Foucault wrote a whole book on that, “Discipline and punish”. Mentioning schools, jobs, etc.
I believe it is not just miscommunication. It’s malevolence. Hayden in the blog post never mentioned that what Micah did was right. E.g that they would still send copyright claim against these kinds of forks. “Uncensored uniswap” phrase is descriptive and discoverable and should not be banned.
Serious question: What are jurisdictions of uni trademark? Does it affect Ukraine? What about EU? Oman? If it doesn’t affect some countries, does it mean one can use it for whatever and notices have no legal basis?
My main emphasis is that if it hadn’t become viral on X, there would have been no “fix” from uniswap labs. Which is similar to how big corps are working. Some adjustments to legal process are warranted to prevent this.
Not suing yet, threatening hosters for “copyright violation”. Which is nonsense. Now that the matter got public they’re trying to fix it, of course. https://x.com/micahzoltu/status/1753416705983074668
Ethereum ABI parsers are vulnerable to DoS. It’s also possible to inject information in transactions, hidden from parsers. This allows tracking users across different wallets and even stealing private data. Details in a new article. https://github.com/paulmillr/micro-eth-signer/discussions/20
We’ve finalized and audited very simple end-to-end encrypted messaging scheme for nostr. Feel free to use it in your protocol. https://github.com/paulmillr/nip44 Wen OSS in farcaster dms @dwr.eth ?
40B$ worth of eth is currently staked in Lido, which means a rug could severely damage eth.
Post on Lido risks from EF. tl;dr: “By having the ability to arbitrarily mint stETH, spend the treasury, overwrite the withdrawal contract, and cycle the node operators, the DAO could effectively destroy the Lido protocol in a “rug-style” manner” https://notes.ethereum.org/@mikeneuder/magnitude-and-direction
5. Ideally: Stop all upgrades, freeze contracts and remove owners. When an upgrade is necessary, switch to a new version akin to Uniswap
3. Document all moving parts, audit trail and supply chain risks. Who owns which contract, who can change it, which entities can affect change 4. Limit upgrades to 1 per year. Outsiders need to have at least 3 months to check what’s in the upgrade.
5. Upgrades are regular. Any smart contract upgrade can bring critical bugs. That includes something as simple as changing Solidity version. What Lido needs to do: 1. Limit themselves to 22% of total eth stake 2. Re-distribute voting power transparently to entities who actually operate lido nodes
3. Some other contracts are changed using DAO voting. However, they are being passed with only 5% of votes, no one bothers to vote https://vote.lido.fi 4. DAO voting is done using LDO token. We don’t know who holds it. Even if 90% voted instead of 5%, the 90% could have easily been just one entity, like Lido itself
Lido owns almost 1/3 of all staked ETH, around 40B$. Owning more will allow them to control ETH consensus. Lido is bad: 1. They have 100 contracts. Auditing is very complicated https://docs.lido.fi/deployed-contracts/ 2. Some of them are owned by EOA and multisig: they could be trivially upgraded by a person or a few
Not sure I understood. What is the protocol? A smart contract? But it’s permission-less? The platform would be paid-only?
Still vendor lock-in. Fine for spammy sites, but for ios it’s the same icloud hide my email, without OS integration.
Signal will switch to post-quantum algorithms in the near future. ETH is not protected against this threat right now. Neither are rollups. Staking is good, with eip2333. Would be great to restart the discussion. https://signal.org/blog/pqxdh/
Last month, we've collaborated with Starknet and released a new addition to "scure" family of audited libraries. The audit was done by Kudelski security. The package includes stark curve and poseidon / pedersen hashes. Check it out: https://github.com/paulmillr/scure-starknet
The Tornado cash founders have been charged with money laundering for operating a privacy-preserving mixer. https://www.justice.gov/usao-sdny/pr/tornado-cash-founders-charged-money-laundering-and-sanctions-violations
Tried it for some time and can’t support the opinion. A lot of uncomfortable synthetics (plastics) that feels like crap. Winter jackets are not warm even in mild temp.