📅 Original date posted:2017-09-12
📝 Original message:On Mon, Sep 11, 2017 at 07:34:33AM -0400, Alex Morcos wrote:
> I don't think I know the right answer here, but I will point out two things
> that make this a little more complicated.
> 1 - There are lots of altcoin developers and while I'm sure the majority would
> greatly appreciate the disclosure and would behave responsibly with the
> information, I don't know where you draw the line on who you tell and who you
> don't.
If you can't pick even a small group that's trustworthy (top five by
market cap as a start [0]? or just major bitcoin wallets / exchanges /
alt node implementations?), then it still seems better to (eventually)
disclose publically than keep it unrevealed and let it be a potential
advantage for attackers against people who haven't upgraded for other
reasons?
I find it hard to imagine bitcoin's still obscure enough that people
aren't tracking git commit logs to use them as inspiration for attacks
on bitcoin users and businesses; at best I would have thought it'd
only be a few months of development time between a fix being proposed
as a PR or committed to master and black hats having the ability to
exploit it in users who are running older nodes. (Or for that matter,
being able to be exploited by otherwise legitimate bitcoin businesses
with an agenda to push, a strong financial motive behind that agenda,
and a legal team that says they'll get away with it)
> 2- Unlike other software, I'm not sure good security for bitcoin is defined by
> constant upgrading. Obviously upgrading has an important benefit, but one of
> the security considerations for Bitcoin is knowing that your definition of the
> money hasn't changed. Much harder to know that if you change software.
Isn't that just an argument for putting more effort into backporting
fixes/workarounds? (I don't see how you do that without essentially
publically disclosing which patches have a security impact -- "oh,
gosh, this patch gets a backport, I wonder if maybe it has security
implications...")
(In so far as bitcoin is a consensus system, there can sometimes be a
positive network effect, where having other people upgrade can help your
security, even if you don't upgrade; "herd immunity" if you will. That
way a new release going out to other people helps keep you safe, even
while you continue to maintain the same definition of money by not
upgrading at all)
If altcoin maintainers are inconvenienced by tracking bitcoin-core
updates, that would be an argument for them to contribute back to their
upstream to make their own job easier; either helping with backports,
or perhaps contributing to patches like PR#8994 might help.
All of those things seem like they'd help not just altcoins but bitcoin
investors/traders too, so it's not even a trade-off between classes of
bitcoin core users. And if in the end various altcoins aren't able to
keep up with security fixes, that's probably valuable information to
provide to the market...
Cheers,
aj
[0] Roughly: BCash, Litecoin, Dash, BitConnect, ZCash, Dogecoin?
I've no idea which of those might have trustworthy devs to work with,
but surely at least a couple do?
Anthony Towns [ARCHIVE] /
npub17r…x9l2h
2023-06-07 18:05:53
in reply to nevent1q…w30t
Author Public Key
npub17rld56k4365lfphyd8u8kwuejey5xcazdxptserx03wc4jc9g24stx9l2hPublished at
2023-06-07 18:05:53Event JSON
{
"id": "3726257ba8440bfec01913eac41f93eb3bc03156d331b6705c81aa801d433d36",
"pubkey": "f0feda6ad58ea9f486e469f87b3b9996494363a26982b864667c5d8acb0542ab",
"created_at": 1686161153,
"kind": 1,
"tags": [
[
"e",
"b4afe13d9a49e72cfb4be5de80ba8f98e37e048ca18d5270a9c446c7b3e9e69b",
"",
"root"
],
[
"e",
"41eb82cee0b2daa2e6de3ca8d9f97b3d38d3ee0bcccd195b06cf739170c18b6b",
"",
"reply"
],
[
"p",
"f0feda6ad58ea9f486e469f87b3b9996494363a26982b864667c5d8acb0542ab"
]
],
"content": "📅 Original date posted:2017-09-12\n📝 Original message:On Mon, Sep 11, 2017 at 07:34:33AM -0400, Alex Morcos wrote:\n\u003e I don't think I know the right answer here, but I will point out two things\n\u003e that make this a little more complicated.\n\u003e 1 - There are lots of altcoin developers and while I'm sure the majority would\n\u003e greatly appreciate the disclosure and would behave responsibly with the\n\u003e information, I don't know where you draw the line on who you tell and who you\n\u003e don't.\n\nIf you can't pick even a small group that's trustworthy (top five by\nmarket cap as a start [0]? or just major bitcoin wallets / exchanges /\nalt node implementations?), then it still seems better to (eventually)\ndisclose publically than keep it unrevealed and let it be a potential\nadvantage for attackers against people who haven't upgraded for other\nreasons?\n\nI find it hard to imagine bitcoin's still obscure enough that people\naren't tracking git commit logs to use them as inspiration for attacks\non bitcoin users and businesses; at best I would have thought it'd\nonly be a few months of development time between a fix being proposed\nas a PR or committed to master and black hats having the ability to\nexploit it in users who are running older nodes. (Or for that matter,\nbeing able to be exploited by otherwise legitimate bitcoin businesses\nwith an agenda to push, a strong financial motive behind that agenda,\nand a legal team that says they'll get away with it)\n\n\u003e 2- Unlike other software, I'm not sure good security for bitcoin is defined by\n\u003e constant upgrading. Obviously upgrading has an important benefit, but one of\n\u003e the security considerations for Bitcoin is knowing that your definition of the\n\u003e money hasn't changed. Much harder to know that if you change software.\n\nIsn't that just an argument for putting more effort into backporting\nfixes/workarounds? (I don't see how you do that without essentially\npublically disclosing which patches have a security impact -- \"oh,\ngosh, this patch gets a backport, I wonder if maybe it has security\nimplications...\")\n\n(In so far as bitcoin is a consensus system, there can sometimes be a\npositive network effect, where having other people upgrade can help your\nsecurity, even if you don't upgrade; \"herd immunity\" if you will. That\nway a new release going out to other people helps keep you safe, even\nwhile you continue to maintain the same definition of money by not\nupgrading at all)\n\nIf altcoin maintainers are inconvenienced by tracking bitcoin-core\nupdates, that would be an argument for them to contribute back to their\nupstream to make their own job easier; either helping with backports,\nor perhaps contributing to patches like PR#8994 might help.\n\nAll of those things seem like they'd help not just altcoins but bitcoin\ninvestors/traders too, so it's not even a trade-off between classes of\nbitcoin core users. And if in the end various altcoins aren't able to\nkeep up with security fixes, that's probably valuable information to\nprovide to the market...\n\nCheers,\naj\n\n[0] Roughly: BCash, Litecoin, Dash, BitConnect, ZCash, Dogecoin?\n I've no idea which of those might have trustworthy devs to work with,\n but surely at least a couple do?",
"sig": "7f04f332aa20502fea96564f86165aea91872d187c9a1446ce2346fd36fe8a8e8cfdedd677e084386c575694b837dc8da185235d54fa9c4a2ac1791194963f4b"
}