Worse than ordinals - Signing Bare MULTISIG input \ stacker news ~bitcoin

pull down to refresh

This article is a detailed description of how bare MULTISIG output works in bitcoin transactions and the step-by-step algorithm for signing this type of output inside transaction input. In the enclosed part is an example of a signing bare MULTISIG input using the Python.

[ 2023 ]

https://image.nostr.build/68b8c7cf5549e767c172f0e4dc074b3e52831faad1c27aec12b6077b169732bd.jpg#m=image%2Fjpeg&dim=1080x1857&blurhash=%5D69j4Z7z%2BuRjELui%7DtI%3As.rrO%3D-9NvxaxGz%3AI%3A%251t7bbIUt7xZV%40ofVZo%23xZV%3Foe9%5B-AW%3DRkxGnMWAt7j%5DbIogjaoeoJfk&x=5bf1c363d96f827c764da403c007e26f4aa9cf821830449c72dade49b9bc29df

view all related items

171 sats \ 1 reply \ @0260378aef 15 Dec 2023

The problem is not only bare multisig.

If you banned bare multisig, they can do the same with hash values. In both cases (a EC pubkey, a hash function output, there is no structure you can enforce [*], and no way for you to know if the creator has a preimage for what they're publishing. So they can embed data in it.

It's pretty strange how many otherwise very technically knowledgeable people think that we can stop this with some new standardness rule or whatever. We basically can't, unless we do something very drastic to what Bitcoin even is. (Demurrage? )

[*] Apart from the fact that only approx 50% of random 256 bit strings are valid x-coords on the curve, for the former

8 sats \ 0 replies \ @0260378aef 15 Dec 2023

I guess I should clarify that it's not like there's zero "value" in using bare multisig vs say data embedded in a pubkey-hash standard output here. There's some few bytes of savings by using one output instead of multiple; and from the point of view of coding some jpeg-tracking thing it's always easier to track one output instead of many.

But just talking in general, at the highest level, you can't stop this by disabling one output type

167 sats \ 1 reply \ @richnost 15 Dec 2023

If you want to configure your node to stop the propagation of these transactions to other nodes, set this to 0:

https://m.stacker.news/8178

21 sats \ 0 replies \ @BITC0IN 15 Dec 2023

ie open your bitcoin.conf file, type in

permitbaremultisig=0

save the file restart core.

12 sats \ 0 replies \ @WeAreAllSatoshi 15 Dec 2023

It’s bold to state this is the worst case scenario. Things can always get worse…

5 sats \ 0 replies \ @WeAreAllSatoshi 15 Dec 2023

I guess this is why my miner is getting more sats than usual

41 sats \ 5 replies \ @WeAreAllSatoshi 15 Dec 2023

I know it’s viewed as a spam attack, but it does clog up the mempool and prevent people from making on-chain transactions at a reasonable fee.

In theory, the attackers will run out of funds eventually and it will stop. But here’s a thought I had: yes you can’t just print Bitcoin like you print fiat. But you can buy Bitcoin with printed fiat in various ways, giving you more Bitcoin to fund these attacks. It can’t go on forever, given the hard cap of supply, the fact that buying pressure would raise the fiat price, etc. but it can certainly drive normies to L2 by making on-chain prohibitive.

Just my 2 sats

423 sats \ 1 reply \ @030a29f333 15 Dec 2023

Been thinking about this a lot in the last few weeks. While it can't go on forever, "spam" like this could certainly last long enough to make things difficult. On the bright side tho, I think this is where builders really earn their market share. The best tools and solutions arise out of necessity, not convenience.

0 sats \ 0 replies \ @WeAreAllSatoshi 15 Dec 2023

I agree completely!

42 sats \ 2 replies \ @itsrealfake 15 Dec 2023 freebie

But you can buy Bitcoin with printed fiat in various ways, giving you more Bitcoin to fund these attacks.

yep.

plebs are a particular, if loose-knit, group of bitcoiners. and it's important for plebs not to get their ranks (as in rank & file) forked by chaotic shit like this. stay level headed. don't accept bullshit code changes from the core devs.

we can pay attention, keep (and revisit regularly) a journal, and leverage the tools we have already: community, communications (stacker news, the telegram channels, nostr, matrix, etc...) & our mempools

there was a massive spam attack (& hard fork discussion) which preceded the last halvening. the spam stopped almost immediately after the halvening.

i'm anticipating some news that encourages a fast change UASF or hard-fork, and I already don't want to participate.

1 sat \ 1 reply \ @030a29f333 15 Dec 2023

there was a massive spam attack (& hard fork discussion) which preceded the last halvening. the spam stopped almost immediately after the halvening.

Honestly didn't know this, shows you how long I've been around lol

i'm anticipating some news that encourages a fast change UASF or hard-fork, and I already don't want to participate.

Certainly feels like that's where it's going

0 sats \ 0 replies \ @itsrealfake 15 Dec 2023

how long I've been around

welcome_to_the_party_pal.gif

remain calm... i think that's gonna be my mantra for 2024.

10 sats \ 0 replies \ @antic 15 Dec 2023

“Forever” seems a little dramatic. Worst case, wouldn’t pruned node software just maintain a bad list to purge?

Doesn’t this ultimately just lead to some minor software improvements while costing the griever funds to attack?

105 sats \ 0 replies \ @clr 15 Dec 2023

Why do people keep saying this is worse? At least they are showing their true colors; they don't have to pretend anymore that ordinals are "good for bitcoin" or "artful" or whatever BS. Of course, the attackers would be better off keeping their bitcoin instead of wasting it like this, but apparently they have decided to die killing.

We are in the "then they attack you" phase. This is just the beginning. Expect worse attacks coming.

0 sats \ 0 replies \ @OT 15 Dec 2023

Do they still have to pay for all that bloat?

0 sats \ 0 replies \ @satsbridge 15 Dec 2023

Blockchain animal spirits.

0 sats \ 1 reply \ @south_korea_ln 15 Dec 2023

mikeinspace is a moron

100 sats \ 0 replies \ @richnost 15 Dec 2023

Always has been. This clown was always just part of the illogically contrarian troll crowd.

0 sats \ 6 replies \ @orthwyrm 15 Dec 2023

One thing I'm not clear on: Is there any economic incentive behind this behavior (such as being used to mint BRC-20s and NFTs)? Or is it simply an expensive troll?

100 sats \ 4 replies \ @0xbitcoiner OP 15 Dec 2023

from what I've read and if I haven't misunderstood, it's a spam expensive troll

0 sats \ 3 replies \ @iguano 15 Dec 2023

Thanks for bringing this discussion, I would like to understand better too.

50 sats \ 2 replies \ @Zepasta 15 Dec 2023

deleted by author

0 sats \ 1 reply \ @iguano 15 Dec 2023

Taking a look, thanks

1 sat \ 0 replies \ @0xbitcoiner OP 15 Dec 2023

Bare Multisig Outputs - What's Going On ? => #352806

2 sats \ 0 replies \ @richnost 15 Dec 2023

Economic incentive? You can convince data-hoarding OCD morons that the UTXO set is more "permanent" than any witness data that can get pruned.

Exploring Bitcoin: signing bare MULTISIG input [2018]

[ 2023 ]