Zero-Knowledge Goof

🚨Amid Israel’s ongoing genocidal war on Gaza, children in Southern Gaza Strip are turning to music to cope with the trauma. A newly formed girls’ choir is singing among the ruins, using their voices as a small act of hope and resilience in the face of a war that has not stopped

@D3Shabat @brucefenton @politicalmath >correct the someone’s description of a situation X >“soooo what you’re saying is you support Y ”

@brucefenton @politicalmath So what you're saying is you support people attacking mosques because of the ongoing genocide in the middle east and Africa they're committing against indigenous peoples and Christians?

Imagine if a man attacked a black church, specifically targeting black children, because a black man killed his daughter. Imagine if someone told you "that's not racism, that's blowback" idk, that would seem like a weird take to me bc it's saying that the killer is not a someone with agency. Because, wink wink, of course the killer would target black children. That's just the natural inclination of people "like that". You know. *Those* people. You just have to expect this kind of behavior from them.

@answrguy @murchandamus I accept with your correction and still think the analogy has weigh. OP’s “conclusion first then find evidence” is analogously deductive and inductive is the reverse. But the trick is to go back and forth between both approaches.

@LLFOURN @murchandamus No. The foregoing does NOT describe the distinction between deductive and inductive modes of reasoning. In deduction we hypothesize a mechanism (mathematical or algorithmic model) and predict values for future incidence. For inductive reasoning we're fitting data …

Critical thinking: find evidence ↦ draw conclusion. Conspiracy thinking: draw conclusion ↦ find evidence. –via reddit’s sandwiches_are_real

@Bitcoin_Woods Yup! github.com/frostsnap/fros…

@LLFOURN This is an interesting way to multisig. I like it! Everything open source?

And just like that your bitcoin is no longer stored in your house, there's no descriptor backup you can lose and anyone with 2-of-3 devices can restore the funds. Once you obtain this level of peace of mind you can never go back.

@murchandamus The problem conspiracy theorists have (when they are wrong) is they put a lot of effort to find evidence to support their theory rather than falsify it.

@murchandamus This is just deductive vs inductive reasoning. You need both. Critical thinking dialectic between both modes of inquiry. You build up a hypothesis and then try to find evidence to falsify it. Then you adjust or construct a new hypothesis and rinse and repeat.

I've done around 1,500 interviews over the years. This was by far the most moving moment of any, it was a moment which will live with me for a long time and I thank @firasmodad for his thoughts.

@4moonsettler @stephanlivera @Truthcoin @niftynei Is it actually? Lmao

@LLFOURN @stephanlivera @Truthcoin @niftynei 0.2%

Nice, this is great There will finally be accountability when 110 fails consensus.health

@4moonsettler @stephanlivera @Truthcoin @niftynei Would still like an answer on this one

@stephanlivera @Truthcoin @LLFOURN @niftynei x.com/LLFOURN/status… yeah. seems like it.

In Australia we have developed the concept of "pre-war" petrol. We feel ripped off if you sell us the "pre-war" petrol at the "post-war" prices. Please understand and respect our culture if you visit.

It was never about the situation It was about the monitoring we did along the way

A new crates.io release fixes the problem and the bad one is yanked.

Post-mortem: The RFC 9381 VRF was a bit of a side quest for me. I didn't like the RFC's overly involved domain separation so I developed a simpler VRF for use in Frostsnap with a simple try and increment hash-to-curve . But since I had most of the moving parts to finish the RFC version I thought "why not get claude to implement the RFC version while I'm at it" — and I did, without reviewing it properly. What it did wrong: The RFC required a custom protocol transcript to match its idiosyncratic hashing. The existing sigma_fun framework had a correct HashTranscript that folds the VRF input into nonce derivation but the RFC impl needed to override this with a custom one. The custom one was very very wrong but it compiled. I was under a false impression that sigma_fun API was hard to get wrong so wasn't looking too carefully. Lessons: - sigma_fun lets you implement a custom transcript with no guardrail forcing statement inclusion in nonce generation. I'll think about how to redesign this. - LLMs let you reach for completeness and increase API surface area that a human would not would not attempt. Try not to get carried away implementing all your dream features unless you intend to manually review them! The fix: github.com/LLFourn/secp25… Thanks again to @zksecurityXYZ

🎉🐛 Critical security vulnerability in my `vrf_fun` crate by Mathias Hall-Andersen from @zksecurityXYZ ! He found a nonce reuse bug in vrf_fun's RFC 9381 VRF — full key recovery from two proofs. As far as we know nobody uses the faulty implementation and I never intended to use it myself — but I *did* release it on crates.io 🤦 so I've paid out a 1M sat bounty. Brief Post-mortem below 👇. tl;dr I was high on Claude Opus 4.1 and on a roll implementing things never got around to reviewing.

It is relatively easy to implement these things correctly if you don't vibe code the shit out of them and do basic review. The reason the fiat-shamir bugs are easy to find is because it's so easy to implement it correctly that when you don't you can see it. Schnorr signatures are a fiat shamir ZK system!

And this, boys and girls, is why we should not be rushing to add things to Bitcoin like ZK systems or new cryptography without giving time for new systems to mature. Both implementations, and underlying assumptions in general.

Users can now protect their Liquid Bitcoin and issued assets against future quantum computer attacks. @blksresearch has deployed post-quantum signature verification on the @Liquid_BTC Network using Simplicity - a first on a production Bitcoin sidechain. Opt-in quantum protection, available today. No consensus changes required.

“To become a Christian is to become aware of oneself as a persecutor of Christ.” — René Girard

I can't believe the leader of the Board of Peace would do this

@zetalyrae @colludingnode bizarre to watch his transformation into this utterly contemptible bootlicker. buddy i don’t know about you but i live in america