📅 Original date posted:2018-07-04
📝 Original message:you cannot specifically NOT support addrss reuse. on a blockchain where people can send you funds without your permission required to send you funds. so ALWAYS expect multiple payments to the same address
________________________________
From: bitcoin-dev-bounces at lists.linuxfoundation.org <bitcoin-dev-bounces at lists.linuxfoundation.org> on behalf of Luke Dashjr via bitcoin-dev <bitcoin-dev at lists.linuxfoundation.org>
Sent: 03 July 2018 12:13:44
To: lightning-dev at lists.linuxfoundation.org
Cc: Bitcoin Protocol Discussion
Subject: Re: [bitcoin-dev] [Lightning-dev] BIP sighash_noinput
On Monday 02 July 2018 18:11:54 Gregory Maxwell wrote:
> I know it seems kind of silly, but I think it's somewhat important
> that the formal name of this flag is something like
> "SIGHASH_REPLAY_VULNERABLE" or likewise or at least
> "SIGHASH_WEAK_REPLAYABLE". This is because noinput is materially
> insecure for traditional applications where a third party might pay to
> an address a second time, and should only be used in special protocols
> which make that kind of mistake unlikely.
I don't agree. Address reuse is undefined behaviour. Nobody should assume it
is safe or works.
I intend to possibly use SIGHASH_NOINPUT for ordinary Bitcoin transactions in
a wallet I am writing, which explicitly does not support address reuse.
Luke
_______________________________________________
bitcoin-dev mailing list
bitcoin-dev at lists.linuxfoundation.org
https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20180704/a9830de3/attachment.html>;
fred savage [ARCHIVE] /
npub1d8…rr83s
2023-06-07 18:13:26
in reply to nevent1q…0h3j
Author Public Key
npub1d89lpeklcacchd9xrqx58x8zz7ep340q6gkdns22c3sc7apkv4xsqrr83sSeen on
wss://relay.nostr.bandPublished at
2023-06-07 18:13:26Event JSON
{
"id": "f465c39fc8753c0ed6094d0ee168121e12e74565bc9146fd64626a480b568692",
"pubkey": "69cbf0e6dfc7718bb4a6180d4398e217b218d5e0d22cd9c14ac4618f7436654d",
"created_at": 1686161606,
"kind": 1,
"tags": [
[
"e",
"9cfe46432c0fa07c164110c1acad44ea6d9df7a15d9bc858d6a0b516a4683320",
"",
"root"
],
[
"e",
"39f13e173977af080256c2b683555f73d4e9a499b11ac25c04675cc7544d4594",
"",
"reply"
],
[
"p",
"5a6d1f44482b67b5b0d30cc1e829b66a251f0dc99448377dbe3c5e0faf6c3803"
]
],
"content": "📅 Original date posted:2018-07-04\n📝 Original message:you cannot specifically NOT support addrss reuse. on a blockchain where people can send you funds without your permission required to send you funds. so ALWAYS expect multiple payments to the same address\n\n________________________________\nFrom: bitcoin-dev-bounces at lists.linuxfoundation.org \u003cbitcoin-dev-bounces at lists.linuxfoundation.org\u003e on behalf of Luke Dashjr via bitcoin-dev \u003cbitcoin-dev at lists.linuxfoundation.org\u003e\nSent: 03 July 2018 12:13:44\nTo: lightning-dev at lists.linuxfoundation.org\nCc: Bitcoin Protocol Discussion\nSubject: Re: [bitcoin-dev] [Lightning-dev] BIP sighash_noinput\n\nOn Monday 02 July 2018 18:11:54 Gregory Maxwell wrote:\n\u003e I know it seems kind of silly, but I think it's somewhat important\n\u003e that the formal name of this flag is something like\n\u003e \"SIGHASH_REPLAY_VULNERABLE\" or likewise or at least\n\u003e \"SIGHASH_WEAK_REPLAYABLE\". This is because noinput is materially\n\u003e insecure for traditional applications where a third party might pay to\n\u003e an address a second time, and should only be used in special protocols\n\u003e which make that kind of mistake unlikely.\n\nI don't agree. Address reuse is undefined behaviour. Nobody should assume it\nis safe or works.\n\nI intend to possibly use SIGHASH_NOINPUT for ordinary Bitcoin transactions in\na wallet I am writing, which explicitly does not support address reuse.\n\nLuke\n_______________________________________________\nbitcoin-dev mailing list\nbitcoin-dev at lists.linuxfoundation.org\nhttps://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20180704/a9830de3/attachment.html\u003e",
"sig": "4f4be78b984524c5bdcd5f202fddc68431ab5a210b51684baa6be493f5a6e33af1ada2a668070c8cb64bf38438d9059ca46db10a3d13bc7919da1548af4e9bcf"
}