted the exploit code, so I'll also pay you next to #914079

100 sats \ 4 replies \ @ek OP 4h \ parent \ on: Can you spot the XSS vulnerability? security

lol that was indeed the case

but maybe the hard part was to actually exploit it, not just see that it could be exploited

100 sats \ 4 replies \ @ek OP 4h \ on: Can you spot the XSS vulnerability? security

~~@remindme in 1 day to pay out the bounty~~

paid the bounty to #914079

0 sats \ 2 replies \ @ek 4h \ on: A bitcoin experiment bitcoin

every comment should cost 100 sats here

0 sats \ 1 reply \ @ek OP 5h \ parent \ on: Dust Attacks as a Service security

Sorry, been pretty busy, didn't find the time. But this weekend I should have time!

@remindme in 2 days

0 sats \ 0 replies \ @ek 5h \ parent \ on: Bitcoin "Gold 2.0" My Ass. bitcoin

The change starts with us on the internet

0 sats \ 0 replies \ @ek 6h \ parent \ on: Bitcoin Dev mailing list deplatformed from Google Groups bitcoin

It hit you the most because you had the most CCs I guess

270 sats \ 0 replies \ @ek 19h \ parent \ on: Bitcoin Dev mailing list deplatformed from Google Groups bitcoin

From @petertodd:

Strong NACK on nostr. It's a badly designed, centralized, protocol that needs a significant redesign to be usable. While off topic for this mailing list, some of its many issues include:

Reliance on single-key, cryptography that often results in people having their keys compromised. This is a serious problem in the context of bitcoin-dev, where faked messages published could easily have market-moving results.

Inability to mirror relays: since nostr deliberately ignores the lessons of blockchains, there is no way to be sure that you have a complete set of messages from a given person, for a given topic, etc.

Highly centralized design: since mirroring relays isn't reliable, in reality nostr operates in a highly centralized fashion, dependent on a tiny number of relays that can't be easily replaced if taken down.

source

21 sats \ 0 replies \ @ek 21h \ parent \ on: No Password Reset? How Frostr Saves Your Nostr Identity nostr

Woo doggie!

0 sats \ 3 replies \ @ek 2 Apr \ on: Using lightning to prevent spam, DoS and scraping lightning

Disclaimer: I didn't read your link, maybe because you didn't use a link post

If instead of proof of work in your browser, the site requests micro payment via lightning, would that work? [...] some legit users report the proof pf work taking 10 or more minutes on their machines

So you think making legit users pay to read some code on Github is better?

51 sats \ 0 replies \ @ek 2 Apr \ parent \ on: The double post bug?!! meta

that's a different one

55 sats \ 1 reply \ @ek 2 Apr \ on: The double post bug?!! meta

See ticket:

The only way to really eliminate this given the way we rank (denormalized values) is expanding the cursor to encode the items in the list that we already have, so that we can explicitly exclude them on the next page.

So basically, the ranking is different when you press more and the last item on the first page is now the first item on the next page.

144 sats \ 1 reply \ @ek 2 Apr \ parent \ on: Assuming all other needs are met, what do you want to leave the world with? AskSN

You can read this though: #382346

0 sats \ 0 replies \ @ek 2 Apr \ parent \ on: Stacker Saloon

Yes, can recommend

10 sats \ 0 replies \ @ek 2 Apr \ parent \ on: A bitcoin experiment bitcoin

It’s now at #2661

@remindme in 1 day