Here's the awaited follow up :)
I'll clarify some questions that people have asked and also go over some easy ways to prevent getting sandwiched.
I'll clarify some questions that people have asked and also go over some easy ways to prevent getting sandwiched.
How does the bot sell their coins at a higher price if the buyer already bought coins?
On DEX's, there is no buyer/seller. You're swapping tokens directly from a liquidity pool based on *math* that makes this profitable (I wont go over how DEX's work, lots of resources online).
On DEX's, there is no buyer/seller. You're swapping tokens directly from a liquidity pool based on *math* that makes this profitable (I wont go over how DEX's work, lots of resources online).
Is this the same as front running?
Yes and no. Sandwich attacks are also known as frontrun/backruns (cause you submit 2 txns, 1 ahead and 1 behind the sandwiched txn).
However, there are other front-run attacks.
All sandwiches are frontruns, not all frontruns are sandwiches.
Yes and no. Sandwich attacks are also known as frontrun/backruns (cause you submit 2 txns, 1 ahead and 1 behind the sandwiched txn).
However, there are other front-run attacks.
All sandwiches are frontruns, not all frontruns are sandwiches.
Is this ethical?
Would you rather get front-run by TradFi hedge funds behind closed doors with no possibility of stopping it? Or prefer to have it happen in an open and transparent way where *anyone* could theoretically participate (and have mitigation strategies).
Would you rather get front-run by TradFi hedge funds behind closed doors with no possibility of stopping it? Or prefer to have it happen in an open and transparent way where *anyone* could theoretically participate (and have mitigation strategies).
Isn't this illegal in TradFi?
When has making something illegal ever stopped financial institutions from making money in illegal ways?
Anyone remember the PFOF debacle with Robinhood/Citadel? 100% legal.
When has making something illegal ever stopped financial institutions from making money in illegal ways?
Anyone remember the PFOF debacle with Robinhood/Citadel? 100% legal.
Do I get rekt on every txn?
No. Not all txns are exploitable. Bots will "simulate" sandwiching your txn to see if its profitable for them.
Even if you do get sandwiched, 99% of ppl will lose out on the slippage THEY set. Most of the time it's a negligible amount you lose
No. Not all txns are exploitable. Bots will "simulate" sandwiching your txn to see if its profitable for them.
Even if you do get sandwiched, 99% of ppl will lose out on the slippage THEY set. Most of the time it's a negligible amount you lose
If bots can be spotted that easily, why is there no mechanism to just weed out bot txns?
Not all bots are "bad". It's impossible to censor MEV bots with 100% accuracy since txns are just txns.
Also this would go against the censorship resistant ethos of web3.
Not all bots are "bad". It's impossible to censor MEV bots with 100% accuracy since txns are just txns.
Also this would go against the censorship resistant ethos of web3.
BECAUSE ETH is decentralized and non censorable (and because crypto markets are inefficient), this leads to adversarial environments where value can be extracted.
As the industry grows, matures and becomes efficient, there will be less of this.
As the industry grows, matures and becomes efficient, there will be less of this.
First, some pre-requisite knowledge before learning how to prevent sandwiching
This was the image I showed of how an MEV bot looks at the public mem pool. This is slightly wrong because not every txn can be front run and it's not like bots can just pick ANY txn to make profit.
This was the image I showed of how an MEV bot looks at the public mem pool. This is slightly wrong because not every txn can be front run and it's not like bots can just pick ANY txn to make profit.
What bots actually do is *simulate* front running txns to see if it's profitable. If profitable, they will attempt to sandwich you.
But if bots sandwich certain txns, can other bots sandwich the bot sandwiching? .Yes they can, since bot txns will go into the mempool too
But if bots sandwich certain txns, can other bots sandwich the bot sandwiching? .Yes they can, since bot txns will go into the mempool too
This is where something called Flashbots come in.
Essentially, Flashbots is a private relayer that sends txns (more specifically "bundles") directly to miners (skipping the mem pool entirely).
You can think of bundles as a bundle of txns in a specific order.
Essentially, Flashbots is a private relayer that sends txns (more specifically "bundles") directly to miners (skipping the mem pool entirely).
You can think of bundles as a bundle of txns in a specific order.
Bots can send bundles to the Flashbots relayer (a private hosted service) that sends txns directly miners, entirely skipping the public mem pool (so no other bots can see the txn).
Essentially, these are private txns.
Essentially, these are private txns.
General steps:
1. Create a bundle of txns.
2. Send it to Flashbots relayer (private hosted service no one can read from).
3. Flashbots sends it to miners for it to be mined.
Because this skips the mem pool, Flashbot txns just "appear" on the chain without that txn idle period.
1. Create a bundle of txns.
2. Send it to Flashbots relayer (private hosted service no one can read from).
3. Flashbots sends it to miners for it to be mined.
Because this skips the mem pool, Flashbot txns just "appear" on the chain without that txn idle period.
You can tell a txn was mined using Flashbots on Etherscan.
So after knowing this, here are some basic things you can do to prevent your txns from getting front run:
First, a simple way is setting your slippage tolerance low (< 1%). Doing this will prevent you from actually buying any tokens if there's too much of a price swing.
First, a simple way is setting your slippage tolerance low (< 1%). Doing this will prevent you from actually buying any tokens if there's too much of a price swing.
The problem with this is txns will mostly fail for volatile tokens or tokens with little liquidity since there will be large price swings by the time your txn is mined (or your buy order may even swing the price of the token out of your slippage tolerance).
The second way is to use Flashbots relayer yourself.
You can add the Flashbots RPC to your met*mask and send txns through Flashbots so they dont end up in the public mem pool.
You can add the Flashbots RPC to your met*mask and send txns through Flashbots so they dont end up in the public mem pool.
A "problem" with this is that Flashbots is still in beta so your txn might fail or take longer to confirm (since they're trying to incentivize miners to mine your txn privately - there is more to this but too technical for this thread).
Flashbots is also centralized.
Flashbots is also centralized.
Lastly, you can use services like @MEVprotection and @EdenNetwork that supposedly have MEV protection built into their services.
I personally have never used these so DYOR and dont blame me if something goes wrong.
I personally have never used these so DYOR and dont blame me if something goes wrong.
Personally, I still use regular txns that go to the mem pool for 90% of my eth activity but I will use Flashbots to trade anything volatile (like $APE this past week).
I default to using public mem pool unless there's a chance I could get severely rekt, then I'll use Flashbots.
I default to using public mem pool unless there's a chance I could get severely rekt, then I'll use Flashbots.
So while I do caution you to be careful, I wouldn't worry too much about getting rekt.
Not in a cocky way, but if Im not getting obliterated by bots, you probably aren't either 🤷♂️
Just be mindful of this stuff and when in doubt, use Flashbots and always set your slippage
Not in a cocky way, but if Im not getting obliterated by bots, you probably aren't either 🤷♂️
Just be mindful of this stuff and when in doubt, use Flashbots and always set your slippage
There's a lot of technical details I glossed over for Flashbots and front running, but for the purpose of the everyday user, this should be enough to protect a majority of you.
Hope you learned something :)
Hope you learned something :)
Original tweet
https://twitter.com/0x_Beans/status/1505181554351378439?s=20&t=kaLmcoSQZN2MpMqhXfXbVQ
• • •
Missing some Tweet in this thread? You can try to
force a refresh
