pull down to refresh
1 sat \ 4 replies \ @2big2fail 18 Nov 2022 \ parent \ on: Dark-LN Releases Preimage Stealer bitcoin
how often are payees reusing secrets?
Probably not very often. Only likely if they have buggy code or something afaik
reply
Is this an example where I'm at risk?
Let's say I try to withdraw from SN, and the max fee I entered is tow low, so eventually I get a message saying failed "timed out finding route", and to "try increasing max fee".
If I increase the max fee and try again with the same invoice, is my second attempt vulnerable to this preimage stealer?
reply
no i don't believe so as the payment never found a route during the probing process.
if i understand correctly this is related to invoice reuse after a prior successful payment
reply
yes the main concern is someone paying an invoice successfully and then someone (maybe same person or other) paying that invoice again from another wallet.
another concern is if a payment looks stuck and making the payment again on another wallet.
if a payment fails and you make the payment again then you are fine.
there's a wormhole attack here too that users dont need to worry about too much it's mostly a router level attack
reply