It is an honor and absolute pleasure to announce @niftynei() ๐บ๐ธ๐ธ๐งก in a starring role in the movie.๐คฉ
Lisa is a #Bitcoin hacker, educator, and @Core_LN contributor.
She founded base58btc the bitcoin engineering school and
btcplusplus an alpha-packed bitcoin dev event series. โจ
In this address bc1q7l0h956r8sqfzjw3278s35p43z0zzmqnfnmfr4 , there is 0.03223686 ~ $1,300 and they are up for grabs.
Why?
Well because this is a game organized by Wasabi Wallet called #HuntingSats, the scope is to challenge people to learn how to use Bitcoin wallets and be rewarded for their work.
More info: 
Each of the companies in the picture was given 1 of the 12-word BIP39 seed phrase that unlocks the wallet.
They will release the word on their Twitter(I know it sucks and all, but hey do you want the sats or not?) at any time between (today)23 January and 26 January
You should follow them and the #HuntingSats hashtag to get the word before anyone else.
I'd wish you good luck, but luck has absolutely nothing to do with it!
(and yes, I did take all the pictures :p)
Miners have 1 job, ordering TXs in Blocks.
They hash all the data inside the block until the hash of the block starts with a certain number of zeros.
As the block data does not change, there is this field(nonce), where they iterate until the right block is found.
So the only condition for miners to get paid, is they find the right hash.
(if block is valid :p)
But if they include TXs in this block, they will pocket the fees from them on top of the block reward.
So why would any (rational) miner ever refuse to include TXs?
A pool constructs a block and partitions the amount of work/searching each individual miner does.
This way, smaller miners can be profitable.
But the pool sends the block + the hash of the previous block at the same time.
(as it builds on top of it)
Right after a block is found, the miner will send the nonce to the pool, and now he waits to get a new block.
Remember miners don't turn off their machines.
So while waiting for the next block from the pool, might as well mine mine something.
But he has no TXs to include!
Mining is a purely satistical game, the more hashrate you have the more lucky you are.
Sometimes, in that small time window when waiting for the new block, a miner will find a block.
The reason for empty blocks is the latency of communication between pools and miners.
These are rational miners acting in their economic interest.
That being said, it would be better for them to get more BTC fees + people get their TXs confirmed.
One solution for this problem is @StratumV2
Remember how the pools sent the block and previous hash to miners?
8/9
In StratumV2 the 2 are separated.
So the mining pool can look in their mempool for TXs that did not make it in the current block and send these block templates ahead of time to the miner.
This way if they find a block, they work on these ones straight away with no latency!
Thanks for reading and like & retweet, if you liked it. :D
Follow for more #Bitcoin facts like this every day!
And the #BitcoinFactOfTheDay was brought to you by BitBox !๐จ๐ญ๐
SHA256 is designed & patented (released royalty-free), by the NSA.
Even though paranoia is a minimal requirement in cryptography, I don't think there are backdoors here.
Satoshi may have had his doubts.
Whenever hashing is performed in Bitcoin is done 2 times.
The most obvious use of SHA256 is when doing the PoW, but it is used a a LOT of other places.
All of the done 2 times.
The theory is that Satoshi though it prevents certain( length extension attacks) attacks.
But the reality is it does not really add any benefits.
Even though this fact became more obvious, the double-hashing trend continued with future things that were built.
It seemed it was easier to subscribe to the "superstition", rather than convenience people that hashing once is safe.
The "modern" changes use single hashing, and in some cases, hashing was dropped altogether.
The design choices made by Satoshis are consensus-breaking, which means that changing them would cause a fork, so they will probably stay like this forever.
Thanks for reading and like & repost, if you liked it. :D
Follow for more #Bitcoin facts like this every day!
And the #BitcoinFactOfTheDay was brought to you by BitBox !๐จ๐ญ๐
Oddly enough the designer also made a live mockup, which is still working today.
LIVE mockup:
1st of all this was a bounty.
I DID NOT STEAL THE ETH :D
Check Twitter and I am tagged in an Ethereum post.
Only used Ethereum 2 times, initially not interested.
The pictures are clues to a BIP39 seed which unlocks 0.1 ETH
Ok, let me take another look.
As all the words are from the 2048 known words Dictionary.
I took a guess for each picture and checked if it was in the dictionary.
Found 11, not sure about the 4th.
But it's one of the 2048 words, so I just need to try all of them.
Easy job for a computer :p
Enter Seed Savior - Brute forces 1 word.
I just pasted the words I know and it showed all the possible valid 4th word.
As I know the address, I just have to search for it here.
Got 138 valid 4th words ,but my address is not present..
At least 1 of my guesses is wrong.
Now really want to find the seed!
I went through each of the 2048 BIP39 words and looked to see if it matched any of the pictures.
It took 2 hours, to redo the list .๐ฅฒ
Now I have multiple options for each position.
I have to hurry, this is public, others may be trying.
5 million options are not that many.
I just need the right tool.
Enter BTCRecover
A command line tool that I can tell it how to mix the words, and check if they generate the address I'm looking for.
My Mac M1 tries 90,000 seeds/second
Took 1 min, but NO LUCK!
This means that at least one of the possible words is incorrect.
So on one of the positions, I need to try all the 2048 words.
I will have 2048 options on that position.
Positions 4,6 I'm least sure of.
6 days is too slow, others may also be trying to crack the seed!
What if I use all 3 of my laptops.
Together they try 170,000 seeds/second.
Nearly a 2x improvement.
I cut it down from 6 days to 3 days.
Need a bigger improvement, other may be cracking as I am!
My laptops are all cracking using their CPU.
I need GPUs, a lot of GPUs!
Ended up renting 16 servers and I was trying 1,096,000 seeds per second.
It would take 11 hours to try all my candidate words, and on the 4th & 12th positions try all 2048 possible words.
So pressed start and got some much-needed sleep.
Woke up and Seed not found.
Angry and disappointed, I closed all the servers, as it cost me money to keep them up.
But then I looked through the list one more time, and wait a minute 8 is not a park, it's Hard Street.
Could it be?
Used initial list of candidate words, but hard on the 8th position.
4 minutes later SEED FOUND!1!1
When you take out the server costs and donation to the person who made the tool, I was left with ~$50.
Best 50 bucks I ever made in my life.
(10 days of continuous work)
Clarifications
I left out a LOT of things to keep it short.
Everything took multiple tries and 10 days of constant hair-pulling.
The 1st pic in the thread was taken right after I found the seed
The screenshots of the commands, I re-ran later when I documented the process.
Thanks for reading and like & retweet(equivalent of here), if you liked it. :D
Usually, I tweet one interesting #Bitcoin fact every day!
This is the only Ethereum fact I have(story more than a fact :p)
Btw the #BitcoinFactOfTheDay was brought to you by BitBox !๐จ๐ญ๐
One selling points was that you can open multiple wallets at the same time.
This should really put into perspective how primitive things were back then.
Btw you could not even import/export the private keys in early versions, no interoperability between wallets.
Even though the total size of the blockchain was 600M, the main selling point of the wallet was that it was a light wallet.
The whole directory was only 16M
The wallet would only keep parts of the blockchain that had its own transactions.
TXs it does not use were erased.
So what?
Well, this shows how in the early days the main focus was to make #BitCoin as easy to use as possible!
(yes they wrote it like that)
Also, think about this.
Everything you get by default and do with 1 click, was not even an option back then!
Thanks for reading and like & retweet(nostr equivalents), if you liked it. :D
Follow for more #Bitcoin facts like this every day!
And the #BitcoinFactOfTheDay was brought to you by BitBox !๐จ๐ญ๐
Electrum wallet was announced on 5 November 2011 as a Lightweight Bitcoin Client.
It was the 1st modern Bitcoin wallet and brought features that improved the UX by 100x.
You did not have that many options back then.
You either use Bitcoin Core(not called Core at the time) or some custodial wallet.
Electrum introduced this server model where it's non-custodial, and you just ask the server for information about balances and broadcast TXS.
(there is a privacy trade-of)
Back then your Bitcoin wallet would generate individual keys for each of your addresses.
You may think, it's still doing that now, true.
But there was no relation between the keys.
And I do mean private keys, there were no English words associated with them.
If you restart your wallet you get new keys every single time!
Hence NONdeterministic.
The #Bitcoin community was aware of this YUGE pain and solutions were being discussed as early as June 2011
This resulted in the widely used BIP32 created in February 2012.
The 1st version of Electrum mnemonic backups worked similarly to BIP39.
- 12 words encoded using a 1626-words-dictionary.
- words chosen from poetry list on Wikipedia.
- encoding is designed, to avoid conflict with a patent.
- words were chosen to be easier to remember.
Meanwhile, in 2013 BIP39 was created and used together with BIP32.
Separate BIPs for each type of script/address, and the same seed can be used ever with multiple coins!
Deterministic wallets are a thing!
But there is there is a catch.
There are a LOT of derivation paths for each type, and new types may be introduced.
BIP39 encodes the secret in English words, but no information about the paths.
This is problematic, as different wallets use different derivation paths, so to be 100% sure of recovery in the distant future you need to back also derivation paths.
Plus you can't upgrade this standard.
The authors made this design choice on purpose.
A flaw in my opinion.
In 2015, with Electrum 2.0 a new and improved seed system was introduced.
(still used today)
Addressing the shortcomings above:
- it had a versioning system
- allows updates
- not dependent on any particular dictionary
However, how many of you are using Electrum seeds?
BIP39 grew more popular and became the de facto standard.
Even though most people think "just the words" are a great backup, they could not be more wrong.
Not all wallets use the same derivation paths!
The fact that this website exists, proves the flaws in BIP39.
๐งตThread๐
As the blockchain is public we can see which coins are provably lost.
We see coins being burned quite often in small amounts.
(prolly new tokens being issued on Bitcoin)
But if we look at the biggest losses, we can tell they were not burned on purpouse.
It's human error.
When you give someone an address you are actually giving them a box, which ONLY you have a key that can unlock it.
This is guaranteed by the fact that only the entity that has the private key corresponding to a public key can provide a signature to unlock the box.
These locks are called Bitcoin Scripts.
They are small programs that sit on top of each Bitcoin. When you move Bitcoins, when you run these programs.
If needs to return success, coins move.
And the good part is that you can add very various conditions here.
Multi-sig is an example of such conditions.
But it is up to you to make sure you set the right conditions.
One way to make an error would be to add someone's else address.
Another way is to add invalid address, or create some conditions that can never be fulfilled.
Bitcoin addresses have a checksum at the end to avoid sending Bitcoin wrong address.
This safety check is done in the wallet, there is no such check in the Bitcoin script.
To get an address Public Keys are hashed RIPE160.
The same hash function is also used in the script.
All the TXs above have the same script.
The script says:
These Bitcoins can be moved by the public key that when hashed with RIPE160 has a 1-byte-output.
This is impossible, as the function always outputs 20 bytes.
RIPE 160 bits = 20 bytes
This condition can never be meet
The TXs were constructed by Mark Karpeles aka MagicalTux CEO of MtGox.
We know this as he admitted it on #MtGox IRC channel
At the time worth only $10,957 and only a week of profits for Gox.
Today they are worth $120,200,000.
Thanks for reading and like & retweet, if you liked it. :D
Follow for more #Bitcoin facts like this every day!
And the #BitcoinFactOfTheDay was brought to you by @BitBoxSwiss!๐จ๐ญ๐