sudo rm -rf --no-preserve-root / pfp

sudo rm -rf --no-preserve-root /

@pcaversaccio

156 Following
4006 Followers
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
This morning I tried to read some MSM to understand their coverage about the recent meme token launches. I can't believe they literally block me because I use a VPN and disable JavaScript from running in the browser (this effectively blocks tracking scripts and analytics).
1 reply
0 recast
2 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Almost a year ago, I published my "Ethereum Cypherpunk Manifesto". Have we made any fucking progress? Absolutely fucking not. We keep throwing away the principles that brought us here for some short-term bullshit profits. Nobody gives a fuck about the centralised infrastructure propping up so-called "decentralised" blockchains. Privacy? It's a fucking afterthought instead of the core priority it should be. Will I give up? Fuck no. But you're all a bunch of fucking cowards who don't act on clear principles. https://x.com/pcaversaccio/status/1768934679606903069
4 replies
6 recasts
27 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
The degeneracy of the next cycle will be unmatched, an event never to be seen.
0 reply
3 recasts
36 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
The last few days have made one thing painfully clear: we're still treating the EF as the heart of the ecosystem. This mindset is a weakness. Ethereum's future depends on the community, not a single entity. We must move past the idea that the EF is indispensable and build a network that thrives without it. Decentralisation demands it.
2 replies
8 recasts
75 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
πŸ’― - folks have asked me why I wrote my Safe transaction script (https://github.com/pcaversaccio/safe-tx-hashes-util) as pure Bash script and not eg via Python. Minimal dependency. You have to only trust Linux (and Foundry) in this case. The current world is dominated by dependency bloat. This is bad and insecure engineering. Period.
1 reply
14 recasts
61 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Our industry excels in producing an insane number of subpar projects that get heavily overfunded. Many crypto investments are simply a masterclass in capital misallocation.
6 replies
12 recasts
67 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
I truly believe the only way to fix the broken EF capital allocation is by making them expendable. It's our responsibility to cultivate a thriving ecosystem that isn't dependent on a single, centralised source of funding. I've criticised themβ€”will keep doing soβ€”but the real Cypherpunk move here is surviving without the EF, like Vyper has shown over the years. What that Cypherpunk move looks like will vary for each project, though. Onward.
2 replies
13 recasts
77 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
1/ Guys, what a fucking insane year at SEAL 911. It's been a hell of a rideβ€”showing just how fucking far behind we are in securing our industry, but also proving why SEAL 911 matters so damn much. Alright, I know, I know you want some stats for 2024, and here we go: - Handled +1400 tickets - Actively managed +75 war rooms - Blocked over +150k phishing domains - ~$75M USD saved (guesstimate including phishing prevention measures) - Most common tickets: - 1) Phishing - 2) Private key leaks - 3) Malware/RATed devices - 4) Social media account takeovers - 5) Smart contract hacks - 6) Pig Butchering/Sha Zhu Pan - 7) Vulnerability disclosures - 8) Phishing URL reporting - 9) Frontrunning/white hat rescue of compromised wallets - 10) Domain hijacks
3 replies
6 recasts
29 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Looks like there was a pretty ugly deanonymisation vulnerability present in Wasabi wallets until recently (specifically related to CoinJoins). Such disclosures always remind me how hard it is to implement true privacy into your applications. But it's definitely worth the battle. https://github.com/GingerPrivacy/GingerWallet/discussions/116
1 reply
4 recasts
57 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
The soul of crypto feels fucking gone in 2024. We've let "training wheels" for L2s become an excuse for dragging ass on decentralisation, KYC is fucking everywhere, and way too many of us just accept it (fucking stop!). Builders are chasing compliance over privacy, and most new apps are just gambling (fine, whatever), but they're not driving real, meaningful change. The fire is missingβ€”the bold, principles-based building that's supposed to challenge the world. Instead, most people are just puppets, chasing short-term hype instead of breaking the system. Don't be a fucking puppet.
6 replies
11 recasts
69 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
ffs, please don't ask ChatGPT or other LLMs if a file is safe. First, new malware is not part of past training data used for the LLMs (even tho certain, e.g. infostealer pattern, are recycled over time), second ChatGPT cannot execute files (needed to detect behaviours that only manifest during execution), and usually malware also uses advanced obfuscation, which cannot be analysed. Use your brain and upload it to eg VirusTotal (not fool proof!), don't fucking delegate your security to an over calibrated language model.
1 reply
0 recast
10 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
I have come to the conclusion that 95% of security products in our industry are nothing more than vaporware, offering the illusion of security rather than actual protection.
3 replies
10 recasts
40 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Every time I skim through the (updated) EOF specs, it's a reminder of how we've drowned in complexity for the sake of flexing. There is no reason this monstrosity should ever see the light of day. Sorry. Let’s get back to KISS.
1 reply
3 recasts
36 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Rust devs after their 101th rewrite-in-rust
2 replies
5 recasts
35 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
a sweet story from "RIP Solidity" to "must have eventually" within 3 days https://github.com/ethereum/solidity/issues/14208#issuecomment-2523104434
0 reply
4 recasts
45 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
gents, amidst the whirlwind of SEAL 911 tickets, I somehow managed (don’t ask me how!) to add support for off-chain message hashes to my Safe transaction hashes Bash script over the past few days. The updated script now outputs the raw message, along with the domain, message, and Safe message hashes, making it easy for you to verify them against the values shown on your Ledger hardware wallet screen. This can be particularly useful for security councils using 1/1 multisigs to sign into governance tools or for logging into platforms like OpenSea with your multisig. Always remember: Don't trust, verify! https://github.com/pcaversaccio/safe-tx-hashes-util/pull/10 On a side note, I've been asked a few times over the last weeks how people can support my open-source work. Everything I create is for the community. If you feel like showing your appreciation, you can find my donation address here https://github.com/pcaversaccio/snekmate/blob/main/FUNDING.json#L4
0 reply
19 recasts
91 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Sometimes (tbh multiple times a day), I wish we could rewind to the early crypto daysβ€”when everything felt like the wild west, principles-based, and full of endless possibilities.
1 reply
7 recasts
97 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
Can people please stop fucking getting rekt by interacting with malicious websites?? Like seriously, since 5 days we get non-stop draining victim tickets in SEAL 911. Look I will be totally frank: all of your security products help shit to prevent people getting drained. It's almost 2025 and we're nowhere solving this.
2 replies
2 recasts
19 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
So this morning I found a rather annoying bug in the Safe UI for older Safe versions `<=1.2.0`. TL;DR: the domain hash displayed is wrong. https://x.com/pcaversaccio/status/1864643674304373121
1 reply
13 recasts
97 reactions
sudo rm -rf --no-preserve-root / pfp
sudo rm -rf --no-preserve-root /
@pcaversaccio
This is such a retarded take. A VPN is your digital armour. People might use a public Wi-Fi or want to prevent government/ISP tracking when logging into Coinbase. I'm not sure if this a personal view or a Coinbase view, but if it's a company-wide opinion you're fucking anti-privacy clowns! First, you celebrate the legal win to overturn OFAC sanctions against Tornado Cash, and now using a VPN is uncool? A very, very moronic take. https://x.com/scottshapiro/status/1863691538661883925
1 reply
1 recast
23 reactions