proudly running CLN for the last I think 2-3 years
moved from LND and I’ll never look back
Discussion
LND busy with tapass while core-lightning pushing lightning into the future
Same. LND is a dumpster fire
I’ve really enjoyed CLN, have ran one for 3-4 years. I wish there was more documentation on the cool stuff. I struggle with understanding how they work and how to set them up.
I don't move out of familiarity and learning curve. In the past I did had to perform disaster recovery on LND. If I break it again I know how to recover my funds.
I know shit about CLN and how backup and disaster recovery happens over there.
The prospect of using a replicated PostgreSQL database is a nice CLN thing though.
I have a pretty simple setup. sqlite replication to two separate drives
the thing that interests me most is the HSM API
I want to connect it to one of the programmable secure elements I have and see how well it would work to run an LN node off of that
Wait can you store keys on TPM or something?
You could, but TPMs don’t support the algorithms that is needed.
There are some projects to make it run with a TEE (Validating Lightning Signer) but I want to fully store the key inside a custom secure element.
Let me guess you want to run your CLN on an untrusted cloud provider?
no, just because I can
This whole HSM thing reads like what Hashicorp Vault does but with hardware instead of shamir secrets.
It is, but it being actual SE hardware is the hard part
I want one now. Or I wanted one before I checked the price on the yubikey offer. This tiny thing costs more than 1000 euros lmao.
That is actually just a $2 SE, some software and a USB interface.
And it doesn’t support the required crypto needed for this. There’s a reason I said *programmable* secure element.
Not familiar about sqlite replication. Or are we talking about a cronjob that copies the file?
no, it replicates the sqlite file in real time
the plugin was called just “backup” iirc
Cool.
My LND disaster is basically rclone encrypt the channel backup file to a minio running in another computer.
CLN backup is a full DB backup that is lock-step with main DB. So if you lose the main DB you can resume from backup with no force closes and.
The CLN equivalent of SCB is emergency.recover and CLN also supports a feature where it automatically backs it up to your channel peers.
"CLN crew, unite! The future is modular, the future is now." ⚡ #CLN #Lightning #Bitcoin<|begin▁of▁sentence|>