Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • Nov 25 13:15
    shekhar-cis synchronize #2130
  • Nov 25 12:53
    shekhar-cis opened #2130
  • Nov 25 10:13
    osamacis synchronize #2129
  • Nov 25 09:59
    shekhar-cis synchronize #1999
  • Nov 25 07:11
    osamacis synchronize #2129
  • Nov 25 06:54
    PeterSurda closed #2127
  • Nov 25 06:54

    PeterSurda on v0.6

    Add show QR-code in myaddress d… Add test case for myaddress, sh… (compare)

  • Nov 24 14:02
    osamacis synchronize #2129
  • Nov 24 14:01
    osamacis opened #2129
  • Nov 24 08:54
    shekhar-cis synchronize #1999
  • Nov 24 07:40
    osamacis synchronize #2127
  • Nov 24 07:34
    osamacis synchronize #2127
  • Nov 24 06:57
    osamacis synchronize #2127
  • Nov 23 23:06
    PeterSurda closed #2123
  • Nov 23 23:06

    PeterSurda on v0.6

    Add addressbook screen import a… (compare)

  • Nov 23 15:16
    osamacis synchronize #2127
  • Nov 23 15:10
    osamacis synchronize #2127
  • Nov 23 14:53
    osamacis commented #2127
  • Nov 23 14:52
    osamacis synchronize #2127
  • Nov 23 11:29
    osamacis synchronize #2127
John Doe
@FucktheUSA_gitlab
You are complaining that someone called "Bitmessage" BitMessage? It is absurd. Why you who has nothing to do with BitMessage complaining in the first place. Did you invented BitMessage? Is the license forbids people to call Bitmessage as BitMessage?
The License is a MIT license which even grant people all right to SUBLICENSE BitMessage:
"without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software"
Sublicensing mean they can change the license to anything they like for example to GPLv3+
Ranting about that someone changed one character in Bitmessage is absurd.
John Doe
@FucktheUSA_gitlab
I'm a communist and I'm all for Russia, I hope they beat the shit out of a few Ukrainian neo-nazis which are financed by the U.S. Department of State.. You know exactly what "battalion" I talk about.. So better stop ranting about if someone calls Bitmessage "BitMessage". Even AARON SWARTZ called Bitcoin as "BitCoin" ..
@PeterSurda @g1itch Travis is totally unreliable, more problems it creates than solves and returns a bunch of false positives...
John Doe
@FucktheUSA_gitlab
How dare the person who wrote these instructions calling Bitmessage "BitMessage" how dare you... how dare is Russia to defend itself from NATO terrorists and Ukrainian neo-nazis playing war games at the Russian borders... You being an asshole, I can be asshole too my dear Russian comrade. How dare you..
Peter Šurda
@PeterSurda
@FucktheUSA_gitlab Please keep the conversation on topic. This isn't an appropriate place to discuss politics.
While I am puzzled why a self-proclaimed communist is posting about Bitcoin and Bitmessage, it isn't relevant in this chan.
Peter Šurda
@PeterSurda
Regarding naming, g1itch was right to point out the capitalisation issue, I think that if people can't spell, they just expose their own unprofesionalism. This is how we got professor Bitcorn. But I tend to be more focused on my own professionalism, not other peoples'.
I don't think it's strange for a software developer to complain about single character.
Peter Šurda
@PeterSurda
Regarding travis being unreliable, I'm not sure if you're referring to travis-ci's web service, or PyBitmessage tests in general. I have had technical problems with travis-ci's website before but they were resolved after raising tickets. I'm more worried about being able to run many jobs for each commit (not enough parallel jobs even for expensive plans) and other minor things. Regarding tests in general not being reliable/deterministic, we're aware of it, it will probably take a while to fix these issues, it needs a lot of refactoring.
I'm studying the concepts of continuous delivery and refactoring so that it can be applied to the development process, and am trying to guide other developers to follow these practices too.
John Doe
@FucktheUSA_gitlab
I referring to the website
I would rather test PyBitmessage with different versions of python by myself than use any automated thing...
Also, I don't think that PyBitmessage need to support any version of python below version 3.5
Python 3.9.1+ (default, Feb 5 2021, 13:46:56)
[GCC 10.2.1 20210110] on linux
John Doe
@FucktheUSA_gitlab
In the other hand as I stated Aaron Swartz who was a well known programmer killed by the U.S. government called Bitcoin BitCoin. I don't think is problematic to change Bitmessage to BitMessage
John Doe
@FucktheUSA_gitlab

Can we replace ECDSA with EdDSA? I think the use of ECDSA in the case of Bitmessage would pose a serious threat, sending the same message two times actually will allow the recovery of the private key of the sender.

I'm not sure if Bitmessage signs the message with if does than calculation of the private key is certainly possible.

right there, Bitmessage signs the message with ECDSA without adding any timestamp to the message whatsoever
so if you resend the same message two times the recipient can calculate your private key in seconds
John Doe
@FucktheUSA_gitlab
meh,
signing the same message should produce the same signature
so it is secure.
except if ECDSA weak randomness is happening, if the RNG on the client fails than the calculation of the private key is 100% possible
What is the source for RNG used by Bitmessage? Is some python library? If the random number generator fails at encryption from the signatures the recipient can recover the private key of the sender. This is a fundamental issue with ECDSA
John Doe
@FucktheUSA_gitlab
replacing ECDSA with EdDSA (ed25519) would be beneficial for Bitmessage (more secure as well)
John Doe
@FucktheUSA_gitlab
Did someone noticed that PyElliptic is DEPRECATED? https://github.com/yann2192/pyelliptic
John Doe
@FucktheUSA_gitlab
@g1itch aparantly aware of it based on his pull requests from yesterday
Peter Šurda
@PeterSurda
@FucktheUSA_gitlab you can run the tests now locally using './run-tests-in-docker.sh'. It run the travis tests.
Peter Šurda
@PeterSurda
I'm not sure how sending the same message twice will allow key recovery. If I see correctly, the signature is the same. Encryption uses a hybrid scheme (ECIES), which encrypts a (random) AES key, so the ciphertext is different even if plaintext isn't.
pyelliptic development continues inside PyBitmessage, we're aware upstream was abandoned, we've been patching it to keep up with changing environments.
randomness for keys is retrieved from operating system, if that fails (e.g. OS doesn't support it), from openssl.
@g1itch buildbot workers will be off for a while, maybe until Monday, I had to change the internet provider and there are some problems they have to solve, until then the workers can't be accessed.
John Doe
@FucktheUSA_gitlab
Thank you @PeterSurda you are a great man!
Peter Šurda
@PeterSurda
@g1itch I managed to put together some sort of tunnel to allow communication between the buildbot master and the workers, so the jobs can now run again. However I'm not sure the tunnel is persistent, I'll have to monitor it over weekend.
hemengtingyaodi
@hemengtingyaodi
yes
i
am a great man
Yevhenii Kurtov
@lessless
@PeterSurda it's quite impressive that you keep the project alive and there is still some activity.
IMO it's way too under recognized
arakna
@arakna-dv
Peter Šurda
@PeterSurda
@lessless thank you
@arakna-dv nice :+1:
technology100
@technology100:matrix.org
[m]
does bitmessage still get updated? I might be wrong but on github the last update was 2018
Peter Šurda
@PeterSurda
@technology100:matrix.org There hasn't been an official release but the development goes on every day
l0nelyc0w
@penumbra:penumbra.social
[m]
test
tb14
@tb14:librem.one
[m]
is this room still active?
tb14
@tb14:librem.one
[m]
Launching out here in case anyone can help. I'm trying to install PyBitmessage on a Raspberry Pi running Bullseye. Obviously the well documented dependency on python 2.7 and qt4 are causing me issues. What is the proper way to get this running on newer distros that no longer have python-qt4? I tried installing python2.7 and pip2 but I still couldnt get the qt4 dependency solved. Thanks for any help.