⚡️DailyZap: VLS Beta Release
The Validating Lightning Signer (VLS) is finally released in Beta! The VLS software aims at improving Lightning nodes security by segregating the signing component (including the private keys) from the rest of the node, while still ensuring the signing module only signs legitimate requests. This constitutes a very necessary infrastructure tool for Lightning, which will help node operators and developers increase security without having to create their own systems [like Acinq did].
This beta release indicates that the VLS team is confident enough with their software for it to be tried out by developers on testnet, or with limited funds on mainnet. It also follows an independent security review conducted by Antoine Riard back in January. With this beta release, we're one step closer to having fully validating signers running in production, and a much more mature Lightning industry. Big news!
Check it out: https://vls.tech/posts/vls-beta/
🤗 LN Markets' newsletter #63 is out!
🎙️ Roy Sheinfeld, co-founder & CEO of Breez
shares his journey and hopes for Bitcoin
⚔️ LNM Fam with our new release and Q2 metrics
📰 Deep dive on DLCs
⚡ Latest strikes by @fanis
🎁 Bonus with
, @bitcoinernomad
, @dylan
Read, enjoy, share 🧡
👇
lnmarkets.substack.com/p/63-roy-sheinfeld-lnm-fam-and-lightning
nostr:note1m73zwk52xr89mm9zttul243upcdjrtuukxlpz0hedfau6e3h36fq39jhdc this would be AWESOME
nostr:note1gpdv3sc4v8yppg0qaalrmn9uyr758ws7afky5c70lpndegwylqgsqt05f9 👀
Looking forward to it when some code is available for testing. 👀
🇪🇸 #TradingEnEspañol #LNM
https://nostrcheck.me/media/public/nostrcheck.me_4501719549458286881688750405.webp
⚡️DailyZap: Just in case you missed it
''Payment Hash Does Not Commit To Payment''
The Lightning-dev mailing list got a quick heads@npub12rv5lskctqxxs2c8rf2zlzc7xx3qpvzs3w4etgemauy9thegr43sf485vg up from reminding everyone that the "payment_hash" of a Lightning invoice doesn't actually commit to the payment itself. Rather, it sets the condition under which the payment can be claimed: the revealing of a preimage which hash is equal to the payment_hash (e.g. hash(preimage) = payment_hash).
The LNBits team discovered an exploit in the LNBits codebase that could be used to create sats out of thin air, and stems directly from this misconception. A payment's "payment_hash" is not a unique identifier, and one should always perform additional checks (for example on amounts) when trying to correlate two payments.
https://nostrcheck.me/media/public/nostrcheck.me_6734699359468046851688749146.webp
My man.
Love to see how Nostr has improved so far!
Sirs, here's one cup of coffee for you! ☕
GM!
