Share this page!

Seth For Privacy Profile picture
Twitter logo
May 19 28 tweets 12 min read
1/ Time to share some of my thoughts and experiences from getting this self-sovereign #LightningNetwork stack up and running.

tl;dr - not for the faint of heart/non-tech-savvy, but once configured and up and running it seems to be working quite well for me!
2/ For the Bitcoin node, I simply exposed the Dojo bitcoind node's RPC that I already had up, and was able to easily access it across my home's network:

code.samourai.io/dojo/samourai-…

Be sure to write down the ports used here if using a Dojo node externally, as they're non-standard.
3/ First off in the stack is @Core_LN:

github.com/ElementsProjec…

The installation process was solid, and I was able to leverage a modified version of their systemd script to get it to run on boot as a service:

github.com/ElementsProjec…
4/ I created a new, un-privileged user to run the stack as, lightningd, so you'll see that user referenced a lot.

I setup lightningd using the following customized systemd script (the stock one had lots of permissions and configuration flag issues):

paste.sethforprivacy.com/?3f127fe48b926…
5/ And here is my lightningd configuration, but we'll get to some of the things mentioned here later:

paste.sethforprivacy.com/?3e2080ae7cbf5…

Note that this is a Tor-only node, so that's why the addressing is localhost + statictor.
6/ Thankfully much of the process was simplified as I already had a Bitcoin node up and running and already had Tor configured with control port + cookie auth to handle the Tor-only configuration automatically via lightningd.

Started up without a hitch and synced up just fine!
7/ Next up was getting c-lightning-REST up and running:

github.com/Ride-The-Light…

This is a necessary step as @Core_LN does not have full API support yet, so things like @ZeusLN/@RTL_App require an API interface in order to be able to interact with your @Core_LN node.
8/ In theory this was supposed to be as easy as installing node/npm, installing the plugin, and enabling it in the lightningd config -- but that didn't work at all (will raise an issue on this error), as lightningd would crash with the plugin enabled.
9/ I was eventually able to get it up and running via another systemd script (also customized) following the instructions here:

github.com/Ride-The-Light…

My systemd script here:

paste.sethforprivacy.com/?4d1e35885e2ee…
10/ And here is my c-lightning-REST config file (used HTTP as I'm reverse-proxying + SSL via Traefik, domain redacted of course):

paste.sethforprivacy.com/?854b450a9d002…

Once configured this started up without a hitch and started working well!
11/ Next up was @RTL_App, the web front-end I wanted to use for managing the node:

github.com/Ride-The-Light…

Thankfully RTL worked like a charm, connected to c-lightning-REST instantly once configured, and the systemd script was easily modified to work:

paste.sethforprivacy.com/?ddd0e86a925b2…
12/ Next up was CLBOSS, one of the most interesting things to be built in the LN space in some time -- automated channel and liquidity management:

github.com/ZmnSCPxj/clboss

Downloaded, compiled, and installed CLBOSS, then easily enabled with a single line in the lightningd config
13/ Then I just sent in some post-mix (@SamouraiWallet, of course) sats to be used for opening channels and spending, and CLBOSS jumped in right away to start opening channels it viewed as favorable.

I also enabled #ZeroBaseFee for channel opens in CLBOSS.
14/ Last but not least, I found the docs for backing up @Core_LN and enabled the "backup" plugin, syncing a backup of the DB to my NAS (and backed up the HSM secret file as well separately) to ensure I could recover funds/channels in the event of an issue.

Not too painful.
15/ The easiest piece of all of this was @ZeusLN, which connected perfectly to my node via HTTPS and has been working flawlessly since then.

Zeus was one of the first LN wallets I tried a few years ago, and has come a long way w/ *excellent* UX today. Loving it so far.
16/ So now that the stack is up and running, what are my initial thoughts?

THE GOOD:

- RTL "just worked" once configured properly
- Easily proxied through Traefik using existing setup
- CLN easily connected to Dojo node
- CLBOSS is stupid easy to enable/use once built/installed
17/ THE GOOD, CONT.:

- Tor-only is very easy with control port properly setup
- Zeus easily connected to c-lightning-REST once proxied through Traefik
- CLBOSS has managed channels well so far, no in/outbound issues up to this point
- No uptime issues after a few days
18/ THE BAD:

- Lots of issues with the systemd scripts
- Could not use cln-rest plugin for some reason
- Keeping up to date will not be easy, no binaries available
- Backups are *absolutely necessary* but not prominent in docs and not prompted at all when running c-lightning
19/ THE BAD, CONT.:

- The tools all use differing installation methods, no binaries available via package managers etc.

WHAT'S NEEDED:

- Docker Compose or simplified packaging of these tools together (@runcitadel might solve this, have to test)
- More user-friendly docs
20/ So why did I choose to go through all of this? I wanted to get a better picture of the state of LN today, what it's like doing it *properly* in a self-sovereign manner, and what the pain points are.

Using LN custodially is totally uninteresting to me.
21/ Next up will be more thorough testing of payments and a deeper exploration of privacy implications of sending/receiving LN payments.

I'm also planning to open more Github issues for the problems I ran into and contribute simple documentation fixes where I can.
22/ Lastly, this node will be public (which has implications for receiving privacy, I know) and can be found here:

amboss.space/node/0219f7476…

It's currently being used for Podcasting 2.0 payments for @optoutpod and I plan to enable donations to it once BOLT12 is finalized.
23/ If you have any recommendations on things I could have done better, tips and tricks for managing the node moving forward, or just feedback on parts of this stack, I'd love to hear it!
24/ I am by no means an expert, but trying to be sure I fully understand a tech that I've been vocal about the downsides to in the past.

This has helped me learn where LN is at and has gotten me more optimistic than I expected to see some promising developments become reality.
25/25 I'm still very cautious about the ability for LN to strike a privacy/routing balance long-term, but things *have* improved from the self-sovereignty side which is encouraging.

Now is this worth the effort over just using @SamouraiWallet/#Monero? Not sure on that one...
P.S. -- a huge thank you and shoutout to the feedback and recommendations I got in this thread, gave me a *great* starting point for getting what might be the ideal tech stack up and running:

P.P.S - For those who don't want to go through this trouble, @runcitadel seems an excellent alternative that can even be run on existing x86_64 hardware, and I would likely just go that route if I did it all again -- but good to do this to get a better understanding of each tool!
P.P.P.S - Also posted to @stacker_news, my absolute favorite place for Bitcoin news/discussion and one of the best use-cases for LN I've seen so far:

stacker.news/items/29933

Huge fan of the approaches being taken with it, post/comment quality is much higher when it costs!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Seth For Privacy

Seth For Privacy Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @sethforprivacy

Seth For Privacy Profile picture
May 7
Oof.

Anyone with a more #LightningNetwork-focused following want to run the same poll and see what you get?

In some ways I'm glad I'm not alone but that's... Not exactly the UX normies will put up with.

Do you all think this is why custodial LN is so commonly used?
If you voted in my poll don't vote here, but will add polls by others that are similar here to compare among follower sets.

Thanks for kicking it off @L0laL33tz!

Great breakdown of my results by @heady_wook:

Read 4 tweets
Seth For Privacy Profile picture
May 5
It's *very* early, but I've started collecting resources, open questions, and proposed efforts to explore how trustless zk-SNARKs could be useful for a potential future #Monero protocol update:

github.com/monero-project…

If you have useful resources or questions, please reach out!
The goal here is to build a go-to resource that marries the promise of trustless zk-SNARKs with the specifics of Monero's payment protocol to ease potential research and interest by Monero developers and researchers, not to push for implementing zk-SNARKs ASAP.
I'll be working on a blog post to detail why they're worth exploring in more depth and what the associated pros/cons are, but a few notes:

- Seraphis is still the path forward for Monero, we're focused on that
- Ring signatures are still working very well in the real world
Read 7 tweets
Seth For Privacy Profile picture
Apr 21
1/ I'm really tired of responding to lots of comments from DERO people claiming they've solved the worlds problems and scamming people with false marketing, so here's a thread breaking down all of their grandiose claims 👇
2/ DERO claims to be using "fully-homomorphic encryption" to prevent nodes from being able to see transaction information.

Not only is this nonsensical (zk-proofs allow verification without revealing data simply) FHE is absolutely unusably inefficient:

anandtech.com/show/16533/int…
3/ For DERO to claim that they're using something that is thousands of times less efficient than more common encryption methods, and that has yet to be implemented in any other fashion due to this inefficiency should discount the rest of their claims off the bat.
Read 19 tweets
Seth For Privacy Profile picture
Apr 21
1/ As always, ransomware and DNM trends are a good litmus test for the usefulness of a technology, and especially the usefulness of a cryptocurrency.

Let's dive into some interesting info in the latest CipherTrace ransomware report 👇
2/ First off, no mentions of tracing Monero or tracking it's usage, despite Ciphertrace having used social-engineering to collect XMR addresses from known ransomware entities.
3/ Monero's acceptance (either only-XMR or XMR and BTC) has rapidly risen, and those who accept Bitcoin generally charge a 10-25% premium due to it being "easily traceable".

CipherTrace throwing punches 😅
Read 10 tweets
Seth For Privacy Profile picture
Apr 17
1/ Get ready for the #Monerorun tomorrow by reading up and taking control of your $XMR:

localmonero.co/knowledge/hold…

Here are some excellent wallets depending on your preference to start using today 👇
2/ First off, no matter what wallet you use *save your seed*!!!

Always do so in multiple locations, in ways that you can find and recover, and inform your family or loved ones of how to recover funds as well, just in case.
3/ The first wallet recommendation is @cakewallet (or @MoneroCom), both of which are very simple to use and beautiful, work on both Android and iOS, and have native exchange functionality.

I personally use @MoneroCom.

More at cakewallet.com and monero.com:
Read 7 tweets
Seth For Privacy Profile picture
Apr 15
While this is "just" the front-end, this continues the trend of "privacy tools" preempting regulatory pressure to kiss the boot of our benevolent overlords.

#Monero cannot do this by design, and that's what makes it such a powerful tool.

Permission-less or GTFO.
P.S. -- "privacy tools" like @wasabiwallet and @TornadoCash using your fees to pay @chainalysis is the irony of ironies.

Quit giving these people your funds and just use Monero.

It's that easy.
Oh god, I missed the @TornadoCash tweet:



"Privacy should not come at the cost of non-compliance"...

Run away from this garbage as fast as you can 🤮
Read 11 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(