azalty

joined 1 year ago
sorted by: new top controversial old
Passwords have problems, but passkeys have more in c/technology@lemmy.world
[–] azalty@jlai.lu 1 points 4 days ago

😵 some people just don’t care

It’s their job though, not their personal life, so they might care less

Passwords have problems, but passkeys have more in c/technology@lemmy.world
[–] azalty@jlai.lu 2 points 4 days ago* (last edited 4 days ago) (3 children)

I imagine you keep your password manager unlocked, or as not requiring 2FA on trusted devices then? Re entering 2FA each session is annoying

You still have the treat of viruses or similar. If someone gets access on your device while the password manager is unlocked (ex: some trojan on your computer), you’re completely cooked. If anything it makes it worse than not having 2FA at all.

If you can access your password manager without using 2FA on your phone and have the built in phone biometrics to open it like phone pin, finger or face, someone stealing your phone can do some damage. (Well, the same stands for a regular 2FA app, but meh, I just don’t see an improvement)

Passwords have problems, but passkeys have more in c/technology@lemmy.world
[–] azalty@jlai.lu 30 points 5 days ago (12 children)

I have never understood the goal of passkeys. Skipping 2FA seems like a security issue and storing passkeys in my password manager is like storing 2FA keys on it: the whole point is that I should check on 2 devices, and my phone is probably the most secure of them all.

What's your worst "I sent a text to the wrong person" moment? in c/asklemmy@lemmy.ml
What's your worst "I sent a text to the wrong person" moment? in c/asklemmy@lemmy.ml
[–] azalty@jlai.lu 4 points 1 week ago (2 children)

I didn’t get it 🤔

What's your worst "I sent a text to the wrong person" moment? in c/asklemmy@lemmy.ml
[–] azalty@jlai.lu 2 points 1 week ago

That’s… pretty funny actually x)

Sorry for u my dude

I don't churn monero. It's easier when you just use it how it works. in c/monero@monero.town
[–] azalty@jlai.lu 2 points 1 week ago* (last edited 1 week ago) (1 children)

The protocol doesn’t try to use each output 16 times actually, that could be pretty nice I guess. I was just saying that statistically, you should get an average of 16 times because, well, the ring size is 16. The actual may vary quite a bit, and your output might potentially never be featured as a decoy, or featured 100+ times. It isn’t likely though. I just used 16 because it is simpler this way.

I never watched the breaking Monero series, I should take the time to do it

And yea, really excited for FCMP++ as well :) - most chain analysis stuff will go bye bye

I don't churn monero. It's easier when you just use it how it works. in c/monero@monero.town
[–] azalty@jlai.lu 3 points 1 week ago

For real

OP is literally churning, just to a different wallet if his.

If transactions aren’t completely swept and they keep a non-zero change output, it makes things worse

Churning is fine if you have coin control and keep note of your outputs

Different wallets are fine if you manage to keep track of everything and properly sweep outputs. Avoid spending multiple churned outputs together if you can to prevent linking them together, but apart from that, it’s good.

How Monero Users Get Traced (RUN YOUR OWN NODE!) in c/monero@monero.town
[–] azalty@jlai.lu 1 points 1 week ago

I was really happy this topic was discussed. Decoys being chosen by the remote node is a real threat. IPs are discussed but any individual willing to hide their identity will either go through tor or a VPN that claims no logs are stored

If you use your XMR on something with your mail on it, with any personal info linked or with a CEX, you’re cooked

I don't churn monero. It's easier when you just use it how it works. in c/monero@monero.town
[–] azalty@jlai.lu 2 points 1 week ago* (last edited 1 week ago) (3 children)

You're right and wrong. Churning will reduce the traces linking back to you, but you’re still exposed at 1 churn per output, when including 10 outputs. You would even be exposed when spending 2 outputs from the same source

As you know, each ring currently has 16 transactions, including you. This means, on average (more or less because of other factors, but still), each output will be featured in 16 transactions. We can therefore assume that 1 in 16 of those transactions is real (in reality the distribution is not that perfect, but as an average, it is important to know the consequences).

You now have a 1 in 16 chance of being traced. Statistically, the transaction you made has 6,25% chance of being made by you. That’s pretty high for a single poisoned output, right?

Now imagine you spend 2 poisoned outputs… the distribution algorithm is not evenly distributed: older outputs are less likely to be picked than newer. This means you get a situation where the older your 2nd poisoned output is, the more you’ll stand out. The math is not that easy the make, but just knowing that each output will only be included 16 times on average, and that there are a lot of transactions so a lot of outputs, it becomes really unlikely that 2 of the poisoned outputs that are linked to the same individual end up in the same transaction if it was not made by the individual of question itself.

With 3+ poisoned outputs you basically confirm that it was the same person. Might not hold up in court, but they’ll definitely know

10+ poisoned outputs? Definitely you.

Churning each output only multiplies the number of possibilities by 32 (16 for one output, 32 in reality because 2 outputs are generated). This will certainly throw off the basic chain analysis methods, but if you’re a person of interest, all the linked outputs will be analyzed. All outputs that are created by including poisoned inputs might be considered, effectively multiplying the number of possibilities by 32 as said earlier. If I tried to spy on someone with this, I would probably set a higher suspicion level on the first transaction level, then less on the second… assuming chain analysis software does that as well, churning would actually divide the chances of being caught by more than 32 but lets assume they don’t do that as it’ll be easier. You now have 1 chance on 16^2=256 so 0,39% chance of having done a transaction with a churned output in between for a single poisoned output. Still pretty high if you want my opinion. If you do that multiple times, you’ll stand out for sure. Including multiple outputs will also expose you a lot. Spending 10 churned poisoned outputs will definitely expose you.

I should just make a blockchain analysis program and test transactions with it 😂

My recommendation: if you’re going to spend multiple poisoned outputs at once: churn them together into 1 output (it’s called sweeping afaik), then churn this individual output. The initial churn merge will make the transaction stand out, but since you only have one output to churn, you reduce the traces.

Please correct me if I’m wrong, I have put a lot of time thinking about all of this but I might have forgot to include some specific things. I already noticed that all transactions include 2 outputs (at least), so the possibilities are multiplied by 32, not 16 as was my initial assumption

Kraken is delisting Monero in the EEA (Europe) in c/monero@monero.town
[–] azalty@jlai.lu 3 points 2 weeks ago

Woops I omitted this crucial information from the title, fixed. Sorry for that.

36
Kraken is delisting Monero in the EEA (Europe) (jlai.lu)
submitted 2 weeks ago* (last edited 2 weeks ago) by azalty@jlai.lu to c/monero@monero.town
19 comments fedilink
 

Sent by email :

Kraken continuously reviews listed tokens to determine the impact from regulatory changes on our offerings.

As one of the world’s largest cryptocurrency platforms, we are constantly working to support the most comprehensive set of digital assets possible in alignment with applicable regulatory and compliance obligations.

What’s changing?

After thorough consideration, and exploration of all viable alternatives, we concluded we have no choice but to delist Monero (XMR) in the European Economic Area (EEA) due to regulatory changes.

We did not take this decision lightly and remain committed to providing our European clients with an exceptional trading experience.

What’s next?

  • On October 31st 2024 at 15:00 PM UTC, we will halt trading and deposits of all XMR markets (XMR/USD, XMR/EUR, XMR/BTC, XMR/USDT) for clients registered in the EEA. Any open XMR orders will also be automatically closed at this time. Note: Clients will remain able to withdraw XMR on Kraken until December 31st, 2024.
  • December 31st 2024 at 15:00 PM UTC is the deadline for withdrawing XMR. Any clients still holding an XMR balance after this date will have their XMR automatically converted to BTC by Kraken at the going market rate.
  • By January 6th 2025 23:59 PM UTC, we will distribute the converted XMR as BTC back to any clients who held XMR at the withdrawal deadline.

Any clients who hold an XMR balance at the time of the withdrawal deadline will be automatically included in the conversion of XMR to BTC.

As a leading cryptocurrency exchange, Kraken remains mission-driven and committed to supporting the most comprehensive set of digital assets possible, in alignment with our regulatory and compliance obligations.

We appreciate your understanding and ongoing support as we navigate the evolving regulatory landscape.

Link found on r/Monero - posted by u/MoneroFox : https://support.kraken.com/hc/en-us/articles/support-for-monero-xmr-in-europe

I Need Help Acquiring Monero\XMR For Cheap While using Apps in c/monero@monero.town
[–] azalty@jlai.lu 1 points 1 month ago* (last edited 1 month ago) (1 children)

Kraken is nice. You can get XMR directly if it’s available in your country, and you’ll have less withdrawal fees. Else, kraken charges about 0,20€ (equivalent in crypto) for withdrawal fees iirc

25
Proton mail coupon: 1st month of Mail Plus at 1$/€ (jlai.lu)
submitted 2 months ago* (last edited 2 months ago) by azalty@jlai.lu to c/protonprivacy@lemmy.world
0 comments fedilink
 

Here's the coupon: MAILPLUSINTROACQ

Only applies for the first month of Mail Plus, for the monthly subscription

Got this coupon from their Brave marketing campaign

Here is the link for the official campaign: https://proton.me/l/mail-intro-offer (only works if you create a new account, but you can use the coupon I provided and I believe it should work for existing accounts)

8
Recent sync deletions feature can make you lose a conversation (jlai.lu)
 

Just a little post to make you aware that a recent update that allowed synchronized deletion of messages between devices (ex: deleting a message for yourself only on your computer will delete it on your phone as well) also applies to the feature to completely delete a conversation.

This previously didn’t happen and is a bit annoying as I just accidentally deleted a few conversations from both my phone and computer because I was used to deleting conversations on my computer (as they’re pretty much stored unencrypted and I don’t like it)

So sadly I thought this change wouldn’t affect this feature but it did, so that’s annoying, I just lost a ton of messages and media

14
Apps to track which movies / series I watched (JustWatch, ...) (jlai.lu)
 

I would like to know if any of you use an app or website/service to track your progress in series, or which movies you’ve seen.

The platform should also indicate where (streaming services) the movie/series is available

I’m currently using Justwatch but they probably sell a lot of user data, and some of the availability infos for some shows is wrong, and after contacting them to report this, they were of no help and didn’t understand what I asked. Seems like they only check the US catalog of the streaming services and don’t report it country per country, which is preferable.

16
Pixeldrain (filesharing website) now accepts Monero! (jlai.lu)
 

Just a little announcement to say that Pixeldrain (a file sharing website) now accepts Monero for its prepaid subscription option. Minimum deposit is $10.

I’m not paid or anything, it’s just a website that I like that is developed by a solo developer (+ they open sourced a big part of the website). After begging for some time they accepted and added Monero to their BTCPay server.

Link: https://pixeldrain.com/

1
Serveur Mastodon français sans censure politique (jlai.lu)
 

Quelqu'un pourrait me conseiller un bon serveur Mastodon français ou francophone sans censure politique orientée ?

De mon expérience, les instances qui disent que seules les fausses infos et les discriminations sont bannies ont tout de même tendance à censurer certaines opinions. Le plus visé est évidemment les propos d'extrême droite, mais j'ai aussi trouvé des cas censurant toutes les opinions de droite ou d'extrême gauche.

Ma liste des serveurs qui semblent ou sont politiquement orientés et/ou pratiquent une censure politique et selon moi injuste sur certains sujets :

  • piaille.fr
    • Raison: "Est interdit toute tentative de retournement d’une oppression systémique. Par exemple : « racisme anti-blanc », « sexisme anti-homme », « hétérophobie », « cisphobie »."
  • rivals.space
    • Raison: J'ai été banni de l'instance et de leur discord lorsque j'ai demandé des explications. Mon post n'était pas spécialement orienté. Je peux fournir plus d'infos si nécessaire. Visiblement ne pas être d'accord avec des anti-capitalistes est interdit.
  • h4.io
    • Raison: "Les tentatives de retournement d'oppressions systémiques ("racisme anti-blanc, sexisme anti-homme, hétérophobie, cisphobie, etc) sont proscrites."
  • mastoot.fr
    • Raison: Toutes les idées de droite sont interdites. A éviter. ("Pas de diffusion des idées/propagande d’extrême droite, des droites et LReM")
  • tooter.social
    • Raison: "Pas de diffusion des idées d’extrême droite"
  • toot.aquilenet.fr
    • Raison: "Les propos, écrits, idées d'extrême-droite prônant l'intolérance ne sont pas bienvenu⋅es. Il en va de même pour le confusionnisme." -> en soit rien de perturbant, mais ça laisse penser que la modération est orientée, et que la censure est très fortement possible.
    • "Pas de prosélytisme, sous quelque forme qu'il soit." -> peut laisser penser qu'il y aura une censure sur les débats et discussion religieuses, spécifiquement sur les pro-religion.
  • mastodon.zaclys.com
    • Raison: "Sexe, violence, extrémismes en tous genres, et trolls ne sont pas les bienvenus"
  • tooting.ch
    • Raison: Certaines règles peuvent laisser penser à une censure de certaines opinions politique, à voir.
  • travelpandas.fr
    • Raison: "Pas de propagande" -> au sens strict ou large ? Tout embellissement ou avis positif envers un/des sujets politiques peut-il être considéré comme propagande et donc être censuré ?
  • tchafia.be
    • Raison: "Est interdit toute tentative de retournement d’une oppression systémique. Par exemple : « racisme anti-blanc », « sexisme anti-homme », « hétérophobie », « cisphobie »."

On a donc 10 sur 13 serveurs français dans la catégorie "Général" sur https://joinmastodon.org/fr/servers qui sont dans cette liste. Je trouve ça plutôt alarmant.

view more: next ›