Oddbean new post about | logout
Luke Dashjr | 11 months ago (raw) | root | parent | reply | flag +2 
 The CVE is for the vulnerability enabling Inscriptions to bypass node policy (regardless of what it's set to).

There should be no reason to be angry. It's just the normal procedure for security issues
rieger_san | 11 months ago (raw) | root | parent | reply | flag +8 
 It‘s not a vulnerability nor a security issue! It’s just a use case you don’t like. That’s all, don’t pretend otherwise! 

Don’t get me wrong, I also think that inscriptions are useless, but the difference is that I don’t tell people how to use bitcoin.
leohaf | 11 months ago (raw) | root | parent | reply | flag +3 
 It’s been years since Bitcoin Core filters prevented the appearance of abuse similar to inscription, and yet I haven’t seen a single person complain about it.

https://x.com/giacomozucco/status/1735150513203593576?s=20
Luke Dashjr | 11 months ago (raw) | root | parent | reply | flag +4 
 Learn to read. Or code. Or whatever it is impacting your ability to understand that this IS a vulnerability.
bitcoin.rocks | 11 months ago (raw) | root | parent | reply | flag +4 
 Only in your world Luke
Rich Nost | 11 months ago (raw) | root | parent | reply | flag +1 
 Luke has HAD IT

nostr:nevent1qqspw8s8ln6j88m4llvjd7ghjxhkevwekev8cpddnzzl6tm3agamtngpvemhxue69uhkv6tvw3jhytnwdaehgu3wwa5kuef0dec82c330fmnwen5ddn8qet6d468jmfcdcex5vnxwehxgvrnd46ku7n5dsuhq7t209enqencv3ckuefs8pm8zveexaen27tkwp6n20mzwfhkzerrv9ehg0t5wf6k2q3qlh273a4wpkup00stw8dzqjvvrqrfdrv2v3v4t8pynuezlfe5vjnsxpqqqqqqzrv9tp8
nostrnaut | 11 months ago (raw) | root | parent | reply | flag +3 
 winning hearts and minds I see, Luke

you must be a real hoot at parties
OceanSlim | 11 months ago (raw) | root | parent | reply | flag 
 Can I ask for clarification for what Core is vulnerable to? What are the ramifications for never fixing this vulnerability?
Dan | 11 months ago (raw) | root | parent | reply | flag 
 Bypass of datacarriersize limit using OP_FALSE,OP_IF

Ramifications are that datacarriersize, an important node policy parameter, is bypassable. I.e. a bug that makes an option in core not behave as intended. 

https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2023-50428
OceanSlim | 11 months ago (raw) | root | parent | reply | flag 
 Is being bypassable is not intended? What does the fix entail? Is there a PR?
rieger_san | 11 months ago (raw) | root | parent | reply | flag 
 I can read and I can code. That’s why I can say without doubts that inscriptions is not a vulnerability.
Luke Dashjr | 11 months ago (raw) | root | parent | reply | flag +1 
 That's not a possible conclusion, so either you can't or haven't or are simply lying
rieger_san | 11 months ago (raw) | root | parent | reply | flag 
 😂😂😂 It's funny that you think you can tell me what I have to think or how I have to use Bitcoin. What a fucking hubris!
RealJohnDoe | 11 months ago (raw) | root | parent | reply | flag 
 $boost

You just don't know what you're talking about. Allowing anyone to insert that much malicious code is a vulnerability. Whether jpegs or something more malicious.

In his heyday John McAfee would have a ball with this. Exposing privacy and damaging security lol. You don't have a clue what the shadowy "supercoders" can do.

And we absolutely do have a say, and an obligation as to what people do with Bitcoin. Not your keys, not your Bitcoin. Not your protocol, not your Bitcoin..😐
PrismPosts | 11 months ago (raw) | root | parent | reply | flag 
 @boardwalk recieved your request!
Your prism will be created after 10 reposts or in 12 hours.
PrismPosts | 11 months ago (raw) | root | parent | reply | flag 
 Your note was not reposted by any nostriches so we did not create a prism for you.

nostr:nevent1qqsf0vfkn9ld58fp9su6ucc66hfpsm0923hrz3ee5dq3us23ajnweac0x9nnf