Alert system - Bitcoin Wiki

Absurd stories about Bitcoin

Fiction and nonfiction stories that show how Bitcoin can overcome all absurdities. [Inspired by this post](http://www.reddit.com/Bitcoin/comments/1lnk12/how_bitcoins_saved_my_life_long_some_nsfw/)
[link]

I got a malware bitcoin miner fucking everything up.. I accidentally went into recovery mode attempting for safe mode... tried to restart it after it won’t boot it gets 3/4 of the way on boot up window. Then shuts down and says there was a problem press a key or wait to continue. Repeats..

So yeah idk I’m in disk utility. Can someone help me out I’m stressed af.. what’s this parturition business? Can I back up my programs and pluginsin that? Along with a boot drive? Help man i legit Have a ram upgraDe coming today ),:
submitted by twiceifeyelikeit to macbookpro [link] [comments]

Op-Ed: Bitcoin may not be a safe haven but seems to be in recovery mode

Op-Ed: Bitcoin may not be a safe haven but seems to be in recovery mode submitted by ulros to fbitcoin [link] [comments]

@ulrichrosenbaum : Op-Ed: Bitcoin may not be a safe haven but seems to be in recovery mode https://t.co/t5x3l0CdmI https://t.co/UQDHklSxoS

@ulrichrosenbaum : Op-Ed: Bitcoin may not be a safe haven but seems to be in recovery mode https://t.co/t5x3l0CdmI https://t.co/UQDHklSxoS submitted by ulros to digitalbanking [link] [comments]

I set-up my bitcoin wallet on my laptop. If I connected my laptop to a public wifi, but my laptop is in safe mode with networking, would my bitcoin wallet get comprimised?

Title. I am a newbie here. Not really sure if this community hates bandwagonners like me or not, but I really wanna learn about bitcoin
submitted by LeGreatMarquis to Bitcoin [link] [comments]

I set-up my bitcoin wallet on my laptop. If I connected my laptop to a public wifi, but my laptop is in safe mode with networking, would my bitcoin wallet get comprimised? /r/Bitcoin

I set-up my bitcoin wallet on my laptop. If I connected my laptop to a public wifi, but my laptop is in safe mode with networking, would my bitcoin wallet get comprimised? /Bitcoin submitted by BitcoinAllBot to BitcoinAll [link] [comments]

Technical: Taproot: Why Activate?

This is a follow-up on https://old.reddit.com/Bitcoin/comments/hqzp14/technical_the_path_to_taproot_activation/
Taproot! Everybody wants it!! But... you might ask yourself: sure, everybody else wants it, but why would I, sovereign Bitcoin HODLer, want it? Surely I can be better than everybody else because I swapped XXX fiat for Bitcoin unlike all those nocoiners?
And it is important for you to know the reasons why you, o sovereign Bitcoiner, would want Taproot activated. After all, your nodes (or the nodes your wallets use, which if you are SPV, you hopefully can pester to your wallet vendoimplementor about) need to be upgraded in order for Taproot activation to actually succeed instead of becoming a hot sticky mess.
First, let's consider some principles of Bitcoin.
I'm sure most of us here would agree that the above are very important principles of Bitcoin and that these are principles we would not be willing to remove. If anything, we would want those principles strengthened (especially the last one, financial privacy, which current Bitcoin is only sporadically strong with: you can get privacy, it just requires effort to do so).
So, how does Taproot affect those principles?

Taproot and Your /Coins

Most HODLers probably HODL their coins in singlesig addresses. Sadly, switching to Taproot would do very little for you (it gives a mild discount at spend time, at the cost of a mild increase in fee at receive time (paid by whoever sends to you, so if it's a self-send from a P2PKH or bech32 address, you pay for this); mostly a wash).
(technical details: a Taproot output is 1 version byte + 32 byte public key, while a P2WPKH (bech32 singlesig) output is 1 version byte + 20 byte public key hash, so the Taproot output spends 12 bytes more; spending from a P2WPKH requires revealing a 32-byte public key later, which is not needed with Taproot, and Taproot signatures are about 9 bytes smaller than P2WPKH signatures, but the 32 bytes plus 9 bytes is divided by 4 because of the witness discount, so it saves about 11 bytes; mostly a wash, it increases blockweight by about 1 virtual byte, 4 weight for each Taproot-output-input, compared to P2WPKH-output-input).
However, as your HODLings grow in value, you might start wondering if multisignature k-of-n setups might be better for the security of your savings. And it is in multisignature that Taproot starts to give benefits!
Taproot switches to using Schnorr signing scheme. Schnorr makes key aggregation -- constructing a single public key from multiple public keys -- almost as trivial as adding numbers together. "Almost" because it involves some fairly advanced math instead of simple boring number adding, but hey when was the last time you added up your grocery list prices by hand huh?
With current P2SH and P2WSH multisignature schemes, if you have a 2-of-3 setup, then to spend, you need to provide two different signatures from two different public keys. With Taproot, you can create, using special moon math, a single public key that represents your 2-of-3 setup. Then you just put two of your devices together, have them communicate to each other (this can be done airgapped, in theory, by sending QR codes: the software to do this is not even being built yet, but that's because Taproot hasn't activated yet!), and they will make a single signature to authorize any spend from your 2-of-3 address. That's 73 witness bytes -- 18.25 virtual bytes -- of signatures you save!
And if you decide that your current setup with 1-of-1 P2PKH / P2WPKH addresses is just fine as-is: well, that's the whole point of a softfork: backwards-compatibility; you can receive from Taproot users just fine, and once your wallet is updated for Taproot-sending support, you can send to Taproot users just fine as well!
(P2WPKH and P2WSH -- SegWit v0 -- addresses start with bc1q; Taproot -- SegWit v1 --- addresses start with bc1p, in case you wanted to know the difference; in bech32 q is 0, p is 1)
Now how about HODLers who keep all, or some, of their coins on custodial services? Well, any custodial service worth its salt would be doing at least 2-of-3, or probably something even bigger, like 11-of-15. So your custodial service, if it switched to using Taproot internally, could save a lot more (imagine an 11-of-15 getting reduced from 11 signatures to just 1!), which --- we can only hope! --- should translate to lower fees and better customer service from your custodial service!
So I think we can say, very accurately, that the Bitcoin principle --- that YOU are in control of your money --- can only be helped by Taproot (if you are doing multisignature), and, because P2PKH and P2WPKH remain validly-usable addresses in a Taproot future, will not be harmed by Taproot. Its benefit to this principle might be small (it mostly only benefits multisignature users) but since it has no drawbacks with this (i.e. singlesig users can continue to use P2WPKH and P2PKH still) this is still a nice, tidy win!
(even singlesig users get a minor benefit, in that multisig users will now reduce their blockchain space footprint, so that fees can be kept low for everybody; so for example even if you have your single set of private keys engraved on titanium plates sealed in an airtight box stored in a safe buried in a desert protected by angry nomads riding giant sandworms because you're the frickin' Kwisatz Haderach, you still gain some benefit from Taproot)
And here's the important part: if P2PKH/P2WPKH is working perfectly fine with you and you decide to never use Taproot yourself, Taproot will not affect you detrimentally. First do no harm!

Taproot and Your Contracts

No one is an island, no one lives alone. Give and you shall receive. You know: by trading with other people, you can gain expertise in some obscure little necessity of the world (and greatly increase your productivity in that little field), and then trade the products of your expertise for necessities other people have created, all of you thereby gaining gains from trade.
So, contracts, which are basically enforceable agreements that facilitate trading with people who you do not personally know and therefore might not trust.
Let's start with a simple example. You want to buy some gewgaws from somebody. But you don't know them personally. The seller wants the money, you want their gewgaws, but because of the lack of trust (you don't know them!! what if they're scammers??) neither of you can benefit from gains from trade.
However, suppose both of you know of some entity that both of you trust. That entity can act as a trusted escrow. The entity provides you security: this enables the trade, allowing both of you to get gains from trade.
In Bitcoin-land, this can be implemented as a 2-of-3 multisignature. The three signatories in the multisgnature would be you, the gewgaw seller, and the escrow. You put the payment for the gewgaws into this 2-of-3 multisignature address.
Now, suppose it turns out neither of you are scammers (whaaaat!). You receive the gewgaws just fine and you're willing to pay up for them. Then you and the gewgaw seller just sign a transaction --- you and the gewgaw seller are 2, sufficient to trigger the 2-of-3 --- that spends from the 2-of-3 address to a singlesig the gewgaw seller wants (or whatever address the gewgaw seller wants).
But suppose some problem arises. The seller gave you gawgews instead of gewgaws. Or you decided to keep the gewgaws but not sign the transaction to release the funds to the seller. In either case, the escrow is notified, and if it can sign with you to refund the funds back to you (if the seller was a scammer) or it can sign with the seller to forward the funds to the seller (if you were a scammer).
Taproot helps with this: like mentioned above, it allows multisignature setups to produce only one signature, reducing blockchain space usage, and thus making contracts --- which require multiple people, by definition, you don't make contracts with yourself --- is made cheaper (which we hope enables more of these setups to happen for more gains from trade for everyone, also, moon and lambos).
(technology-wise, it's easier to make an n-of-n than a k-of-n, making a k-of-n would require a complex setup involving a long ritual with many communication rounds between the n participants, but an n-of-n can be done trivially with some moon math. You can, however, make what is effectively a 2-of-3 by using a three-branch SCRIPT: either 2-of-2 of you and seller, OR 2-of-2 of you and escrow, OR 2-of-2 of escrow and seller. Fortunately, Taproot adds a facility to embed a SCRIPT inside a public key, so you can have a 2-of-2 Taprooted address (between you and seller) with a SCRIPT branch that can instead be spent with 2-of-2 (you + escrow) OR 2-of-2 (seller + escrow), which implements the three-branched SCRIPT above. If neither of you are scammers (hopefully the common case) then you both sign using your keys and never have to contact the escrow, since you are just using the escrow public key without coordinating with them (because n-of-n is trivial but k-of-n requires setup with communication rounds), so in the "best case" where both of you are honest traders, you also get a privacy boost, in that the escrow never learns you have been trading on gewgaws, I mean ewww, gawgews are much better than gewgaws and therefore I now judge you for being a gewgaw enthusiast, you filthy gewgawer).

Taproot and Your Contracts, Part 2: Cryptographic Boogaloo

Now suppose you want to buy some data instead of things. For example, maybe you have some closed-source software in trial mode installed, and want to pay the developer for the full version. You want to pay for an activation code.
This can be done, today, by using an HTLC. The developer tells you the hash of the activation code. You pay to an HTLC, paying out to the developer if it reveals the preimage (the activation code), or refunding the money back to you after a pre-agreed timeout. If the developer claims the funds, it has to reveal the preimage, which is the activation code, and you can now activate your software. If the developer does not claim the funds by the timeout, you get refunded.
And you can do that, with HTLCs, today.
Of course, HTLCs do have problems:
Fortunately, with Schnorr (which is enabled by Taproot), we can now use the Scriptless Script constuction by Andrew Poelstra. This Scriptless Script allows a new construction, the PTLC or Pointlocked Timelocked Contract. Instead of hashes and preimages, just replace "hash" with "point" and "preimage" with "scalar".
Or as you might know them: "point" is really "public key" and "scalar" is really a "private key". What a PTLC does is that, given a particular public key, the pointlocked branch can be spent only if the spender reveals the private key of the given public key to you.
Another nice thing with PTLCs is that they are deniable. What appears onchain is just a single 2-of-2 signature between you and the developemanufacturer. It's like a magic trick. This signature has no special watermarks, it's a perfectly normal signature (the pledge). However, from this signature, plus some datta given to you by the developemanufacturer (known as the adaptor signature) you can derive the private key of a particular public key you both agree on (the turn). Anyone scraping the blockchain will just see signatures that look just like every other signature, and as long as nobody manages to hack you and get a copy of the adaptor signature or the private key, they cannot get the private key behind the public key (point) that the pointlocked branch needs (the prestige).
(Just to be clear, the public key you are getting the private key from, is distinct from the public key that the developemanufacturer will use for its funds. The activation key is different from the developer's onchain Bitcoin key, and it is the activation key whose private key you will be learning, not the developer's/manufacturer's onchain Bitcoin key).
So:
Taproot lets PTLCs exist onchain because they enable Schnorr, which is a requirement of PTLCs / Scriptless Script.
(technology-wise, take note that Scriptless Script works only for the "pointlocked" branch of the contract; you need normal Script, or a pre-signed nLockTimed transaction, for the "timelocked" branch. Since Taproot can embed a script, you can have the Taproot pubkey be a 2-of-2 to implement the Scriptless Script "pointlocked" branch, then have a hidden script that lets you recover the funds with an OP_CHECKLOCKTIMEVERIFY after the timeout if the seller does not claim the funds.)

Quantum Quibbles!

Now if you were really paying attention, you might have noticed this parenthetical:
(technical details: a Taproot output is 1 version byte + 32 byte public key, while a P2WPKH (bech32 singlesig) output is 1 version byte + 20 byte public key hash...)
So wait, Taproot uses raw 32-byte public keys, and not public key hashes? Isn't that more quantum-vulnerable??
Well, in theory yes. In practice, they probably are not.
It's not that hashes can be broken by quantum computes --- they're still not. Instead, you have to look at how you spend from a P2WPKH/P2PKH pay-to-public-key-hash.
When you spend from a P2PKH / P2WPKH, you have to reveal the public key. Then Bitcoin hashes it and checks if this matches with the public-key-hash, and only then actually validates the signature for that public key.
So an unconfirmed transaction, floating in the mempools of nodes globally, will show, in plain sight for everyone to see, your public key.
(public keys should be public, that's why they're called public keys, LOL)
And if quantum computers are fast enough to be of concern, then they are probably fast enough that, in the several minutes to several hours from broadcast to confirmation, they have already cracked the public key that is openly broadcast with your transaction. The owner of the quantum computer can now replace your unconfirmed transaction with one that pays the funds to itself. Even if you did not opt-in RBF, miners are still incentivized to support RBF on RBF-disabled transactions.
So the extra hash is not as significant a protection against quantum computers as you might think. Instead, the extra hash-and-compare needed is just extra validation effort.
Further, if you have ever, in the past, spent from the address, then there exists already a transaction indelibly stored on the blockchain, openly displaying the public key from which quantum computers can derive the private key. So those are still vulnerable to quantum computers.
For the most part, the cryptographers behind Taproot (and Bitcoin Core) are of the opinion that quantum computers capable of cracking Bitcoin pubkeys are unlikely to appear within a decade or two.
So:
For now, the homomorphic and linear properties of elliptic curve cryptography provide a lot of benefits --- particularly the linearity property is what enables Scriptless Script and simple multisignature (i.e. multisignatures that are just 1 signature onchain). So it might be a good idea to take advantage of them now while we are still fairly safe against quantum computers. It seems likely that quantum-safe signature schemes are nonlinear (thus losing these advantages).

Summary

I Wanna Be The Taprooter!

So, do you want to help activate Taproot? Here's what you, mister sovereign Bitcoin HODLer, can do!

But I Hate Taproot!!

That's fine!

Discussions About Taproot Activation

submitted by almkglor to Bitcoin [link] [comments]

Satoshi Nakamoto: Verse 1, Version 0.3.19 "Safe mode can still be triggered by seeing a longer (greater total PoW) invalid block chain." /r/Bitcoin

Satoshi Nakamoto: Verse 1, Version 0.3.19 submitted by BitcoinAllBot to BitcoinAll [link] [comments]

[ Bitcoin ] Technical: Taproot: Why Activate?

Topic originally posted in Bitcoin by almkglor [link]
This is a follow-up on https://old.reddit.com/Bitcoin/comments/hqzp14/technical_the_path_to_taproot_activation/
Taproot! Everybody wants it!! But... you might ask yourself: sure, everybody else wants it, but why would I, sovereign Bitcoin HODLer, want it? Surely I can be better than everybody else because I swapped XXX fiat for Bitcoin unlike all those nocoiners?
And it is important for you to know the reasons why you, o sovereign Bitcoiner, would want Taproot activated. After all, your nodes (or the nodes your wallets use, which if you are SPV, you hopefully can pester to your wallet vendoimplementor about) need to be upgraded in order for Taproot activation to actually succeed instead of becoming a hot sticky mess.
First, let's consider some principles of Bitcoin.
I'm sure most of us here would agree that the above are very important principles of Bitcoin and that these are principles we would not be willing to remove. If anything, we would want those principles strengthened (especially the last one, financial privacy, which current Bitcoin is only sporadically strong with: you can get privacy, it just requires effort to do so).
So, how does Taproot affect those principles?

Taproot and Your /Coins

Most HODLers probably HODL their coins in singlesig addresses. Sadly, switching to Taproot would do very little for you (it gives a mild discount at spend time, at the cost of a mild increase in fee at receive time (paid by whoever sends to you, so if it's a self-send from a P2PKH or bech32 address, you pay for this); mostly a wash).
(technical details: a Taproot output is 1 version byte + 32 byte public key, while a P2WPKH (bech32 singlesig) output is 1 version byte + 20 byte public key hash, so the Taproot output spends 12 bytes more; spending from a P2WPKH requires revealing a 32-byte public key later, which is not needed with Taproot, and Taproot signatures are about 9 bytes smaller than P2WPKH signatures, but the 32 bytes plus 9 bytes is divided by 4 because of the witness discount, so it saves about 11 bytes; mostly a wash, it increases blockweight by about 1 virtual byte, 4 weight for each Taproot-output-input, compared to P2WPKH-output-input).
However, as your HODLings grow in value, you might start wondering if multisignature k-of-n setups might be better for the security of your savings. And it is in multisignature that Taproot starts to give benefits!
Taproot switches to using Schnorr signing scheme. Schnorr makes key aggregation -- constructing a single public key from multiple public keys -- almost as trivial as adding numbers together. "Almost" because it involves some fairly advanced math instead of simple boring number adding, but hey when was the last time you added up your grocery list prices by hand huh?
With current P2SH and P2WSH multisignature schemes, if you have a 2-of-3 setup, then to spend, you need to provide two different signatures from two different public keys. With Taproot, you can create, using special moon math, a single public key that represents your 2-of-3 setup. Then you just put two of your devices together, have them communicate to each other (this can be done airgapped, in theory, by sending QR codes: the software to do this is not even being built yet, but that's because Taproot hasn't activated yet!), and they will make a single signature to authorize any spend from your 2-of-3 address. That's 73 witness bytes -- 18.25 virtual bytes -- of signatures you save!
And if you decide that your current setup with 1-of-1 P2PKH / P2WPKH addresses is just fine as-is: well, that's the whole point of a softfork: backwards-compatibility; you can receive from Taproot users just fine, and once your wallet is updated for Taproot-sending support, you can send to Taproot users just fine as well!
(P2WPKH and P2WSH -- SegWit v0 -- addresses start with bc1q; Taproot -- SegWit v1 --- addresses start with bc1p, in case you wanted to know the difference; in bech32 q is 0, p is 1)
Now how about HODLers who keep all, or some, of their coins on custodial services? Well, any custodial service worth its salt would be doing at least 2-of-3, or probably something even bigger, like 11-of-15. So your custodial service, if it switched to using Taproot internally, could save a lot more (imagine an 11-of-15 getting reduced from 11 signatures to just 1!), which --- we can only hope! --- should translate to lower fees and better customer service from your custodial service!
So I think we can say, very accurately, that the Bitcoin principle --- that YOU are in control of your money --- can only be helped by Taproot (if you are doing multisignature), and, because P2PKH and P2WPKH remain validly-usable addresses in a Taproot future, will not be harmed by Taproot. Its benefit to this principle might be small (it mostly only benefits multisignature users) but since it has no drawbacks with this (i.e. singlesig users can continue to use P2WPKH and P2PKH still) this is still a nice, tidy win!
(even singlesig users get a minor benefit, in that multisig users will now reduce their blockchain space footprint, so that fees can be kept low for everybody; so for example even if you have your single set of private keys engraved on titanium plates sealed in an airtight box stored in a safe buried in a desert protected by angry nomads riding giant sandworms because you're the frickin' Kwisatz Haderach, you still gain some benefit from Taproot)
And here's the important part: if P2PKH/P2WPKH is working perfectly fine with you and you decide to never use Taproot yourself, Taproot will not affect you detrimentally. First do no harm!

Taproot and Your Contracts

No one is an island, no one lives alone. Give and you shall receive. You know: by trading with other people, you can gain expertise in some obscure little necessity of the world (and greatly increase your productivity in that little field), and then trade the products of your expertise for necessities other people have created, all of you thereby gaining gains from trade.
So, contracts, which are basically enforceable agreements that facilitate trading with people who you do not personally know and therefore might not trust.
Let's start with a simple example. You want to buy some gewgaws from somebody. But you don't know them personally. The seller wants the money, you want their gewgaws, but because of the lack of trust (you don't know them!! what if they're scammers??) neither of you can benefit from gains from trade.
However, suppose both of you know of some entity that both of you trust. That entity can act as a trusted escrow. The entity provides you security: this enables the trade, allowing both of you to get gains from trade.
In Bitcoin-land, this can be implemented as a 2-of-3 multisignature. The three signatories in the multisgnature would be you, the gewgaw seller, and the escrow. You put the payment for the gewgaws into this 2-of-3 multisignature address.
Now, suppose it turns out neither of you are scammers (whaaaat!). You receive the gewgaws just fine and you're willing to pay up for them. Then you and the gewgaw seller just sign a transaction --- you and the gewgaw seller are 2, sufficient to trigger the 2-of-3 --- that spends from the 2-of-3 address to a singlesig the gewgaw seller wants (or whatever address the gewgaw seller wants).
But suppose some problem arises. The seller gave you gawgews instead of gewgaws. Or you decided to keep the gewgaws but not sign the transaction to release the funds to the seller. In either case, the escrow is notified, and if it can sign with you to refund the funds back to you (if the seller was a scammer) or it can sign with the seller to forward the funds to the seller (if you were a scammer).
Taproot helps with this: like mentioned above, it allows multisignature setups to produce only one signature, reducing blockchain space usage, and thus making contracts --- which require multiple people, by definition, you don't make contracts with yourself --- is made cheaper (which we hope enables more of these setups to happen for more gains from trade for everyone, also, moon and lambos).
(technology-wise, it's easier to make an n-of-n than a k-of-n, making a k-of-n would require a complex setup involving a long ritual with many communication rounds between the n participants, but an n-of-n can be done trivially with some moon math. You can, however, make what is effectively a 2-of-3 by using a three-branch SCRIPT: either 2-of-2 of you and seller, OR 2-of-2 of you and escrow, OR 2-of-2 of escrow and seller. Fortunately, Taproot adds a facility to embed a SCRIPT inside a public key, so you can have a 2-of-2 Taprooted address (between you and seller) with a SCRIPT branch that can instead be spent with 2-of-2 (you + escrow) OR 2-of-2 (seller + escrow), which implements the three-branched SCRIPT above. If neither of you are scammers (hopefully the common case) then you both sign using your keys and never have to contact the escrow, since you are just using the escrow public key without coordinating with them (because n-of-n is trivial but k-of-n requires setup with communication rounds), so in the "best case" where both of you are honest traders, you also get a privacy boost, in that the escrow never learns you have been trading on gewgaws, I mean ewww, gawgews are much better than gewgaws and therefore I now judge you for being a gewgaw enthusiast, you filthy gewgawer).

Taproot and Your Contracts, Part 2: Cryptographic Boogaloo

Now suppose you want to buy some data instead of things. For example, maybe you have some closed-source software in trial mode installed, and want to pay the developer for the full version. You want to pay for an activation code.
This can be done, today, by using an HTLC. The developer tells you the hash of the activation code. You pay to an HTLC, paying out to the developer if it reveals the preimage (the activation code), or refunding the money back to you after a pre-agreed timeout. If the developer claims the funds, it has to reveal the preimage, which is the activation code, and you can now activate your software. If the developer does not claim the funds by the timeout, you get refunded.
And you can do that, with HTLCs, today.
Of course, HTLCs do have problems:
Fortunately, with Schnorr (which is enabled by Taproot), we can now use the Scriptless Script constuction by Andrew Poelstra. This Scriptless Script allows a new construction, the PTLC or Pointlocked Timelocked Contract. Instead of hashes and preimages, just replace "hash" with "point" and "preimage" with "scalar".
Or as you might know them: "point" is really "public key" and "scalar" is really a "private key". What a PTLC does is that, given a particular public key, the pointlocked branch can be spent only if the spender reveals the private key of the given private key to you.
Another nice thing with PTLCs is that they are deniable. What appears onchain is just a single 2-of-2 signature between you and the developemanufacturer. It's like a magic trick. This signature has no special watermarks, it's a perfectly normal signature (the pledge). However, from this signature, plus some datta given to you by the developemanufacturer (known as the adaptor signature) you can derive the private key of a particular public key you both agree on (the turn). Anyone scraping the blockchain will just see signatures that look just like every other signature, and as long as nobody manages to hack you and get a copy of the adaptor signature or the private key, they cannot get the private key behind the public key (point) that the pointlocked branch needs (the prestige).
(Just to be clear, the public key you are getting the private key from, is distinct from the public key that the developemanufacturer will use for its funds. The activation key is different from the developer's onchain Bitcoin key, and it is the activation key whose private key you will be learning, not the developer's/manufacturer's onchain Bitcoin key).
So:
Taproot lets PTLCs exist onchain because they enable Schnorr, which is a requirement of PTLCs / Scriptless Script.
(technology-wise, take note that Scriptless Script works only for the "pointlocked" branch of the contract; you need normal Script, or a pre-signed nLockTimed transaction, for the "timelocked" branch. Since Taproot can embed a script, you can have the Taproot pubkey be a 2-of-2 to implement the Scriptless Script "pointlocked" branch, then have a hidden script that lets you recover the funds with an OP_CHECKLOCKTIMEVERIFY after the timeout if the seller does not claim the funds.)

Quantum Quibbles!

Now if you were really paying attention, you might have noticed this parenthetical:
(technical details: a Taproot output is 1 version byte + 32 byte public key, while a P2WPKH (bech32 singlesig) output is 1 version byte + 20 byte public key hash...)
So wait, Taproot uses raw 32-byte public keys, and not public key hashes? Isn't that more quantum-vulnerable??
Well, in theory yes. In practice, they probably are not.
It's not that hashes can be broken by quantum computes --- they're still not. Instead, you have to look at how you spend from a P2WPKH/P2PKH pay-to-public-key-hash.
When you spend from a P2PKH / P2WPKH, you have to reveal the public key. Then Bitcoin hashes it and checks if this matches with the public-key-hash, and only then actually validates the signature for that public key.
So an unconfirmed transaction, floating in the mempools of nodes globally, will show, in plain sight for everyone to see, your public key.
(public keys should be public, that's why they're called public keys, LOL)
And if quantum computers are fast enough to be of concern, then they are probably fast enough that, in the several minutes to several hours from broadcast to confirmation, they have already cracked the public key that is openly broadcast with your transaction. The owner of the quantum computer can now replace your unconfirmed transaction with one that pays the funds to itself. Even if you did not opt-in RBF, miners are still incentivized to support RBF on RBF-disabled transactions.
So the extra hash is not as significant a protection against quantum computers as you might think. Instead, the extra hash-and-compare needed is just extra validation effort.
Further, if you have ever, in the past, spent from the address, then there exists already a transaction indelibly stored on the blockchain, openly displaying the public key from which quantum computers can derive the private key. So those are still vulnerable to quantum computers.
For the most part, the cryptographers behind Taproot (and Bitcoin Core) are of the opinion that quantum computers capable of cracking Bitcoin pubkeys are unlikely to appear within a decade or two.
So:
For now, the homomorphic and linear properties of elliptic curve cryptography provide a lot of benefits --- particularly the linearity property is what enables Scriptless Script and simple multisignature (i.e. multisignatures that are just 1 signature onchain). So it might be a good idea to take advantage of them now while we are still fairly safe against quantum computers. It seems likely that quantum-safe signature schemes are nonlinear (thus losing these advantages).

Summary

I Wanna Be The Taprooter!

So, do you want to help activate Taproot? Here's what you, mister sovereign Bitcoin HODLer, can do!

But I Hate Taproot!!

That's fine!

Discussions About Taproot Activation

almkglor your post has been copied because one or more comments in this topic have been removed. This copy will preserve unmoderated topic. If you would like to opt-out, please send a message using [this link].
[deleted comment]
[deleted comment]
[deleted comment]
submitted by anticensor_bot to u/anticensor_bot [link] [comments]

FUD Friday: Greg Maxwell drops the hammer on Haskell and Rust

My first OP was dedicated to debunking trivial EITN FUD, so this time I'm going in the opposite direction and asking others to debunk or support what one of Bitcoin's top math/crypto/compsci gurus says about Cardano's chosen languages.
Thanks to both u/nullc and u/ataraxiaceleste for opening and expanding the discussion.
Courtesy of BitcoinTalk: Thoughts regarding use of Rust and Haskell for building a blockchain
Gmax responds:
Performance and memory usage are both security critical in consensus systems. It's difficult (impossible?) to write Haskell which is all three performant, predictable in its memory usage, and idiomatic-- at least for some sufficiently strict requirements in performance and memory usage.
Rust is a lot like C++. In theory, it's easier to write rust code that lacks particular classes of bugs than in C++. However, no one using C++ uses the entire language and the various subsets people use also largely avoid various kinds of bugs. Not as rigorously as rust, particularly because its hard to verify you're using the subset of C++ you're intending to use.
In Bitcoin we've found that the kind of bugs that rust guarantees the absence of have been uncommon.
I've personally found that the rust code I've encountered online has often been low quality to extremely low quality-- often throwing panics on the slightest unexpected input or usage, or suffering from incorrect results due to integer wraparound (which in theory debug mode would catch, but it runs so slow as to be completely unusable on many codebases). I'm unsure if this is a property of the language itself (e.g. does the syntax lead to greater faults), user's expectations of the language (sloppy work because they expect things to be 'safe'), or the useapplication (e.g. are people that redo stuff "but in rust" less experienced programmers?).
Given that experience I would not place a bet right now that rust currently lowers the rate of serious defects in large programs developed by experienced teams compared to C++ with modern practices. However, if I had to use software written by inexperienced developers I suppose I would probably prefer they use rust to C++...
The rust ecosystem is also immature and unstable-- it's not uncommon that any random code you get requires some bleeding edge new compiler. Rust also largely imitates the extremely security-toxic software distribution model of ruby and javascript-- it's common for a rust package to have a dependency graph of hundreds of assorted packages, any of which could backdoor your system. It's possible to use rust without using the packaging ecosystem, but doing so is more of a challenge.
Rust and C++ also have no good facilities for formally reasoning about the behaviour of programs (beyond things like the borrow checker in rust). But C++ is a superset of C and there are tools to rigorously prove things the properties of C code, which means you can write components of C++ programs in C and formally prove things about them. You could do the same with rust+c but C++ and C share a lot more syntax and behaviour.
In the world of open source Rust and Haskell both have an additional limitation that the community of developers and reviewers for these languages is smaller than that of C++.
Please note that however much I tend to defer to his opinions (per Adam Back's guidance that when one disagrees with Greg about technical matters they are probably wrong), I must reconcile that deference with respect for the IOG team's galaxy brains. Negative appraisals of Rust and Haskell aren't going away, so IMO it behooves the Cardano community to get a grip on the most valid criticisms and try our best to stay ahead of them.
On a lighter note, the Monero sub has been having a lot of fun in their weekley Skepticism Sundays and we are overdue for our own version, as previously suggested months ago by u/velvia695 at https://www.reddit.com/cardano/comments/de1mqg/suggestion_skepticism_sunday_like_monero_has_but/ .
Let's keep it educational and really do our best to limit use of ad homs to zingers and puckish banter rather than as a subsitute for actual arguments!
submitted by Jahtoshi_Rastamoto to cardano [link] [comments]

PayAccept functionalities

submitted by ugur2222 to Crypto_General [link] [comments]

Be mindful about your privacy and security during difficult times

Hey guys, I’ve been following a highly decentralized Hong Kong pro-democracy movement for a year as a researcher and wrote a few articles about the digital resistance there. Due to recent events in Portland, I’ve decided to share some knowledge from Hong Kong about privacy & security, because many people here might find it useful.
Disclaimer: I don’t call for any protests, and I condemn violence. The information in this post is strictly for educational purpose.
HK’s OpSec is pretty complex, but most regular participants are pretty safe with the following simple practices.
Phone:
Note: secondary phones are usually used with the same strict safety measures as the primary phones, otherwise they will stand out because they are linked only between members of a group. Some HK activists use walkie-talkies instead of phones to communicate on the ground.
Apps:
Be careful, Telegram is not the most privacy-oriented app because it requires a valid phone number to receive an activation code (as well as Signal). However, Telegram is highly popular among many activists communities across the world, e.g. the HK pro-democracy movement, the cryptocurrency community, activists in Russia, Iran, and other highly-oppressed countries. The reason for Telegram to be so popular is channels and group chats, which are essential during massive protests. Additionally, anonymous surveys in group chats is a great way to vote right on the spot for different decisions such as whether activists should stay or disperse.
Here are some tips for those who use Telegram:
Bridgefy is a very useful app in case of the internet blackout. However, Bridgefy has temporary dropped encryption, so it’s only being used when there is no internet connection.
Side note: In the beginning of the protests in 2019 many Hongkongers were proud that in HK they could still exercise their freedom of speech, protest peacefully, and organize actions without being afraid for their lives. However, the situation has changed in just a few weeks. Those, who took care of their privacy and security right from the beginning, were in a much safer position than those, who ramped up their OpSec only after the shit hit the fan.
More advanced privacy and security tools and tips from Hong Kong activists can be found here.
Stay safe.
submitted by SamAiken to Portland [link] [comments]

What I currently use for privacy

So this is what software I currently use for privacy, would like some opinions if possible:
Starting with my cellphone, my device is a Google Pixel 3A XL with GrapheneOS flashed, I have the following apps installed:
F-Droid and AuroraOSS (as my app stores), NewPipe (youtube client), Vanadium (web browser), Tutanota and K-9 Mail (for e-mails), OsmAnd+ (for maps), Joplin (notes), Open Camera (camera), OpenBoard and Mozc for Android (Keyboard and Japanese Keyboard), Aegis Authenticator, KeePassDX (password manager), LibreTorrent (torrent client), Librera PRO (pdf/epub/mobi reader, I don't own a Kindle nor want to own one so I use my cellphone to read), Tachiyomi (manga reader), Signal (for messaging), Vinyl Music Player, VLC, Simple Gallery Pro and Simple Calendar Pro (I prefer them over stock Graphene options) and I also use Electrum and Samourai (Bitcoin Wallet) and Monerujo (Monero Wallet)
I also have OpenVPN (for VPN) and use a private DNS for ad and tracking blocking (provided by my VPN provider)
I have 3-4 PCs, will go over every single one of them:
my main PC is a desktop PC (that I built myself) that I mainly use for working and other tasks.
It runs Artix Linux (basically Arch Linux without systemd), I use UFW as my firewall (denying all incoming and also denying all outgoing only allowing what is useful) and I also use AppArmor Profiles, I disabled IPV6 and SWAP, configured my VPN connection as well on network settings and I currently run OpenVPN on my computer (my VPN provider allows for multi-hop cascade through OpenVPN in which I can create a custom VPN cascade up to four servers, each consecutive hop re-encrypts my traffic and assigns me a new IP address) and I've also set disk encryption on installation (have set in all of my computers)
As for software: I use Mozilla Firefox as my web browser (I set it to always be in private mode, unchecked suggestions for browsing history, bookmarks, and open tabs, I've also disabled the Firefox data collection in settings and block dangerous and deceptive content, I use DuckDuckGo as my search engine, I use Firefox Home as my default as my homepage. The rest of my tweaks were done in about:config (using privacytools.io site tweaks + geo.enabled = false, network.cookie.lifetimePolicy = 2 and dom.security.https_only_mode as true which are not listed on the site) and the only addons I use are uBlock Origin on Hard Mode and Decentraleyes), KeePassXC (password manager), VIM (use it as a Text Editor and as an IDE for coding), LibreOffice (for working stuff), GIMP (image editor), VLC, qBitTorrent and Tutanota's Desktop Client and Thunderbird (for e-mails)
I also use KVM/QEMU for virtual machines (usually in case I wanna test some distro or use Tails/Whonix)
For my gaming PC (also a desktop I've built myself) I run Manjaro KDE on it, the only apps I have in the system are Firefox (same settings as above), OBS and KVM/QEMU (which I use a Win10 virtual machine for games, there are tutorials on YouTube on how to do so if you're interested). I have the same firewall settings as above, using AppArmor as well and I've also disabled IPV6 and SWAP, I run OpenVPN on it as well as my VPN DNS settings on network settings. I also use different mouse and keyboard on both my PCs and never mix them together.
My other 2 PCs are both laptops, one is a Acer Aspire Nitro I've bought for work (in case I need to work while in a trip or if I wanna work outside etc), it has the same settings and programs as my main PC but I run Gentoo on it. The other laptop is an old ThinkPad that runs Slackware on it, but I rarely use it and this laptop is most of the times not with me for safety reasons.
For some other devices and stuff: I have an Asus RT-AC86U router with OpenWRT flashed on it that I also run OpenVPN config files (this one coming from another provider, I use two VPN providers, on in my PCs and the other in my router), I have a Ledger Nano S as a hardware wallet for both Bitcoin and Monero (most of my cryptocurrency is there, I use hardware wallet for hodling purposes and as my emergency funding) and I have LOTS of USB flash drivers (all of them for Linux Live ISOs purposes), I also have a Nintendo Switch Lite (only gaming console I have, although have not been playing that much on it recently) that I only connect to the internet in case I need to download some updates or play online and after I'm done I immediately disconnect it from the internet.
Some other privacy habits I have are:
I don't own any smart device like Smart TVs (I've been more than 10 years now without watching TV, doesn't even bother me), Smart Fridges or Dishwashers that connect to your internet, ROOMBAS, Smart Home etc, I keep all my money on crypto (and I have a small amount in gold as well, but I rarely invest on it, all my gold is stored in a manual safe here in my apartment) and I only have like, 10 bucks or so in my back account (as soon as I receive any money I just left the necessary in my account to pay bills and put all the rest on crypto, I try to pay everything on crypto or cash), I RARELY use cloud storage, but if I need to, I go with NextCloud and encrypt all my files with VeraCrypt before uploading it, all my VPN services were paid with Bitcoin (I try to pay everything with crypto as previously said) and I never write directly into any website, I usually write my text on a text editor, copy it and paste it on the website (needless to say that I don't use mainstream social media as well)
So, what do you guys think? anything that you would add your recommend me? (before anyone mentions about self-hosting a DNS server using Pi-hole on a Raspberry Pi, I'm actually thinking on doing it in a near future)
EDIT: forgot to mention that I don't watch YouTube on PC on youtube site, I mostly watch youtube's videos on invidio.us and only use the youtube site for watching live streams honestly. And I also barely go outside with my smartphone (only if I really need to) and I usually keep it away from my computers etc.
EDIT 2: also another thing: I covered all my laptop's webcams with black electrical tape, I have a Logitech C922 Pro webcam for my desktop PCs but rarely use it, and when I need to use it, I unplug it as soon as I'm done with it.
submitted by SlackAcademic to privacytoolsIO [link] [comments]

A Market Liquidity Theory of the Current Financial Crisis

Huge update from the Fed this morning: https://www.federalreserve.gov/newsevents/pressreleases/monetary20200323b.htm
I'm not going to have a chance to look through this in detail this morning, but it looks like the Fed might be engaging in a massive loan program and taking just about anything as collateral.
This is going to be a long post and analysis that I have written as much to get my thoughts in order as much to post on here for any feedback or criticism.
Essentially, like many on here, I do not believe that the current situation is a temporary down-turn, but a full blown financial crisis. We have already been hit with the initial shock of this crisis, so the question becomes: what comes next? Helping us understand what is fundamentally happening in the market will aid in making intelligent future predictions and investments. That leads to the question: what exactly is happening in the market right now? What caused us to suddenly drive off a cliff? And is there any way we can save it? Unlikely many here, I do not believe that COVID-19 is the actual underlying crisis. In my opinion, our economy was basically the end stages of a Jenga game, and COVID-19 is just the swift breeze knocking the whole thing over.
As I started looking for the next big market move, I started to wonder who was going to feel the most pain in these markets. Some reading led me to the thought that what we were seeing in the markets was a liquidity issue, and that companies with poor credit ratings will be most affected. I posted about this a couple of days ago, and several others came to the same conclusion as me. 1 2 3. There are other obliviously other problems in the market at the moment, but this analysis will focus on this problem in particular.
I now strongly believe that this hypothesis was correct, even if my initial reasoning and analysis was flawed. I outline a theory, followed by some supporting evidence, and finally some speculation. Finally, I don't think the Fed understands the actual problem the market is facing right now, nor does it have the tools to deal with it.
There are three prerequisites here: repos, collateral transformation, and rehypothecated collateral
Variation-Separate has already written an excellent technical analysis, and explains repos in part I. I will assume you have already read that section. 2
The basic idea behind collateral transforms is this: Your company needs some short-term liquid cash. In order for someone to give you this cash, you need collateral. You only have risky assets (such as junk bonds), but no one will accept them as collateral precisely because they are risky. Everyone in the market wants a secure asset (such as a Treasury). Instead of giving up, you go out and find someone who will loan you their Treasury and accept your junk bonds as collateral. You then use that Treasury to obtain the cash you need. This process can be repeated among many parties in order to create a "collateral chain".
Finally, we have rehypothecated collateral: Someone comes to you and wants to borrow an assets for a short period of time (such as a stock). They give you another asset (such as cash) as collateral in exchange for the stock. You know the borrower won't be back to collect this collateral for a while, so you invest that collateral to make money off of it in the meantime.
As Variation-Separate explains, there have been problems in the repo market recently, and the Fed has acted as the believe appropriate. However, this is not the first time the Fed has run into this problem . In fact, we had a problem a problem in the repo market just in Sept 2019 and "Not only did the spike in the repo rate come as a surprise to the New York Fed, but they also haven't been able to normalize it as quickly as they thought they could". Finally, let's consider that even though the fed has offered to pump massive amounts of liquidity into the market, banks aren't taking it and are quickly repaying that which they do take.
What exactly is going on then? The Fed tries to pump liquidity into the economy, and nothing happens. The reason for this is that the Fed knows that it doesn't understand the underlying problem in the market, and knows that is powerless to stop it. The Fed is trying to unleash every tool in its toolbox on the hope that if it just throws enough money into the market, eventually the problem will go away.
So what is the root problem? Essentially, liquidity. More specifically, collateral transformations and rehypothecated collateral. In fact, this has been written about extensively: 4 5, with Snider in particular making a strong case that today's crisis fits the analysis of the collateral markets that he provided in 2018: 6
How are collateral transformations and rehypothecated collateral affecting liquidity in the markets? There are numerous ways, but let's start with 2:
Let's say someone gives you cash as collateral, and you rehypothecate it as described in the example. However, instead of putting the cash in a safe asset, knowing you have to repay it, you put it in a very risky, high-yield asset such as a junk bond or MBS. Things go wrong, you lose your money and can't pay back your end of the repo. This is exactly what AIG did during the 2008 crisis. 7
Now let's say you engage in a long chain of collateral transformations. You start with a really risk assets, trade that for a sligtly less risky asset, trade that for a moderately risky asset, etc, until you eventually get a pristine asset. Now anyone along that chain can rehypothecate their collateral into some risky investment, causing a huge number of problems. Not to mention that if you, for some reason, can't fulfill your end of the repo, you screw a whole chain of people who have traded with you.
Now, if we are in a strong market, these problems won't arise too often. But what happens if, say, a virus comes out of now where causing wide-spread economic disruptions? Now, maybe those risky investments that would have paid out more often than not aren't pay out at all, causing systemic problems.
Now let's add a couple of things that exacerbate this problem even further:
These chains get so complicated that no one even knows who owns which assets anymore 4
When these chains collateral transformations start to fail, people may become less willing to take the risk of engaging in them 5
All of this caused heavy regulation on the exchange of collateral by primary lenders after the 2008 crisis. This has pushed these transactions into dark markets where we don't really understand what is going on. Here is my hypothesis, heavily taken from Snider's analysis:
Corporations have become heavily reliant on short-term lending for liquidity. However, most of them don't have pristine assets to exchange for cash, or DisneyBucks to float them through hard times. So what to do? You engage in collateral transformations: keep exchanging your junk assets until you get the pristine assets you need to get liquid cash. A bunch of corporations do this over and over again, and eventually they really don't have a clear of idea of what assets they really own.
Further, in these collateral chains they are rehypothecating collateral to make a quick buck. All is well, until this virus comes along. Suddenly, corporations are losing their collateral in these risky investments. Further, they need cash. The first thing they do is try to transform their collateral for short term liquidity. However, a bunch of people have just lost their money playing this game and don't want to play anymore, so it becomes more difficult and expensive for the companies to engage in these collateral transformations. The assets they have are worth less, so they have to sell other assets to compensate. However, everyone is doing this at the same time, devaluing the assets. Devaluation of assets makes it even more expensive to engage in collateral exchanges, and the cycle continues. Finally, when these companies take account of their actual assets, after all of these complicated exchanges, they realize they don't actually own what they think they own, creating additional panic when they are already in crisis mode. This causes huge turmoil, and the markets fall off a cliff.
If this theory is correct, what will we see next? Whether the markets will go up or down is dependent on too many factors to predict. However, I do have some speculation. First let's categorize corporations as follows:
Type I: Safe
Large banking institutions
Large P-1/A-1/F1+ Companies
Companies with huge cash reserves
Type II: Possibly Safe
Small businesses
"Essential" business (i.e., Boeing)
Type III: Doomed
Business with >500 employees, no large cash reserves, not P-1/A-1/F1+
The self-employed
Type I businesses will certainly weather the storm. If they don't have the direct support of the Fed, they have large cash reserves on hand. If they don't have large cash reserves on hand, they have the credit rating to make use of corporate paper. They can find the short term funding needed to make it through this.
Type II businesses may be safe depending on the government response. I am currently underwhelmed by the "support" for small business in the stimulus bill, but there seems to at least be talk about this so maybe things will change. "Essential" businesses may receive a bailout to get them through tough times.
Type III businesses are completely screwed, no one seems to know they are even there. They won't qualify for support as "small businesses", and they have no way of obtaining liquid assets in this market. In particular, the larger businesses don't have the pristine assets to obtain liquidity in these markets, they are dependent on collateral transforms.
I won't predict whether the markets will go up or down this week, next, etc. But I will speculate this: I think the calm we saw in the markets was an actual calm. I think there was panic as businesses tried to obtain liquidity. They now believe they have the liquidity to make it through the near future, and are satisfied. There could be fire-sales in the near term for other reasons, but I don't think short-term liquidity will be the cause. However, most corporations don't speculate very hard when it comes to the future: they listen to the "experts". And these "experts" in government and the financials have been predicting doom and gloom for the next couple weeks, but that things will "bounce back" afterward. This is flatly false. As this becomes more apparent to these companies, I think we'll see another run on the market.
Particularly, it will be the large Type III business that will be the most vulnerable. They won't have any government stimulus support, and they won't have access to their normal modes of obtain cash. The last panic in the markets pushed bond yields so high that issuing new bonds will be completely out of the question. For them, it will be like a game of chess where your 4 moves away from being mated no matter what you do. Many of them will decide that bankruptcy is the best option in front of them.
Can the Fed prevent this? I don't think so. The Fed has the ability to soak up P-1/A-1/F1+, but they can only do this through the banks. But the banks aren't the ones in trouble this time, its the market itself. I have not read anything that leads me to believe that the Fed would be able to purchase junk assets from non- P-1/A-1/F1+ corporations without an act of Congress, and Congress is too slow and incompetent to see this problem coming or fix it in time. The Colosseum will be protected as Rome burns around it.
Sorry for any typos, poor wording. This was a long post.
submitted by the_asker_man to wallstreetbets [link] [comments]

Wall Street Breakfast: Unpredictable Jobs Day

U.S. stock indexes futures rose as much as 1% overnight as investors look ahead to two jobs reports for clarity on the economic situation. Alongside weekly unemployment claims data, the non-farm payrolls report will come a day early and will likely play a big part ahead of the Congressional debate on the next round of coronavirus stimulus. Forecasts for the jobs report are wide-ranging, but most economists predict 3M jobs were created in June, up from the 2.5M added in May (though that report was expected to show a steep loss of 8M jobs). The figures will also be backward looking, reflecting data through mid-June and not the latter part of the month when the resurgence of COVID-19 led to several shutdowns and delayed some economic reopenings.
FOMC minutes
The Fed's monetary policy-setting arm doesn't see the recovery in consumer spending being "particularly rapid beyond this year" and noted a need for "highly accommodative monetary policy for some time," according to the minutes of the June 9-10 meeting. As for the potential use of yield-curve control — yield caps or targets ("YCT"), nearly all participants had "many questions regarding the costs and benefits of such an approach." Many of the officials, though, didn't see a need for YCT as long as the FOMC's forward guidance, on its own, remains credible.
Checks? Benefits? Bonuses?
Details of the next coronavirus stimulus package are becoming a bit clearer as the House passed a bill extending the Paycheck Protection Program through August 8, sending it to President Trump's desk for his signature. Over $130B in PPP funds are still available, which could help small businesses pay overheads and keep employees on payroll. Trump also said he supports another round of direct payments to Americans – larger than what Democrats have already proposed - but is against enhanced unemployment benefits that give "a disincentive to work."
July 4th statistics
76% of Americans plan to celebrate Independence Day this year, down from 86% in 2019, as concerns run high over gathering in large groups or attending public events due to the coronavirus pandemic. Those who do have plans for the holiday are forecast to spend over $76 on average for food items - in line with historical trends - for a total of $6.52B. More than half of consumers are planning a cookout or BBQ and 28% of those celebrating expect to purchase additional patriotic items.
Next steps for Hong Kong
About 370 protesters were arrested in Hong Kong on Wednesday, including ten that were apprehended for breaching the new security law imposed by China. "We will not duck our historic responsibilities," said the U.K. in response, offering around 3M Hong Kong residents - who are eligible for BN(O) passports - a path to citizenship (Britain transferred the territory back to China in 1997). The U.S. is also looking into helping those who want to leave Hong Kong via a bipartisan bill known as the "Hong Kong Safe Harbor Act" that would grant Hong Kongers priority refugee status. Go deeper: U.S. House passes bill to sanction Chinese bank.
Big Tech on Capitol Hill
The hearing is planned for later this month and will mark the first time the chief executives of Amazon (NASDAQ:AMZN), Apple (NASDAQ:AAPL), Facebook (NASDAQ:FB) and Google (GOOG, GOOGL) testified together in front of Congress. It's one of the final steps the House Judiciary Committee needs to complete an antitrust probe initiated in June 2019 and will likely produce new legislative proposals to reform and regulate the digital market. The Justice Department, Federal Trade Commission and state attorneys general have also opened inquiries into the companies over markets like online advertising, online retail and smartphone apps.
Most valuable automaker
Tesla (NASDAQ:TSLA) soared 3.7% to $1,120/share on Wednesday to trade at a higher market cap than Japanese carmaker Toyota (NYSE:TM). That makes the company the most valuable automaker in the world and caps off a 10-year run that went into Ludicrous mode over the last six months. Next on the dance card is Tesla's Q2 deliveries report to be followed in a few weeks by the company's earnings report. The party doesn't stop... Shares are up another 4.4% in premarket trade to $1,170.
Latest pandemic bankruptcy
The franchisee operator was already in trouble before the coronavirus crisis, though restaurant shutdowns pushed it over the edge. NPC International, which runs more than 1,225 Pizza Hut (NYSE:YUM) and over 385 Wendy's (NASDAQ:WEN) stores nationwide, has filed for bankruptcy, but said it will continue to operate while it navigates the Chapter 11 process. The company employs nearly 40,000 people in 27 U.S. states, according to its website.
What else is happening...
Optimism builds over Pfizer, (NYSE:PFE), BioNTech's (NASDAQ:BNTX) coronavirus vaccine.
COVID-19 surge prompts McDonald's (NYSE:MCD) to halt reopening plans.
Coty (NYSE:COTY) sued over trade secrets in Kardashian-Jenner deals.
Novartis (NYSE:NVS) finalizes $678M settlement to resolve kickback claims.
American (NASDAQ:AAL) warns it's overstaffed by 8,000 flight attendants.
Nio (NYSE:NIO) posts Q2 delivery growth of 190% to 10,331 vehicles.
Wednesday's Key Earnings
Constellation Brands (NYSE:STZ) +6.3% AH as spirit sales offset a miss in beer. General Mills (NYSE:GIS) -2% declining to give specific guidance. Macy's (NYSE:M) -4.4% with sales dropping 45% in Q1.
Today's Markets
In Asia, Japan +0.1%. Hong Kong +2.9%. China +2.1%. India +1.2%. In Europe, at midday, London +0.8%. Paris +1.5%. Frankfurt +1.7%. Futures at 6:20, Dow +0.9%. S&P +0.6%. Nasdaq +0.4%. Crude +0.5% to $40.03. Gold +0.3% to $1784.40. Bitcoin +0.6% to $9213. Ten-year Treasury Yield flat at 0.68%
submitted by abiech to Winkerpack [link] [comments]

Nice hash actually carries Trojan virus

I don’t know if it’s just me but I decided I wanted to mine some bitcoin using my gpu at first I kept getting virus alert messages that I gave access btw I downloaded nice hash directly from the GitHub page they redirected me to . So then later I noticed the symptoms of the virus begin to show up. The computer started running very slowly also all my norton firewalls were off somehow I did not switch them off every time I went to switch it back on norton crashed. Then comping to the internet I don’t know if it’s Cisco Webex but it never did this before I was using my phone and it kept loading and never joined . At this point I decided to disconnect my internet from my pc. It then connected . I think bandwidth was reduced but can’t be sure it could be webex’s fault .anyone confirm if this.I booted into safe mode after and after that I could not login using my password I don’t think that is a symptom of the virus but can someone confirm this.
Update :- my pc now wasn’t booting up non of the ports were working my keyboard or mouse were not working ik cause they didn’t light up meaning no power . So I did a cmos reset didn’t work so my motherboard has the option to Re flash the bios it’s the x570 meg motherboard so I reflagged my bios and it booted up . Btw this never happened I build my pc myself tested each and every part only after I downloaded this garbage miner I started facing problems.
When u think antivirus are lying I don’t think so y other miners work perfectly fine with the antivirus only this piece of shit software doesn’t . It somehow managed to go to my bios how the f did they do that idk but I swear u literally want trouble if u download this
Edit 3:- ended up deleting windows and downloading it back from a usb stick
submitted by brendantoscano to NiceHash [link] [comments]

MoneroOcean pool owner supports botnets

Hi guys,
As of late my vps that was running Microsoft's RDP got hacked. The attacker ran a malware miner named system.exe that was using 99% CPU. I'm gonna post a screenshot of all of it right here so he gets publicly exposed for his deeds.
https://imgur.com/a/yArkTR8
By further investigation I found that this miner uses config.json as it's configuration file and I'm posting the contents also publicly here:
{ "algo": "cryptonight", "api": { "port": 0, "access-token": null, "id": null, "worker-id": null, "ipv6": false, "restricted": true }, "asm": true, "autosave": true, "av": 0, "background": false, "colors": true, "cpu-affinity": null, "cpu-priority": null, "donate-level": 0, "huge-pages": true, "hw-aes": null, "log-file": null, "max-cpu-usage": 100, "pools": [ { "url": "gulf.moneroocean.stream:80", "user": "44CZd8EvSktM2FzqMVbMBc9pWDcL45yYTWY3VzdymUbjDG6F1734vQh4dj9hjn7tj3eFohS8NGSDSNNVzBxLt7Eb8Vw8vrq", "pass": "x", "rig-id": null, "nicehash": false, "keepalive": false, "variant": -1, "enabled": true, "tls": false, "tls-fingerprint": null } ], "print-time": 60, "retries": 5, "retry-pause": 5, "safe": false, "threads": [ { "low_power_mode": 1, "affine_to_cpu": false, "asm": true }, { "low_power_mode": 1, "affine_to_cpu": false, "asm": true }, { "low_power_mode": 1, "affine_to_cpu": false, "asm": true } ], "user-agent": null, "watch": true }
cmd.bat contents are the following:
attrib -a -s -r -h C:\WINDOWS\Debug\nat* net stop Networks taskkill /f /im system.exe C:\WINDOWS\Debug\nat\svchost.exe install "Networks20181019" C:\WINDOWS\Debug\nat\system.exe sc config "Networks20181019" DisplayName= "Networksr20181019" sc description "Networks20181019" "Microsoft Windows Networks" Set ProcessName=system.exe sc start "Networks20181019" attrib +a +s +r +h C:\WINDOWS\Debug\nat* echo u/off del %USERPROFILE%\Desktop\0.exe
I've scanned everything on VirusTotal and upon visiting the pool I've noticed that the miner has a hefty 50 KH/s. I've also contacted the pool owner via Discord and can post the whole discussion if anyone is willing to see it. He doesn't want to ban the miner, shortly.
I'm not so familiar with Monero but I had Bitcoins and I fully support the mining community. I understand that people with botnets increase difficulty for normal people to make a profit. I've also reported this guy to his ISP by examining the IP found in Event Viewer, since he didn't use a VPN (the IP isn't detected as proxy). I won't post the IP's publicly.
What more can I do? The pool owner also threatened me to report another XMR wallet address to SupportXMR pool because he thought I was a competitive attacker. I can also give that address aswell.
Thank you for reading and stay safe :)
submitted by r00t_of_bnets to Monero [link] [comments]

EXPERIMENT - Tracking Top 10 Cryptos of 2018 - Month 28 Update (Down -82%)

EXPERIMENT - Tracking Top 10 Cryptos of 2018 - Month 28 Update (Down -82%)
https://toptencryptoindexfund.com/tracking-2018-top-10-cryptocurrencies-month-28/
https://preview.redd.it/fadknmsjg5x41.png?width=666&format=png&auto=webp&s=e3a2de76c643f957d1b6f1b2f1b1ca09840988e9
See the full blog post with all the nerdy tables here.
tl;dr - Stellar dominates April, all coins in the green. BTC still way ahead overall, ETH reclaims a distant second place, and NEM (anyone remember NEM?) still in basement. 2018 Top Ten down -82% since Jan. 2018. When taken together, all three experiments (I repeated the experiment for 2019 and 2020) are basically even with S&P 500 since Jan 2018. More details that you probably care about below and stay safe out there.

The Experiment:

Instead of hypothetically tracking cryptos, I made an actual $1000 investment, $100 in each of the Top 10 cryptocurrencies by market cap on the 1st of January 2018. The result? The 2018 Top Ten portfolio ended the year down 85%, my $1000 worth only $150. I repeated the experiment on the 1st of January 2019 with the new 2019 Top Ten cryptos, then again in 2020. Think of the Top Ten Experiments as a lazy man’s Index Fund (no weighting or rebalancing), less technical, but hopefully still a proxy for the market as a whole – or at the very least an interesting snapshot of the 2018, 2019, and 2020 crypto space. I am trying to keep this project simple/accessible for beginners and those looking to get into crypto but maybe not quite ready to jump in yet. I try not to take sides or analyze, but rather attempt to report in a detached manner letting the numbers speak for themselves. This experiment is designed to be documentary in nature, describing a specific period in cryptocurrency history.

The Rules:

Buy $100 of each the Top 10 cryptocurrencies on January 2018, 2019, and 2020. Hold only. No selling. No trading. Report monthly.

Month Twenty-Eight – Down 82%

Welcome back from the brink. While March saw the experiment enter full zombie apocalypse mode, the crypto market recovered bigly (or big league?) in April: every crypto finished in the green by at least double digit percentage gains.

Ranking and April Winners and Losers

Some ups, some downs, a good deal of movement. IOTA and NEM fell one position each down to #25 and #27 respectively. Although it seems like an eternity, remember these were the #7 and #8 ranked coins just a little over two years ago. On the upside, Cardano and Dash both climbed one position, while Stellar clawed back two spots, once again knocking on the door of the Top Ten at #11.
The overall drop out rate remains at the 50% mark (meaning half of the cryptos that started 2018 in the Top Ten have dropped out). NEM, Dash, IOTA, Cardano, and Stellar have been replaced by EOS, Binance Coin, Tezos, Tether, and BSV.
April WinnersStellar dominated April, up an impressive +75%. Cardano finishes in second place, up +63% for the month.
April Losers – Every cryptocurrency finished April in positive territory, but NEM (+12%) and Bitcoin Cash (+15%) lagged behind the rest of the field.
For the overly competitive: below is tally of which coins have the most monthly wins and losses in the first 28 months of the 2018 Top Ten Crypto Index Fund Experiment. Most monthly wins (7): Bitcoin. Most monthly losses (5): Stellar. All cryptos have at least one monthly win and Bitcoin now stands alone as the only crypto that hasn’t lost a month (although it came close in January 2020), when it gained “only” +31%).

Overall update – BTC still way ahead, ETH reclaims second place, NEM reclaims last place.

Bitcoin made up a lot of ground this month, moving -50% since January 2018 last month to -33% at the end of April. BTC is still well ahead of the field. This may feel like a foregone conclusion at this point, but for context, long time 2018 Top Ten Experiment followers will note that this has not always been a given. Just a little over a year ago, for example, BTC was second place behind Stellar.
Same goes for the 2019 and the 2020 Top Ten Experiments: BTC is not always at the top.
Ethereum broke the tie with Litecoin for second place this month, down -70% since January 2018. A similar situation at the bottom: NEM (down -96%) is now alone in last place. That initial $100 investment in NEM? Now worth $4.46.

Total Market Cap for the entire cryptocurrency sector:

The overall crypto market added about $63B in April 2020, basically getting back to late February levels. It is now down -57% from January 2018.

Bitcoin dominance:

Bitcoin dominance basically stayed put this month. For context, the range since the beginning of the experiment in January 2018 has been wide: a high of 70% BitDom in September 2019 and a low of 33% BitDom in February 2018.

Overall return on investment since January 1st, 2018:

The 2018 Top Ten Portfolio gained about $50 bucks in April 2020, back near where it was at the end of February. If I cashed out today, my $1000 initial investment would return about $183, down -82% from January 2018.
Here’s the ROI over the life of the experiment, month by month:
April 2020 is now the ninth consecutive time the portfolio has ended the month down at least -80%.
For comparison, the 2019 and 2020 Top Ten Experiments are solidly in positive territory:
Taking the three portfolios together, here’s the bottom bottom bottom line:
After a $3000 investment in the 2018, 2019, and 2020 Top Ten Cryptocurrencies, my portfolios are worth $2,969‬.
That’s down about -1% for the combined portfolios. Definitely better than last month (aka the zombie apocalypse) where it was down -24%, but not yet back at January (+13%) or February (+6%) levels.

Comparison to S&P 500:

I’m also tracking the S&P 500 as part of my experiment to have a comparison point with other popular investments options. April 2020 saw a large rebound in the stock market. Although not quite back up to end of February levels, the S&P added over +14% back this month. It is now +6% since the start of 2018. The initial $1k investment into crypto would have gained about $60 had it been redirected to the S&P.
This is where it gets interesting. Taking the same drop-$1,000-per-year-on-January-1st approach with the S&P 500 that I’ve been documenting through the Top Ten Crypto Experiments would yield the following:
  • $1000 investment in S&P 500 on January 1st, 2018: +$60
  • $1000 investment in S&P 500 on January 1st, 2019: +$130
  • $1000 investment in S&P 500 on January 1st, 2020: -$120
Taken together, here’s the bottom bottom bottom line for a similar approach with the S&P:
After three $1,000 investments into an S&P 500 index fund in January 2018, 2019, and 2020, my portfolio would be worth $3,070.
That $3,070 is up about +2% since January 2018, compared to the $2,969 value (-1%) of the combined Top Ten Crypto Experiment Portfolios.
That’s a only a 3% difference. Last month the gap was 13%.

Implications/Observations:

The 2018 Experiment’s focus of solely holding the Top Ten Cryptos has never been a winning approach when compared to the overall market. The total market cap is down -57% from January 2018 compared to the -82% for the cryptos that began 2018 in the Top Ten. This of course implies that I would have done a bit better if I’d picked different cryptos – but better if I’d put all my eggs in NEM‘s -96% basket, for example. But at no point in this experiment has this investment strategy been successful: the initial 2018 Top Ten have under-performed each of the twenty-eight months compared to the market overall.
In the other two experiments, it’s a slightly different story. There are a few examples of this approach outperforming the overall market in the parallel 2019 Top Ten Crypto Experiment. For the most recent group, this approach has been 100% successful so far: each of the first four months of the 2020 Experiment show that focusing on the Top Ten beats the overall market.

Conclusion:

Although we’re not nearly out of the woods yet, countries and relaxing restrictions and markets, including the cryptosphere, are bouncing back. Will COVID-19 drive people to or from crypto? What happens if we get hit by a second wave of COVID-19. And how will the approaching Bitcoin halving effect markets in May?
Final word: second waves of COVID-19 are definitely possible. Please take care of yourselves, your families, and your communities. Keep up the social distancing, wear a mask, and wash your hands. Be careful out there.
Thanks for reading and for supporting the experiment. I hope you’ve found it helpful. I continue to be committed to seeing this process through and reporting along the way. Feel free to reach out with any questions and stay tuned for progress reports. Keep an eye out for my parallel projects where I repeat the experiment twice, purchasing another $1000 ($100 each) of two new sets of Top Ten cryptos as of January 1st, 2019 then again on January 1st, 2020.
submitted by Joe-M-4 to CryptoCurrency [link] [comments]

Escape from Tarkov New Player Guide 2.0: 75 Pages and packed with all the information you could ever need for success!

Introduction

Greetings, this is dumnem, also known as Theorchero, but you can call me Theo. I'm an experienced Tarkov player and I'm writing this guide to try and assist new Tarkov players learn the game, because it has one hell of a learning curve. We'll be going over a lot of different aspects of this guide, and it is going to be huge. Feel free to digest this in parts.
Additionally, this is a work in progress. I will write as much as I can in one Reddit post, but subsequent parts will be in additional comments. Google Docs Version (Note: Link is placeholder atm, but here is a sneak preview!)
Disclaimer: Tarkov recently updated to .12! That's a HUGE amount of information that I need to update. Please be patient! If there is anything I have gotten wrong or may have omitted, please let me know.
This is Primarily directed towards Tarkov Novices, but should be useful for even Tarkov Veterans. It hopefully includes everything you need to know to be able to go into a Raid equipped for success and to successfully extract with gear.
Want to play with friends? Want to have fun and learn Tarkov? Check out my discord here.

Changelog

3/9/20:
  • [Updated for .12]
  • Money making strategies completed.
  • Minor grammar adjustments, adding additional medical items.
  • Added additional resources, updated old ones.
  • Hideout section complete

Table of Contents

  • Tarkov Overview - What is Escape from Tarkov?
  • Tarkov Resources - Useful links
  • Tarkov's Maps
  • Tarkov's Health System
  • Tarkov's Hideout System
  • Tarkov's Quest System and Progression
  • Tarkov's Hotkeys to Know
  • Getting Started
  • Player Scavs
  • New Player's loadouts - LL1 Traders
  • What to Loot - How to get the most money per slot
  • Stash Management - How to combat Gear Fear
  • Tarkov Economy - How do I make money?
  • What now?

Tarkov Overview - What is Escape from Tarkov?

Escape from Tarkov is a tactical, realistic, FPS with MMO elements developed by Battlestate Games. It is currently in closed Beta. The game features several maps in which your primary character, your PMC, goes into Raids in order to find and salvage loot and useful equipment to survive and thrive in Tarkov. Death is very punishing in Tarkov. If you die you lose everything you had on you when you die (with the exception of what's inside your Container and your melee weapon) including any equipment you brought with you or what you found inside the Raid.
Enemies can be players (PMCs) or Scavengers ('Scavs') that are either controlled by AI or by players. Unlike many shooters, AI enemies in Tarkov are deadly - they can and will kill you on sight. They have recently been upgraded to act more intelligently, shoot more accurately, and react to situations on the map, such as investigating noise of gunfire or searching. It features beautiful and immersive environments, intricate and in-depth weapon modification system, a complex health system, dynamic and specific loot placement, and multiple options for engagement. Do you want to play slow and stealthy, to avoid fights, or set up a deadly ambush on an unwary foe? Or do you prefer raw combat, where only your quick wit, placements of shots, and tenaciousness determines who gets out alive? It's your Tarkov. You make the rules.

Tarkov Resources - Useful links

I take no credit or responsibility for any of the content in these links. To the best of my knowledge, these are updated consistently and are accurate, but user beware.

Quick-Reference Ammo Chart

An updated ammo chart can be found on the wiki.

Tarkov Wiki

Absolutely fantastic resource. You can visit them here.
It is a massive collection of everything that we players have been able to find.
They contain trades, user-created maps, lists of ammo, parts, weapons, loot, etc. If it's in the game, it's on the Wiki, somewhere.
I highly recommend opening the wiki page for the Map that you plan on raiding in.
Factory
Customs
Woods
Shoreline
Interchange
Reserve
The Lab ('Labs')

Map Keys and You

Huge collection of all the keys in the game. These are also on the wiki, but this page has them all on one page, and tries to inform the user if the key is worth keeping or using.
Check it out here.
This section is open to revision. Mention me in a thread (or in the comments below) about a resource and I'll see about adding it here.

Tarkov's Weapon Compatibility Guide

Pretty self explanatory. Also includes a Key guide and a Mod guide.
Check it out here.

HUGE Reference Bible by Veritas

Courtesy of Veritas (Send me his reddit username?), It's located here. (Open in new tab.) Contains: Detailed information about: Ammunition, Health, Firearms, Body Armor, Helmets, Rigs & Backpacks, Labs & Quest keys. Outdated! Needs to be updated for .12

Offline Raids - Player Practice

Offline raids is a feature added for testing and learning purposes for both new and veteran players alike. It is an incredibly useful tool.
In an offline raid, your progress is not saved. This means you don't keep anything you find, keep any experience 'earned' if you successfully extract, or lose any gear when/if you die. To access OFFLINE Raids, head into a Raid normally until you see this screen. Then Check the box indicating that you want to do an OFFLINE raid and you're good to go! You even have a choice on whether or not to add AI. You can also control how many AI enemies spawn, fewer than normal or a great deal more! You can even make Scavs fight each other. (Framerates beware.)
You can control how many scavs spawn (if any) as well as a number of other paramaters. New players should use offline raids as a tool to practice shooting, controls, movement, etc.

Tarkov's Maps

Tarkov features several maps - ranging from wide, beautiful vistas to ruined factory districts, to an abandoned laboratory where illegal experiments were being conducted. It is important to learn the maps you intend to play. In order to keep your gear, you must 'extract' at one of your designated exfiltration points. Not all extracts will be active every game, and some are conditional.

To see what extracts are available to you, double tap 'O' to show raid time and your exfils. If it has a ???? it might not be open.

Factory

Gate 3 Extract
A small, fast-paced map that was primarily created for PvP. Scavs spawn in all the time. Very close quarters, shotguns and SMGs tend to dominate here. PMCs can only access one Exit (Gate 3) without the Factory Exit Key. Good place to go if you need PMC kills as action is pretty much guaranteed. It is recommended NOT to bring in a lot of gear to Factory until you are experienced.
Factory Map in PvP is best played in Duos - due to the layout of the map, a Maximum of 6 PMCs may be present in the game. Due to the split spawn points, you effectively have 'sides' that have up to 3 spawn locations that are close together. This is why it is recommended to secure/scout enemy spawn locations. If you go in with a Duo, you at max have 2 players on your side for an even 2v2, and if played smartly you can eliminate them and know your 'side' is secure from aggression for the time being.
Upon loading in, scavs usually take a couple minutes to spawn, though this depends on the server in question and isn't super reliable. For new players, the best loadout in Factory is going to be a MP-153 Loadout - using just an MBSS (or similar bag) and ammo in your pocket to fight other players and Scavs. Scavs will often spawn with AKs and other 'vendorable' weapons, so is a good source of income.
Factory is also one of the best maps to Scav into, as Scavs can typically avoid the Exit camping strategy employed by a lot of weaker or newer players in order to secure gear, because they typically have extra exfiltrations whereas PMCs without the Factory Exit Key are stuck using Gate 3.
If you go in with a modicum of gear, it is recommended to keep at least a flashbang (Zarya) in your container. This will allow you to quickly slot it into an empty chest rig or pocket so you can throw it into the exit door, this will flash enemies and is cheap to do - the one time you survive because you flashed the 3 exit campers using shotguns will make this strategy extremely valuable.

Customs

Extract map
A fairly large map that was recently expanded and is expected to receive an overhaul within a patch or two, due to the choke point design of the map. Essentially, players spawn either on 'warehouse' or 'boiler (stacks)' side. If you see a large red warehouse ('big red') near you (Customs Warehouse), then you spawned on the warehouse side. If you don't, you likely spawned near Boiler side. Players can also spawn in several places in the woods North of boilers.
This map has the most quests in the game. Geared players often come to customs to challenge other squads over Dorm loot and to fight a Scav boss. New players are usually trying to do one of several early quests, such as ‘Debut’ which tasks them with killing 5 scavs on Customs and acquiring 2 MR-133 shotguns (pump shotties) from their corpses. Construction is also a popular hotspot as it has a lot of scav spawns as well as the location for the Bronze Pocketwatch, which is Prapor’s second quest.
Customs itself does not offer very much loot on average. There are several spots which can contain decent, but the vast majority is located in a couple different locations.
Dorms is the best loot location for Customs. It has two sets, 2 story and 3 story dorms. They each have their own sections of good loot, but the best is considered to be 3 story dorms, due to the presence of the Marked Room. The marked room requires a marked key to open, and has a good chance to spawn rare loot, such as keytools, documents cases, weapons cases, and high-end weapons. Due to the nature of the high value of this room, it’s almost always contested and it’s one of the best rooms in the game to farm, albeit with difficulty to successfully extract with the loot found. Note, though the key required has a maximum amount of uses, it is a fairly cheap key, and worth buying if you like to run customs and go to Dorms.
Dorms also has a ton of early quests (Operation Aquarius, for one) with some keys being valuable to use, but most dorms keys aren’t worth that much on the market. There’s too many to list here, but make sure to check the Map Keys and You at the top of the guide to determine what the value of a particular key is.
Checkpoint (Military Checkpoint) is also a decent loot spot, though not nearly as good as Dorms. If you have the key, it has a grenade box and 2 ammo boxes which can spawn good ammo. The jacket in the blue car also can spawn good medical keys as well as medical items. It is very close to the gas station, so I’ll include that here as well.
The Gas Station is one of the possible spawn locations for the scav boss. It has loose food items, a weapon box in the side room, with two keyed rooms leading to a safe and a med bag and box. Also contains a couple registers and food spawns on the floor. The emercom key can spawn on the seat in the ambulance out front.
North of the gas station is the Antenna, which contains 3 weapon boxes, a tool box, and a med bag. Possible location for scav boss spawn, albeit rarely, and also spawns regular scavs, like checkpoint and gas station.
Beyond that, there’s scattered loot around the map in different places, but usually not enough to warrant going out of your way for. There’s also scav caches, mostly around the middle road outside construction and around the boiler area.
The scav boss for customs is 'Reshala.’ He has 5 guards that have above-average gear and can be tough to deal with solo. The guards tend to be more aggressive than normal scavs, so they can be a lot to handle but are vulnerable to fragmentation grenades or flashbangs due to their close proximity to one another. Reshala himself has a good chance to have one or more bitcoin in his pockets, as well as his unique Golden TT, which is required for a Jaegar quest and used in conjunction with other Golden TT's to purchase a Tactec, good plate carrier. Reshala may spawn either Dorms (either bldg), New Gas Station, or rarely the tower north of the gas station. Scav bosses are dangerous enemies with escorts that have above-average loot (sometimes great loot) and are hostile to everyone, Including player scavs. Scav guards will approach a player scav and basically tell them to leave the area, and if they walk closer towards the scav boss they turn hostile.
The ‘official’ spawn rate for Reshala is 35%.

Woods

Woods Map with Exfil
A very large map that is mostly just a large forest, with the occasional bunker, and the Lumber Mill in the center. The Lumber Mill is the primary point of interest, as it contains a couple quest locations and is the primary location to farm Scavs, as Scavs killed on woods are a good source of end-game keys that are hard to find.
Since the map is so large and open, sniper rifles with scopes usually reign king here. You will see a lot of players with Mosin rifles as they are a cheap way to train the Sniper skill (for a quest later on) and are capable of killing geared players and scavs alike.
Overall, not usually very populated. An early quest from Prapor sends you here to kill a number of Scavs. A good map to learn the game, as although the loot is not fantastic, you can get experience with how the game runs and operates while fighting AI and possibly getting lucky with a key find off a scav.
As of .12, Woods now houses a Scav boss that acts as a Sniper scav. He is incredibly dangerous and usually carries a tricked-out SVDS. The 7.62x54 caliber is not to be underestimated. That caliber can and will wreck your shit through what most players are capable of wearing, especially early on in a wipe. He may also carry an AK-105, so he's going to be dangerous at both short and long ranges.
He has two guards, and he typically patrols the area around the Sawmill, and carries a key to a cache nearby full of goodies. His key is part of a quest for Jaegar.
Woods also has two bunkers, one of them being an extract and requiring a key. Both bunkers have some moderate loot in them, thus worth visiting, though not necessarily worth going out of your way for them. Several quests occur around the sawmill area, which contains a good couple keys that can spawn.

Shoreline

Shoreline Map, with Loot, Exfil, etc
A very large map, notorious for its FPS hit. Generally speaking, one of the better maps for loot. The primary point of interest is the Resort, but scavs spawn there, and is primarily occupied by hatchlings (players only with hatchet, ie melee weapon) and geared players. Resort has great loot, but requires keys to access most of it.
A great map to learn though from new players as the outskirts still contains plenty of loot and combat opportunities with AI scavs. You can hit Villa, Scav Island, Weather station, Docks, etc and come out with a backpack full of valuable gear fairly easily. The Village (Not to be confused with villa) contains a lot of toolboxes which can contain lots of parts used to upgrade your Hideout.
Location of many quests, including a large quest chain where players are required to kill many, many, scavs on Shoreline. For this and other reasons, probably the best map for new players to learn the game with.
A good loot route is to hit the village (caches in it), scav island (2 med bags, 2 toolboxes, 2 weapon boxes, 1 cache), burning gas station (weapon boxes and a safe), pier (potential extract, 2 pcs 2 safes and lots of filing cabinets), and weather station. Scavs may spawn around these areas, but most players just head straight for resort anyway, so you are much less likely to encounter them, especially if you avoid Mylta power (most players hit it on the way to or leaving from the resort). Excellent route as a player scav as well.

Interchange

Detailed map
Great, great loot area, but very complex map. Old computers might face unique struggles with this map. Features a mostly-binary exfil system like Shoreline, but.. kinda worse. Exfil camping is fairly common on this map, but usually avoidable. Huge map with multiple floors and many many different stores. Communication with teammates is a challenge on this map, but the map is also fantastically detailed.
This map features a lot of loot that depends on the kind of store you're in. It's a great place to farm rare barter materials which are valuable to sell on the Flea market or to use for quests or for hideout upgrades. An early quest (from Ragman) sends you here to kill a large amount of Scavs. I'd recommend getting Ragman to level 2 and accepting his quest asap when going to Interchange, as getting this quest done can take a while as it is and you want all scav kills to count towards progress.
Both the tech stores (Techlight, Techxo, Rasmussen) and department stores (Groshan, Idea, OLI) are the primary places to hit. There’s also Kiba (weapons store) as well as Emercom and Mantis. Players have different strategies, but this map is unique in the sense that it really rewards exploring. Most stores will have things you can grab that are worth quite a bit but are often overlooked. Very popular place to go in as a Player Scav.

Reserve

Brand new map, chock full of loot. Has more complex extracts than other maps, save for Labs. Excellent place to farm rare barter items, computer parts, and especially military hardware. PMCs have limited extracts, most being conditional, and the ones that aren’t require activation of ‘power’ to turn on the extract, which alerts the map the extract has been opened and can spawn Raiders (more on them below.)
Additionally, has a scav boss by the name of Glukhar, who has multiple heavily armed guards. He has multiple spawn locations and can arrive with the train.

The Lab ('Labs')

Here's a map.
DISCLAIMER: Labs, like much of Tarkov, is under constant development, so issues may be fixed or created without warning. Always check patch notes!
Labs is a very complex map compared to the rest of Tarkov. There is a great deal more exfiltrations but many of them have requirements or a sequence of events needed to be able to extract from them. It is recommended to read the Tarkov Wiki on Labs before raiding there.

LABS IS NOT LIKE OTHER MAPS. READ THIS SECTION CAREFULLY.

Labs is a lucrative end-game raid location, comparable to 'dungeons' in other games. They are populated by tougher enemies that give greater rewards. In order to go to labs, you need to acquire a keycard, this functions like mechanical keys but instead of opening a door, they unlock your ability to select Labs for a raid.
They may be found in-raid in various locations, most notably in scavs backpacks, pockets, and in filing cabinets. They may be purchased from Therapist at LL4 for 189K Roubles. Labs are populated by a unique kind of AI enemy, Raiders.

Raiders

Raiders are the Labs form of Scavs, or AI enemies. However, unlike other maps, they cannot contain player Scavs. Raiders have a much tougher than your average scav, they are capable of advanced tactics (such as flanking) and throw grenades and use other consumables as a player would. Once 'locked' onto you, they are typically capable of killing you very quickly, even if you are wearing high-end armor.
In Tarkov, Raiders act like the avatars of Death. They are clad in USEC and BEAR equipment, as they are effectively AI PMCs. Many changes have been made to labs and specifically how Raider AI works and to prevent exploits to easily farm them as well as bugs where they could be deadlier than intended.
A general rule of thumb is not to fight Raiders directly. They can and WILL kill you. Raiders can spawn with 7N9, or 'big boy' ammo. This ammunition type is incredibly lethal to players, even those wearing the toughest armor. If you get shot in the head, doesn't matter what kind of helmet, face shield, killa helmet, etc you are wearing, you will almost certainly die.
Because Raiders are controlled by AI, they have zero ping. They may also end to immediately respond as if you were aggressive even if they did not originally know you were there - ESP Raiders effectively will prone and return fire even as you ADS and put them in your sights.
This is why engaging a Raider must be done very, very carefully. There are a few strategies that you may employ, most commonly some form of baiting them towards an area and then killing them when they arrive. Players may accomplish this by generating noise - gunfire, melee weapon hitting walls, crates, etc, player deaths, players Mumbling (F1 by default) can all attract Raiders to investigate your area.
Due to the high power of Raiders, players often go in with minimal loadouts and seek to avoid conflict with other players, especially geared ones. Most players avoid PvP in Labs, though a good portion of the playerbase thoroughly enjoys hunting down poorly-geared players after they kill a few Raiders for them.
As such, players will lay prone in a hallway, or crouch in a room, and attract Raiders to enter their domicile by opening the door, and immediately headshotting them. Few Raiders actually wear helmets (though some do) so most players specialize in 'flesh ammo' or, ammunition that foregoes armor penetration in favor of raw damage in order to kill Raiders more reliably, because Raiders have slightly higher head health than PMCs do.
Raiders spawn with a great variety of equipment, weapons, armor, and materials such as medication or hideout parts. They tend to have chest armor and may have different helmets. Their pockets can contain Labs keycards, morphine, Ifaks, cash, and other items. They're always worth checking.
Raiders are a good source of grenades, they will often have F-1's and Zarya's in their rig or pockets that you can use to fight off players and Raiders alike.
Recently, changes have been made to Labs to make them less profitable so that other maps are more appealing. The cost and rarity of keycards increased, as well as reducing the frequency that raiders spawn, so that they come in more infrequent groups but also tighter in formation, while also lowering the overall output of individual Raiders, so that they are less likely to have a bunch of extra materials, such as grenades and other items.
Experience Farming on Labs
Labs is one of the best places to farm experience in the entire game. Killing a Raider with a headshot awards 1100 Experience. This does not include any looting, inspection (searching bodies), examine, streak, or other experience.
Killing a large sequence of Raiders gives additional bonus experience in the form of Streak rewards, usually 100 bonus exp per additional kill.
Surviving the raid multiplies all of these sources of experience by 1.5x
Changes coming to Labs
Disclaimer: I am not a BSG developer or employee. This is what I have seen on this subreddit and heard elsewhere. Some might be purely rumor, but other points are confirmed by Nikita Labs is undergoing constant changes. Nikita and BSG take feedback seriously, and always consider what the players are telling them. It known that Labs will eventually be accessed via the Streets of Tarkov map, and will require you to enter that map, make it to the labs entrance, and then extract from Labs to return to Streets of Tarkov and exfil from there as well. This will likely add an additional layer of risk to being ambushed for your goodies along your way out, as well as punishing damage taken in labs more severely. Additionally, keycards will have a limited number of uses, and may open more than one room.
The full extent of the changes coming is not known.
Remember, you can load a map in OFFLINE mode to practice against bots or to learn the map without fear of losing gear.

Tarkov's Health System

Tarkov Wiki Article
Tarkov has a very advanced health system, and while it might seem overwhelming at first, you'll get the hang of it rather quickly. It features a very wide variety of effects and injury, including hydration, energy, blood pressure, blood loss, fractures, contusion, intoxication, exhaustion, tremors and more.
Not all of the Health System is implemented yet. Expect changes!
Your character (PMC, or otherwise) has a combined Health of 435. Each of his limbs have separate health. Taking damage to a limb that reduces it to 0 'blacks' that limb. Blacked limbs are a problem. They greatly impair the activities your PMC performs, and taking damage in a blacked limb amplifies the damage by a multiplier and spreads that damage among your other non-black limbs equally. You cannot heal a blacked limb without the use of a Surgical Kit.
Notes: Bloodloss applies damage to the affected limb and can be spread like other damage to a blacked limb. Treat immediately. Also causes significant dehydration! Bloodloss also helps level your Vitality skill, which in turn gives you experience towards your Health skill, which is necessary to reach level 2 of in order to improve your hideout.
Losing a limb applies additional effects. Fractures also apply these effects but not the damage amplification (Except for damage if running on fractured leg.) Fractures require specialized medical kits to heal.
Dehydration is what happens when your Hydration level reaches 0. You can view your Hydration level in your gear page, at the bottom left. Becoming dehydrated is extremely bad. You take constant damage. Taking dehydration damage can kill you if you have a black chest or head. Restoring hydration helps train Metabolism, which improves positive effects from food and drink.
Head/Chest: Bullet damage resulting in losing your head or chest is instant death. Note: Bloodloss resulting in your Head/Chest being black does not result in death, but any damage to them beyond that point will! A back chest will causes you to cough (much like your stomach!)
Painkillers: Prevents coughing that comes from your chest. Doesn't help otherwise.
Stomach: Massively increased rate of dehydration and energy loss. You must find liquids or exit the Raid soon. Additionally, your PMC will cough sputter loudly, attracting attention. A black stomach multiplies damage taken by 1.5 and redistributes that damage across your entire health pool.
Painkillers: Significantly reduces the frequency and volume of the coughs.
Arms: Makes activities like searching, reloading, etc, take additional time, as well as adding a sway, reducing accuracy. Arms have a .7x damage multiplier.
Painkillers: Reduces sway, removes debuff Pain.
Legs: Blacked legs cause your PMC to stumble and be unable to run. Blacked legs have a 1x damage multiplier.
Painkillers: Allows you to walk at full speed and to run.
WARNING: Running while your legs are blacked or fractured WILL DAMAGE YOU.
Health Items
Tarkov features many health items - 'Aid' items, which can be used to restore your characters health and to fix ailments or injuries he receives as the result of combat or mishaps. The two most important health conditions to consider are bloodloss and fractures, which have both been covered above. Some food items may have ancillary effects, such as losing hydration.
Since in the current patch the only ailments to worry about are bleeding and fractures, it changes which health items are most necessary. We'll go over them below.

Health Restoration

Medical Items on Wiki
AI-2 medkit
The newb's medical kit. You receive several of these when you start Tarkov - they'll already be in your stash. Available from Level I Therapist, they are cheap and effective way of healing early in the game. They will not stop bloodloss. Because of this, you also need to bring bandages or a higher-grade medical kit. Affectionately called 'little cheeses' by the Tarkov community. Using it takes 2 seconds, and because of how cheap it is, it's often brought in by higher level players to supplement their healing without draining their main kit (which is capable of healing bloodloss or sometimes fractures). Due to its short use time, it's often very useful during combat as you can take cover and quickly recover damage taken to a vital limb. They're also useful as you can buy them from Therapist to heal yourself if you died in a raid.
Bandages
The newb's bloodloss solution. Available from Therapist at Level I. A better version, the Army Bandage is available at Level II, after a quest. Mostly obsolete after unlocking the Car Medical kit, but some players value them due to the Car's overall low health pool. Activating takes 4 seconds, and removes bloodloss to one limb.
Splint
The newb's solution to fractures. Cheap, takes five seconds to use, and takes up 1 slot. Fractures are much more common this patch, due to them being added back in the game from standard bullet wounds, not just drops. Available from Therapist at Level I, no quest needed. Can be used to craft a Salewa.
Alu Splint
More advanced form of the normal split. Works the same, but has up to 5 uses. Recommended to carry in your container if possible, due to frequency of fractures from gunfire.
CMS (Compact Medical Surgery) Kit
New medical item added in .12, fantastic item. Allows you to perform field surgery, removing the black limb state and allowing you to heal it beyond 0 hp. Takes 16 seconds to use, and cannot be cancelled so make sure you are safe if you are using it! Will reduce the maximum health of the limb it's used on by 40-55%, but will effectively remove all negative effects incurred by having a black limb. Highly recommended to carry in your container for emergencies. Can be bartered from Jaeger LL1, and purchased for roubles LL2.
Surv12 field surgical kit
Same as the compact surgical kit, but takes 4 seconds longer, and the health penalty is reduces to 10-20% max health of the limb. Considering this kit is 1x3, taking up a huge amount of space, it's probably not worth using. It's just too large. Better this than nothing, though.
Car Medical Kit
The newb's first real medical solution. Available LL1 as a barter (2 Duct Tape) and available for Roubles after completing Therapist's second quest. Has a larger health pool than AI-2's (220, vs AI-2's 100), and removes bloodloss. Takes up a 1x2 slot, so requires to be placed in a tactical rig in order to be used effectively. Cheap and fairly efficient, takes a standard 4 seconds to use. Rendered effectively obsolete when the Salewa is unlocked.
Often kept in a player's secure container as a backup health pool, before IFAKs are unlocked.
Salewa
Good medkit for use in mid and end-game. Contains 400 total health and can remove bloodloss. More rouble efficient form of a healing due to its high health pool, costs 13k roubles. Same size as the Car medical kit, so requires a tactical rig to use effectively. Because Tarkov does not currently have effects like Toxication in the game at the moment, this kit is favored by most players who go into a raid with at least a moderate level of gear. With a high health pool and relatively low cost, it's also a more efficient way of healing damage sustained while in raids. Unlocked at Therapist Level II after completing a level 10 Prapor quest, Postman Pat Part II. Required as part of Therapist's first quest, Shortage. This makes Salewas very valuable early on in a wipe as it gatekeeps the rest of Therapist's quests, most of which occur on Customs early on. Can be crafted in your meds station with a painkiller, splint, and bandage.
IFAK
Fantastic medical kit, and is the one preferred by most players. Features 300 health and the ability to remove bloodloss and a host of other negative effects that are not yet implemented into the game. It does not, however, remove fractures. Taking up only a single slot, it is favored by players in all stages of gear, and it is recommend to carry one in your Secure Container in case of emergencies. Is available at Therapist Level II for a barter (Sugar + Sodium), and may be purchased for Roubles at Level III after completing Healthcare Privacy, Part I. It is a fairly expensive kit, but due to its durability, its small size, and ability to remove bloodloss, it is a very common medical item used by players of all levels. Can be crafted in Lvl 2 medstation.
Grizzly
The 'big daddy' medical kit, boasting an impressive total health resource of 1800. It is also a very large kit, taking up 4 slots (2x2) - in order to be able to use this quickly, it would require specialized tactical rigs that feature a 2x2 slot. It removes all negative effects (some costing HP resource), including fractures. Used by highly-geared players who intend on staying in raids for an extended period of time, or by players with additional Secure Container space available in case of emergencies. It is available for barter at Therapist Level II, and purchase at Therapist Level 4. Due to its price point from Therapist at just under 23k Roubles and its healthpool of 1800, it is by far the most efficient method of healing from raid damage, at a 1.3 roubles per health, dramatically lower than other options available. Can be crafted in Lvl 3 medstation.

Pain Management

Using any of these items results in your character being 'On Painkillers' which allows you to sprint on fractured and blacked legs, as well as reducing effects of fractures and blacked limbs, and removing the debuff Pain. Essentially, the only difference between most of these items are the speed of use, price, availability, and duration of the effect. Note that the Hideout has changed how some of these items are used, and because Tarkov is under constant development, it is very likely that these materials may be used to create higher-grade medkits or to upgrade your medstation. That being the case, it's best to hoard the unknown items for now as efficiently as possible until you know you don't need them.
Analgin Painkillers
The holy grail of pain medication. "Painkillers" have 4 total uses. The total duration is greater than Morphine and less risk of waste. Takes a short time to use, and is available from Therapist Level 1 for both barter and Roubles. Makes a loud, distinctive gulping noise. Can be used to craft Salewa kits.
Morphine
Quick application of painkillers. Favored by some highly geared players as it has greater usability in combat then it's typical counterpart, Painkillers. Has a longer duration, but only one use. It is required for a fairly early Therapist (and a late Peacekeeper) Quest, so it is recommend to hoard 10 of them, then sell the rest unless you intend on using them. They are worth a good amount to Therapist and take up little space so they are a valuable loot item. Available from Therapist for Roubles at Level 4, after completing Healthcare Privacy, Part 3.
Augmentin
Basically a cheaper Morphine. One use, 205s. Not recommended over Painkillers due to its cost. No current barter for this item, so usually it's just a fairly expensive, small loot item. Most likely a component of a medstation manufacturing process or upgrade. Keep it.
Ibuprofen
Powerful painkiller. Lasts 500 seconds and has 12 uses. This item is recommended as your long-term solution for painkillers. While it is valuable because it's used to trade for THICC items case, it's the cheapest component and is very useful as a painkiller. It has a long duration and a large amount of uses, so keep it in your container for use as a painkiller if your primary painkillers wear off. Don't use it completely up, though. Keep the 1/12 bottles for the trade.
Vaseline
Powerful medical item. Cannot be purchased from dealers. Has a maximum of 10 uses. Removes Pain, applies Painkillers for 500 seconds (8.3 minutes). Useful to keep in your container as an alternative to Painkillers, though it takes 6 seconds to use, which is longer than other painkillers. Used as part of a barter trade for the Medcase.
Golden Star Balm
Fairly useful medical item. It can remove Pain and Contusion (not a big deal of a debuff, goes away on its own shortly) and provides a small bonus to hydration and energy. It also removes toxication and Radiation exposure, both of which are not yet implemented into the game. Like Vaseline, has a maximum of 10 uses. Painkiller effect lasts for 10 minutes, and takes 7 seconds to apply. Recommended to take only if you are going on large maps and you have extra room in your container. Can be used with Ibuprofen and 5x Med parts to craft 7 Propital.

Continued below in a series of comments, due to character limit.

submitted by dumnem to EscapefromTarkov [link] [comments]

How to Keep Your Bitcoins Safe? (avoiding scam, theft and fraud) Is Bitcoin Legal? Is Bitcoin Safe? HOW TO GET A BITCOIN WALLET - Safe and Secure Way How To Buy Bitcoin: The Safe And Easy Way How To Keep Bitcoin Safe (How To Store And Keep Bitcoin Safely)

Safe mode disabled by default. Safe mode is now disabled by default and must be manually enabled (with -disablesafemode=0) if you wish to use it. Safe mode is a feature that disables a subset of RPC calls - mostly related to the wallet and sending - automatically in case certain problem conditions with the network are detected. Digital money that’s instant, private, and free from bank fees. Download our official wallet app and start using Bitcoin today. Read news, start mining, and buy BTC or BCH. Plus 500. Plus500 is a leading CFD provider that allows its massive customer base to trade the world's most popular assets such as Shares, Indices, Forex, ETFs, Options, Indices and Cryptocurrencies with leverage up to 30x.. You can demo trade the traditional financial assets in addition to cryptocurrency CFD's such as Bitcoin, Ethereum, Litecoin, Neo, Ripple XRP, EOS, Cardano and Tron. If you check the yahoo answers of the question is Bitcoin safe, you will realize that it actually carries some risks. This is mainly due to the fact that the Bitcoin value is 3 times as volatile as the price of oil and many other assets. Another disturbing thing is the fact that the transferred made in the Bitcoin network, can never be deleted. Rationale: Safe mode is useless. It only disables some RPC commands when large work forks are detected. Nothing else is affected by safe mode. It seems that very few people would be affected by safe mode. The people who use Core as a wallet are primarily using it through the GUI, which safe mode does not effect. In the GUI, transactions will still be made as normal; only a warning is displayed.

[index] [17808] [27203] [3504] [8545] [364] [24104] [27902] [10678] [25149] [26562]

How to Keep Your Bitcoins Safe? (avoiding scam, theft and fraud)

What is Bitcoin? Is Bitcoin Safe? - Duration: 3:17. Kaspersky 14,868 views. ... Bitcoin Documentary Crypto Currencies ... Restricted Mode: Off History Help About ... A short guide that demonstrates how keep your Bitcoin safe from scams by taking the time to check the GPG signatures to verify Electrum downloads via GPG4Win. This is an important practice that ... CZ added, however, that fiat inflation and its impact on investor holdings would ultimately increase Bitcoin’s safe haven profile over time. On the topic of safe havens, attention stayed focused ... How To Safely Store Your Bitcoin Cryptocurrency Click here to SUBSCRIBE to my channel https://tinyurl.com/WayneTalksMoney Also click that bell notification i... Once everything is set up, just head over to your Bitcoin Vault and hit ‘Deposit’ and put in whatever amount you want to keep safe. It’s that simple and it’s 100% secure.

Flag Counter