Noob node operators - Don't freak out so easy! Patience is the key!
16 sats \ 1 boost \ 4 comments \ @DarthCoin 15 Nov 2021 bitcoin
In the last days, many of new node operators freaked out hearing that some others (in fact only 2-3) got their node funds wiped.
Those affected, did not provide any other circumstances, just bombastic messages. That created a ton of panic in Telegram groups (plebnet, Umbrel, myNode etc).
All this drama created it doesn't make any good.
Solution?
  1. don't panic.
  2. to sleep well tonight just go and change that damn password (why you didn't change until now?) Here, in Umbrel troubleshooting manual I wrote you have all simple steps how to change that damn password and all will be just fine.
How to change Thunderhub hardcoded password
  1. ssh to umbrel
  2. cd /umbrel/umbrel/apps/thunderhub/data/
  3. nano thubConfig.yaml
  4. replace password value on first line. Keep the single quotes ', e.g. masterPassword: my new password CTRL+X - save —> enter to save same file and exit
  5. Uninstall Thunderhub: go to Umbrel dashboard apps, click on top right - edit. Remove TH
  6. and re-install it again (will take that your new password), go to apps store and install it. wait for it to start.
Done. Takes only 2 min. That's it., No more drama. No other crazy shit you need to do (I saw users shutting down nodes, installing crazy scripts to disable Tor), no disable Tor, no remove channels, no shut down node. Nothing. Only these simple steps.
  1. even if you do not change it, if you keep accessing your node from clean PCs/devices and good versions of Tor (official, NOT shity apps that keylog your access/pwd), there's nothing to worry.
Key questions for those that got lost funds:
  • what browser did they used outside their home
  • are they 100% sure their devices were not infected with a malware?
If a burglar have your hose key but doesn't know where is your house, that key is useless. So don't freak out and put the whole town in panic mode just because you think the burglar will enter into your unknown house.
The case that some (very few users) are reporting they lost funds (with no proof until now) I am sure they get sloppy and used infected devices to access their nodes using non-official Tor browsers or they had malware that keylog all their activity.
I saw many users blaming anything else but not their sloppiness. So until they do not prove what they claim (TH / Umbrel/ mynode Tor leak) I would take it with a grain of salt. I worked 25+ years in IT and I know how users are blaming anything else but not their sloppiness... It's a fact.
I would ask all users with Umbrel nodes:
  1. did you read Umbrel "Don't be reckless"" section?
  2. did you took your own security measures to protect your node access? Aka using clean devices to access your node (in house and outside house)
  3. did you change the password (if you felt so unsafe) for TH. The troubleshooting guide was always available to see how to do it. Did you read it?
  4. even if you already did all above, are you sure you never leak yourself that onion address, by using a compromised device (malware, keyloggers etc)?
write
preview
related posts
1 sat \ 0 replies \ @DarthCoin OP 15 Nov 2021
Update from Umbrel https://community.getumbrel.com/t/umbrel-0-4-8-is-out-with-cryptographically-secure-default-app-passwords/4696
reply
0 sats \ 2 replies \ @cozy 16 Nov 2021
I use MyNode (and pay for premium), but it's interesting and worrying to me how quickly Umbrel became sort of the de-facto node software for many users. This is the danger of crowd think. There should be no hierarchy in an open society, which means more people running different node software. Safety in numbers is always a parochial solution to the problem of not having the knowledge to actually /solve/ a problem. In this case the problem is easy node onboarding, and the knowledge needed to solve the problem is avoiding a single point of failure. It's bad for Umbrel business in the short term, but very good for Umbrel business in the long term, to, say, create memes on Twitter that encourage people try different nodes.
reply
0 sats \ 1 reply \ @mf 16 Nov 2021
People will go after the one the provides the best UX. Whether because it's easier to use, or just prettier.
I'm not a node expert myself, but I am also under the impression that Umbrel offers one of the best UX out there.
Completely agree that the different nodes usage should be more homogenous.
Been thinking for a while how to approach this, aka how could I help other node software providers improve their UX and boost their usage.
What makes the different nodes different? Is it the software installed by default? Is there custom software in each of them?
reply
0 sats \ 0 replies \ @cozy 18 Nov 2021
I don't think that's always the case. Sometimes people just go with what they're used to and trust. Like Fax machines in Japan.
reply