Hanshan266d agohe apparently missed that they have a RSA key hardcoded into the client now
so... π
π¬ 1 replies
Thread context
Root: e554bd94cda8β¦
Replying to: 1709395291c8β¦
Replies (1)
Dan Gould266d agoSeems like clients donβt verify that signatures actually come from that hardcoded key (which they are definitely able to do). Until that is done clients are still vulnerable to a coordinator tagging attack.
0000 sats